This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft File: AJJn8-O54eu5eZaQgLDfqyTDYBo.mft (raw, json) Hash identifier: trnq2N7zY9Sre6R6EEG3KKzNqXmf09rKtnDIbr3z6Ng= Subject key identifier: 44:BE:60:B6:1F:B7:26:D8:A2:A8:F5:02:1E:86:A7:6A:AF:46:F7:7F Authority key identifier: 00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A Certificate issuer: /CN=009267f3e3b9e1ebb979969080b0dfab24c3601a Certificate serial: 019B356945C058F4BBA04A7D0122D8798FBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft Manifest number: 0357 Signing time: Fri 19 Dec 2025 07:00:50 +0000 Manifest this update: Fri 19 Dec 2025 07:00:50 +0000 Manifest next update: Sat 20 Dec 2025 07:00:50 +0000 Files and hashes: 1: AJJn8-O54eu5eZaQgLDfqyTDYBo.crl (hash: 6nqm4UxZVvuua6CYal16rLa831NbI9VuJPsQ4J5z/xs=) 2: jt-iRSNGZBGhABnXoxTRm_rAskI.roa (hash: l7KIq5bWvwsgCT6cMEiSjjaqu0hDSyke8GcgCL2LIpI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:45:c0:58:f4:bb:a0:4a:7d:01:22:d8:79:8f:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=009267f3e3b9e1ebb979969080b0dfab24c3601a Validity Not Before: Dec 19 07:00:50 2025 GMT Not After : Dec 20 07:00:50 2025 GMT Subject: CN=44be60b61fb726d8a2a8f5021e86a76aaf46f77f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:21:99:37:95:67:ab:96:98:48:7a:23:3c:5e: 96:aa:27:2e:6d:26:42:e3:25:cb:41:2a:dd:de:77: 10:6d:d5:64:0d:86:71:b0:f3:05:d2:b4:46:c1:2c: 1c:0d:2d:86:3d:24:19:46:d6:2b:1f:31:39:b3:af: d7:a0:94:02:db:76:38:00:3d:92:70:e5:23:19:9c: c9:39:3a:0c:f6:7b:7a:cb:58:57:d9:ab:ff:31:56: e0:bf:7c:39:9d:ef:e9:3f:86:d1:36:0f:4d:68:34: a2:dd:64:26:24:c6:98:00:68:23:c7:1f:44:01:1a: 64:f1:02:7a:b8:3e:78:ff:01:47:3f:39:c2:67:f4: c5:b1:19:e7:ba:11:a1:fb:06:4a:0b:87:5f:a9:4f: 88:23:13:a8:ae:91:07:76:e3:89:23:4f:29:88:d2: 20:d0:d7:bb:2f:39:f0:90:75:c5:40:fb:45:e1:14: b7:23:1b:96:b2:14:44:5e:ef:a1:88:fc:3d:ed:b6: 59:1c:5c:37:39:d6:2d:54:cd:ad:4c:0c:8a:79:06: ca:f2:0b:b5:22:66:f3:d3:99:94:62:53:2a:20:17: 7d:b5:de:0e:4a:ac:8e:1d:19:30:b1:cf:cb:c3:67: 71:8c:53:da:cc:6b:2d:45:a9:17:4d:30:6b:2a:8c: f0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BE:60:B6:1F:B7:26:D8:A2:A8:F5:02:1E:86:A7:6A:AF:46:F7:7F X509v3 Authority Key Identifier: keyid:00:92:67:F3:E3:B9:E1:EB:B9:79:96:90:80:B0:DF:AB:24:C3:60:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AJJn8-O54eu5eZaQgLDfqyTDYBo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/f4dba6-6d94-410f-9be2-d6903825018c/1/AJJn8-O54eu5eZaQgLDfqyTDYBo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:46:62:1c:57:9e:d2:f2:42:e2:cf:05:cd:ec:d4:07:0a:e8: 