This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft File: AUI61NYpsvgot58ArEA4jje44lI.mft (raw, json) Hash identifier: KSjx2W1fuMMltOjz8KTgx2N2NtGbWaAsIu4/pXE4Z6k= Subject key identifier: E0:F7:2F:CC:E8:46:BF:B2:CC:06:E9:1B:D4:7E:B5:B0:94:B1:F4:FD Authority key identifier: 01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52 Certificate issuer: /CN=01423ad4d629b2f828b79f00ac40388e37b8e252 Certificate serial: 019AF23FDE1C6F4C674752C6E82317F526AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft Manifest number: 1396 Signing time: Sat 06 Dec 2025 06:01:03 +0000 Manifest this update: Sat 06 Dec 2025 06:01:03 +0000 Manifest next update: Sun 07 Dec 2025 06:01:03 +0000 Files and hashes: 1: AUI61NYpsvgot58ArEA4jje44lI.crl (hash: lkooDUbjKmyWJfzHLSLelPxJe6d6e+953IzOZx+1HZs=) 2: ibDNoVPt_SWuF1TTYGcbR_ptYMU.roa (hash: ul6C7Hw2mOMrIR7JJ3pVvWUBrEsSVBHfGtaoivQYtXM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:de:1c:6f:4c:67:47:52:c6:e8:23:17:f5:26:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01423ad4d629b2f828b79f00ac40388e37b8e252 Validity Not Before: Dec 6 06:01:03 2025 GMT Not After : Dec 7 06:01:03 2025 GMT Subject: CN=e0f72fcce846bfb2cc06e91bd47eb5b094b1f4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:74:3a:b6:ed:1c:4b:5c:77:3e:bd:38:7e:96: b0:22:91:f4:7e:ff:f3:0a:fd:ac:d6:c0:71:c7:1f: bf:02:db:aa:e8:de:54:20:1f:a6:d4:9b:02:d8:39: 8d:85:9f:f9:f4:8a:b3:4a:d0:04:3c:a5:1b:b2:ec: ec:d6:ba:36:ab:0f:53:8c:a9:11:bb:85:f1:9e:41: 1e:ec:e7:9c:1c:69:73:37:81:88:7c:fa:52:90:a5: 90:2e:28:af:0e:27:25:ba:71:6b:c2:7a:c6:b5:11: be:76:6a:72:6c:9f:b1:2d:74:99:6a:46:53:b4:23: 19:c5:38:7c:b1:dc:32:47:54:57:c0:8b:77:96:27: db:96:a9:59:12:43:42:d0:96:10:54:3a:73:aa:33: c7:d8:5b:cc:6d:6e:a5:9e:45:b8:49:4b:91:0e:74: 2f:19:d1:15:a6:5e:dc:39:df:c6:84:45:25:5b:4d: ff:1e:95:1c:89:ad:35:3c:b6:3c:6d:9a:eb:b4:ea: a7:39:f5:b2:be:d9:fc:cd:57:33:48:7c:30:dd:ff: 5b:9f:37:6a:f3:f7:bd:93:94:ca:54:2e:a7:b3:c4: b3:bf:47:e4:77:b7:e2:2b:df:31:c9:37:b5:b3:e9: af:41:a6:47:e9:9a:c3:89:fd:92:7e:f8:04:73:8f: 1b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F7:2F:CC:E8:46:BF:B2:CC:06:E9:1B:D4:7E:B5:B0:94:B1:F4:FD X509v3 Authority Key Identifier: keyid:01:42:3A:D4:D6:29:B2:F8:28:B7:9F:00:AC:40:38:8E:37:B8:E2:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUI61NYpsvgot58ArEA4jje44lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b36dbd-55eb-4de4-b6b9-839196345b6d/1/AUI61NYpsvgot58ArEA4jje44lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:a4:fb:8b:1b:af:58:5a:d8:b6:08:ac:ee:a5:6c:21:d7:55: