This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json) Hash identifier: WkQ4BXU8vOX8F/0aKJ9i/YiAKFp5lHGos/erzOT0DOo= Subject key identifier: 76:42:17:65:AA:56:67:88:48:E7:99:93:8F:8D:B8:66:A1:06:34:32 Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87 Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387 Certificate serial: 019AF3522499533CC9652228F686674E478B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft Manifest number: 1027 Signing time: Sat 06 Dec 2025 11:00:37 +0000 Manifest this update: Sat 06 Dec 2025 11:00:37 +0000 Manifest next update: Sun 07 Dec 2025 11:00:37 +0000 Files and hashes: 1: 8fGGuqV_pcqjv64pfQiKXOnA89E.roa (hash: VFpEm/CggmIw860nuw3P1+S3S7tI6esO+Ze0E21DRy8=) 2: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: qoS8n7mNMJhGMegzj3xP9NJ2RcfXp821fRLODlPQPGc=) 3: vtKzvBvjetkU5WA6Y25cAJBYCOI.roa (hash: Vkh0B0/3gyxmhDaxonoanwkQPVqR6BgCPbSb6ryc6sI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:24:99:53:3c:c9:65:22:28:f6:86:67:4e:47:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387 Validity Not Before: Dec 6 11:00:37 2025 GMT Not After : Dec 7 11:00:37 2025 GMT Subject: CN=76421765aa56678848e799938f8db866a1063432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c8:87:0b:9b:52:bd:01:49:a6:68:66:cc:78: e6:36:05:a1:06:7a:73:19:4a:47:de:b5:93:c5:3c: 7e:34:9c:1e:a3:db:cc:86:22:2b:6b:30:55:d3:2b: bd:a1:06:8b:f3:e9:cc:88:14:c2:c5:58:f4:dc:70: eb:48:79:05:fa:e3:35:32:13:4b:a5:b3:32:26:82: 9d:f1:63:9f:54:25:a8:7d:ca:85:e7:b2:5e:ad:d0: a8:8a:27:10:3f:a3:0f:51:68:24:28:22:5f:76:14: c4:6d:1e:60:38:f3:df:92:7f:bb:3a:a0:cb:82:29: 17:f9:bc:ed:84:c4:47:a0:f2:8e:79:2c:c7:71:15: d5:71:44:35:39:e7:c5:e9:73:15:13:38:e0:03:35: e4:5a:32:8a:41:70:5e:f2:c8:3f:84:7f:bd:a5:29: 77:a2:45:5a:bc:b6:36:74:ef:d6:d9:ae:0c:f9:5e: b3:50:f0:13:d0:9e:73:11:72:59:6c:08:cc:6e:67: 8e:24:30:fe:b5:ee:08:be:4f:f4:b9:65:24:0d:4d: 92:ea:12:23:d3:38:54:92:3f:4b:85:02:40:d4:03: 62:0e:67:a1:ef:06:e3:00:d2:83:19:bf:0f:10:85: 6b:2c:f7:af:b1:71:70:b1:50:78:f6:9b:53:f5:60: ef:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:42:17:65:AA:56:67:88:48:E7:99:93:8F:8D:B8:66:A1:06:34:32 X509v3 Authority Key Identifier: keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e7:b0:b8:9f:e0:5f:1b:59:14:43:6c:c0:7a:d5:cf:38:0a: 15:1b:2d:32:19:41:63:50:f9:3c:07:5c:7d:64:e7:4d:fb:2a: a0:4a:84:8b:d5:ec:ad:6b:ba:03:6d:15:e0:b5:ad:59:e7:f1: 10:36:fc:b5:67:e8:72:b9:24:9c:e4:83:a4:e7:24:4c:ef:d7: 0e:b2:24:e6:78:b0:8c:67:23:69:8e:3b:ca:23:f8:41:02:69: 71:72:e5:00:b6:c2:b3:51:7e:20:0e:bf:e9:ac:f3:19:7d:ce: 52:c1:72:c7:54:1a:18:68:8c:89:34:77:72:ff:0b:5e:63:98: 31:8b:b0:cf:83:4b:f4:46:dc:c0:dd:6e:a4:0e:49:9e:16:78: cd:5d:49:40:9e:b3:41:0e:0e:44:04:28:a5:26:a5:59:5c:72: 44:d8:4b:36:bd:35:ef:d3:e6:b5:47:0b:38:ed:aa:b9:6a:31: 41:99:0d:e1:ff:3f:f2:97:01:26:4a:4e:22:72:bc:76:8e:a0: de:d8:bc:26:be:55:72:99:0c:95:91:f7:59:b9:09:42:bb:1d: a2:ff:81:9e:a9:d8:7d:51:df:e3:14:ce:dd:55:ef:0a:e3:3b: a6:d1:47:1a:06:78:fe:7d:be:e6:ab:5f:01:03:10:fb:89:ef: c1:34:b5:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUiSZUzzJZSIo9oZnTkeLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxYTU2YzQyZWQ3Y2I5NjNmMjg1NTAzY2VjMDYwNmQ2MGQw YWIzODcwHhcNMjUxMjA2MTEwMDM3WhcNMjUxMjA3MTEwMDM3WjAzMTEwLwYDVQQD Eyg3NjQyMTc2NWFhNTY2Nzg4NDhlNzk5OTM4ZjhkYjg2NmExMDYzNDMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMiHC5tSvQFJpmhmzHjmNgWhBnpz GUpH3rWTxTx+NJweo9vMhiIrazBV0yu9oQaL8+nMiBTCxVj03HDrSHkF+uM1MhNL pbMyJoKd8WOfVCWofcqF57JerdCoiicQP6MPUWgkKCJfdhTEbR5gOPPfkn+7OqDL gikX+bzthMRHoPKOeSzHcRXVcUQ1OefF6XMVEzjgAzXkWjKKQXBe8sg/hH+9pSl3 okVavLY2dO/W2a4M+V6zUPAT0J5zEXJZbAjMbmeOJDD+te4Ivk/0uWUkDU2S6hIj 0zhUkj9LhQJA1ANiDmeh7wbjANKDGb8PEIVrLPevsXFwsVB49ptT9WDvwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHZCF2WqVmeISOeZk4+NuGahBjQyMB8GA1UdIwQY MBaAFAGlbELtfLlj8oVQPOwGBtYNCrOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMt ZWQwN2Y1Y2FkNmQ3LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMtZWQwN2Y1Y2FkNmQ3 LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbuewuJ/g XxtZFENswHrVzzgKFRstMhlBY1D5PAdcfWTnTfsqoEqEi9XsrWu6A20V4LWtWefx EDb8tWfocrkknOSDpOckTO/XDrIk5niwjGcjaY47yiP4QQJpcXLlALbCs1F+IA6/ 6azzGX3OUsFyx1QaGGiMiTR3cv8LXmOYMYuwz4NL9EbcwN1upA5JnhZ4zV1JQJ6z QQ4ORAQopSalWVxyRNhLNr0179PmtUcLOO2quWoxQZkN4f8/8pcBJkpOInK8do6g 3ti8Jr5VcpkMlZH3WbkJQrsdov+BnqnYfVHf4xTO3VXvCuM7ptFHGgZ4/n2+5qtf AQMQ+4nvwTS1Sg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:20:30 2025 by rpki-client