This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft File: AguJY5thIAOqgSvktlIbVnhFao4.mft (raw, json) Hash identifier: V7v+KcJCZAdtznY0eDb7Wnx6XPmv+GWh0b1LslWBX/o= Subject key identifier: A1:13:E0:4D:4A:46:B1:E0:B2:D3:82:91:D4:CC:EE:AC:B4:3A:50:92 Authority key identifier: 02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E Certificate issuer: /CN=020b89639b612003aa812be4b6521b5678456a8e Certificate serial: 019AF0BF04629AB0933178BA9BC1997C3CE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft Manifest number: 04C2 Signing time: Fri 05 Dec 2025 23:00:41 +0000 Manifest this update: Fri 05 Dec 2025 23:00:41 +0000 Manifest next update: Sat 06 Dec 2025 23:00:41 +0000 Files and hashes: 1: AguJY5thIAOqgSvktlIbVnhFao4.crl (hash: nx8ED4+j7v3yfex7GVqccYmrj6KR7rJvp53MHEZiSpc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:04:62:9a:b0:93:31:78:ba:9b:c1:99:7c:3c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020b89639b612003aa812be4b6521b5678456a8e Validity Not Before: Dec 5 23:00:41 2025 GMT Not After : Dec 6 23:00:41 2025 GMT Subject: CN=a113e04d4a46b1e0b2d38291d4cceeacb43a5092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:2e:83:5d:f9:46:fd:3c:c1:69:81:e2:30: 9d:c4:0f:0c:eb:35:68:a4:ef:d6:f8:b6:b8:4e:0f: 04:57:e9:a1:7a:b6:92:a8:d2:d0:a6:58:eb:ee:5b: f9:78:f9:53:94:4e:5c:ee:53:82:37:b5:20:f1:b1: a3:7c:ff:a6:01:16:d2:8a:74:41:1b:f5:4e:5a:15: 9c:78:96:59:76:e7:48:ed:5b:e1:f3:cd:15:cc:ad: 16:9b:3e:37:2e:a6:a4:f6:9b:55:b9:64:75:b0:32: ae:a6:49:e9:a1:99:5c:19:cb:23:b8:5c:af:7a:7c: f4:75:ae:68:71:99:10:e5:2e:49:d6:56:4a:73:3c: 43:8b:0c:98:15:be:ea:92:de:e4:32:d3:9b:04:dc: 41:65:d1:2e:67:86:6a:07:1a:ef:4e:8f:15:d0:6a: b1:7a:5f:0b:80:08:bd:d8:41:2e:75:01:1a:27:e9: ec:a7:a6:f3:0b:80:41:4a:b5:5d:d5:b1:95:5a:f5: 54:91:b0:1b:92:02:20:84:0f:d6:c7:dd:7b:9b:11: 06:a1:46:f7:17:c1:b9:58:85:9f:f3:b9:14:23:12: 52:86:a3:a6:8e:f6:c3:27:f1:1d:21:44:0f:49:53: 82:20:76:2e:d4:44:82:2b:f9:e5:17:da:b6:b4:c7: 06:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:13:E0:4D:4A:46:B1:E0:B2:D3:82:91:D4:CC:EE:AC:B4:3A:50:92 X509v3 Authority Key Identifier: keyid:02:0B:89:63:9B:61:20:03:AA:81:2B:E4:B6:52:1B:56:78:45:6A:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AguJY5thIAOqgSvktlIbVnhFao4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/77e9c5-abc2-4c39-b502-ebf329e96846/1/AguJY5thIAOqgSvktlIbVnhFao4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:78:5e:d6:6f:92:69:11:4d:f3:69:3b:69:03:b9:7b:8f:9d: