This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft File: a1Y13TgCFaA8kwfaViBsVms4o88.mft (raw, json) Hash identifier: 5tsgY/5+aVhjxs9AQhyXAcxsxS+9w+JWzoKJi8vAw28= Subject key identifier: 0F:9A:7B:20:71:D9:9D:10:23:03:AE:38:D3:93:D7:50:59:DF:3A:4C Authority key identifier: 6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF Certificate issuer: /CN=6b5635dd380215a03c9307da56206c566b38a3cf Certificate serial: 019B2D0B731B0D7A2B137AE469AE7DEBD283 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft Manifest number: 14BB Signing time: Wed 17 Dec 2025 16:01:23 +0000 Manifest this update: Wed 17 Dec 2025 16:01:23 +0000 Manifest next update: Thu 18 Dec 2025 16:01:23 +0000 Files and hashes: 1: a1Y13TgCFaA8kwfaViBsVms4o88.crl (hash: 8N+oiW4W00X9lFVJIQakf558/fGCk++x76xk/T7yUnw=) 2: pXEOVL3s29ntjLGWnEad02SClcY.roa (hash: 5uijVm/LhBI/XgHLC1W0ZRQPeN6iEyHoyVbJwCUVIKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0b:73:1b:0d:7a:2b:13:7a:e4:69:ae:7d:eb:d2:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b5635dd380215a03c9307da56206c566b38a3cf Validity Not Before: Dec 17 16:01:23 2025 GMT Not After : Dec 18 16:01:23 2025 GMT Subject: CN=0f9a7b2071d99d102303ae38d393d75059df3a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:18:01:0f:28:7a:0a:d0:32:16:da:b2:b1:cc: c8:50:74:37:01:54:83:56:85:ce:17:ea:04:b5:f6: 25:06:fb:7b:e5:fa:55:f2:84:ef:d3:93:96:2d:81: ee:0f:36:69:cb:58:d7:b5:51:4b:fc:d3:a3:07:d7: 40:92:00:87:02:ec:02:86:b7:01:90:d9:59:8c:3d: ed:60:a8:f7:09:2e:1b:64:51:49:3a:d1:59:25:32: 05:9e:1a:b1:94:64:49:a1:5a:45:ad:96:20:64:87: ac:97:bd:dc:5f:b8:a6:89:f8:03:06:55:91:4d:a0: 8f:81:06:fa:3b:e4:e6:f2:99:60:71:a3:0d:8e:5a: aa:dd:0a:41:f6:c5:b5:a2:0b:a5:1c:aa:d9:ab:a8: 6c:d7:60:37:cb:2d:25:06:e1:13:86:5f:05:2c:43: 90:13:f9:76:13:fe:d6:b5:84:5c:51:3a:e1:d8:ba: 46:e7:ed:b6:74:dd:cf:46:57:fc:29:9e:58:36:bd: b4:b8:3b:d3:08:38:c1:cf:ce:5f:68:17:5a:d2:b9: e8:e4:8a:49:fe:98:eb:36:c3:27:3a:dc:87:08:d1: fb:0d:60:f0:6c:44:98:5a:5a:5e:28:dc:e2:3b:f1: 15:b8:85:00:01:60:1c:be:58:6a:f6:2c:e3:aa:66: 0c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:9A:7B:20:71:D9:9D:10:23:03:AE:38:D3:93:D7:50:59:DF:3A:4C X509v3 Authority Key Identifier: keyid:6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:a0:a6:ac:5a:6f:a2:52:d7:cb:cb:32:dc:be:e8:8e:fe:8c: