This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft File: Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft (raw, json) Hash identifier: vv87gVvoVdANQz2PIUZE9N5pnOn4lq4SeuKwDJCPuSI= Subject key identifier: 7A:57:2C:C8:36:5D:23:CF:2C:82:73:77:32:47:47:77:6C:B7:9B:2F Authority key identifier: 02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3 Certificate issuer: /CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3 Certificate serial: 019B3B6B9B745809DD67DADC08E15E408AB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft Manifest number: 1795 Signing time: Sat 20 Dec 2025 11:01:06 +0000 Manifest this update: Sat 20 Dec 2025 11:01:06 +0000 Manifest next update: Sun 21 Dec 2025 11:01:06 +0000 Files and hashes: 1: 6QBVEiLusjnuHnwecVMK9Kg-WII.roa (hash: OapSvDTUmzDRZu9Q3KlIrLgI0CjCfgxrem8xot5UiSo=) 2: Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl (hash: qNCcWqWWwUs76epp5jp01K0/mQv6/K7ddxh6fDtJWPo=) 3: JeT3PicL3j6wpeXRT3s8FrJpy3w.roa (hash: tjXOPJYxlFtc8BfVkznJC0Nu37PcV0Dt33rxJApZ9kY=) 4: L5lOWtMXwmLYho3Arxcpd76R5sw.roa (hash: XM0Za1PmkukhwAWipMkx42usukTFibdWlbabSAWWgH4=) 5: Lwic0o2gw3k82wpfSkPa-wUg5Aw.roa (hash: pZ1a8TMxYqDEEa657nYARi2g7u3tXGj01SXvh3eUl1s=) 6: YBIU31Bau4IHlrYcDanR7_BCiuw.roa (hash: t02Hz19f7jw3zKy57+diFTpZafQk0Oywl27vP0An1/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:6b:9b:74:58:09:dd:67:da:dc:08:e1:5e:40:8a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=025f2a93db10f2dd5f6a55bb2a440f67486cd1a3 Validity Not Before: Dec 20 11:01:06 2025 GMT Not After : Dec 21 11:01:06 2025 GMT Subject: CN=7a572cc8365d23cf2c827377324747776cb79b2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:86:e7:5a:22:7e:ab:44:a4:de:62:19:30:6a: 9e:bd:14:72:ce:82:bd:35:5b:eb:2e:d1:62:72:40: 1b:ad:50:9e:3a:97:52:39:eb:b2:40:d6:1d:51:07: c6:57:73:74:98:f3:92:81:b6:26:fd:19:85:4a:0e: 9e:08:a1:48:f1:b3:87:c5:d7:fd:54:de:55:a6:c8: 86:21:80:1a:e6:ce:df:e8:60:73:52:32:9a:a9:df: c4:43:b3:88:a9:0d:b6:2b:71:c3:78:00:e6:40:16: 50:03:42:39:8e:38:8a:2f:aa:64:7b:ad:2e:13:73: b8:70:97:6c:ce:89:3a:ee:c8:c5:83:93:11:a2:8e: a5:30:83:02:97:f0:2c:01:7b:f6:15:21:be:15:1c: 98:54:8a:19:ef:2a:32:30:41:ec:30:1f:b5:ec:11: 74:d4:3f:45:f7:a4:bb:97:2f:1c:b7:7b:13:5e:c0: 35:47:6e:92:5d:3e:a5:ae:95:2b:9e:c5:b7:4c:96: 9e:ea:6a:50:0e:7c:11:9c:08:53:18:12:38:aa:e7: 9c:40:a3:86:5a:8c:ef:3e:7c:35:f8:1b:c0:fd:7c: 97:31:33:7a:bd:83:c9:a6:51:4a:66:73:28:c1:75: f4:cb:73:c1:f6:f3:f4:ef:ec:e4:76:25:ce:c7:dc: 97:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:57:2C:C8:36:5D:23:CF:2C:82:73:77:32:47:47:77:6C:B7:9B:2F X509v3 Authority Key Identifier: