This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft File: AoNhMH79nzq-_mm9FN4OG9YLbmo.mft (raw, json) Hash identifier: pyerbkKFcS1JXStycV20Z3Go4PWeY0nKvtgw1liye84= Subject key identifier: 7E:79:7B:24:ED:EC:73:79:A8:0C:E5:B8:A2:1B:96:43:AE:26:F6:17 Authority key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A Certificate issuer: /CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a Certificate serial: 019AF1647128322E3116261A71C07BF22885 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 02:01:22 +0000 Manifest this update: Sat 06 Dec 2025 02:01:22 +0000 Manifest next update: Sun 07 Dec 2025 02:01:22 +0000 Files and hashes: 1: 2Zm15nya-qIgvvpfAijKMsgEkJ4.roa (hash: R6UtE66nKKM8V86y41wgOOrSUcLC3hcokGTEuECcZNA=) 2: AoNhMH79nzq-_mm9FN4OG9YLbmo.crl (hash: ifEUMOeQVbwpM4uxdnub9bZUT+K48T8nk4VP/j3ZHfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:71:28:32:2e:31:16:26:1a:71:c0:7b:f2:28:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a Validity Not Before: Dec 6 02:01:22 2025 GMT Not After : Dec 7 02:01:22 2025 GMT Subject: CN=7e797b24edec7379a80ce5b8a21b9643ae26f617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a5:57:58:4d:49:3d:1c:86:3a:a8:60:fd:0c: 35:d9:fe:3b:88:fa:81:ba:aa:bd:47:f1:e1:ce:25: 39:37:08:5d:f7:e2:f7:01:50:52:bc:4c:95:50:21: ce:56:f0:ea:85:58:38:b8:c6:da:0f:d7:a1:e2:1b: f8:6e:14:7b:46:9c:9d:ca:09:49:e3:45:24:49:c2: 31:e2:41:94:bf:62:c2:8f:5b:66:5e:69:f3:da:8a: 0a:c3:e6:42:6b:db:17:0d:d8:fa:00:08:8c:45:6b: e6:1b:cf:f9:ad:65:8e:14:33:f4:8e:01:de:b2:54: 9a:a2:f6:70:69:94:71:0b:ff:98:05:c3:22:ca:7f: b8:80:38:e5:55:c2:d7:68:c9:8d:51:54:dc:49:21: 82:6a:94:57:97:7a:71:ff:46:aa:32:07:0b:41:25: 6b:59:38:c6:98:82:34:d5:04:28:8b:25:e9:f6:5b: a0:18:a9:94:64:13:77:e1:d5:5f:4e:4d:ec:ff:fd: b4:2e:e2:e7:4e:a8:93:cc:71:4e:a8:ce:c4:ec:96: ea:1c:28:79:a8:f1:c6:13:f6:1f:07:f6:24:b0:e6: 89:3d:63:a7:17:35:43:d9:84:c5:01:33:96:f7:72: 9c:a3:0f:d7:d4:38:88:ef:89:ff:0d:9c:2e:08:c0: 9f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:79:7B:24:ED:EC:73:79:A8:0C:E5:B8:A2:1B:96:43:AE:26:F6:17 X509v3 Authority Key Identifier: keyid:02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:46:d7:a1:70:84:b0:c2:05:6c:68:fc:e3:05:08:a2:1c:7e: ac:ec:ea:a4:f6:70:78:65:01:d0:c0:e6:2b:a4:1b:4a:1b:3d: 7d:84:04:01:e7:9d:39:4a:ff:ce:ae:30:35:f1:51:24:78:14: d4:69:a5:5f:91:1d:f2:2f:88:ff:b1:61:ed:24:24:8a:2a:2e: c1:66:27:9c:b1:a4:e2:42:4b:32:28:19:ef:a1:be:ce:58:b0: 14:00:73:8f:36:79:e9:98:75:ed:84:3d:fd:53:6b:88:3c:db: fa:f2:0e:d2:69:66:98:5c:b5:1d:96:b0:5c:52:78:da:09:29: 95:df:26:ab:7d:89:b8:f0:b1:3d:f9:6e:19:3d:f7:f7:36:d6: 76:c7:5e:51:0e:eb:33:01:e2:44:36:d4:4d:da:e7:42:9a:9e: fd:05:ba:c1:f4:68:44:f1:2d:a7:53:ca:57:d7:56:f3:2a:2a: 2e:d8:ed:bd:77:8f:28:f0:13:27:50:cc:37:83:7e:2a:77:f3: 7e:6c:68:1d:5c:f6:6c:da:aa:13:42:7d:c5:07:86:d4:03:c3: bd:df:e5:6f:b2:5c:2b:8e:c3:a7:73:c0:e1:bd:f7:24:84:a4: f9:fb:a4:b2:a4:cf:ed:3c:cf:ff:62:9d:08:c3:bd:eb:b0:8f: 64:d1:10:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZHEoMi4xFiYaccB78iiFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyODM2MTMwN2VmZDlmM2FiZWZlNjliZDE0ZGUwZTFiZDYw YjZlNmEwHhcNMjUxMjA2MDIwMTIyWhcNMjUxMjA3MDIwMTIyWjAzMTEwLwYDVQQD Eyg3ZTc5N2IyNGVkZWM3Mzc5YTgwY2U1YjhhMjFiOTY0M2FlMjZmNjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtqVXWE1JPRyGOqhg/Qw12f47iPqB uqq9R/HhziU5Nwhd9+L3AVBSvEyVUCHOVvDqhVg4uMbaD9eh4hv4bhR7RpydyglJ 40UkScIx4kGUv2LCj1tmXmnz2ooKw+ZCa9sXDdj6AAiMRWvmG8/5rWWOFDP0jgHe slSaovZwaZRxC/+YBcMiyn+4gDjlVcLXaMmNUVTcSSGCapRXl3px/0aqMgcLQSVr WTjGmII01QQoiyXp9lugGKmUZBN34dVfTk3s//20LuLnTqiTzHFOqM7E7JbqHCh5 qPHGE/YfB/YksOaJPWOnFzVD2YTFATOW93Kcow/X1DiI74n/DZwuCMCfCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH55eyTt7HN5qAzluKIblkOuJvYXMB8GA1UdIwQY MBaAFAKDYTB+/Z86vv5pvRTeDhvWC25qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQW9OaE1INzluenEtX21tOUZONE9HOVlMYm1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9lODEwMWEtMjQwZi00ZTMyLWEwOTct MjdjMjczYTYwNzg4LzEvQW9OaE1INzluenEtX21tOUZONE9HOVlMYm1vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9lODEwMWEtMjQwZi00ZTMyLWEwOTctMjdjMjczYTYwNzg4 LzEvQW9OaE1INzluenEtX21tOUZONE9HOVlMYm1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIkbXoXCE sMIFbGj84wUIohx+rOzqpPZweGUB0MDmK6QbShs9fYQEAeedOUr/zq4wNfFRJHgU 1GmlX5Ed8i+I/7Fh7SQkiiouwWYnnLGk4kJLMigZ76G+zliwFABzjzZ56Zh17YQ9 /VNriDzb+vIO0mlmmFy1HZawXFJ42gkpld8mq32JuPCxPfluGT339zbWdsdeUQ7r MwHiRDbUTdrnQpqe/QW6wfRoRPEtp1PKV9dW8yoqLtjtvXePKPATJ1DMN4N+Knfz fmxoHVz2bNqqE0J9xQeG1APDvd/lb7JcK47Dp3PA4b33JISk+fuksqTP7TzP/2Kd CMO967CPZNEQCQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:39:23 2025 by rpki-client