This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft File: ag1malTV4bw1XA1yUDpFj8Do4Gw.mft (raw, json) Hash identifier: hmLDjx23Z92m+LBONSAQJiLEY6G57aoRvr6pywhd/TA= Subject key identifier: AD:C3:66:97:EE:5E:92:06:71:B1:86:9C:02:A5:C5:E9:3F:0B:FF:CF Authority key identifier: 6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C Certificate issuer: /CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c Certificate serial: 019B3DC7A1F9B61B4964855802D41E2A8B02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 22:00:51 +0000 Manifest this update: Sat 20 Dec 2025 22:00:51 +0000 Manifest next update: Sun 21 Dec 2025 22:00:51 +0000 Files and hashes: 1: Zbu9lV-TXRr1mjPabkdbQi-tc2k.roa (hash: L0pLG2iq3DWnmdVA1LNHGmiPWiH4T8eZ9Q5L7k/ukzQ=) 2: ag1malTV4bw1XA1yUDpFj8Do4Gw.crl (hash: Zg15L+x+GalC0uABB+73LjfIUbGZ+0v2355l9tSCO2Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:c7:a1:f9:b6:1b:49:64:85:58:02:d4:1e:2a:8b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a0d666a54d5e1bc355c0d72503a458fc0e8e06c Validity Not Before: Dec 20 22:00:51 2025 GMT Not After : Dec 21 22:00:51 2025 GMT Subject: CN=adc36697ee5e920671b1869c02a5c5e93f0bffcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:11:4f:80:66:62:d6:2c:23:80:a0:fa:80:88: 2b:8f:5b:c6:54:ec:79:c2:30:c0:51:ab:9a:37:3b: 4b:40:51:b3:63:b1:9d:19:25:4d:14:28:c9:23:8e: fd:06:a9:95:03:b0:96:58:81:c5:0f:64:d3:4b:8d: 95:ca:0d:b2:44:2c:8a:d6:59:62:cc:a9:0a:51:14: f2:eb:8b:fe:7a:c6:61:00:c3:a8:29:5d:a0:cc:19: 45:12:d3:a8:77:d5:8b:39:a3:4e:eb:2f:7f:b1:da: 82:a7:ec:f3:a0:d0:83:90:ef:0f:9f:38:63:88:a3: eb:67:64:98:ec:19:aa:9b:58:9a:c3:8a:2b:44:c8: b0:af:e8:8c:58:f3:2a:2c:90:72:da:e1:d2:4e:aa: b1:7e:43:64:ac:5a:1b:bd:be:7f:b5:5d:a8:b1:1d: 8f:6c:98:c8:a0:76:9a:82:b0:7e:96:23:f7:77:f7: a9:45:17:61:d3:b3:8f:8b:11:61:0a:6c:6b:cd:af: 03:58:9b:69:8f:ff:62:27:b2:32:71:d2:22:0e:a6: 71:13:b6:26:74:a2:b2:77:78:a0:af:82:90:2b:df: f6:81:39:3a:44:3b:a7:52:03:54:3f:d8:23:eb:f7: 4a:d6:a6:dd:bb:e8:f0:c1:dd:ec:0e:f6:a6:94:a2: f0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C3:66:97:EE:5E:92:06:71:B1:86:9C:02:A5:C5:E9:3F:0B:FF:CF X509v3 Authority Key Identifier: keyid:6A:0D:66:6A:54:D5:E1:BC:35:5C:0D:72:50:3A:45:8F:C0:E8:E0:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag1malTV4bw1XA1yUDpFj8Do4Gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/ae842b-4cc7-4e07-9827-a82ad54defbc/1/ag1malTV4bw1XA1yUDpFj8Do4Gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:60:54:29:fe:93:c6:db:71:2a:2b:76:dc:bd:bb:d1:8b:45: 