This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft File: a1Y13TgCFaA8kwfaViBsVms4o88.mft (raw, json) Hash identifier: IFblUsvorHsHPEVEsjIhJC2F9lxAb+l/jyaaIqFFB74= Subject key identifier: 19:FA:47:F1:75:36:CA:95:B3:C7:83:FB:B1:B9:F8:03:84:64:CF:67 Authority key identifier: 6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF Certificate issuer: /CN=6b5635dd380215a03c9307da56206c566b38a3cf Certificate serial: 019AF31B8ABB701AAC46F49DE5FF0DE4F4FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft Manifest number: 149D Signing time: Sat 06 Dec 2025 10:00:59 +0000 Manifest this update: Sat 06 Dec 2025 10:00:59 +0000 Manifest next update: Sun 07 Dec 2025 10:00:59 +0000 Files and hashes: 1: a1Y13TgCFaA8kwfaViBsVms4o88.crl (hash: k466JgCEiBvF5FMRCsxwAnne7jazciOVcFbskWHbBCY=) 2: pXEOVL3s29ntjLGWnEad02SClcY.roa (hash: 5uijVm/LhBI/XgHLC1W0ZRQPeN6iEyHoyVbJwCUVIKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:8a:bb:70:1a:ac:46:f4:9d:e5:ff:0d:e4:f4:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b5635dd380215a03c9307da56206c566b38a3cf Validity Not Before: Dec 6 10:00:59 2025 GMT Not After : Dec 7 10:00:59 2025 GMT Subject: CN=19fa47f17536ca95b3c783fbb1b9f8038464cf67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:65:b3:fb:ca:4d:2f:bb:98:5e:a0:72:d7:de: 05:3c:49:34:56:44:08:32:77:f0:31:aa:7d:bc:85: 41:cc:d5:7c:aa:fd:05:a2:47:73:b4:5a:93:00:d3: b4:a0:de:1f:5e:e9:c4:0d:7c:e9:6a:6f:99:34:bd: e6:76:bf:2a:80:cf:7c:ee:cb:7b:98:c0:fd:4b:dc: a8:8c:4c:fb:6c:f8:88:c1:da:51:29:3a:e7:d5:0d: 96:99:38:1a:af:7d:5c:9a:7d:34:47:d0:ef:64:92: 96:33:8e:a8:fd:db:a7:b5:67:26:4c:b7:93:97:98: 1b:8a:a2:7d:f4:84:2e:bb:98:ff:99:71:20:10:6a: 85:cb:4f:65:1a:56:9c:10:a7:01:bb:5d:e5:a8:1d: bd:db:76:97:48:23:7d:1c:1a:6f:4f:f6:a0:5b:0e: 42:8e:04:fd:c4:f5:56:85:b6:1d:8e:d7:cc:5f:c0: a6:92:ed:c7:81:22:e0:2b:88:06:b9:51:71:a4:77: aa:aa:03:56:aa:25:c5:f0:d8:90:07:02:de:a0:a3: 50:96:89:fe:70:91:d1:78:c0:b6:a4:9a:93:15:51: 6c:5f:50:2c:c6:10:63:4f:1c:e5:3f:02:19:35:3a: f5:bb:39:62:53:d6:8e:1e:8d:ce:6d:05:7a:fa:7e: 3c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FA:47:F1:75:36:CA:95:B3:C7:83:FB:B1:B9:F8:03:84:64:CF:67 X509v3 Authority Key Identifier: keyid:6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:f0:10:a4:a9:bd:23:b5:d7:cf:a8:31:30:35:b2:dc:a1:e3: 