This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft File: A-pQioW8c6mqogOop7r5wWLm82w.mft (raw, json) Hash identifier: mC4sIBjpQ/RdIlUcAKKups/4k+7Rxcsv3Pqh16XIg4s= Subject key identifier: 07:43:7B:23:68:06:E2:78:C1:16:D3:77:31:0D:23:DF:86:A9:D5:BA Authority key identifier: 03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C Certificate issuer: /CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Certificate serial: 019B6DD8774459214944E72455F27A3CABB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft Manifest number: 0913 Signing time: Tue 30 Dec 2025 06:01:01 +0000 Manifest this update: Tue 30 Dec 2025 06:01:01 +0000 Manifest next update: Wed 31 Dec 2025 06:01:01 +0000 Files and hashes: 1: 2j9Y51xwRYelF6JrKcKDFxJ1u_0.roa (hash: 0/wxjfgZFvKq0jXNMFirhtTQajhUkEHAhxXEqfHBgNk=) 2: A-pQioW8c6mqogOop7r5wWLm82w.crl (hash: NXWct68PwC+jOK3jsw3ze+KdeZLxOTN6SzkkPb4axXo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:d8:77:44:59:21:49:44:e7:24:55:f2:7a:3c:ab:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03ea508a85bc73a9aaa203a8a7baf9c162e6f36c Validity Not Before: Dec 30 06:01:01 2025 GMT Not After : Dec 31 06:01:01 2025 GMT Subject: CN=07437b236806e278c116d377310d23df86a9d5ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:37:e1:55:e2:9a:11:b8:ae:dd:aa:ff:35:58: 56:63:2f:e0:c7:c9:a8:db:4f:c7:27:d7:f9:df:2e: 83:2f:ff:16:7e:42:e1:eb:ee:52:11:89:8f:06:dc: 2c:48:e1:cc:54:3d:8b:4a:19:62:d9:c3:16:b0:c2: 05:ce:23:57:95:48:b0:47:e5:fe:62:a2:1d:b4:62: 3f:9d:29:17:2f:32:d0:4c:c4:b3:eb:9d:4d:13:13: 94:c4:35:bc:24:4f:98:34:02:fa:66:37:23:13:9a: 74:90:69:a6:26:64:c8:15:35:bc:1b:50:10:2e:fa: aa:aa:2a:a5:75:70:9d:2a:25:cf:5c:25:86:dd:68: ff:85:dd:53:0b:48:66:99:54:96:e3:dd:c0:78:d5: 45:74:bb:d3:0e:ee:04:2f:88:2e:5d:a3:79:5e:94: 71:e3:ec:5a:c9:84:ab:d3:14:7b:30:c4:ad:fd:57: 53:51:04:2d:da:91:28:bc:74:d8:af:aa:37:07:43: 0d:44:33:42:e1:0c:07:a4:0b:b5:2d:99:36:90:11: 8d:e1:0d:97:9e:21:de:cf:3e:b9:6a:29:b9:ae:47: c4:14:4f:03:52:ef:46:58:32:a9:33:52:90:1c:af: 7f:93:ec:86:55:d1:fc:34:28:50:62:5a:42:54:88: bd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:43:7B:23:68:06:E2:78:C1:16:D3:77:31:0D:23:DF:86:A9:D5:BA X509v3 Authority Key Identifier: keyid:03:EA:50:8A:85:BC:73:A9:AA:A2:03:A8:A7:BA:F9:C1:62:E6:F3:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-pQioW8c6mqogOop7r5wWLm82w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9eb346-7b07-4108-9fb0-d7270905e923/1/A-pQioW8c6mqogOop7r5wWLm82w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2a:7b:2c:f2:d9:14:f2:1c:79:ae:f4:d6:48:00:e3:7a:ed: f0:60:06:3a:71:c4:eb:e3:dd:bc:c3:c4:8a:48:3d:4e:f6:eb: 2f:d7:89:62:56:09:52:17:5e:59:ac:ec:a8:1a:3a:d3:ba:c5: 07:33:f1:e3:21:9d:b5:4c:00:76:08:1f:61:3b:c6:80:07:67: c4:dd:21:5e:cd:0c:7e:55:51:dc:6f:fa:27:a3:21:7d:0f:4f: 5a:a0:dc:d9:89:6e:e1:c9:d6:e3:bf:41:4f:d2:9d:5a:0e:cb: a0:74:3c:fa:3d:8d:0b:d1:f2:9f:b3:35:30:79:06:4b:30:48: b5:0c:76:9d:df:dc:73:4c:84:77:71:cc:d7:91:a5:91:62:12: 79:ae:50:15:fb:7d:45:90:5c:87:48:79:91:46:e6:ab:79:e6: 20:59:8d:ec:7a:dd:66:47:96:96:dd:fa:d3:60:19:37:91:37: c5:f1:53:83:66:03:83:ee:fd:30:1b:84:60:8b:22:4f:24:60: e3:85:1c:60:9b:2d:dd:09:35:89:2c:1e:01:20:5c:8c:3e:8c: 21:99:d4:55:69:df:da:44:8a:4d:76:ec:79:58:9c:4c:0e:fc: 0f:5e:36:19:79:cf:96:d4:0b:47:f2:46:bb:00:c4:89:94:d1: a8:1f:44:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtt2HdEWSFJROckVfJ6PKu5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZWE1MDhhODViYzczYTlhYWEyMDNhOGE3YmFmOWMxNjJl NmYzNmMwHhcNMjUxMjMwMDYwMTAxWhcNMjUxMjMxMDYwMTAxWjAzMTEwLwYDVQQD EygwNzQzN2IyMzY4MDZlMjc4YzExNmQzNzczMTBkMjNkZjg2YTlkNWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzfhVeKaEbiu3ar/NVhWYy/gx8mo 20/HJ9f53y6DL/8WfkLh6+5SEYmPBtwsSOHMVD2LShli2cMWsMIFziNXlUiwR+X+ YqIdtGI/nSkXLzLQTMSz651NExOUxDW8JE+YNAL6ZjcjE5p0kGmmJmTIFTW8G1AQ LvqqqiqldXCdKiXPXCWG3Wj/hd1TC0hmmVSW493AeNVFdLvTDu4EL4guXaN5XpRx 4+xayYSr0xR7MMSt/VdTUQQt2pEovHTYr6o3B0MNRDNC4QwHpAu1LZk2kBGN4Q2X niHezz65aim5rkfEFE8DUu9GWDKpM1KQHK9/k+yGVdH8NChQYlpCVIi9FwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAdDeyNoBuJ4wRbTdzENI9+GqdW6MB8GA1UdIwQY MBaAFAPqUIqFvHOpqqIDqKe6+cFi5vNsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAt ZDcyNzA5MDVlOTIzLzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi85ZWIzNDYtN2IwNy00MTA4LTlmYjAtZDcyNzA5MDVlOTIz LzEvQS1wUWlvVzhjNm1xb2dPb3A3cjV3V0xtODJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKyp7LPLZ FPIcea701kgA43rt8GAGOnHE6+PdvMPEikg9TvbrL9eJYlYJUhdeWazsqBo607rF BzPx4yGdtUwAdggfYTvGgAdnxN0hXs0MflVR3G/6J6MhfQ9PWqDc2Ylu4cnW479B T9KdWg7LoHQ8+j2NC9Hyn7M1MHkGSzBItQx2nd/cc0yEd3HM15GlkWISea5QFft9 RZBch0h5kUbmq3nmIFmN7HrdZkeWlt3602AZN5E3xfFTg2YDg+79MBuEYIsiTyRg 44UcYJst3Qk1iSweASBcjD6MIZnUVWnf2kSKTXbseVicTA78D142GXnPltQLR/JG uwDEiZTRqB9EGg== -----END CERTIFICATE-----Generated at Tue Dec 30 09:42:20 2025 by rpki-client