This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json) Hash identifier: 4qX5VSCWNQKu+SkdKB33lyAA/PmQy0yOG8/UHrwJpf8= Subject key identifier: EE:43:7C:42:F6:EC:62:9C:71:F8:B9:5A:4E:E3:61:C9:B9:CA:E9:D4 Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86 Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86 Certificate serial: 019B544F7423D7FB2E84AB468ECA7EEBF666 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft Manifest number: 1057 Signing time: Thu 25 Dec 2025 07:00:51 +0000 Manifest this update: Thu 25 Dec 2025 07:00:51 +0000 Manifest next update: Fri 26 Dec 2025 07:00:51 +0000 Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: CMSEyzsc51o/jH6BotIIhmFcFsiG7glT0fILcc7lnG4=) 2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 07:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:4f:74:23:d7:fb:2e:84:ab:46:8e:ca:7e:eb:f6:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86 Validity Not Before: Dec 25 07:00:51 2025 GMT Not After : Dec 26 07:00:51 2025 GMT Subject: CN=ee437c42f6ec629c71f8b95a4ee361c9b9cae9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b4:f2:ac:bd:16:c5:56:9b:c8:d7:42:59:4e: cc:12:86:27:d4:e7:dd:59:49:7a:a5:24:3d:bd:87: 7a:91:c8:fd:f8:cf:1c:ed:ad:9f:7d:d7:13:04:7c: 32:f1:30:af:c0:79:84:69:b9:50:e2:fa:f0:f5:bf: e4:93:08:fe:ec:c3:c6:fe:bd:b5:c0:b5:09:a1:fa: 13:d9:50:4b:01:cb:5a:05:5d:c1:d3:f9:fa:d6:78: 91:fa:0e:0a:a3:95:dc:01:66:2a:69:86:6d:79:61: 8d:7c:1f:18:10:f8:65:55:cd:15:1d:f6:ff:d1:4b: 24:69:96:fc:d2:dc:07:90:77:0d:6e:55:e1:c8:76: 2e:72:85:40:04:60:be:69:7e:a3:cf:01:5e:4d:0f: f4:73:36:13:81:a2:cb:b3:c8:9d:f7:8d:13:85:9a: 94:eb:50:33:ab:c3:a9:e7:f8:d8:73:d6:a4:fe:6a: 54:36:ae:db:e6:1c:24:8b:f4:bd:ee:2a:cd:d4:2f: 29:f6:4b:94:5e:f5:e3:4b:87:ff:1f:54:04:70:5a: 96:d2:ba:87:24:72:2d:9b:5c:c8:b5:e3:26:f0:53: 0b:b9:cf:4e:00:bb:82:71:7c:69:e7:36:fb:20:e2: ab:d3:ac:04:b1:76:e3:c9:c0:33:77:8f:1b:6b:40: e0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:43:7C:42:F6:EC:62:9C:71:F8:B9:5A:4E:E3:61:C9:B9:CA:E9:D4 X509v3 Authority Key Identifier: keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0f:f6:de:e7:66:8f:63:75:52:38:8f:17:9b:07:47:37:10: 25:33:2b:b4:1d:50:41:7a:91:dc:b5:b3:4b:77:1e:76:6c:83: 45:b7:38:2e:a0:f4:a1:aa:6a:66:3b:61:ac:db:21:89:25:a5: 5f:c2:32:8a:d4:0e:9e:22:42:5c:da:a5:47:51:07:14:0c:85: 99:43:72:c9:93:f0:5e:e5:f3:e5:ae:08:12:7d:40:b4:86:96: fc:91:17:46:d5:e6:69:06:5d:bd:88:f3:f2:7c:02:c0:8b:f4: a9:e3:e9:c0:03:05:94:0d:01:c1:ad:ab:a2:07:91:2f:5e:a1: 33:47:10:d2:55:48:8b:6c:2e:78:17:5e:2e:bc:3e:4e:ec:f3: 82:8f:ef:fd:42:59:34:c4:55:66:65:96:a8:80:62:5e:85:3f: fc:a3:27:ea:db:fe:d0:03:ee:4a:09:49:0d:42:64:6e:fc:b5: 72:77:d0:f0:48:20:1b:35:a1:bf:8a:8d:5f:91:6b:46:4e:76: 79:44:da:d2:a0:3c:c0:69:c1:f4:80:b5:09:b8:ed:38:ff:9e: 88:bb:d7:f3:35:64:fa:c6:03:90:2f:ab:f8:c2:90:77:de:b8: 83:cd:34:a3:6b:cd:29:66:6d:9f:0b:e7:d5:fa:7a:81:59:27: d8:ab:9d:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUT3Qj1/suhKtGjsp+6/ZmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNDFlZjQ0MzYxNDI1MDZmMjY1OTM4M2MxNmViZGExZTI5 YjRmODYwHhcNMjUxMjI1MDcwMDUxWhcNMjUxMjI2MDcwMDUxWjAzMTEwLwYDVQQD EyhlZTQzN2M0MmY2ZWM2MjljNzFmOGI5NWE0ZWUzNjFjOWI5Y2FlOWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7TyrL0WxVabyNdCWU7MEoYn1Ofd WUl6pSQ9vYd6kcj9+M8c7a2ffdcTBHwy8TCvwHmEablQ4vrw9b/kkwj+7MPG/r21 wLUJofoT2VBLActaBV3B0/n61niR+g4Ko5XcAWYqaYZteWGNfB8YEPhlVc0VHfb/ 0UskaZb80twHkHcNblXhyHYucoVABGC+aX6jzwFeTQ/0czYTgaLLs8id940ThZqU 61Azq8Op5/jYc9ak/mpUNq7b5hwki/S97irN1C8p9kuUXvXjS4f/H1QEcFqW0rqH JHItm1zIteMm8FMLuc9OALuCcXxp5zb7IOKr06wEsXbjycAzd48ba0DgIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO5DfEL27GKccfi5Wk7jYcm5yunUMB8GA1UdIwQY MBaAFAJB70Q2FCUG8mWTg8FuvaHim0+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEt OWZkZjRjMTVmOWE2LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85ZWUyMDItYjliMy00N2YwLThjOWEtOWZkZjRjMTVmOWE2 LzEvQWtIdlJEWVVKUWJ5WlpPRHdXNjlvZUtiVDRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfA/23udm j2N1UjiPF5sHRzcQJTMrtB1QQXqR3LWzS3cedmyDRbc4LqD0oapqZjthrNshiSWl X8IyitQOniJCXNqlR1EHFAyFmUNyyZPwXuXz5a4IEn1AtIaW/JEXRtXmaQZdvYjz 8nwCwIv0qePpwAMFlA0Bwa2rogeRL16hM0cQ0lVIi2wueBdeLrw+Tuzzgo/v/UJZ NMRVZmWWqIBiXoU//KMn6tv+0APuSglJDUJkbvy1cnfQ8EggGzWhv4qNX5FrRk52 eUTa0qA8wGnB9IC1CbjtOP+eiLvX8zVk+sYDkC+r+MKQd964g800o2vNKWZtnwvn 1fp6gVkn2KuduA== -----END CERTIFICATE-----Generated at Thu Dec 25 14:32:57 2025 by rpki-client