This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json) Hash identifier: Q8m0mbzyLA053V0STtMcEoIjyGxk2IR975xahbRmzjI= Subject key identifier: FE:03:FE:56:AC:6D:58:00:2C:E2:5E:20:C6:7A:85:4C:1D:74:02:44 Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5 Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5 Certificate serial: 019AF20968F8712E9C6B2412A8E076C20400 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft Manifest number: 0C13 Signing time: Sat 06 Dec 2025 05:01:34 +0000 Manifest this update: Sat 06 Dec 2025 05:01:34 +0000 Manifest next update: Sun 07 Dec 2025 05:01:34 +0000 Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: YMQ4OZQislZuvtC7lsZLyW4fX3/pkFf4WqEbR4rz7nc=) 2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:68:f8:71:2e:9c:6b:24:12:a8:e0:76:c2:04:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5 Validity Not Before: Dec 6 05:01:34 2025 GMT Not After : Dec 7 05:01:34 2025 GMT Subject: CN=fe03fe56ac6d58002ce25e20c67a854c1d740244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:da:61:ce:32:67:20:8d:47:bf:db:80:62:b1: 4e:e8:5e:ce:f0:28:f7:3d:19:23:d4:2c:11:20:32: 61:c0:e3:80:eb:ac:db:18:1c:b1:7c:79:11:89:b1: ba:8b:30:7e:1e:2c:00:6e:0a:25:0e:a5:29:dd:9a: 18:6e:30:eb:c7:9b:a3:1f:0f:8a:ec:4f:c2:5a:b4: a1:90:33:ce:a3:3f:25:38:63:e5:36:30:9f:de:00: a9:75:e8:7b:25:53:c8:ac:ff:1f:30:f0:99:b8:c7: a2:9c:26:b0:3d:44:84:26:b8:eb:49:31:5d:be:e8: 19:79:cd:29:e3:64:21:90:5f:75:7a:9e:38:df:99: 1a:2d:2e:6f:90:b6:fa:2d:2a:03:16:bb:61:10:d7: 0d:7e:df:71:52:52:47:0e:eb:7f:09:4a:61:4b:31: e3:17:71:44:44:9e:76:e6:16:92:44:7e:ed:c3:e5: c1:49:d7:f3:3c:48:69:2a:35:ce:6f:43:c9:f4:51: 22:bf:66:53:ea:d3:de:05:9e:a4:58:55:d3:6d:13: 58:27:b2:cd:63:3b:44:d0:42:a7:81:04:c4:0b:ea: 31:95:0f:f6:55:82:38:98:35:3e:3b:a7:3c:7d:49: b8:83:ce:09:59:cf:d7:4e:96:6f:f6:6e:ef:dc:9e: 9d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:03:FE:56:AC:6D:58:00:2C:E2:5E:20:C6:7A:85:4C:1D:74:02:44 X509v3 Authority Key Identifier: keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:b0:f4:f2:ce:b9:90:e3:6d:81:52:90:2f:d5:69:05:22:95: 79:76:bc:e7:c2:6b:97:65:f6:75:40:86:e6:b8:36:a0:d1:c5: 90:ea:61:9b:38:b1:96:bf:cd:17:04:39:ed:71:36:1c:1c:a7: 3b:66:12:08:ec:0e:5a:2f:18:59:d6:0c:49:21:a7:17:85:0e: 6b:a2:80:df:de:3d:af:51:25:f8:e3:26:86:5d:28:e0:1c:f7: fa:00:cf:11:f5:d3:26:4f:83:e7:4a:89:a2:06:8c:45:67:09: 2b:b5:b4:f4:71:9c:94:e5:47:aa:04:76:f7:c9:df:13:3b:a0: 5e:6c:15:97:01:a5:50:c5:c1:c8:a7:32:cc:b8:57:9d:6a:e4: ea:1d:1b:5c:c1:eb:c6:e4:e1:2e:86:41:5d:59:31:07:60:ab: ba:b9:00:74:13:31:b7:25:79:be:6c:d1:14:6d:03:db:64:48: 31:87:b3:0a:2e:75:98:0d:85:6e:8f:1a:55:22:fa:62:37:ba: c3:a2:e9:21:9f:34:bc:af:0a:fb:f8:02:0f:a9:b4:44:65:3a: 9a:5c:7d:da:b3:9b:7a:6c:b0:cf:74:45:5a:a6:59:0d:63:28: 39:9f:fa:c1:5b:b9:b4:bd:d9:51:ff:1b:22:c1:5a:5b:5a:63: 24:e2:a8:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWj4cS6cayQSqOB2wgQAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODJmMDUxMzJhOTk4OTUwN2ViZjZlZTk4OTUxODc1M2Jh MmNkYjUwHhcNMjUxMjA2MDUwMTM0WhcNMjUxMjA3MDUwMTM0WjAzMTEwLwYDVQQD EyhmZTAzZmU1NmFjNmQ1ODAwMmNlMjVlMjBjNjdhODU0YzFkNzQwMjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodphzjJnII1Hv9uAYrFO6F7O8Cj3 PRkj1CwRIDJhwOOA66zbGByxfHkRibG6izB+HiwAbgolDqUp3ZoYbjDrx5ujHw+K 7E/CWrShkDPOoz8lOGPlNjCf3gCpdeh7JVPIrP8fMPCZuMeinCawPUSEJrjrSTFd vugZec0p42QhkF91ep4435kaLS5vkLb6LSoDFrthENcNft9xUlJHDut/CUphSzHj F3FERJ525haSRH7tw+XBSdfzPEhpKjXOb0PJ9FEiv2ZT6tPeBZ6kWFXTbRNYJ7LN YztE0EKngQTEC+oxlQ/2VYI4mDU+O6c8fUm4g84JWc/XTpZv9m7v3J6dRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP4D/lasbVgALOJeIMZ6hUwddAJEMB8GA1UdIwQY MBaAFGmC8FEyqZiVB+v27piVGHU7os21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMt ZjkyNmZhYmY3YWZhLzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMtZjkyNmZhYmY3YWZh LzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzLD08s65 kONtgVKQL9VpBSKVeXa858Jrl2X2dUCG5rg2oNHFkOphmzixlr/NFwQ57XE2HByn O2YSCOwOWi8YWdYMSSGnF4UOa6KA3949r1El+OMmhl0o4Bz3+gDPEfXTJk+D50qJ ogaMRWcJK7W09HGclOVHqgR298nfEzugXmwVlwGlUMXByKcyzLhXnWrk6h0bXMHr xuThLoZBXVkxB2CrurkAdBMxtyV5vmzRFG0D22RIMYezCi51mA2Fbo8aVSL6Yje6 w6LpIZ80vK8K+/gCD6m0RGU6mlx92rObemywz3RFWqZZDWMoOZ/6wVu5tL3ZUf8b IsFaW1pjJOKoqQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:41 2025 by rpki-client