This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft File: aesALwAL1CbkpkDHHWwCAbUFDjQ.mft (raw, json) Hash identifier: h2SZz9Y2O4ePZ6OieuNKPaO/1qdRt2aS9MWnFUJzbHM= Subject key identifier: 6B:89:39:F0:4F:B5:A7:8F:0B:23:20:1C:66:0F:2B:75:29:A2:09:30 Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34 Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34 Certificate serial: 019AF31B9C8E78A61C20FDF493FCC252B32F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft Manifest number: 16A7 Signing time: Sat 06 Dec 2025 10:01:04 +0000 Manifest this update: Sat 06 Dec 2025 10:01:04 +0000 Manifest next update: Sun 07 Dec 2025 10:01:04 +0000 Files and hashes: 1: aesALwAL1CbkpkDHHWwCAbUFDjQ.crl (hash: SrTrzW3u1jwEzfY8m5ZjV40NzVcGEXjpxsTeKeE+UAs=) 2: iGWnAlCFQ6pmXTyPhSirCP5UB4U.roa (hash: 4zG8JsxyxdWf4j+Yjdv8Dm4ymHITRyxtThA4racm63s=) 3: rDWkJyuDMvY3qk_P3bLz1VAfXBA.roa (hash: T51bFQ1LTlcOohBY3SvkvA3KStpNAaU7OZJJkLrtQ5Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:9c:8e:78:a6:1c:20:fd:f4:93:fc:c2:52:b3:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34 Validity Not Before: Dec 6 10:01:04 2025 GMT Not After : Dec 7 10:01:04 2025 GMT Subject: CN=6b8939f04fb5a78f0b23201c660f2b7529a20930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:62:a5:a6:a1:86:de:20:fd:28:bf:ed:75: 2b:93:08:12:1a:21:ed:64:80:39:a4:99:5c:3d:19: ac:95:6e:aa:cb:dd:81:1a:52:a1:58:da:ed:d4:34: d6:36:c3:19:9e:ba:21:38:bf:73:63:d8:94:f5:4e: 1d:83:4a:5e:38:11:cb:69:2a:4e:09:a9:d4:2a:97: 51:91:57:26:d6:7d:39:bf:93:fe:7e:6a:a1:d9:1f: 7c:3c:44:0e:ef:6e:be:4c:c3:a8:8d:df:5e:0b:01: d6:23:9e:b3:cf:ad:29:bd:35:20:2e:bb:b8:f8:e0: 79:74:e7:6b:a9:f3:8b:cb:c6:26:60:45:21:83:57: 3e:d2:f8:ef:87:4c:50:9d:1c:4a:f6:35:64:18:52: e4:0d:7f:4b:64:a6:de:54:c4:07:bd:93:61:fd:86: d5:54:37:eb:ba:5d:71:61:8f:08:f1:0c:e0:36:a0: fd:b4:85:e9:cb:3d:d2:34:5d:bb:5b:23:4a:de:56: 07:c2:17:c3:ea:6d:01:40:15:9e:59:28:e6:a3:c2: a8:75:91:e9:fc:d1:d8:4d:e7:0a:4e:84:28:9e:69: 0b:f3:06:eb:e9:b7:0a:03:0b:f5:4d:30:77:dc:d6: 13:ea:27:eb:5e:01:9a:2c:39:96:48:fc:ae:da:ff: b6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:89:39:F0:4F:B5:A7:8F:0B:23:20:1C:66:0F:2B:75:29:A2:09:30 X509v3 Authority Key Identifier: keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:23:65:23:15:75:0f:25:5c:fe:d5:15:e1:df:c8:37:63:4b: 