This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json) Hash identifier: h6D/s1eicQeN/KzN3qCI7M4C5PAVZ5evenGfXu1g7kc= Subject key identifier: 1F:01:25:A8:F3:76:FB:0B:38:68:4A:76:58:96:57:DB:C8:C9:B7:D5 Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c Certificate serial: 019B3BD97AABD789482FB9F3AD083AF07960 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 13:01:07 +0000 Manifest this update: Sat 20 Dec 2025 13:01:07 +0000 Manifest next update: Sun 21 Dec 2025 13:01:07 +0000 Files and hashes: 1: Zbu9lV-TXRr1mjPabkdbQi-tc2k.roa (hash: L0pLG2iq3DWnmdVA1LNHGmiPWiH4T8eZ9Q5L7k/ukzQ=) 2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: W3utsc4zjUZqLVrISU1OwENKWE/uR6yb+2+5nGYxdVk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:7a:ab:d7:89:48:2f:b9:f3:ad:08:3a:f0:79:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c Validity Not Before: Dec 20 13:01:07 2025 GMT Not After : Dec 21 13:01:07 2025 GMT Subject: CN=1f0125a8f376fb0b38684a76589657dbc8c9b7d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:b5:8f:59:11:f2:77:45:8e:2b:ea:b3:41: 18:27:0c:5d:29:b3:b8:25:e9:35:d1:27:b1:cf:ad: e7:51:a8:cc:ba:5c:c1:09:de:46:29:fe:73:7c:de: ea:2e:5b:5d:2a:66:3c:8b:22:ba:b5:02:14:00:7b: 1b:1f:c8:54:e8:d4:cf:31:f4:1b:f1:ac:0d:d3:67: 9c:42:a4:86:98:b4:ef:c9:d9:ab:52:84:94:c2:3a: 49:27:86:1d:74:d1:7e:bf:5e:45:5d:6b:d5:4c:19: 60:32:8d:80:aa:e4:c1:69:73:98:b8:07:35:f0:4c: d2:3c:64:4b:b1:ee:12:6f:4c:34:0c:30:7c:e5:1e: 89:d4:98:68:ef:60:dd:93:04:0b:b3:29:44:bf:33: d8:df:ce:25:07:25:82:fb:ce:38:1f:c9:fd:ad:0d: c3:e6:5f:16:34:b5:c0:f7:40:7d:34:18:2e:0b:9e: 72:8a:dc:7b:73:3d:08:7d:26:4d:4c:c9:75:d1:77: 50:17:2d:a0:73:d4:63:0b:9c:f8:09:f8:9a:c4:b7: ce:cc:e0:2f:dc:b2:81:a7:93:cc:eb:c2:5a:17:cb: cd:ac:96:65:6c:6f:e6:79:27:1d:0f:38:96:89:bf: 6e:f1:58:e1:08:96:21:45:a9:98:37:c2:06:62:c6: be:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:01:25:A8:F3:76:FB:0B:38:68:4A:76:58:96:57:DB:C8:C9:B7:D5 X509v3 Authority Key Identifier: keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:5c:7c:49:bb:0a:07:f5:0d:a5:50:02:fa:1d:a2:ed:de:1d: ed:98:8c:ba:b2:9c:2a:2d:1b:a2:11:6e:36:06:ee:40:67:e5: 10:e5:93:5f:4e:d9:f2:96:3f:ac:15:35:c3:56:b1:05:16:c3: 9f:5e:f2:11:2c:28:8f:a5:9c:3f:c6:bf:8d:c3:22:09:3a:b6: 52:b4:33:f5:61:3f:a3:75:42:e8:c8:00:25:ce:67:f8:9e:9e: d5:04:75:b3:68:f6:50:ad:7c:79:f0:c8:16:bf:76:e1:2c:24: d8:80:2b:dc:0d:5f:4a:fc:c7:ed:3e:a2:fc:3a:90:b3:ea:6a: 3a:db:aa:12:ec:63:00:4c:a8:c0:e5:e2:5f:33:31:13:ad:f3: cb:3c:f7:de:85:45:1c:d0:44:c5:e1:3d:13:bf:f2:71:83:4d: f2:a8:c9:a1:fe:89:5f:b1:ed:ba:39:f3:7f:66:89:2c:c6:16: 98:91:71:6e:f3:94:8d:25:34:a6:e2:eb:8d:85:1d:53:e3:ab: c9:bf:64:a3:2b:0f:87:af:31:89:d3:8d:54:2b:d4:79:b5:a9: 56:17:af:81:8c:28:93:41:7c:f0:f5:d6:db:b0:60:53:e8:85: 84:b0:68:00:fd:8b:88:44:2d:e1:61:fd:83:49:e1:1f:65:ef: af:bf:cf:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72Xqr14lIL7nzrQg68HlgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhMGQ2NjZhNTRkNWUxYmMzNTVjMGQ3MjUwM2E0NThmYzBl OGUwNmMwHhcNMjUxMjIwMTMwMTA3WhcNMjUxMjIxMTMwMTA3WjAzMTEwLwYDVQQD EygxZjAxMjVhOGYzNzZmYjBiMzg2ODRhNzY1ODk2NTdkYmM4YzliN2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppm1j1kR8ndFjivqs0EYJwxdKbO4 Jek10Sexz63nUajMulzBCd5GKf5zfN7qLltdKmY8iyK6tQIUAHsbH8hU6NTPMfQb 8awN02ecQqSGmLTvydmrUoSUwjpJJ4YddNF+v15FXWvVTBlgMo2AquTBaXOYuAc1 8EzSPGRLse4Sb0w0DDB85R6J1Jho72DdkwQLsylEvzPY384lByWC+844H8n9rQ3D 5l8WNLXA90B9NBguC55yitx7cz0IfSZNTMl10XdQFy2gc9RjC5z4CfiaxLfOzOAv 3LKBp5PM68JaF8vNrJZlbG/meScdDziWib9u8VjhCJYhRamYN8IGYsa+8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB8BJajzdvsLOGhKdliWV9vIybfVMB8GA1UdIwQY MBaAFGoNZmpU1eG8NVwNclA6RY/A6OBsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4Mjct YTgyYWQ1NGRlZmJjLzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4MjctYTgyYWQ1NGRlZmJj LzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADVx8SbsK B/UNpVAC+h2i7d4d7ZiMurKcKi0bohFuNgbuQGflEOWTX07Z8pY/rBU1w1axBRbD n17yESwoj6WcP8a/jcMiCTq2UrQz9WE/o3VC6MgAJc5n+J6e1QR1s2j2UK18efDI Fr924Swk2IAr3A1fSvzH7T6i/DqQs+pqOtuqEuxjAEyowOXiXzMxE63zyzz33oVF HNBExeE9E7/ycYNN8qjJof6JX7Htujnzf2aJLMYWmJFxbvOUjSU0puLrjYUdU+Or yb9koysPh68xidONVCvUebWpVhevgYwok0F88PXW27BgU+iFhLBoAP2LiEQt4WH9 g0nhH2Xvr7/PtQ== -----END CERTIFICATE-----Generated at Sat Dec 20 21:33:57 2025 by rpki-client