bf:a6:97:40:2e:be:d5:56:33:3b:fd:4f:5d:38:98:cf:6d:54: 4f:ed:51:16:5c:41:2d:7f:3a:90:3e:c3:be:cb:78:b5:85:ae: e9:1f:f9:10:af:06:ff:f7:96:ad:b5:d9:3a:67:92:f7:5c:38: 90:ef:61:d7:b1:79:72:af:7f:ea:9b:da:f4:dd:24:e6:00:c2: 00:a4:48:8e:20:f2:a0:2a:ac:77:f2:63:96:ec:27:03:29:f2: 1f:f5:a4:0a:42:15:2b:ec:43:90:7e:59:23:0f:30:20:da:66: 57:b6:5d:ad:b7:33:18:f1:8d:2e:cb:d2:ed:15:ec:cd:ba:5a: a1:9c:f2:e0:eb:ec:77:95:cd:4f:33:9a:da:f3:9a:8a:bb:48: 2a:7c:c1:ee:69:6f:d7:53:fb:67:4e:85:bf:60:82:9d:ed:c7: 91:e4:48:2d:30:70:70:00:c4:29:5e:74:92:1d:ad:67:b7:fd: f3:7b:fd:9b:e6:78:5e:a4:c5:fc:b9:af:0b:53:d2:02:3f:60: 34:8f:11:bc:44:0d:1d:4e:de:1e:01:8e:fc:f7:9e:6d:3a:76: f9:14:9b:5d:99:8c:a4:07:80:29:8e:5c:36:e9:ef:24:b8:bf: 15:7a:96:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP94cb0xnR1LG6CMX9SauMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNDIzYWQ0ZDYyOWIyZjgyOGI3OWYwMGFjNDAzODhlMzdi OGUyNTIwHhcNMjUxMjA2MDYwMTAzWhcNMjUxMjA3MDYwMTAzWjAzMTEwLwYDVQQD EyhlMGY3MmZjY2U4NDZiZmIyY2MwNmU5MWJkNDdlYjViMDk0YjFmNGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6nQ6tu0cS1x3Pr04fpawIpH0fv/z Cv2s1sBxxx+/Atuq6N5UIB+m1JsC2DmNhZ/59IqzStAEPKUbsuzs1ro2qw9TjKkR u4XxnkEe7OecHGlzN4GIfPpSkKWQLiivDiclunFrwnrGtRG+dmpybJ+xLXSZakZT tCMZxTh8sdwyR1RXwIt3lifblqlZEkNC0JYQVDpzqjPH2FvMbW6lnkW4SUuRDnQv GdEVpl7cOd/GhEUlW03/HpUcia01PLY8bZrrtOqnOfWyvtn8zVczSHww3f9bnzdq 8/e9k5TKVC6ns8Szv0fkd7fiK98xyTe1s+mvQaZH6ZrDif2SfvgEc48bKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOD3L8zoRr+yzAbpG9R+tbCUsfT9MB8GA1UdIwQY MBaAFAFCOtTWKbL4KLefAKxAOI43uOJSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVVJNjFOWXBzdmdvdDU4QXJFQTRqamU0NGxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iMzZkYmQtNTVlYi00ZGU0LWI2Yjkt ODM5MTk2MzQ1YjZkLzEvQVVJNjFOWXBzdmdvdDU4QXJFQTRqamU0NGxJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iMzZkYmQtNTVlYi00ZGU0LWI2YjktODM5MTk2MzQ1YjZk LzEvQVVJNjFOWXBzdmdvdDU4QXJFQTRqamU0NGxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABqT7ixuv WFrYtgis7qVsIddVv6aXQC6+1VYzO/1PXTiYz21UT+1RFlxBLX86kD7Dvst4tYWu 6R/5EK8G//eWrbXZOmeS91w4kO9h17F5cq9/6pva9N0k5gDCAKRIjiDyoCqsd/Jj luwnAynyH/WkCkIVK+xDkH5ZIw8wINpmV7ZdrbczGPGNLsvS7RXszbpaoZzy4Ovs d5XNTzOa2vOairtIKnzB7mlv11P7Z06Fv2CCne3HkeRILTBwcADEKV50kh2tZ7f9 83v9m+Z4XqTF/LmvC1PSAj9gNI8RvEQNHU7eHgGO/PeebTp2+RSbXZmMpAeAKY5c NunvJLi/FXqWBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:39 2025 by rpki-client