This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft File: 4awDIrPqtlcuzioKxavxZKW7_yA.mft (raw, json) Hash identifier: xkGwkTEcy61kahgXbW2D5E234LupGoyAbVTh5ilQ2X4= Subject key identifier: 71:C8:0C:94:3D:F2:44:E1:5B:8B:8A:94:CE:E4:3A:9A:25:E5:7A:71 Authority key identifier: E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20 Certificate issuer: /CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20 Certificate serial: 019B3EA39587674BF101BA109CA76E60464B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft Manifest number: 1794 Signing time: Sun 21 Dec 2025 02:01:06 +0000 Manifest this update: Sun 21 Dec 2025 02:01:06 +0000 Manifest next update: Mon 22 Dec 2025 02:01:06 +0000 Files and hashes: 1: 4awDIrPqtlcuzioKxavxZKW7_yA.crl (hash: LcPxeKwSnkXkoDzjILU/5yy0B4TTTdhZ0STDoxThIQ0=) 2: 6L9DAlbkXK81Q7l3f78qPgHOMdg.roa (hash: H7lXA9IHNO8CGxsceOfFah+3Pwu6dBzOzorUprp44zU=) 3: AoQHR-c0TNu8hCvrBSny9rtvc-s.roa (hash: OjMzYAMFYdPVuu7HxYZKXpI6mzGVW1BBR3UyiRLx1pA=) 4: EQbezCZuZ92DkuV3XJNIJgpMcwQ.roa (hash: ouC7+qG8m6kvP27Cs9N1FzVBn73sZt27mXI2ZqqBOYg=) 5: LDm4Z6KcMo2VYx3_khyYeC8O4Iw.roa (hash: zcLdl9fx/6GOLrBrDhcPW18T+TQSB2ZgDSkWNEHGluY=) 6: OVTjGADJ7YYJwQ0oJOwTN2X0vSY.roa (hash: qsBTTkXpQxhgbXJV5zUDTdGyL3Kcpnnbr12OpzsF9V0=) 7: WjbXz_T6fQwwsu_r4_F-5y3dX_Q.roa (hash: iLh3TGVs1ujNjbVfhiVUXg4fodd0lOsGlfiIAkQGeqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:95:87:67:4b:f1:01:ba:10:9c:a7:6e:60:46:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20 Validity Not Before: Dec 21 02:01:06 2025 GMT Not After : Dec 22 02:01:06 2025 GMT Subject: CN=71c80c943df244e15b8b8a94cee43a9a25e57a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8d:62:65:a0:4d:5c:20:0f:3a:ac:13:12:57: 49:16:46:74:fb:51:d8:4c:6a:a1:8b:26:ab:06:c9: c6:01:0d:14:94:8a:ab:ad:6f:05:a3:f0:67:e5:7d: 8d:c2:d3:aa:6b:64:cd:54:11:76:9e:33:8c:6f:2c: 2e:f2:46:ac:dc:b7:9a:40:86:ba:b2:2c:1f:f5:30: 72:c6:65:b5:a7:67:aa:ba:b7:ee:d7:75:ce:bb:b8: 41:e6:1c:73:b9:ef:3f:e6:06:88:00:91:f4:1c:37: c0:b0:9a:09:c2:3e:83:8d:00:0e:7d:3b:0b:c9:74: e1:f5:c9:9d:4b:83:56:01:b2:86:5b:3d:3c:32:b8: b5:5d:83:08:19:e8:f5:7b:5f:48:44:61:8e:24:7e: ae:d0:37:cd:d5:39:3a:e1:9f:33:5e:48:73:18:d5: 0e:63:1a:61:ae:6c:be:31:10:61:52:65:3a:0a:30: 72:48:9c:5d:68:01:5e:7c:8e:64:ab:a6:85:aa:47: 29:b3:48:9b:49:61:8c:67:34:3c:03:13:2b:c2:2d: 26:91:c4:2b:33:5c:54:cd:56:8b:35:e2:c5:c8:90: 55:6f:78:44:5c:e5:19:90:52:d2:ed:da:99:89:26: e2:80:7a:5a:86:ef:e7:eb:6e:0a:ce:92:5e:6a:cc: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C8:0C:94:3D:F2:44:E1:5B:8B:8A:94:CE:E4:3A:9A:25:E5:7A:71 