This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft File: AozMjYF4yenS_8Uy_LXNaL6qd20.mft (raw, json) Hash identifier: G91Wf/K1FJE2xOSLoei+RLoTtLZgDuSZIonz5fOrrXg= Subject key identifier: 62:FE:7E:5E:39:36:EA:91:D3:81:4C:E7:95:A6:8E:41:DA:17:21:F3 Authority key identifier: 02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D Certificate issuer: /CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d Certificate serial: 019B3EA3AE48A64916EB42AC5C85C5EE3044 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft Manifest number: 01D2 Signing time: Sun 21 Dec 2025 02:01:12 +0000 Manifest this update: Sun 21 Dec 2025 02:01:12 +0000 Manifest next update: Mon 22 Dec 2025 02:01:12 +0000 Files and hashes: 1: AozMjYF4yenS_8Uy_LXNaL6qd20.crl (hash: 9Gg8zEK9Yr1VpH0GaSWnh1h4vQtFWJYMPI35uoUoZZw=) 2: hNq3yGnPCHaydptWbrbgby3w7SM.roa (hash: TF/bJmN5adtoEqSxW4KjZfMJbH3NebJd9z02MI+Ip68=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:ae:48:a6:49:16:eb:42:ac:5c:85:c5:ee:30:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028ccc8d8178c9e9d2ffc532fcb5cd68beaa776d Validity Not Before: Dec 21 02:01:12 2025 GMT Not After : Dec 22 02:01:12 2025 GMT Subject: CN=62fe7e5e3936ea91d3814ce795a68e41da1721f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:02:b6:57:40:ef:07:f9:8b:f5:72:e3:40:03: 92:ab:7b:3c:0f:6a:2a:ab:76:b8:e2:2b:df:37:c0: ac:ca:36:a6:24:2e:4d:62:7a:29:6e:ab:51:10:0d: 1c:b4:a0:9f:77:02:9d:ac:bb:11:27:2a:ac:9a:c3: 7a:a6:ac:0c:9d:58:6d:73:49:a2:44:4c:af:42:35: 47:c7:07:f6:5b:ae:d9:ba:a3:e2:b9:63:03:02:89: b0:e1:4c:b8:40:34:39:45:e6:5e:9c:88:94:16:ea: 6e:3b:b3:0b:31:61:21:2a:ac:5b:03:f2:3c:43:2c: 00:0d:11:76:85:bc:21:ac:b8:f7:2c:98:55:59:12: a7:40:22:f5:39:4e:d4:7c:27:69:37:a6:77:a2:ae: 92:5f:00:49:60:0b:73:1b:38:7e:c5:c1:35:7a:70: 00:b1:b4:6f:1b:81:85:a1:47:9a:aa:cb:e7:15:f8: 42:67:57:62:cf:11:49:93:18:b2:fd:ec:f2:2e:a0: 5d:d5:21:95:91:e9:29:55:0d:36:87:45:72:de:e9: 14:00:9c:d5:a5:98:23:ba:5e:fb:87:60:99:dc:7b: 5b:e5:d0:4f:68:ab:3a:de:68:48:92:16:51:9b:91: e1:93:c9:82:96:81:ce:c6:7b:66:43:dc:77:bf:58: 87:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:FE:7E:5E:39:36:EA:91:D3:81:4C:E7:95:A6:8E:41:DA:17:21:F3 X509v3 Authority Key Identifier: keyid:02:8C:CC:8D:81:78:C9:E9:D2:FF:C5:32:FC:B5:CD:68:BE:AA:77:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AozMjYF4yenS_8Uy_LXNaL6qd20.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e46951-8fa4-45b6-87bf-5a4b7b5e4007/1/AozMjYF4yenS_8Uy_LXNaL6qd20.