This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft File: 1AYg6l2vilSq6hfyy57N8114UwY.mft (raw, json) Hash identifier: bbYA7qJt7PCLdK8AQyP+Aji5bEBlkEN+QIpnrZNBq+s= Subject key identifier: 6F:BB:29:B3:4F:56:AD:E9:AA:09:9A:0F:0E:CE:DA:F7:E4:83:61:49 Authority key identifier: D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06 Certificate issuer: /CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306 Certificate serial: 019B4625C820BFF8345EFA2E592C87119A7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft Manifest number: 1265 Signing time: Mon 22 Dec 2025 13:00:39 +0000 Manifest this update: Mon 22 Dec 2025 13:00:39 +0000 Manifest next update: Tue 23 Dec 2025 13:00:39 +0000 Files and hashes: 1: 1AYg6l2vilSq6hfyy57N8114UwY.crl (hash: Vi+gvY8aDAA1EShgG+z/og2NxRuMcbLUZI6XMw9ENBU=) 2: gGx-x2iRamyRfnlhx5me1YxCw6s.roa (hash: JLnMtxeLdoGYGRa/pvkNkIdX/aY0zlXxd7zsjwME0tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:25:c8:20:bf:f8:34:5e:fa:2e:59:2c:87:11:9a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d40620ea5daf8a54aaea17f2cb9ecdf35d785306 Validity Not Before: Dec 22 13:00:39 2025 GMT Not After : Dec 23 13:00:39 2025 GMT Subject: CN=6fbb29b34f56ade9aa099a0f0ecedaf7e4836149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:31:61:e1:65:47:f0:ca:1e:04:0a:93:06:57: 45:a5:c4:07:bd:1c:ea:27:cf:8c:c1:e4:bd:6e:66: e1:53:0c:8d:8e:6b:8d:d1:13:50:98:f9:ed:3b:2d: 4c:70:2e:8f:0a:7a:4b:4e:4a:47:bb:89:50:99:c2: 32:44:5f:e0:ae:c2:23:e1:c2:d4:db:a0:04:37:58: ae:57:7f:60:d8:4a:84:85:c2:06:52:64:80:d4:ff: 3c:79:1e:b5:d3:d0:63:17:e5:c1:c1:fa:6b:f6:c2: a2:13:af:b7:ac:e0:57:0e:75:2e:a7:43:68:58:da: cf:5c:76:04:e6:6a:1b:43:81:4e:db:5d:32:9f:63: c9:d4:e1:6c:57:15:77:09:a4:44:d2:3f:fc:0f:ff: 85:38:34:30:b5:18:b2:e3:84:e9:ca:15:67:07:76: fe:cc:05:32:0f:92:69:52:e3:68:72:c4:4b:56:5d: 54:5c:2e:ab:7b:ff:be:8a:81:12:d7:9f:33:ee:e5: a1:c9:45:c7:f0:5a:a6:0d:22:ec:e9:7b:6a:50:14: f4:ec:3e:04:fe:8a:ef:c6:2b:f1:8b:67:59:f1:2f: a0:ae:e0:da:b0:46:41:f6:1c:8d:98:25:f3:7f:b3: 30:66:51:d6:4c:9c:5e:2b:82:17:15:82:b4:06:0f: 89:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BB:29:B3:4F:56:AD:E9:AA:09:9A:0F:0E:CE:DA:F7:E4:83:61:49 X509v3 Authority Key Identifier: keyid:D4:06:20:EA:5D:AF:8A:54:AA:EA:17:F2:CB:9E:CD:F3:5D:78:53:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AYg6l2vilSq6hfyy57N8114UwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/798fc5-b54c-41c1-8afe-f09e46c69bf8/1/1AYg6l2vilSq6hfyy57N8114UwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:88:03:4e:7e:93:2d:ad:4c:b4:fc:29:ce:72:2b:c2:de:bb: d4:f6:71:03:79:c1:f0:9e:71:eb:2b:03:2c:91:68:cb:d4:95: 05:db:43:6d:12:85:aa:18:c7:5f:3f:37:f8:e9:d4:b5:fd:cf: 93:5b:3a:dc:74:62:c7:a0:d3:18:92:c3:03:85:8b:c6:b5:c7: 23:1b:9b:1a:09:2f:78:63:96:90:b6:49:6f:5c:a1:69:39:7c: 00:32:4f:e9:aa:4b:bc:94:03:47:92:7d:21:17:5f:34:f9:6f: 4d:ba:03:68:9e:1f:a9:ee:02:d5:4d:bf:de:30:86:d5:31:e1: a8:5e:b7:ea:ff:9e:2a:90:db:5e:f5:cf:4b:bd:3f:64:0d:f4: 63:c8:f5:2e:41:2c:31:83:e2:c1:da:aa:4a:48:1d:90:12:d0: 32:f7:ae:ab:1c:71:36:4e:63:c4:92:b1:63:71:9b:2b:ef:4c: f7:3f:19:95:19:dd:79:e1:7d:0f:29:15:19:48:0d:1b:c7:72: 6e:b8:7a:3a:6b:97:a2:db:88:4a:e1:66:db:4e:c6:e3:92:ae: db:24:96:c0:59:87:e9:5a:47:c1:41:8d:b0:cc:4f:3a:4b:6d: 66:2c:8b:ce:c3:57:ec:59:59:6d:e7:d9:76:16:06:b7:23:18: ca:8f:d9:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJcggv/g0XvouWSyHEZp+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MDYyMGVhNWRhZjhhNTRhYWVhMTdmMmNiOWVjZGYzNWQ3 ODUzMDYwHhcNMjUxMjIyMTMwMDM5WhcNMjUxMjIzMTMwMDM5WjAzMTEwLwYDVQQD Eyg2ZmJiMjliMzRmNTZhZGU5YWEwOTlhMGYwZWNlZGFmN2U0ODM2MTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjFh4WVH8MoeBAqTBldFpcQHvRzq J8+MweS9bmbhUwyNjmuN0RNQmPntOy1McC6PCnpLTkpHu4lQmcIyRF/grsIj4cLU 26AEN1iuV39g2EqEhcIGUmSA1P88eR6109BjF+XBwfpr9sKiE6+3rOBXDnUup0No WNrPXHYE5mobQ4FO210yn2PJ1OFsVxV3CaRE0j/8D/+FODQwtRiy44TpyhVnB3b+ zAUyD5JpUuNocsRLVl1UXC6re/++ioES158z7uWhyUXH8FqmDSLs6XtqUBT07D4E /orvxivxi2dZ8S+gruDasEZB9hyNmCXzf7MwZlHWTJxeK4IXFYK0Bg+JaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+7KbNPVq3pqgmaDw7O2vfkg2FJMB8GA1UdIwQY MBaAFNQGIOpdr4pUquoX8suezfNdeFMGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUt ZjA5ZTQ2YzY5YmY4LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi83OThmYzUtYjU0Yy00MWMxLThhZmUtZjA5ZTQ2YzY5YmY4 LzEvMUFZZzZsMnZpbFNxNmhmeXk1N044MTE0VXdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU4gDTn6T La1MtPwpznIrwt671PZxA3nB8J5x6ysDLJFoy9SVBdtDbRKFqhjHXz83+OnUtf3P k1s63HRix6DTGJLDA4WLxrXHIxubGgkveGOWkLZJb1yhaTl8ADJP6apLvJQDR5J9 IRdfNPlvTboDaJ4fqe4C1U2/3jCG1THhqF636v+eKpDbXvXPS70/ZA30Y8j1LkEs MYPiwdqqSkgdkBLQMveuqxxxNk5jxJKxY3GbK+9M9z8ZlRndeeF9DykVGUgNG8dy brh6OmuXotuISuFm207G45Ku2ySWwFmH6VpHwUGNsMxPOkttZiyLzsNX7FlZbefZ dhYGtyMYyo/ZNw== -----END CERTIFICATE-----Generated at Mon Dec 22 15:42:55 2025 by rpki-client