This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft File: Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft (raw, json) Hash identifier: ygdk0fy8e3fwCgbCefkMY/47X0/PtlInwOEnGj/NYe4= Subject key identifier: D0:2E:C0:82:06:5E:32:F4:42:8E:5E:DC:CB:8F:2E:D6:11:48:FE:2D Authority key identifier: 02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90 Certificate issuer: /CN=026d511ce3af90c4d601c7ccf8360523713e2c90 Certificate serial: 019B3A8F82B28DFC582294537F494361FDE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft Manifest number: 03FF Signing time: Sat 20 Dec 2025 07:00:42 +0000 Manifest this update: Sat 20 Dec 2025 07:00:42 +0000 Manifest next update: Sun 21 Dec 2025 07:00:42 +0000 Files and hashes: 1: Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl (hash: HLNmjR9josZJ14kgt246V1Y6Xwye4468FuS94xcWqCw=) 2: PinfW_YHyw5uymC7Qg5_e_ihs1A.roa (hash: pxez1kR2olajgq0bPf5GWwA/2mx0CN85t2SDcizNJFk=) 3: q6pqSEbcTlqmRayyanV7tPyo7fs.roa (hash: EC2KtAOMCahopm9kPSQwxVqEk8+Lm5s50v5gQFz0rN8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:8f:82:b2:8d:fc:58:22:94:53:7f:49:43:61:fd:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=026d511ce3af90c4d601c7ccf8360523713e2c90 Validity Not Before: Dec 20 07:00:42 2025 GMT Not After : Dec 21 07:00:42 2025 GMT Subject: CN=d02ec082065e32f4428e5edccb8f2ed61148fe2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cc:78:3c:24:6b:02:6c:6d:1c:18:27:6b:ff: 0f:59:d2:50:16:38:78:5c:ea:9f:89:f6:59:fc:e7: 60:f7:ba:cb:db:05:11:2a:df:1e:8c:79:82:c6:b2: 30:f3:ae:61:c1:6f:75:8a:01:2f:e2:af:38:99:1c: a0:c5:76:90:43:13:ad:14:cd:f4:02:5d:cc:c2:6a: e7:e5:00:e3:53:88:cc:db:fb:de:1c:d5:b2:fd:f6: 12:83:5f:02:c7:9f:90:76:e1:86:0d:8c:83:09:5b: c0:d5:56:26:7e:e5:02:ec:ce:0c:18:7d:39:f7:5b: d2:18:6e:2b:b9:fa:d0:f3:3b:e7:0e:72:dc:03:37: dc:45:91:ba:4c:b3:e0:b0:1e:69:92:20:18:72:0c: e9:77:3c:fe:b2:af:05:53:92:dd:bb:66:89:64:65: 51:53:13:7a:68:40:78:fb:38:63:e1:c6:c6:9b:16: d9:cb:cd:7f:65:64:e0:91:3e:2c:64:96:a5:00:1d: bf:e7:a2:e9:21:1d:b2:64:3c:d6:45:28:fe:c7:ce: 5a:9d:12:a4:a3:e1:a8:09:ae:66:7a:b0:d3:fd:e5: a0:3c:93:45:e3:dd:ed:ec:d2:23:4c:c4:34:30:de: 62:fd:d8:34:60:a1:07:3c:4b:17:5e:0e:72:bd:05: ec:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2E:C0:82:06:5E:32:F4:42:8E:5E:DC:CB:8F:2E:D6:11:48:FE:2D X509v3 Authority Key Identifier: keyid:02:6D:51:1C:E3:AF:90:C4:D6:01:C7:CC:F8:36:05:23:71:3E:2C:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Am1RHOOvkMTWAcfM-DYFI3E-LJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b0c402-e09e-4c69-acc9-84da62066e8a/1/Am1RHOOvkMTWAcfM-DYFI3E-LJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:5f:13:01:48:0c:a4:8f:11:dd:49:13:c0:aa:d7:69:bf:4d: 8c:b4:83:72:a1:3a:04:c0:04:8a:e7:ed:53:53:3b:d1:af:f1: 0b:19:8e:4f:6a:57:ed:16:22:96:56:e9:27:32:12:c0:4b:33: 1b:d1:03:16:03:8e:6b:3b:c0:9d:bb:a1:d3:a8:b9:f0:c5:ec: c5:a2:4c:8e:a8:53:cf:7f:29:a3:1e:ab:3b:c2:68:76:28:a0: f2:6e:ed:ea:ee:e1:0c:19:a6:67:71:87:27:93:32:4b:6a:b9: 78:87:89:e8:d8:7c:79:59:70:60:41:b6:7f:91:ad:35:f2:dd: 82:9b:4a:3a:3b:37:11:2b:d9:2b:08:00:11:a7:79:cc:32:20: 33:79:7b:d0:63:8b:c0:6a:19:45:5d:9b:cd:fb:39:0c:c0:39: 16:57:64:16:7f:31:9b:bf:49:07:01:53:22:bc:65:1b:ec:47: e1:9a:fa:7d:34:63:ad:d8:1b:d6:90:d0:46:75:3c:f9:fe:29: db:fb:1a:86:1b:c3:dd:58:d2:d1:9c:33:7a:56:ae:3d:d6:e8: bc:04:06:b5:85:e1:54:8c:de:2d:bd:59:b8:91:72:28:4e:3c: 5a:6e:5e:68:10:d6:0d:b6:65:00:0f:28:14:84:ed:43:87:3e: 7c:4c:55:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6j4KyjfxYIpRTf0lDYf3oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNmQ1MTFjZTNhZjkwYzRkNjAxYzdjY2Y4MzYwNTIzNzEz ZTJjOTAwHhcNMjUxMjIwMDcwMDQyWhcNMjUxMjIxMDcwMDQyWjAzMTEwLwYDVQQD EyhkMDJlYzA4MjA2NWUzMmY0NDI4ZTVlZGNjYjhmMmVkNjExNDhmZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMx4PCRrAmxtHBgna/8PWdJQFjh4 XOqfifZZ/Odg97rL2wURKt8ejHmCxrIw865hwW91igEv4q84mRygxXaQQxOtFM30 Al3Mwmrn5QDjU4jM2/veHNWy/fYSg18Cx5+QduGGDYyDCVvA1VYmfuUC7M4MGH05 91vSGG4rufrQ8zvnDnLcAzfcRZG6TLPgsB5pkiAYcgzpdzz+sq8FU5Ldu2aJZGVR UxN6aEB4+zhj4cbGmxbZy81/ZWTgkT4sZJalAB2/56LpIR2yZDzWRSj+x85anRKk o+GoCa5merDT/eWgPJNF493t7NIjTMQ0MN5i/dg0YKEHPEsXXg5yvQXswwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNAuwIIGXjL0Qo5e3MuPLtYRSP4tMB8GA1UdIwQY MBaAFAJtURzjr5DE1gHHzPg2BSNxPiyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzkt ODRkYTYyMDY2ZThhLzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9iMGM0MDItZTA5ZS00YzY5LWFjYzktODRkYTYyMDY2ZThh LzEvQW0xUkhPT3ZrTVRXQWNmTS1EWUZJM0UtTEpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR18TAUgM pI8R3UkTwKrXab9NjLSDcqE6BMAEiuftU1M70a/xCxmOT2pX7RYillbpJzISwEsz G9EDFgOOazvAnbuh06i58MXsxaJMjqhTz38pox6rO8Jodiig8m7t6u7hDBmmZ3GH J5MyS2q5eIeJ6Nh8eVlwYEG2f5GtNfLdgptKOjs3ESvZKwgAEad5zDIgM3l70GOL wGoZRV2bzfs5DMA5FldkFn8xm79JBwFTIrxlG+xH4Zr6fTRjrdgb1pDQRnU8+f4p 2/sahhvD3VjS0ZwzelauPdbovAQGtYXhVIzeLb1ZuJFyKE48Wm5eaBDWDbZlAA8o FITtQ4c+fExVug== -----END CERTIFICATE-----Generated at Sat Dec 20 17:14:22 2025 by rpki-client