This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft File: aPQ7W7zEligG6pMi7Ckum2bdzMU.mft (raw, json) Hash identifier: Cfw6K+m9mEk796SfFTu/by9w4nlkvgXP/9ekmsw5gqU= Subject key identifier: 77:7E:B0:02:90:8C:E9:86:C9:4D:2D:92:59:68:2A:6D:6E:FE:C0:D8 Authority key identifier: 68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5 Certificate issuer: /CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5 Certificate serial: 019AF12D5D450A99F34E1A19B53679D26CE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft Manifest number: 0193 Signing time: Sat 06 Dec 2025 01:01:13 +0000 Manifest this update: Sat 06 Dec 2025 01:01:13 +0000 Manifest next update: Sun 07 Dec 2025 01:01:13 +0000 Files and hashes: 1: SoVNckei1TZS01RLg6ip1YkBFdU.roa (hash: KPfyNB1/7HOPIBk4Fgq8x7IV18jBNl24nXpSJtvP3V8=) 2: aPQ7W7zEligG6pMi7Ckum2bdzMU.crl (hash: u/dfvxjgVHrcUT277tBSWTRXLMfu9xt99986jPMBKXU=) 3: iGb2Jc_QU7J2Z5O3vod9I-OICPc.roa (hash: /45Up2AlP9mP2cq1r60NU4ej4jg7gPVu93jZTMBBI8U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:5d:45:0a:99:f3:4e:1a:19:b5:36:79:d2:6c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68f43b5bbcc4962806ea9322ec292e9b66ddccc5 Validity Not Before: Dec 6 01:01:13 2025 GMT Not After : Dec 7 01:01:13 2025 GMT Subject: CN=777eb002908ce986c94d2d9259682a6d6efec0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:57:6a:4a:54:6e:a8:e8:00:65:8b:f8:ae:d5: 06:16:31:60:d1:11:ed:f0:f7:f3:d3:67:46:92:79: c9:08:e0:62:50:3e:4a:ce:2a:7e:94:e7:0b:06:db: 0b:fb:c7:d4:fa:9a:e9:95:6c:02:61:98:37:9c:f3: 69:8f:f8:44:73:86:0e:dd:3c:3b:54:62:63:8d:47: cf:f4:ef:4b:54:33:c7:49:31:44:17:9a:b0:f9:08: 65:8d:65:b0:a9:1f:8c:b1:31:e5:aa:e3:ac:70:f7: 4f:cc:8f:72:59:b9:eb:32:c8:ba:3e:a7:3c:47:40: c7:b0:ce:28:ae:d9:31:d3:e8:36:07:da:42:6a:e5: e9:23:7c:eb:64:91:99:b4:f3:e2:d4:f3:5e:54:d6: be:88:3f:52:2b:82:80:09:3a:ae:6b:39:6b:ec:f5: 52:e0:96:b9:1d:f0:07:d1:d8:74:5f:c9:39:9b:47: f9:44:bc:85:5a:79:ed:60:d8:be:e1:81:66:25:46: 0b:45:6f:34:9e:c3:a6:f2:7c:f5:92:18:1c:17:fc: e8:17:73:35:98:92:75:57:e5:d8:4b:0a:b2:ca:bb: 69:8f:cb:c5:e2:e1:c5:4d:fc:b8:80:19:65:19:de: 04:05:55:ec:21:68:49:64:50:e7:89:0a:02:23:d0: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:7E:B0:02:90:8C:E9:86:C9:4D:2D:92:59:68:2A:6D:6E:FE:C0:D8 X509v3 Authority Key Identifier: keyid:68:F4:3B:5B:BC:C4:96:28:06:EA:93:22:EC:29:2E:9B:66:DD:CC:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPQ7W7zEligG6pMi7Ckum2bdzMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/046ffe-05eb-4c8c-8545-02483e6482cb/1/aPQ7W7zEligG6pMi7Ckum2bdzMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:1f:c4:c0:26:46:8b:f6:a3:5c:d3:63:5c:a8:a1:2a:32:b4: 