7b:84:34:f7:97:33:e5:01:8e:c7:13:89:5b:57:45:f3:0f:17: 86:85:46:19:2e:20:ed:e3:5e:7c:d6:83:17:f0:88:51:49:28: dd:c4:b9:c3:92:86:35:fd:3a:7b:d2:9f:34:57:ac:30:81:b0: e0:dc:b3:b4:f2:41:bc:cf:02:09:62:23:fe:9c:de:09:f9:5c: 1b:2b:fb:22:ea:00:30:45:bf:a5:42:89:6a:2d:2e:38:c7:1c: ca:23:1c:9a:48:17:e4:23:85:48:d2:e7:c9:cf:e4:a4:47:71: a8:d6:4c:ec:ec:6e:fd:05:ed:ed:50:f0:00:9e:b7:c0:45:3b: 89:5e:9a:89:3a:56:de:2d:52:2d:d5:bd:d1:f1:d9:25:05:11: 97:47:30:67:05:6e:c0:94:6c:c1:5b:22:78:3a:07:03:f4:eb: 4c:c1:65:69:97:66:02:86:f9:7e:12:ad:7f:81:de:c2:eb:05: d6:7f:a4:0e:73:76:7d:ca:fc:32:74:24:54:1c:13:38:ff:e7: 22:7b:e9:ec:c4:86:ca:38:46:2b:b7:f5:3a:12:44:fe:b4:e2: 51:ed:40:12:02:6a:76:e8:49:a8:d9:54:f7:e4:25:3a:5e:96: 2b:6c:eb:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG4q7cBqsRvSd5f8N5PT7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNTYzNWRkMzgwMjE1YTAzYzkzMDdkYTU2MjA2YzU2NmIz OGEzY2YwHhcNMjUxMjA2MTAwMDU5WhcNMjUxMjA3MTAwMDU5WjAzMTEwLwYDVQQD EygxOWZhNDdmMTc1MzZjYTk1YjNjNzgzZmJiMWI5ZjgwMzg0NjRjZjY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWWz+8pNL7uYXqBy194FPEk0VkQI MnfwMap9vIVBzNV8qv0FokdztFqTANO0oN4fXunEDXzpam+ZNL3mdr8qgM987st7 mMD9S9yojEz7bPiIwdpRKTrn1Q2WmTgar31cmn00R9DvZJKWM46o/duntWcmTLeT l5gbiqJ99IQuu5j/mXEgEGqFy09lGlacEKcBu13lqB2923aXSCN9HBpvT/agWw5C jgT9xPVWhbYdjtfMX8Cmku3HgSLgK4gGuVFxpHeqqgNWqiXF8NiQBwLeoKNQlon+ cJHReMC2pJqTFVFsX1AsxhBjTxzlPwIZNTr1uzliU9aOHo3ObQV6+n481QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBn6R/F1NsqVs8eD+7G5+AOEZM9nMB8GA1UdIwQY MBaAFGtWNd04AhWgPJMH2lYgbFZrOKPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9hYzE3MzgtNmM2Ny00MjA0LTg5MDEt NzQ3NDhiYzkzYmNhLzEvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC9hYzE3MzgtNmM2Ny00MjA0LTg5MDEtNzQ3NDhiYzkzYmNh LzEvYTFZMTNUZ0NGYUE4a3dmYVZpQnNWbXM0bzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdPAQpKm9 I7XXz6gxMDWy3KHje4Q095cz5QGOxxOJW1dF8w8XhoVGGS4g7eNefNaDF/CIUUko 3cS5w5KGNf06e9KfNFesMIGw4NyztPJBvM8CCWIj/pzeCflcGyv7IuoAMEW/pUKJ ai0uOMccyiMcmkgX5COFSNLnyc/kpEdxqNZM7Oxu/QXt7VDwAJ63wEU7iV6aiTpW 3i1SLdW90fHZJQURl0cwZwVuwJRswVsieDoHA/TrTMFlaZdmAob5fhKtf4HewusF 1n+kDnN2fcr8MnQkVBwTOP/nInvp7MSGyjhGK7f1OhJE/rTiUe1AEgJqduhJqNlU 9+QlOl6WK2zr9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 16:53:33 2025 by rpki-client