51:c6:c8:85:eb:a1:c6:20:eb:fb:be:c2:5b:72:12:c6:ae:1d: 93:b5:5c:aa:59:5f:d9:d3:d7:2d:8c:5d:be:2c:6d:75:b1:ee: d4:7e:1b:38:f1:aa:5f:12:7c:68:c2:e2:0f:2c:06:ab:f5:ab: 05:1f:34:91:17:45:bd:11:84:b1:2c:44:60:4c:42:ee:fe:6d: 68:c0:b5:5d:b9:86:cc:97:0e:7d:3f:ca:3b:65:af:9b:11:32: 32:91:95:ed:69:06:b6:84:e2:72:83:75:c6:49:2a:c7:69:8f: a6:f6:f9:6e:c2:7a:83:d6:28:23:36:ee:43:77:c8:ae:30:5e: 57:4c:d8:7a:fb:ed:90:50:dc:4d:0e:da:eb:43:d6:6d:b2:d4: fe:cb:8c:b6:f6:ff:99:42:b5:c0:1a:04:30:a3:00:66:f3:f0: 89:ec:93:41:77:4d:aa:3c:60:fa:dd:2f:73:3d:21:5e:1c:76: 03:c2:ac:0d:b3:3e:b4:00:de:f7:85:90:93:fb:67:72:03:28: bf:eb:f7:b3:a2:c0:fd:b3:da:7c:ac:55:fc:ce:ec:a0:f4:e6: 60:76:99:d6:08:fa:01:81:ee:d6:ec:ed:5e:7b:77:46:04:67: 1b:64:47:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aUXAWPS7oEp9ASLYeY+/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwOTI2N2YzZTNiOWUxZWJiOTc5OTY5MDgwYjBkZmFiMjRj MzYwMWEwHhcNMjUxMjE5MDcwMDUwWhcNMjUxMjIwMDcwMDUwWjAzMTEwLwYDVQQD Eyg0NGJlNjBiNjFmYjcyNmQ4YTJhOGY1MDIxZTg2YTc2YWFmNDZmNzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CGZN5Vnq5aYSHojPF6WqicubSZC 4yXLQSrd3ncQbdVkDYZxsPMF0rRGwSwcDS2GPSQZRtYrHzE5s6/XoJQC23Y4AD2S cOUjGZzJOToM9nt6y1hX2av/MVbgv3w5ne/pP4bRNg9NaDSi3WQmJMaYAGgjxx9E ARpk8QJ6uD54/wFHPznCZ/TFsRnnuhGh+wZKC4dfqU+IIxOorpEHduOJI08piNIg 0Ne7LznwkHXFQPtF4RS3IxuWshREXu+hiPw97bZZHFw3OdYtVM2tTAyKeQbK8gu1 Imbz05mUYlMqIBd9td4OSqyOHRkwsc/Lw2dxjFPazGstRakXTTBrKozwAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFES+YLYftybYoqj1Ah6Gp2qvRvd/MB8GA1UdIwQY MBaAFACSZ/PjueHruXmWkICw36skw2AaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9mNGRiYTYtNmQ5NC00MTBmLTliZTIt ZDY5MDM4MjUwMThjLzEvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9mNGRiYTYtNmQ5NC00MTBmLTliZTItZDY5MDM4MjUwMThj LzEvQUpKbjgtTzU0ZXU1ZVphUWdMRGZxeVREWUJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi0ZiHFee 0vJC4s8FzezUBwroUcbIheuhxiDr+77CW3ISxq4dk7Vcqllf2dPXLYxdvixtdbHu 1H4bOPGqXxJ8aMLiDywGq/WrBR80kRdFvRGEsSxEYExC7v5taMC1XbmGzJcOfT/K O2WvmxEyMpGV7WkGtoTicoN1xkkqx2mPpvb5bsJ6g9YoIzbuQ3fIrjBeV0zYevvt kFDcTQ7a60PWbbLU/suMtvb/mUK1wBoEMKMAZvPwieyTQXdNqjxg+t0vcz0hXhx2 A8KsDbM+tADe94WQk/tncgMov+v3s6LA/bPafKxV/M7soPTmYHaZ1gj6AYHu1uzt Xnt3RgRnG2RHAA== -----END CERTIFICATE-----Generated at Fri Dec 19 10:21:18 2025 by rpki-client