6a:58:74:aa:d0:27:10:91:b2:0c:76:f9:de:38:f5:48:56:df: bd:3e:ac:5b:5a:f4:36:e7:a4:55:e4:5f:e5:c7:74:c3:d0:b8: 2c:18:9b:95:de:40:c1:31:b8:2e:a0:9e:dd:0a:1c:9f:d8:80: 44:06:f5:30:85:e5:10:34:90:2b:57:f0:62:51:9d:9b:23:40: ac:3b:5c:8c:86:b0:c2:a6:22:02:4d:d0:4b:09:b4:20:21:b8: 0f:2e:6b:e6:bf:5a:c5:25:46:58:c4:a2:3d:19:9e:5a:e0:2d: b7:d2:02:86:8c:06:32:42:48:e8:d2:71:cd:f9:00:3d:36:79: 32:e8:49:79:f7:96:85:8f:c6:32:fd:45:c3:5f:89:70:26:55: 00:fd:a4:30:41:bc:c5:51:e2:c1:43:78:e7:8a:d6:84:19:e3: 31:29:32:7a:22:2f:81:2e:14:91:a9:45:00:90:85:2c:44:7c: 93:0e:d2:76:2e:41:72:f1:51:35:a8:f2:8d:91:e4:71:3b:c9: 73:3f:34:83:08:27:28:64:af:a2:e2:80:66:f0:29:c6:a1:ae: 39:c4:3f:58:18:86:2d:31:27:03:be:9e:75:81:d5:32:1f:5e: c7:f7:20:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9x6H5thtJZIVYAtQeKosCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhMGQ2NjZhNTRkNWUxYmMzNTVjMGQ3MjUwM2E0NThmYzBl OGUwNmMwHhcNMjUxMjIwMjIwMDUxWhcNMjUxMjIxMjIwMDUxWjAzMTEwLwYDVQQD EyhhZGMzNjY5N2VlNWU5MjA2NzFiMTg2OWMwMmE1YzVlOTNmMGJmZmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRFPgGZi1iwjgKD6gIgrj1vGVOx5 wjDAUauaNztLQFGzY7GdGSVNFCjJI479BqmVA7CWWIHFD2TTS42Vyg2yRCyK1lli zKkKURTy64v+esZhAMOoKV2gzBlFEtOod9WLOaNO6y9/sdqCp+zzoNCDkO8Pnzhj iKPrZ2SY7Bmqm1iaw4orRMiwr+iMWPMqLJBy2uHSTqqxfkNkrFobvb5/tV2osR2P bJjIoHaagrB+liP3d/epRRdh07OPixFhCmxrza8DWJtpj/9iJ7IycdIiDqZxE7Ym dKKyd3igr4KQK9/2gTk6RDunUgNUP9gj6/dK1qbdu+jwwd3sDvamlKLwUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK3DZpfuXpIGcbGGnAKlxek/C//PMB8GA1UdIwQY MBaAFGoNZmpU1eG8NVwNclA6RY/A6OBsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4Mjct YTgyYWQ1NGRlZmJjLzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9hZTg0MmItNGNjNy00ZTA3LTk4MjctYTgyYWQ1NGRlZmJj LzEvYWcxbWFsVFY0YncxWEExeVVEcEZqOERvNEd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVmBUKf6T xttxKit23L270YtFalh0qtAnEJGyDHb53jj1SFbfvT6sW1r0NuekVeRf5cd0w9C4 LBibld5AwTG4LqCe3Qocn9iARAb1MIXlEDSQK1fwYlGdmyNArDtcjIawwqYiAk3Q Swm0ICG4Dy5r5r9axSVGWMSiPRmeWuAtt9IChowGMkJI6NJxzfkAPTZ5MuhJefeW hY/GMv1Fw1+JcCZVAP2kMEG8xVHiwUN454rWhBnjMSkyeiIvgS4UkalFAJCFLER8 kw7Sdi5BcvFRNajyjZHkcTvJcz80gwgnKGSvouKAZvApxqGuOcQ/WBiGLTEnA76e dYHVMh9ex/cgDQ== -----END CERTIFICATE-----Generated at Sun Dec 21 00:52:41 2025 by rpki-client