This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft File: AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft (raw, json) Hash identifier: dgdV2Y5jCs3DAG5bNfJhyLA7GPF2jBTr/SDF51yc4RA= Subject key identifier: 23:0C:73:4E:96:43:BC:9C:44:82:B6:A1:3E:E4:A2:FA:6F:DA:82:77 Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34 Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234 Certificate serial: 019B3B3460317E7021475E478AA8E4AF0F4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft Manifest number: 17A8 Signing time: Sat 20 Dec 2025 10:00:46 +0000 Manifest this update: Sat 20 Dec 2025 10:00:46 +0000 Manifest next update: Sun 21 Dec 2025 10:00:46 +0000 Files and hashes: 1: 42hpqWqY72USafsvfiD_518D4aY.roa (hash: XyqSHkNb93lXjMdBQV3tT6d41VyHCZFCyukyVX/G7/A=) 2: AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl (hash: srfb69XxGBvVZpsFpt/5QolyosNlEPSntHtL8fD3Ovk=) 3: B_3pca4XmmEyoD7_YWQ5xsaTGlA.roa (hash: n5M6+Js+wLuWN3HaqVwvyZeizy4tawLMu5EBkNvd9Nw=) 4: GNcGFP48VRO_QOUxz3CvJSh90oA.roa (hash: 9T1HgBLEzXKt2GaC2y8FBctN+punw/ln3V52HLktRUQ=) 5: JOvZJvxVCIjogtIv-LfIwpT-8XY.roa (hash: IRDQFzfaDrUN19oYWZOku8P+RpACtFrOm+7KAJXqJUs=) 6: g9Hs1uIFeelsIxcu9-JFATbg5r0.roa (hash: i1uLdd6dy3tsCAr6HgKPaDpJNpr4x+g5kpnEdrNnrzs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:34:60:31:7e:70:21:47:5e:47:8a:a8:e4:af:0f:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234 Validity Not Before: Dec 20 10:00:46 2025 GMT Not After : Dec 21 10:00:46 2025 GMT Subject: CN=230c734e9643bc9c4482b6a13ee4a2fa6fda8277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:1b:6b:2e:81:f1:d7:45:c3:3e:06:1f:84:d9: d7:0d:35:5f:c6:a5:d7:f1:fa:e6:05:c7:63:fc:31: 7e:c2:30:97:43:4c:7f:21:4d:9c:6d:c9:7a:00:bd: 2a:84:55:1c:de:ec:6a:5e:b9:7b:6f:a7:21:11:ef: 65:94:d7:38:e7:66:f2:a0:9e:c3:53:7f:27:a5:fe: 84:bf:a7:7b:61:41:43:41:26:22:10:74:d7:c4:fe: 6e:4e:47:0f:65:0f:f5:a6:06:8a:bb:a2:aa:67:78: 2f:b6:cd:fd:d4:e6:43:1e:ca:19:e3:a4:c1:e4:a5: f0:b2:50:b9:a0:47:ea:7b:10:5c:7e:7d:c2:5b:d5: 57:04:d2:09:1f:e5:b7:7a:b5:93:eb:fc:60:3f:c2: 1f:83:4d:50:f8:b3:ca:d0:25:19:c5:57:8e:d6:e4: 5f:f6:c4:e8:93:9f:25:1e:de:52:1a:26:68:a3:24: 04:fb:4e:47:e1:dc:de:77:29:5c:29:fe:4d:b7:94: c1:0a:81:5b:4c:3b:5f:cc:b0:ee:33:58:46:18:66: 0a:17:65:b1:ab:24:cf:43:05:05:3f:2e:36:2e:18: a2:f3:ee:a9:7e:c0:8b:6c:c0:2e:a9:f7:23:ca:f4: 22:cd:88:3b:fe:48:77:5e:81:f1:47:bd:9b:bc:84: 3f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:0C:73:4E:96:43:BC:9C:44:82:B6:A1:3E:E4:A2:FA:6F:DA:82:77 