This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json) Hash identifier: dhJ/Bbzc6W1dtfT48Ypvh2k7SboHDLH4wyjBwvAvVD0= Subject key identifier: 6E:18:A8:69:30:DA:FA:60:20:6B:4E:A4:44:5A:3F:DA:F8:9C:5E:CF Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86 Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86 Certificate serial: 019B3B34AAB7B8FC7734E4F3AEC261960A26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft Manifest number: 104A Signing time: Sat 20 Dec 2025 10:01:05 +0000 Manifest this update: Sat 20 Dec 2025 10:01:05 +0000 Manifest next update: Sun 21 Dec 2025 10:01:05 +0000 Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: 5cF0ouGvNf1PFfjRSbBAGm36NpU+LR5LQUXwmUF9nac=) 2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:34:aa:b7:b8:fc:77:34:e4:f3:ae:c2:61:96:0a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86 Validity Not Before: Dec 20 10:01:05 2025 GMT Not After : Dec 21 10:01:05 2025 GMT Subject: CN=6e18a86930dafa60206b4ea4445a3fdaf89c5ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:5b:b7:0b:74:f2:a3:77:5b:7f:76:ad:d0: dc:02:d3:64:43:bf:3e:6d:66:b6:26:64:9f:7b:1c: c1:b8:e6:b6:b3:fb:0c:cd:50:6d:e4:65:af:95:14: 2f:8e:fa:de:ed:75:77:6c:82:c7:c9:d0:ba:81:46: ea:52:91:a1:c0:8d:a9:84:df:2c:66:c3:79:f5:a7: 97:ff:24:f9:54:45:01:73:2c:7e:d2:2f:2c:d0:2b: 11:bf:7c:28:cd:22:11:7e:5d:3f:81:f0:ab:f1:5e: 96:ca:29:0f:46:71:e1:1e:1f:d5:22:75:1f:79:cb: 4b:43:04:37:72:85:73:10:26:59:26:c4:3b:30:65: 88:d4:20:4b:26:8f:44:22:c7:82:f1:3c:c1:92:60: f2:17:04:9e:90:2c:23:1f:b4:c7:6c:17:96:90:5c: 5f:77:7f:87:86:a5:94:37:7b:42:ca:30:5c:a3:64: a9:b4:b6:0f:2a:10:e5:a1:f2:2b:b2:2c:6b:b3:f7: 69:5b:98:91:b9:4e:a9:d1:c2:32:16:ac:a9:ea:96: c9:2b:60:3b:f8:1b:89:66:08:8f:19:65:5f:6b:81: 70:be:55:94:f1:57:9a:b8:2f:6e:68:5f:07:c3:c0: 16:cf:46:0f:23:ce:a2:32:13:8b:9f:13:b9:4e:e8: 11:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:18:A8:69:30:DA:FA:60:20:6B:4E:A4:44:5A:3F:DA:F8:9C:5E:CF X509v3 Authority Key Identifier: keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:f9:fc:ae:48:52:3a:8a:d7:92:a8:25:02:f2:1d:c4:72:49: bf:eb:06:6d:77:61:de:dc:49:a3:b5:22:8e:d3:10:56:8b:e5: 3c:36:85:69:6f:83:75:12:e8:87:05:0a:7c:e9:23:76:21:53: 5d:ab:d6:f1:74:8c:0d:60:4c:1d:96:2a:43:aa:18:06:38:bc: 4b:c2:55:39:22:62:18:71:6a:72:d1:97:2b:f1:e9:18:dc:f9: 35:7d:05:2e:fe:98:fe:81:e6:c6:cf:55:f9:be:2b:6d:e0:86: d9:34:0c:d3:d8:f1:2a:18:a2:e6:96:01:bf:00:20:2a:d3:a8: 9b:38:e9:75:17:68:c1:19:07:17:1f:1c:a1:80:5b:d7:88:3b: 4e:68:98:af:c7:91:9b:88:63:09:5b:41:f8:4f:4e:1f:4e:7c: 89:f9:7d:b0:9a:c6:7c:30:fc:61:6e:e9:85:f3:ae:b8:18:e3: 60:b6:04:85:ad:d7:34:8f:4c:db:4b:70:4f:25:c3:a8:8c:08: e2:6c:58:69:a2:bc:98:ca:08:2a:61:98:ad:a7:f2:8f:75:03: fc:15:6a:cb:ed:0d:5b:75:29:92:00:d1:fc:df:94:0c:e6:45: 57:93:57:01:a4:d2:a3:f2:d7:43:68:bd:06:56:d0:ec:b1:c9: 30:6f:7b:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NKq3uPx3NOTzrsJhlgomMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNDFlZjQ0MzYxNDI1MDZmMjY1OTM4M2MxNmViZGExZTI5 YjRmODYwHhcNMjUxMjIwMTAwMTA1WhcNMjUxMjIxMTAwMTA1WjAzMTEwLwYDVQQD Eyg2ZTE4YTg2OTMwZGFmYTYwMjA2YjRlYTQ0NDVhM2ZkYWY4OWM1ZWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0hbtwt08qN3W392rdDcAtNkQ78+ bWa2JmSfexzBuOa2s/sMzVBt5GWvlRQvjvre7XV3bILHydC6gUbqUpGhwI2phN8s ZsN59aeX/yT5VEUBcyx+0i8s0CsRv3wozSIRfl0/gfCr8V6WyikPRnHhHh/VInUf ectLQwQ3coVzECZZJsQ7MGWI1CBLJo9EIseC8TzBkmDyFwSekCwjH7THbBeWkFxf d3+HhqWUN3tCyjBco2SptLYPKhDlofIrsixrs/dpW5iRuU6p0cIyFqyp6pbJK2A7 +BuJZgiPGWVfa4FwvlWU8VeauC9uaF8Hw8AWz0YPI86iMhOLnxO5TugR5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG4YqGkw2vpgIGtOpERaP9r4nF7PMB8GA1UdIwQY MBaAFAJB70Q2FCUG8mWTg8FuvaHim0+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEt OWZkZjRjMTVmOWE2LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEtOWZkZjRjMTVmOWE2 LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARvn8rkhS OorXkqglAvIdxHJJv+sGbXdh3txJo7UijtMQVovlPDaFaW+DdRLohwUKfOkjdiFT XavW8XSMDWBMHZYqQ6oYBji8S8JVOSJiGHFqctGXK/HpGNz5NX0FLv6Y/oHmxs9V +b4rbeCG2TQM09jxKhii5pYBvwAgKtOomzjpdRdowRkHFx8coYBb14g7TmiYr8eR m4hjCVtB+E9OH058ifl9sJrGfDD8YW7phfOuuBjjYLYEha3XNI9M20twTyXDqIwI 4mxYaaK8mMoIKmGYrafyj3UD/BVqy+0NW3UpkgDR/N+UDOZFV5NXAaTSo/LXQ2i9 BlbQ7LHJMG97zA== -----END CERTIFICATE-----Generated at Sat Dec 20 18:09:46 2025 by rpki-client