1e:29:23:c5:57:52:b2:4f:63:cb:af:07:fa:74:fc:05:18:0e: 40:7a:17:83:3e:03:05:d1:9f:78:c6:2c:7b:7d:8f:0b:0c:06: ea:63:9d:6d:26:22:62:0f:e0:89:92:7d:a6:8b:45:94:a2:88: 72:c9:c9:13:e2:c1:ec:11:85:b1:c4:4f:70:6e:4c:75:9c:9c: 66:68:82:10:7b:4f:56:23:12:f7:fe:87:47:48:0e:0a:d0:a3: bd:1e:e2:7f:ee:61:04:37:a4:57:3e:be:77:f8:ed:3f:b2:a9: 12:f7:b0:c2:3b:d6:53:1d:22:29:04:ad:97:bf:d1:e4:42:dc: 38:4f:83:85:8e:fb:2d:d1:3f:11:6c:52:00:d1:d0:4e:b6:19: 84:00:a2:69:dd:28:c6:1b:24:d7:39:38:33:56:de:fe:55:b3: 9a:2d:3e:c8:fa:a9:c4:e4:02:87:39:5e:72:2a:45:53:c2:88: a5:0e:00:9f:79:b8:c0:96:e5:a1:8b:ee:57:73:92:eb:c0:2b: af:88:e0:d1:93:3d:d0:f7:93:98:6c:5e:6d:da:3f:b0:3d:0b: 4c:97:27:b3:35:7f:97:97:9d:26:c7:70:fd:77:a7:c6:87:65: 04:24:5a:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG5yOeKYcIP30k/zCUrMvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZWIwMDJmMDAwYmQ0MjZlNGE2NDBjNzFkNmMwMjAxYjUw NTBlMzQwHhcNMjUxMjA2MTAwMTA0WhcNMjUxMjA3MTAwMTA0WjAzMTEwLwYDVQQD Eyg2Yjg5MzlmMDRmYjVhNzhmMGIyMzIwMWM2NjBmMmI3NTI5YTIwOTMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5pipaahht4g/Si/7XUrkwgSGiHt ZIA5pJlcPRmslW6qy92BGlKhWNrt1DTWNsMZnrohOL9zY9iU9U4dg0peOBHLaSpO CanUKpdRkVcm1n05v5P+fmqh2R98PEQO726+TMOojd9eCwHWI56zz60pvTUgLru4 +OB5dOdrqfOLy8YmYEUhg1c+0vjvh0xQnRxK9jVkGFLkDX9LZKbeVMQHvZNh/YbV VDfrul1xYY8I8QzgNqD9tIXpyz3SNF27WyNK3lYHwhfD6m0BQBWeWSjmo8KodZHp /NHYTecKToQonmkL8wbr6bcKAwv1TTB33NYT6ifrXgGaLDmWSPyu2v+2eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGuJOfBPtaePCyMgHGYPK3UpogkwMB8GA1UdIwQY MBaAFGnrAC8AC9Qm5KZAxx1sAgG1BQ40MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0Mzct Nzg1NDc1YzIyYzliLzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9kM2U2ODItMzM3MC00MjcxLTk0MzctNzg1NDc1YzIyYzli LzEvYWVzQUx3QUwxQ2JrcGtESEhXd0NBYlVGRGpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmyNlIxV1 DyVc/tUV4d/IN2NLHikjxVdSsk9jy68H+nT8BRgOQHoXgz4DBdGfeMYse32PCwwG 6mOdbSYiYg/giZJ9potFlKKIcsnJE+LB7BGFscRPcG5MdZycZmiCEHtPViMS9/6H R0gOCtCjvR7if+5hBDekVz6+d/jtP7KpEvewwjvWUx0iKQStl7/R5ELcOE+DhY77 LdE/EWxSANHQTrYZhACiad0oxhsk1zk4M1be/lWzmi0+yPqpxOQChzlecipFU8KI pQ4An3m4wJbloYvuV3OS68Arr4jg0ZM90PeTmGxebdo/sD0LTJcnszV/l5edJsdw /XenxodlBCRaIw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:05:39 2025 by rpki-client