X509v3 Authority Key Identifier: keyid:E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:80:2a:ed:d1:20:2b:f7:8c:92:74:48:63:3a:73:64:94:98: fb:24:13:26:1e:fb:70:c6:1e:ef:3a:37:5e:ab:3d:3e:be:5c: 44:a7:d9:8e:d8:91:61:03:3b:61:6a:75:71:89:ef:e9:cd:19: 93:eb:b9:2e:fe:03:6a:85:fa:dc:cb:d7:2f:fe:55:97:d5:cc: 73:3d:51:05:07:b7:e3:0d:bf:ea:3b:75:5d:32:55:0d:03:6e: 29:aa:f7:0c:2c:68:74:0a:aa:94:d1:02:c7:86:1b:14:81:90: 79:80:29:5f:d6:df:a2:44:c3:c1:d8:18:76:02:ec:12:1a:a5: 64:00:ef:62:48:ff:23:8c:24:70:c2:42:85:58:a3:b1:9d:83: 2a:8b:48:98:e2:7b:e7:66:69:52:9b:20:2e:61:0b:ac:82:e3: ce:a2:cc:e7:87:c6:99:5f:d6:fa:af:e0:0f:7c:e6:9c:55:fe: cd:00:8d:c6:b0:44:90:23:2b:52:20:01:f5:38:f5:be:9d:6f: c5:c5:c8:36:86:a9:0a:43:54:ea:b5:57:a1:16:8b:06:e3:47: 07:f4:e0:22:c7:8b:72:6f:5f:f6:7f:72:b9:90:9f:a8:ac:ce: ec:95:a1:d6:19:9a:86:9e:40:00:2d:a0:15:63:36:60:d6:ec: c4:9d:7e:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o5WHZ0vxAboQnKduYEZLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxYWMwMzIyYjNlYWI2NTcyZWNlMmEwYWM1YWJmMTY0YTVi YmZmMjAwHhcNMjUxMjIxMDIwMTA2WhcNMjUxMjIyMDIwMTA2WjAzMTEwLwYDVQQD Eyg3MWM4MGM5NDNkZjI0NGUxNWI4YjhhOTRjZWU0M2E5YTI1ZTU3YTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApI1iZaBNXCAPOqwTEldJFkZ0+1HY TGqhiyarBsnGAQ0UlIqrrW8Fo/Bn5X2NwtOqa2TNVBF2njOMbywu8kas3LeaQIa6 siwf9TByxmW1p2equrfu13XOu7hB5hxzue8/5gaIAJH0HDfAsJoJwj6DjQAOfTsL yXTh9cmdS4NWAbKGWz08Mri1XYMIGej1e19IRGGOJH6u0DfN1Tk64Z8zXkhzGNUO Yxphrmy+MRBhUmU6CjBySJxdaAFefI5kq6aFqkcps0ibSWGMZzQ8AxMrwi0mkcQr M1xUzVaLNeLFyJBVb3hEXOUZkFLS7dqZiSbigHpahu/n624KzpJeasyF5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHHIDJQ98kThW4uKlM7kOpol5XpxMB8GA1UdIwQY MBaAFOGsAyKz6rZXLs4qCsWr8WSlu/8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9mZjAwMzYtODMxMy00YjNkLWFkN2Yt OGQ4MWZkYzZmMTcwLzEvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9mZjAwMzYtODMxMy00YjNkLWFkN2YtOGQ4MWZkYzZmMTcw LzEvNGF3RElyUHF0bGN1emlvS3hhdnhaS1c3X3lBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFoAq7dEg K/eMknRIYzpzZJSY+yQTJh77cMYe7zo3Xqs9Pr5cRKfZjtiRYQM7YWp1cYnv6c0Z k+u5Lv4DaoX63MvXL/5Vl9XMcz1RBQe34w2/6jt1XTJVDQNuKar3DCxodAqqlNEC x4YbFIGQeYApX9bfokTDwdgYdgLsEhqlZADvYkj/I4wkcMJChVijsZ2DKotImOJ7 52ZpUpsgLmELrILjzqLM54fGmV/W+q/gD3zmnFX+zQCNxrBEkCMrUiAB9Tj1vp1v xcXINoapCkNU6rVXoRaLBuNHB/TgIseLcm9f9n9yuZCfqKzO7JWh1hmahp5AAC2g FWM2YNbsxJ1+2A== -----END CERTIFICATE-----Generated at Sun Dec 21 09:47:02 2025 by rpki-client