X509v3 Authority Key Identifier: keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:20:ac:86:60:ed:48:fa:2f:99:27:4f:6f:a5:bb:50:bc:02: 26:8d:7b:7d:b8:1d:b0:73:ce:cf:f3:7e:ae:43:ff:63:b2:14: ac:7f:05:77:ad:f2:0e:e2:f0:8e:3b:a4:28:33:13:2a:a9:30: 4d:f0:25:03:1e:9a:2e:3a:61:92:45:0a:c1:29:78:d2:3a:c0: 5d:7b:d2:5a:c8:00:6e:03:cf:b9:ea:20:68:7d:8a:c0:c9:87: e8:82:93:c4:1b:a8:5c:d9:90:0b:19:92:0a:15:a1:9c:f1:18: d0:de:93:5a:5f:6a:ef:cf:ba:b5:53:b8:73:8c:e7:3e:a6:f9: 93:21:81:9f:00:f7:8d:ac:63:2f:ff:92:f7:fd:4e:af:d3:82: 85:67:3c:1a:4c:68:38:a4:c4:2e:18:74:1d:e5:15:88:c8:35: 4b:aa:de:73:63:de:c3:da:4f:4d:78:0a:80:1d:86:42:72:5e: 7a:1d:ff:59:53:e7:69:a8:9a:d6:bc:fc:8d:44:74:aa:96:d0: 3f:e9:dc:fb:9b:05:17:c7:a8:fc:55:50:9a:47:5b:2b:49:dd: a6:44:64:5b:23:77:1d:2d:d6:73:cf:8c:e6:a8:06:06:2d:7e: e6:a1:5c:a0:ea:d5:c4:1c:15:2e:bc:53:c0:90:0d:b0:f5:93: 24:55:fe:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NGAxfnAhR15Hiqjkrw9MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxZjNlZjNlMGVhOTVhOTc1NTM3ZDVjMjVkOTNjYjc2YWY2 ODcyMzQwHhcNMjUxMjIwMTAwMDQ2WhcNMjUxMjIxMTAwMDQ2WjAzMTEwLwYDVQQD EygyMzBjNzM0ZTk2NDNiYzljNDQ4MmI2YTEzZWU0YTJmYTZmZGE4Mjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhxtrLoHx10XDPgYfhNnXDTVfxqXX 8frmBcdj/DF+wjCXQ0x/IU2cbcl6AL0qhFUc3uxqXrl7b6chEe9llNc452byoJ7D U38npf6Ev6d7YUFDQSYiEHTXxP5uTkcPZQ/1pgaKu6KqZ3gvts391OZDHsoZ46TB 5KXwslC5oEfqexBcfn3CW9VXBNIJH+W3erWT6/xgP8Ifg01Q+LPK0CUZxVeO1uRf 9sTok58lHt5SGiZooyQE+05H4dzedylcKf5Nt5TBCoFbTDtfzLDuM1hGGGYKF2Wx qyTPQwUFPy42Lhii8+6pfsCLbMAuqfcjyvQizYg7/kh3XoHxR72bvIQ/YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCMMc06WQ7ycRIK2oT7kovpv2oJ3MB8GA1UdIwQY MBaAFAHz7z4OqVqXVTfVwl2Ty3avaHI0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84NDE3YTAtMDc3Ny00NDZlLTk3ZTEt MzUzYjNhNjMzYWRhLzEvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS84NDE3YTAtMDc3Ny00NDZlLTk3ZTEtMzUzYjNhNjMzYWRh LzEvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnSCshmDt SPovmSdPb6W7ULwCJo17fbgdsHPOz/N+rkP/Y7IUrH8Fd63yDuLwjjukKDMTKqkw TfAlAx6aLjphkkUKwSl40jrAXXvSWsgAbgPPueogaH2KwMmH6IKTxBuoXNmQCxmS ChWhnPEY0N6TWl9q78+6tVO4c4znPqb5kyGBnwD3jaxjL/+S9/1Or9OChWc8Gkxo OKTELhh0HeUViMg1S6rec2Pew9pPTXgKgB2GQnJeeh3/WVPnaaia1rz8jUR0qpbQ P+nc+5sFF8eo/FVQmkdbK0ndpkRkWyN3HS3Wc8+M5qgGBi1+5qFcoOrVxBwVLrxT wJANsPWTJFX+AQ== -----END CERTIFICATE-----Generated at Sat Dec 20 19:07:10 2025 by rpki-client