keyid:02:5F:2A:93:DB:10:F2:DD:5F:6A:55:BB:2A:44:0F:67:48:6C:D1:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Al8qk9sQ8t1falW7KkQPZ0hs0aM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/205d24-009f-486a-976f-2ecda11de153/1/Al8qk9sQ8t1falW7KkQPZ0hs0aM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:53:ed:0c:3d:af:29:69:c3:4f:f8:85:68:0f:9d:9d:ac:d6: 3b:dd:c9:46:8d:04:25:9c:c7:28:68:1f:55:ee:76:90:df:15: b5:7e:21:5b:fe:c9:d3:82:60:38:df:b1:0a:93:26:b1:1a:30: 62:14:c2:e7:f7:2e:ce:e3:78:37:ca:de:6f:35:28:bc:85:52: a1:c1:ab:4b:6b:05:9d:a2:b0:52:82:3e:33:e8:72:a3:83:08: d8:eb:73:4b:f1:91:2a:07:af:bd:19:d5:70:c6:42:91:07:a9: 8c:5a:e8:04:43:1e:bd:3e:a0:50:52:49:45:f4:b0:27:55:68: e5:5b:19:48:51:e5:8a:26:7e:a7:61:55:4c:d3:01:88:53:7c: bc:b4:58:d1:87:6c:0f:a5:30:99:da:82:30:71:23:e2:4d:66: eb:13:85:e0:12:a7:9b:cc:ec:bc:e3:a3:cf:1f:cd:81:85:3c: 9b:1b:c8:9f:b2:1c:f4:04:3f:f1:2b:38:d1:f9:2a:f5:e9:f4: 11:ce:a0:3c:2a:92:6b:b7:7c:6e:53:15:05:13:c7:63:e5:51: 04:cb:f1:76:fc:5e:62:58:b2:e0:c8:e1:09:83:5f:1d:52:d1: 92:79:48:46:ce:db:0d:20:d7:40:bf:b7:ca:04:58:c1:5b:62: 58:ca:34:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7a5t0WAndZ9rcCOFeQIq2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyNWYyYTkzZGIxMGYyZGQ1ZjZhNTViYjJhNDQwZjY3NDg2 Y2QxYTMwHhcNMjUxMjIwMTEwMTA2WhcNMjUxMjIxMTEwMTA2WjAzMTEwLwYDVQQD Eyg3YTU3MmNjODM2NWQyM2NmMmM4MjczNzczMjQ3NDc3NzZjYjc5YjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvobnWiJ+q0Sk3mIZMGqevRRyzoK9 NVvrLtFickAbrVCeOpdSOeuyQNYdUQfGV3N0mPOSgbYm/RmFSg6eCKFI8bOHxdf9 VN5VpsiGIYAa5s7f6GBzUjKaqd/EQ7OIqQ22K3HDeADmQBZQA0I5jjiKL6pke60u E3O4cJdszok67sjFg5MRoo6lMIMCl/AsAXv2FSG+FRyYVIoZ7yoyMEHsMB+17BF0 1D9F96S7ly8ct3sTXsA1R26SXT6lrpUrnsW3TJae6mpQDnwRnAhTGBI4quecQKOG WozvPnw1+BvA/XyXMTN6vYPJplFKZnMowXX0y3PB9vP07+zkdiXOx9yX4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHpXLMg2XSPPLIJzdzJHR3dst5svMB8GA1UdIwQY MBaAFAJfKpPbEPLdX2pVuypED2dIbNGjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYt MmVjZGExMWRlMTUzLzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8yMDVkMjQtMDA5Zi00ODZhLTk3NmYtMmVjZGExMWRlMTUz LzEvQWw4cWs5c1E4dDFmYWxXN0trUVBaMGhzMGFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlPtDD2v KWnDT/iFaA+dnazWO93JRo0EJZzHKGgfVe52kN8VtX4hW/7J04JgON+xCpMmsRow YhTC5/cuzuN4N8rebzUovIVSocGrS2sFnaKwUoI+M+hyo4MI2OtzS/GRKgevvRnV cMZCkQepjFroBEMevT6gUFJJRfSwJ1Vo5VsZSFHliiZ+p2FVTNMBiFN8vLRY0Yds D6UwmdqCMHEj4k1m6xOF4BKnm8zsvOOjzx/NgYU8mxvIn7Ic9AQ/8Ss40fkq9en0 Ec6gPCqSa7d8blMVBRPHY+VRBMvxdvxeYliy4MjhCYNfHVLRknlIRs7bDSDXQL+3 ygRYwVtiWMo0KQ== -----END CERTIFICATE-----Generated at Sat Dec 20 19:48:20 2025 by rpki-client