c0:4e:23:aa:d2:bb:94:9c:93:ed:c6:43:86:84:69:42:8b:5a: 0d:19:3d:55:cb:a7:da:5f:23:f4:b8:2c:b3:b1:e2:74:05:59: 16:ba:07:ca:23:8f:15:4b:6c:83:40:78:54:4e:50:21:2b:d1: 02:dc:b5:d9:56:8c:c1:f8:85:b3:1a:12:2d:0f:41:70:2d:11: 0f:b1:a2:a2:38:6b:11:a7:35:05:63:c1:d4:19:e0:a8:de:0d: 7d:a3:19:5b:99:bd:fb:4e:91:3c:82:e5:e0:fe:89:63:5f:8d: bc:06:e3:70:18:bf:4d:b7:07:88:ba:42:d0:a8:e2:bd:cf:ea: ac:e5:f4:51:41:0b:0d:7b:58:a0:3e:ea:0e:16:cd:ce:c7:21: 1a:4a:2c:94:74:4c:a7:b6:08:30:13:90:8d:8b:52:34:1f:4d: 09:02:1f:ef:b4:34:16:86:79:53:18:e8:31:b6:96:ae:76:3f: a8:05:75:f2:9d:7a:9a:3a:2e:56:0e:36:e4:58:76:d0:16:bc: 7b:6b:03:d5:2a:25:00:69:ed:8b:63:36:27:d5:c1:91:c4:07: 54:07:e2:65:c8:7c:f4:cc:75:eb:00:68:dc:2c:ec:e8:d0:ab: 39:f0:6e:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvwRimrCTMXi6m8GZfDzoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyMGI4OTYzOWI2MTIwMDNhYTgxMmJlNGI2NTIxYjU2Nzg0 NTZhOGUwHhcNMjUxMjA1MjMwMDQxWhcNMjUxMjA2MjMwMDQxWjAzMTEwLwYDVQQD EyhhMTEzZTA0ZDRhNDZiMWUwYjJkMzgyOTFkNGNjZWVhY2I0M2E1MDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Cwug135Rv08wWmB4jCdxA8M6zVo pO/W+La4Tg8EV+mheraSqNLQpljr7lv5ePlTlE5c7lOCN7Ug8bGjfP+mARbSinRB G/VOWhWceJZZdudI7Vvh880VzK0Wmz43Lqak9ptVuWR1sDKupknpoZlcGcsjuFyv enz0da5ocZkQ5S5J1lZKczxDiwyYFb7qkt7kMtObBNxBZdEuZ4ZqBxrvTo8V0Gqx el8LgAi92EEudQEaJ+nsp6bzC4BBSrVd1bGVWvVUkbAbkgIghA/Wx917mxEGoUb3 F8G5WIWf87kUIxJShqOmjvbDJ/EdIUQPSVOCIHYu1ESCK/nlF9q2tMcGFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKET4E1KRrHgstOCkdTM7qy0OlCSMB8GA1UdIwQY MBaAFAILiWObYSADqoEr5LZSG1Z4RWqOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi83N2U5YzUtYWJjMi00YzM5LWI1MDIt ZWJmMzI5ZTk2ODQ2LzEvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi83N2U5YzUtYWJjMi00YzM5LWI1MDItZWJmMzI5ZTk2ODQ2 LzEvQWd1Slk1dGhJQU9xZ1N2a3RsSWJWbmhGYW80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADHhe1m+S aRFN82k7aQO5e4+dwE4jqtK7lJyT7cZDhoRpQotaDRk9Vcun2l8j9Lgss7HidAVZ FroHyiOPFUtsg0B4VE5QISvRAty12VaMwfiFsxoSLQ9BcC0RD7GiojhrEac1BWPB 1BngqN4NfaMZW5m9+06RPILl4P6JY1+NvAbjcBi/TbcHiLpC0Kjivc/qrOX0UUEL DXtYoD7qDhbNzschGkoslHRMp7YIMBOQjYtSNB9NCQIf77Q0FoZ5UxjoMbaWrnY/ qAV18p16mjouVg425Fh20Ba8e2sD1SolAGnti2M2J9XBkcQHVAfiZch89Mx16wBo 3Czs6NCrOfBu0g== -----END CERTIFICATE-----Generated at Sat Dec 6 07:04:10 2025 by rpki-client