This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft File: AsLBh9mLRgOATtEWWttFCbYwqDo.mft (raw, json) Hash identifier: aX5z9+7DuWdC7D1/+Eud6LMaNEsx7os7zQWN8YZ4SaE= Subject key identifier: 45:83:10:4F:95:70:91:81:8D:F6:AC:46:05:4D:CA:3D:15:EB:A3:C0 Authority key identifier: 02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A Certificate issuer: /CN=02c2c187d98b4603804ed1165adb4509b630a83a Certificate serial: 019B4EF27AD627D60CE6004103DDE810E1A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft Manifest number: 0C86 Signing time: Wed 24 Dec 2025 06:01:12 +0000 Manifest this update: Wed 24 Dec 2025 06:01:12 +0000 Manifest next update: Thu 25 Dec 2025 06:01:12 +0000 Files and hashes: 1: AsLBh9mLRgOATtEWWttFCbYwqDo.crl (hash: xAcdDnYgIVHhRae2Eqvchv2XGYb4kW6lzs3f6D+7NPg=) 2: vSD8XToST3_PVTIy1XwVerhMPWI.roa (hash: Yvhr0/CtepPwOm3ynZwacKeoADnHcOUi9JQFKNsVsJQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 06:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:f2:7a:d6:27:d6:0c:e6:00:41:03:dd:e8:10:e1:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02c2c187d98b4603804ed1165adb4509b630a83a Validity Not Before: Dec 24 06:01:12 2025 GMT Not After : Dec 25 06:01:12 2025 GMT Subject: CN=4583104f957091818df6ac46054dca3d15eba3c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:10:b8:d7:4b:36:ec:bf:b4:db:48:3a:2a:0e: fa:79:28:f1:82:59:9c:ab:3f:1f:01:c1:5b:df:16: 38:b7:2e:28:5d:87:e5:a7:b3:eb:b3:13:a3:ea:27: 54:19:45:1b:ae:d5:6c:39:f8:95:89:83:c9:70:fa: c7:e3:29:a8:f3:48:20:6f:ab:f0:a1:b8:b5:99:e3: 99:f0:a4:ec:dd:3d:0b:a3:58:76:0e:eb:fc:51:52: ec:83:a6:1e:ba:7f:6c:ec:06:07:19:b0:89:0e:a6: 10:29:8a:8d:4e:24:0c:b6:71:19:90:37:35:8a:db: 02:9b:34:36:0e:a8:19:f2:38:3e:2b:5b:69:ae:d2: e8:5c:c8:0b:30:75:d9:0c:49:e9:60:e7:e8:2a:76: ff:86:2d:69:2f:d8:8d:5a:84:ca:9a:1a:a5:48:06: c9:1c:cf:68:4a:fe:42:3f:dc:df:e7:42:ac:b4:2f: ff:6c:0d:93:fc:b4:a0:ea:58:bf:e5:44:98:ed:8d: 08:16:b8:f5:55:df:cf:c1:b0:5c:7c:ba:5f:56:be: 76:e1:65:5f:8a:9d:d3:cb:57:26:a0:f6:60:2c:64: 3d:01:92:0f:cb:d9:89:62:fd:60:0a:47:0e:b3:8c: 1a:f4:c5:75:c8:ae:57:fe:83:ba:fa:9f:88:db:81: a0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:83:10:4F:95:70:91:81:8D:F6:AC:46:05:4D:CA:3D:15:EB:A3:C0 X509v3 Authority Key Identifier: keyid:02:C2:C1:87:D9:8B:46:03:80:4E:D1:16:5A:DB:45:09:B6:30:A8:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AsLBh9mLRgOATtEWWttFCbYwqDo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/729ea4-6a68-4838-8fec-7feb18b9f552/1/AsLBh9mLRgOATtEWWttFCbYwqDo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:41:f0:cc:95:53:26:3b:b2:76:52:a7:09:71:3e:af:5d:5e: 