f9:7d:f6:e4:99:29:5a:4b:76:f6:48:bf:be:f9:d8:ba:52:6f: b7:05:8f:ed:cf:dc:c7:fc:d9:b4:1d:ef:69:fc:1e:0f:3b:b0: f1:e2:ac:ab:99:ac:0d:c3:79:05:5c:2c:a5:cc:32:c8:fc:0d: 3b:cf:1c:aa:eb:aa:46:78:88:7d:bc:f5:6c:af:c0:5a:87:54: dc:62:c5:3d:67:b2:b2:aa:8d:d8:56:22:8c:41:97:0d:aa:f9: 12:26:59:0d:d6:6a:5c:c3:7e:34:a3:e4:2e:ca:f6:2f:7a:34: d6:43:b5:a9:e0:0b:be:ba:16:ec:56:5b:be:d3:5a:b3:0f:b0: bc:7d:d8:65:17:5b:6c:a4:ef:4a:b5:94:4d:e7:1b:a9:58:f9: 12:e8:a8:86:67:a6:72:66:1a:d1:b7:41:f5:34:6e:e1:25:7a: 4e:28:40:01:29:f8:93:5a:de:ec:15:1a:06:9a:14:57:d1:dc: 66:2e:90:6f:3d:8e:35:73:aa:d4:6d:6f:8d:4a:82:b5:3a:b5: d0:59:1b:d5:0c:a5:66:6a:b9:51:85:83:d1:90:6e:76:e6:f5: 61:d6:fa:35:4d:60:b2:76:08:aa:62:c6:ef:da:a8:10:f3:e2: 4f:cf:dd:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstC3MbDXorE3rkaa5969KDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNTYzNWRkMzgwMjE1YTAzYzkzMDdkYTU2MjA2YzU2NmIz OGEzY2YwHhcNMjUxMjE3MTYwMTIzWhcNMjUxMjE4MTYwMTIzWjAzMTEwLwYDVQQD EygwZjlhN2IyMDcxZDk5ZDEwMjMwM2FlMzhkMzkzZDc1MDU5ZGYzYTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBgBDyh6CtAyFtqysczIUHQ3AVSD VoXOF+oEtfYlBvt75fpV8oTv05OWLYHuDzZpy1jXtVFL/NOjB9dAkgCHAuwChrcB kNlZjD3tYKj3CS4bZFFJOtFZJTIFnhqxlGRJoVpFrZYgZIesl73cX7imifgDBlWR TaCPgQb6O+Tm8plgcaMNjlqq3QpB9sW1ogulHKrZq6hs12A3yy0lBuEThl8FLEOQ E/l2E/7WtYRcUTrh2LpG5+22dN3PRlf8KZ5YNr20uDvTCDjBz85faBda0rno5IpJ /pjrNsMnOtyHCNH7DWDwbESYWlpeKNziO/EVuIUAAWAcvlhq9izjqmYMZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+aeyBx2Z0QIwOuONOT11BZ3zpMMB8GA1UdIwQY MBaAFGtWNd04AhWgPJMH2lYgbFZrOKPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9hYzE3MzgtNmM2Ny00MjA0LTg5MDEt NzQ3NDhiYzkzYmNhLzEvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC9hYzE3MzgtNmM2Ny00MjA0LTg5MDEtNzQ3NDhiYzkzYmNh LzEvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVqCmrFpv olLXy8sy3L7ojv6M+X325JkpWkt29ki/vvnYulJvtwWP7c/cx/zZtB3vafweDzuw 8eKsq5msDcN5BVwspcwyyPwNO88cquuqRniIfbz1bK/AWodU3GLFPWeysqqN2FYi jEGXDar5EiZZDdZqXMN+NKPkLsr2L3o01kO1qeALvroW7FZbvtNasw+wvH3YZRdb bKTvSrWUTecbqVj5EuiohmemcmYa0bdB9TRu4SV6TihAASn4k1re7BUaBpoUV9Hc Zi6Qbz2ONXOq1G1vjUqCtTq10Fkb1QylZmq5UYWD0ZBudub1Ydb6NU1gsnYIqmLG 79qoEPPiT8/dug== -----END CERTIFICATE-----Generated at Wed Dec 17 17:44:37 2025 by rpki-client