This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft File: Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json) Hash identifier: FhnffMsRzJlmaLHyNx0H/wDn5egzk8xqDExCzBdRFU0= Subject key identifier: 0F:E6:8F:65:AC:F6:F1:24:44:3B:BE:A5:26:20:F6:16:E5:68:00:0F Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90 Certificate issuer: /CN=026d511ce3af90c4d601c7ccf8360523713e2c90 Certificate serial: 019B51BC6DF7A362DF6503A9269BCB598763 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft Manifest number: 040B Signing time: Wed 24 Dec 2025 19:01:01 +0000 Manifest this update: Wed 24 Dec 2025 19:01:01 +0000 Manifest next update: Thu 25 Dec 2025 19:01:01 +0000 Files and hashes: 1: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: ykgtOuLUItD4uWaQTKzVQDolbPfxNC9JtVYMSaYB2dE=) 2: PinfW_YHyw5uymC7Qg5_e_ihs1A.roa (hash: pxez1kR2olajgq0bPf5GWwA/2mx0CN85t2SDcizNJFk=) 3: q6pqSEbcTlqmRayyanV7tPyo7fs.roa (hash: EC2KtAOMCahopm9kPSQwxVqEk8+Lm5s50v5gQFz0rN8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:6d:f7:a3:62:df:65:03:a9:26:9b:cb:59:87:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90 Validity Not Before: Dec 24 19:01:01 2025 GMT Not After : Dec 25 19:01:01 2025 GMT Subject: CN=0fe68f65acf6f124443bbea52620f616e568000f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3b:33:1b:37:9c:f9:ec:14:41:4b:a2:19:51: 9b:79:ca:0d:c9:e8:68:4d:85:e3:6d:f3:d6:23:96: e7:9e:7f:ec:83:b8:5f:ca:4e:55:9c:1c:ca:b6:c7: 29:11:3c:a3:fc:df:9f:04:15:82:28:77:3d:2e:2b: 30:38:26:bd:b4:a5:2d:6a:fc:57:e9:87:be:62:60: c5:31:bc:75:6b:49:e6:cf:8c:a9:93:78:3d:bf:d4: 1c:6c:3c:39:3e:8e:18:4c:0e:7b:e0:33:fe:7b:6f: be:1d:d2:07:a6:43:30:5e:0b:cb:a7:f0:58:85:7e: 9e:92:e1:92:86:14:f5:32:91:4d:55:7d:9c:11:79: 7c:11:a3:41:35:2e:32:7e:59:ba:de:48:ed:36:e4: 0b:fe:5d:d1:e0:dc:2d:71:b1:f6:f4:4f:21:27:93: 03:2e:67:f8:bc:e0:73:f0:37:1e:d0:81:9e:a8:01: 25:5f:88:32:5e:22:d1:f1:38:dd:76:e4:e0:46:6e: 1c:a9:a2:e0:b0:4d:d2:47:3a:ef:32:e9:4e:09:8c: c4:c7:b8:04:f7:ce:0d:ef:44:a8:93:68:6e:74:b1: ad:46:79:97:f9:b1:08:b4:27:9b:8f:1f:a7:6c:6a: fb:ef:96:1c:89:f1:32:c4:d7:bf:d3:4c:25:9c:b8: 60:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E6:8F:65:AC:F6:F1:24:44:3B:BE:A5:26:20:F6:16:E5:68:00:0F X509v3 Authority Key Identifier: keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:4c:10:fc:1d:70:d7:a9:16:4e:f0:99:95:b1:3b:22:91:76: 7a:f7:49:f9:dc:f4:9b:f4:90:47:01:46:7d:b2:0e:66:b9:14: 6f:fc:d8:ae:40:a4:55:84:82:bd:55:9d:fe:5f:53:25:c8:09: d5:7d:d9:fb:65:40:72:9e:07:9f:cf:e7:2a:eb:85:00:81:74: 09:ab:0d:34:b5:b4:8f:7c:ba:40:1c:21:db:ce:37:6e:e4:81: d6:cb:e0:c7:60:c3:69:23:df:fc:46:f7:9c:56:f5:43:75:17: d6:ea:82:84:7a:3f:cf:9c:49:23:6a:6a:f8:a3:d2:79:b5:7f: 02:13:bb:e0:aa:55:81:b3:0b:2e:e6:7c:b2:04:62:0c:10:52: 61:6b:49:5b:43:3c:d5:6e:d6:d0:28:f8:d2:4e:d6:98:eb:9f: 71:e1:3f:6f:1c:d1:04:11:bc:d6:b4:da:04:9e:7d:5b:ba:5b: 6a:f3:09:23:0e:5e:9f:46:6f:29:7d:c5:54:3a:32:d0:83:1b: 38:8f:c9:58:c5:79:37:5f:1a:3d:d2:69:bb:a6:90:3e:3e:44: b8:b5:1a:c8:ab:d1:0e:a2:b5:61:d4:92:a1:1a:5b:08:3c:68: e2:02:05:31:84:68:06:7b:0b:a2:27:0a:4c:b7:af:b9:bf:2e: de:17:0b:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvG33o2LfZQOpJpvLWYdjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNmQ1MTFjZTNhZjkwYzRkNjAxYzdjY2Y4MzYwNTIzNzEz ZTJjOTAwHhcNMjUxMjI0MTkwMTAxWhcNMjUxMjI1MTkwMTAxWjAzMTEwLwYDVQQD EygwZmU2OGY2NWFjZjZmMTI0NDQzYmJlYTUyNjIwZjYxNmU1NjgwMDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTszGzec+ewUQUuiGVGbecoNyeho TYXjbfPWI5bnnn/sg7hfyk5VnBzKtscpETyj/N+fBBWCKHc9LiswOCa9tKUtavxX 6Ye+YmDFMbx1a0nmz4ypk3g9v9QcbDw5Po4YTA574DP+e2++HdIHpkMwXgvLp/BY hX6ekuGShhT1MpFNVX2cEXl8EaNBNS4yflm63kjtNuQL/l3R4NwtcbH29E8hJ5MD Lmf4vOBz8Dce0IGeqAElX4gyXiLR8TjdduTgRm4cqaLgsE3SRzrvMulOCYzEx7gE 984N70Sok2hudLGtRnmX+bEItCebjx+nbGr775YcifEyxNe/00wlnLhgXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/mj2Ws9vEkRDu+pSYg9hblaAAPMB8GA1UdIwQY MBaAFAJtURzjr5DE1gHHzPg2BSNxPiyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzkt ODRkYTYyMDY2ZThhLzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzktODRkYTYyMDY2ZThh LzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIUwQ/B1w 16kWTvCZlbE7IpF2evdJ+dz0m/SQRwFGfbIOZrkUb/zYrkCkVYSCvVWd/l9TJcgJ 1X3Z+2VAcp4Hn8/nKuuFAIF0CasNNLW0j3y6QBwh2843buSB1svgx2DDaSPf/Eb3 nFb1Q3UX1uqChHo/z5xJI2pq+KPSebV/AhO74KpVgbMLLuZ8sgRiDBBSYWtJW0M8 1W7W0Cj40k7WmOufceE/bxzRBBG81rTaBJ59W7pbavMJIw5en0ZvKX3FVDoy0IMb OI/JWMV5N18aPdJpu6aQPj5EuLUayKvRDqK1YdSSoRpbCDxo4gIFMYRoBnsLoicK TLevub8u3hcLWw== -----END CERTIFICATE-----Generated at Thu Dec 25 00:55:29 2025 by rpki-client