6e:eb:1b:67:67:c9:0c:79:c7:4b:f4:7b:34:c5:a3:67:96:ee: ff:8f:0e:47:ef:c7:ba:8d:54:9a:30:d7:7b:c0:e8:95:f8:db: 9c:24:a8:9c:56:a5:e5:83:51:52:0b:99:64:86:28:fe:56:1d: 7f:30:78:08:d1:48:ca:98:3f:6e:29:35:f9:74:af:01:96:b6: 3a:31:a3:32:f3:1b:47:d9:05:83:54:a7:dd:80:82:5b:6f:b3: 89:80:b7:7f:97:3f:89:c0:c9:b9:d6:ce:3f:df:ef:df:05:61: 39:dd:11:43:ad:94:3a:bd:36:8c:4f:4c:ed:80:f6:0c:38:82: 12:e2:72:96:62:04:61:c5:1d:38:7d:15:37:fa:d6:59:6d:b3: e0:35:af:23:a4:24:1b:81:f1:28:3e:7b:cb:77:00:61:bd:d7: fa:03:2e:8d:3a:21:91:18:44:90:34:e5:a0:10:4d:a9:5a:ce: 09:2a:c2:b7:7b:53:b4:e9:b4:b0:ef:d7:b6:fc:d7:89:dc:f1: b7:3c:55:68:26:86:8c:c8:03:4d:5f:be:c0:80:32:33:92:de: 6f:d9:59:1d:3a:ea:d5:ff:c4:30:83:34:08:c4:3e:b8:ee:e4: 84:03:5b:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtO8nrWJ9YM5gBBA93oEOGpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyYzJjMTg3ZDk4YjQ2MDM4MDRlZDExNjVhZGI0NTA5YjYz MGE4M2EwHhcNMjUxMjI0MDYwMTEyWhcNMjUxMjI1MDYwMTEyWjAzMTEwLwYDVQQD Eyg0NTgzMTA0Zjk1NzA5MTgxOGRmNmFjNDYwNTRkY2EzZDE1ZWJhM2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBC410s27L+020g6Kg76eSjxglmc qz8fAcFb3xY4ty4oXYflp7PrsxOj6idUGUUbrtVsOfiViYPJcPrH4ymo80ggb6vw obi1meOZ8KTs3T0Lo1h2Duv8UVLsg6Yeun9s7AYHGbCJDqYQKYqNTiQMtnEZkDc1 itsCmzQ2DqgZ8jg+K1tprtLoXMgLMHXZDEnpYOfoKnb/hi1pL9iNWoTKmhqlSAbJ HM9oSv5CP9zf50KstC//bA2T/LSg6li/5USY7Y0IFrj1Vd/PwbBcfLpfVr524WVf ip3Ty1cmoPZgLGQ9AZIPy9mJYv1gCkcOs4wa9MV1yK5X/oO6+p+I24GgAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEWDEE+VcJGBjfasRgVNyj0V66PAMB8GA1UdIwQY MBaAFALCwYfZi0YDgE7RFlrbRQm2MKg6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy83MjllYTQtNmE2OC00ODM4LThmZWMt N2ZlYjE4YjlmNTUyLzEvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy83MjllYTQtNmE2OC00ODM4LThmZWMtN2ZlYjE4YjlmNTUy LzEvQXNMQmg5bUxSZ09BVHRFV1d0dEZDYll3cURvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQkHwzJVT JjuydlKnCXE+r11ebusbZ2fJDHnHS/R7NMWjZ5bu/48OR+/Huo1UmjDXe8Dolfjb nCSonFal5YNRUguZZIYo/lYdfzB4CNFIypg/bik1+XSvAZa2OjGjMvMbR9kFg1Sn 3YCCW2+ziYC3f5c/icDJudbOP9/v3wVhOd0RQ62UOr02jE9M7YD2DDiCEuJylmIE YcUdOH0VN/rWWW2z4DWvI6QkG4HxKD57y3cAYb3X+gMujTohkRhEkDTloBBNqVrO CSrCt3tTtOm0sO/XtvzXidzxtzxVaCaGjMgDTV++wIAyM5Leb9lZHTrq1f/EMIM0 CMQ+uO7khANbNw== -----END CERTIFICATE-----Generated at Wed Dec 24 11:59:19 2025 by rpki-client