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:d3:0a:65:60:df:95:f7:28:c1:c1:e3:97:d2:cd:3d:4c:68: 4c:49:8b:7e:16:b5:9e:b9:ae:5a:bc:bd:b6:84:d8:77:7d:03: 89:27:e3:c8:5d:f4:00:ea:b2:ef:7e:40:12:a1:89:6e:7d:63: e5:bc:9e:6e:a9:10:1d:d1:40:52:67:ed:6b:97:74:67:8d:4e: 08:6a:59:ea:66:68:c3:5b:2f:61:ee:03:b8:d9:45:6a:e7:af: f2:69:a7:32:ac:52:0d:a6:4a:60:ec:9a:b1:a2:5c:a7:55:2d: 1d:36:ba:00:c5:a8:13:b0:51:18:ab:e4:ba:d7:9f:90:6d:de: 18:c3:3d:4b:c6:9f:62:76:14:29:41:e7:4d:c4:38:06:85:56: f6:0f:b4:44:77:4f:c8:41:81:45:0d:17:ba:54:e2:4d:76:16: e7:94:8f:f5:cd:2d:02:a4:fd:b2:38:b7:30:6f:0c:84:bb:c7: f3:f7:60:a1:d6:1e:6d:7d:42:81:58:93:92:e0:56:ea:14:1f: 3f:aa:c6:81:fd:5f:85:06:e2:4a:43:26:80:5b:60:ef:51:e0: 78:10:51:29:f6:87:73:80:a8:be:13:f9:d3:9f:ee:40:52:7f: 6e:12:32:a4:35:b9:67:28:05:1c:27:7e:ac:8a:63:06:da:5b: 5a:fc:d2:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o65IpkkW60KsXIXF7jBEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyOGNjYzhkODE3OGM5ZTlkMmZmYzUzMmZjYjVjZDY4YmVh YTc3NmQwHhcNMjUxMjIxMDIwMTEyWhcNMjUxMjIyMDIwMTEyWjAzMTEwLwYDVQQD Eyg2MmZlN2U1ZTM5MzZlYTkxZDM4MTRjZTc5NWE2OGU0MWRhMTcyMWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugK2V0DvB/mL9XLjQAOSq3s8D2oq q3a44ivfN8CsyjamJC5NYnopbqtREA0ctKCfdwKdrLsRJyqsmsN6pqwMnVhtc0mi REyvQjVHxwf2W67ZuqPiuWMDAomw4Uy4QDQ5ReZenIiUFupuO7MLMWEhKqxbA/I8 QywADRF2hbwhrLj3LJhVWRKnQCL1OU7UfCdpN6Z3oq6SXwBJYAtzGzh+xcE1enAA sbRvG4GFoUeaqsvnFfhCZ1dizxFJkxiy/ezyLqBd1SGVkekpVQ02h0Vy3ukUAJzV pZgjul77h2CZ3Htb5dBPaKs63mhIkhZRm5Hhk8mCloHOxntmQ9x3v1iHrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGL+fl45NuqR04FM55WmjkHaFyHzMB8GA1UdIwQY MBaAFAKMzI2BeMnp0v/FMvy1zWi+qndtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQW96TWpZRjR5ZW5TXzhVeV9MWE5hTDZxZDIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9lNDY5NTEtOGZhNC00NWI2LTg3YmYt NWE0YjdiNWU0MDA3LzEvQW96TWpZRjR5ZW5TXzhVeV9MWE5hTDZxZDIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9lNDY5NTEtOGZhNC00NWI2LTg3YmYtNWE0YjdiNWU0MDA3 LzEvQW96TWpZRjR5ZW5TXzhVeV9MWE5hTDZxZDIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNMKZWDf lfcowcHjl9LNPUxoTEmLfha1nrmuWry9toTYd30DiSfjyF30AOqy735AEqGJbn1j 5byebqkQHdFAUmfta5d0Z41OCGpZ6mZow1svYe4DuNlFauev8mmnMqxSDaZKYOya saJcp1UtHTa6AMWoE7BRGKvkutefkG3eGMM9S8afYnYUKUHnTcQ4BoVW9g+0RHdP yEGBRQ0XulTiTXYW55SP9c0tAqT9sji3MG8MhLvH8/dgodYebX1CgViTkuBW6hQf P6rGgf1fhQbiSkMmgFtg71HgeBBRKfaHc4CovhP505/uQFJ/bhIypDW5ZygFHCd+ rIpjBtpbWvzSBQ== -----END CERTIFICATE-----Generated at Sun Dec 21 06:32:53 2025 by rpki-client