This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft File: aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft (raw, json) Hash identifier: JOnZ5YNSNyV8pNbPXIHP/6ISmt8og0L36yfbsSsQRu0= Subject key identifier: 38:36:DA:49:91:30:CD:D7:81:15:32:29:82:D7:5A:E9:0B:3E:1C:61 Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92 Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392 Certificate serial: 019AF50AF1DDAA6779B51D4217EC79354EE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft Manifest number: 16F6 Signing time: Sat 06 Dec 2025 19:02:06 +0000 Manifest this update: Sat 06 Dec 2025 19:02:06 +0000 Manifest next update: Sun 07 Dec 2025 19:02:06 +0000 Files and hashes: 1: aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl (hash: 0iYKR4y78oNqztpq85TBTsiHTy3ogM2dGBNLQe+fBpA=) 2: c3cfCpPele1fDi8UyS3_TO9IOZU.roa (hash: x4G7KBYVMCONibc2Rol9WiF29BGQsdbC/SUMmPlKdpc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:f1:dd:aa:67:79:b5:1d:42:17:ec:79:35:4e:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392 Validity Not Before: Dec 6 19:02:06 2025 GMT Not After : Dec 7 19:02:06 2025 GMT Subject: CN=3836da499130cdd78115322982d75ae90b3e1c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3c:a8:eb:7d:b8:50:60:0f:1c:f6:cb:c0:86: e2:16:28:ba:98:20:23:b7:22:14:7e:df:8e:f2:a5: 22:46:2b:d5:0c:ec:a7:a3:57:12:eb:af:cb:d8:ad: e5:b7:d3:7b:3d:4c:29:98:a2:9d:30:32:b7:09:43: bb:57:63:90:e0:f9:a9:d0:d1:c5:bf:94:d1:80:2d: 5e:89:07:44:a6:0f:46:60:b8:f4:07:72:7f:b1:9f: 3f:15:32:98:5b:02:57:16:a0:ab:ea:eb:54:ab:32: 82:1e:1b:e3:2f:d6:85:7b:a5:f6:0f:37:fc:30:e9: 55:ea:1d:1c:a4:5f:81:05:37:29:57:6b:61:f8:9d: 19:61:3e:11:5a:42:2e:50:8e:e1:5d:de:d2:c7:e7: 45:2e:dd:88:3c:7c:5d:bc:26:5c:9a:88:0c:d5:9f: 95:58:c0:50:95:23:43:23:56:1c:0f:9f:67:d1:80: 52:b6:a3:fc:53:6d:d9:36:52:27:70:d9:30:e7:fc: 00:b1:c7:18:bf:15:72:9e:92:78:96:df:56:39:49: 2a:0c:d3:64:c8:a7:b5:64:6c:21:56:5f:03:88:91: 9b:81:50:48:97:4c:de:09:4c:4d:9b:cc:8b:01:0a: 29:cd:4d:9b:2c:88:74:9d:a4:64:c8:84:03:6a:34: c8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:36:DA:49:91:30:CD:D7:81:15:32:29:82:D7:5A:E9:0B:3E:1C:61 X509v3 Authority Key Identifier: keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:65:e7:91:29:4b:66:c0:53:f2:84:a4:54:1c:c9:f6:e4:02: 4b:9e:65:99:ca:48:d4:6b:91:8b:48:7a:29:8c:65:4a:f9:e1: 53:bb:9a:da:10:6f:05:a4:1b:b2:d8:02:99:02:c9:0f:c0:c2: d0:ef:5a:2e:b8:92:3d:28:39:7f:1d:02:c7:72:43:db:f1:9d: fb:0c:00:81:cf:c3:e5:d1:dc:95:47:53:07:2d:26:c1:f1:d9: 54:b3:1c:ac:ec:cd:ca:dd:80:96:e6:a8:ff:9d:c1:42:5c:1c: ba:a3:7e:67:9d:8f:84:df:86:ab:94:ce:a3:7c:64:e7:a3:e1: 33:2b:f7:e9:e6:6c:12:b5:98:8b:2f:9b:15:82:de:fc:e7:ca: e0:d5:22:19:78:c8:36:e1:69:85:39:a3:09:c3:2c:ba:e2:fe: 0e:95:c4:5f:18:d4:f4:bc:31:0b:07:b6:ab:fe:4a:d3:c2:14: 59:bd:43:ef:4e:74:54:91:2a:bf:b6:56:90:23:d6:0e:78:1b: b9:00:75:cf:db:3d:a8:71:bc:85:ce:ca:73:6e:c5:c1:ed:17: 32:51:16:1b:d2:8d:be:f8:f0:b1:3a:eb:c8:c0:10:4a:98:77: c0:1f:69:e2:44:84:13:60:ee:0b:20:61:85:6f:4e:ee:a4:2f: 88:bd:51:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CvHdqmd5tR1CF+x5NU7nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4OTZlNzYzZjg5YzcyMGU4N2NlNGQ3OWY4YzA5ZDA3ZjJm YTYzOTIwHhcNMjUxMjA2MTkwMjA2WhcNMjUxMjA3MTkwMjA2WjAzMTEwLwYDVQQD EygzODM2ZGE0OTkxMzBjZGQ3ODExNTMyMjk4MmQ3NWFlOTBiM2UxYzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojyo6324UGAPHPbLwIbiFii6mCAj tyIUft+O8qUiRivVDOyno1cS66/L2K3lt9N7PUwpmKKdMDK3CUO7V2OQ4Pmp0NHF v5TRgC1eiQdEpg9GYLj0B3J/sZ8/FTKYWwJXFqCr6utUqzKCHhvjL9aFe6X2Dzf8 MOlV6h0cpF+BBTcpV2th+J0ZYT4RWkIuUI7hXd7Sx+dFLt2IPHxdvCZcmogM1Z+V WMBQlSNDI1YcD59n0YBStqP8U23ZNlIncNkw5/wAsccYvxVynpJ4lt9WOUkqDNNk yKe1ZGwhVl8DiJGbgVBIl0zeCUxNm8yLAQopzU2bLIh0naRkyIQDajTIhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDg22kmRMM3XgRUyKYLXWukLPhxhMB8GA1UdIwQY MBaAFGiW52P4nHIOh85NefjAnQfy+mOSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEt Yzg4NDBmYTg1MTQxLzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9iNDA4ZDctMDEyYy00OGMzLWE3ZWEtYzg4NDBmYTg1MTQx LzEvYUpibllfaWNjZzZIemsxNS1NQ2RCX0w2WTVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYWXnkSlL ZsBT8oSkVBzJ9uQCS55lmcpI1GuRi0h6KYxlSvnhU7ua2hBvBaQbstgCmQLJD8DC 0O9aLriSPSg5fx0Cx3JD2/Gd+wwAgc/D5dHclUdTBy0mwfHZVLMcrOzNyt2Aluao /53BQlwcuqN+Z52PhN+Gq5TOo3xk56PhMyv36eZsErWYiy+bFYLe/OfK4NUiGXjI NuFphTmjCcMsuuL+DpXEXxjU9LwxCwe2q/5K08IUWb1D7050VJEqv7ZWkCPWDngb uQB1z9s9qHG8hc7Kc27Fwe0XMlEWG9KNvvjwsTrryMAQSph3wB9p4kSEE2DuCyBh hW9O7qQviL1RoQ== -----END CERTIFICATE-----Generated at Sat Dec 6 23:49:39 2025 by rpki-client