20:46:c0:8c:8f:80:e4:ea:58:81:92:c0:65:13:84:b2:26:9d: 1e:b5:73:1b:09:63:dc:b2:93:5c:68:7f:63:b1:4b:ba:7f:20: 2f:4f:55:89:e2:94:01:f5:b1:af:c4:52:63:ed:58:14:57:fc: 56:3e:fe:46:08:fe:12:c5:6a:4b:82:62:3d:e6:f7:e6:af:5c: 20:ed:4d:db:c4:35:b5:f8:fe:0d:94:31:f7:b1:2a:f0:0f:54: 13:86:1e:05:fa:b0:dd:c2:ec:72:80:33:e9:9b:a6:2e:93:b3: 52:a1:d4:6a:29:6d:46:ad:78:c9:5b:89:fd:5f:59:82:9d:62: 91:d8:85:a0:cb:48:65:71:01:b3:b6:6f:a2:52:73:bf:87:ef: 92:35:d4:8e:0d:53:dd:41:f4:20:30:6b:d9:7a:a8:71:a6:2b: 86:cb:b7:dc:dd:bc:1a:3d:04:f9:1e:06:c4:0c:0f:37:60:be: fe:bb:4e:3b:a8:cc:8f:d9:fb:7c:94:e6:f1:c3:35:57:31:4c: 36:ee:91:c9:9d:26:1c:d0:67:3a:aa:f1:74:c3:8f:99:95:5e: e5:81:b6:3c:cc:62:8c:94:a0:e9:32:50:30:f4:b3:05:32:52: bf:ba:84:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLV1FCpnzThoZtTZ50mznMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZjQzYjViYmNjNDk2MjgwNmVhOTMyMmVjMjkyZTliNjZk ZGNjYzUwHhcNMjUxMjA2MDEwMTEzWhcNMjUxMjA3MDEwMTEzWjAzMTEwLwYDVQQD Eyg3NzdlYjAwMjkwOGNlOTg2Yzk0ZDJkOTI1OTY4MmE2ZDZlZmVjMGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVdqSlRuqOgAZYv4rtUGFjFg0RHt 8Pfz02dGknnJCOBiUD5Kzip+lOcLBtsL+8fU+prplWwCYZg3nPNpj/hEc4YO3Tw7 VGJjjUfP9O9LVDPHSTFEF5qw+QhljWWwqR+MsTHlquOscPdPzI9yWbnrMsi6Pqc8 R0DHsM4ortkx0+g2B9pCauXpI3zrZJGZtPPi1PNeVNa+iD9SK4KACTquazlr7PVS 4Ja5HfAH0dh0X8k5m0f5RLyFWnntYNi+4YFmJUYLRW80nsOm8nz1khgcF/zoF3M1 mJJ1V+XYSwqyyrtpj8vF4uHFTfy4gBllGd4EBVXsIWhJZFDniQoCI9AxWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHd+sAKQjOmGyU0tklloKm1u/sDYMB8GA1UdIwQY MBaAFGj0O1u8xJYoBuqTIuwpLptm3czFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVBRN1c3ekVsaWdHNnBNaTdDa3VtMmJkek1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wNDZmZmUtMDVlYi00YzhjLTg1NDUt MDI0ODNlNjQ4MmNiLzEvYVBRN1c3ekVsaWdHNnBNaTdDa3VtMmJkek1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8wNDZmZmUtMDVlYi00YzhjLTg1NDUtMDI0ODNlNjQ4MmNi LzEvYVBRN1c3ekVsaWdHNnBNaTdDa3VtMmJkek1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaB/EwCZG i/ajXNNjXKihKjK0IEbAjI+A5OpYgZLAZROEsiadHrVzGwlj3LKTXGh/Y7FLun8g L09VieKUAfWxr8RSY+1YFFf8Vj7+Rgj+EsVqS4JiPeb35q9cIO1N28Q1tfj+DZQx 97Eq8A9UE4YeBfqw3cLscoAz6ZumLpOzUqHUailtRq14yVuJ/V9Zgp1ikdiFoMtI ZXEBs7ZvolJzv4fvkjXUjg1T3UH0IDBr2XqocaYrhsu33N28Gj0E+R4GxAwPN2C+ /rtOO6jMj9n7fJTm8cM1VzFMNu6RyZ0mHNBnOqrxdMOPmZVe5YG2PMxijJSg6TJQ MPSzBTJSv7qEcA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:33 2025 by rpki-client