This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft File: aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json) Hash identifier: r2KVBDWWyPye+KhhXYAdSTMVO8yqNP4BlmA7snaYtZc= Subject key identifier: 80:7B:B7:D9:4D:16:41:2B:31:40:31:73:30:5C:12:F8:64:14:1F:74 Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D Certificate issuer: /CN=68f60683b377257427dbbf6ece35e2c585a3b01d Certificate serial: 019AF2AD5F0BB6158DF300F6588251995EB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 08:00:39 +0000 Manifest this update: Sat 06 Dec 2025 08:00:39 +0000 Manifest next update: Sun 07 Dec 2025 08:00:39 +0000 Files and hashes: 1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: Gi2/DAHK+M8CDYEo6XoWyQYSCTN8UhYqhBWL4oD0FbE=) 2: nJZ2h-CE2RpObbNuUbuQAsAe9wo.roa (hash: XjXLrJ8ZAfMXOtdh84OSK02UeKqf16aa2sgmGiELBao=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:5f:0b:b6:15:8d:f3:00:f6:58:82:51:99:5e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d Validity Not Before: Dec 6 08:00:39 2025 GMT Not After : Dec 7 08:00:39 2025 GMT Subject: CN=807bb7d94d16412b31403173305c12f864141f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5c:99:d0:bf:c7:9d:78:d9:32:30:c6:d3:5a: e9:a6:42:07:0b:ea:8c:9d:a8:af:df:fe:a7:cc:67: cd:d7:e3:63:86:7d:97:13:02:04:03:c7:41:2d:51: 2a:65:5e:b9:a6:a0:9d:45:9b:63:a7:e2:0f:b7:f7: 2d:20:3a:2e:a6:03:bb:58:56:5b:15:1b:72:dd:e1: 0f:4c:bc:9d:6c:45:f3:00:5d:10:7d:39:aa:9a:bf: 0c:f2:20:ff:38:33:11:c8:f8:a9:33:b5:4e:0e:12: 31:43:be:26:cd:ca:e4:90:e6:67:94:47:da:f5:54: a5:65:a8:0e:1f:59:49:31:30:8c:46:71:c1:31:93: ac:f5:c5:64:29:4d:75:3e:69:ee:fb:11:b1:9f:b4: a8:78:7f:07:bb:3b:db:d9:f1:27:c3:2e:83:a1:6c: 3c:56:71:66:81:1b:37:37:cb:2a:65:ae:9f:ea:96: ae:12:c1:5a:bf:77:ea:1f:62:ec:e4:a9:84:4b:c9: ed:aa:de:0e:90:69:75:cd:d9:25:8e:48:70:7c:6a: 6e:09:ff:1f:7f:d6:70:64:04:ea:c7:1d:80:e1:26: db:74:48:4a:58:cd:70:b8:9b:61:dd:f0:2b:3b:00: e0:1f:a9:11:02:5e:22:03:41:2b:ee:70:41:a2:b3: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7B:B7:D9:4D:16:41:2B:31:40:31:73:30:5C:12:F8:64:14:1F:74 X509v3 Authority Key Identifier: keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:0b:bd:22:1c:88:d5:6c:05:fd:0c:2e:1a:e5:78:d9:4f:ae: e9:50:cb:e0:e2:ad:5e:dc:58:27:ae:45:a5:db:d3:93:9e:15: 71:b1:06:5e:0f:9b:26:29:ac:c8:08:c9:08:5a:02:e4:a7:f0: bb:c5:d2:2a:94:6f:5d:25:45:1d:ba:f5:b5:9b:80:35:0b:41: 96:73:80:d3:2f:0e:85:25:56:97:0b:f8:a3:34:af:ac:41:17: ee:fd:03:31:1a:fb:66:02:04:9c:f4:97:de:af:7e:38:6f:4f: 70:67:35:c6:03:a4:88:78:7f:32:39:ed:d8:70:74:19:cf:d6: 35:db:8e:31:e9:8e:30:4f:f7:92:0f:bd:ef:2d:ea:89:b4:eb: 14:8c:5f:42:5a:92:74:50:67:01:34:2a:12:75:fc:ae:e2:00: 02:b4:1c:97:f5:ca:c6:e2:f9:da:ee:7d:b7:f5:5e:9e:7b:e0: e1:89:17:54:7e:28:7f:91:0a:d7:81:54:31:f3:f6:6e:dc:bf: 47:a1:6d:c0:e5:36:91:57:30:e1:1d:69:26:95:cc:b0:ae:b2: cb:4b:70:5a:2f:14:35:e5:c3:86:0a:18:9d:52:3f:4e:fc:cf: 9e:b7:60:08:a2:26:c6:60:a1:fa:82:3a:6b:93:99:2e:48:53: 3f:53:ce:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrV8LthWN8wD2WIJRmV62MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZjYwNjgzYjM3NzI1NzQyN2RiYmY2ZWNlMzVlMmM1ODVh M2IwMWQwHhcNMjUxMjA2MDgwMDM5WhcNMjUxMjA3MDgwMDM5WjAzMTEwLwYDVQQD Eyg4MDdiYjdkOTRkMTY0MTJiMzE0MDMxNzMzMDVjMTJmODY0MTQxZjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVyZ0L/HnXjZMjDG01rppkIHC+qM naiv3/6nzGfN1+Njhn2XEwIEA8dBLVEqZV65pqCdRZtjp+IPt/ctIDoupgO7WFZb FRty3eEPTLydbEXzAF0QfTmqmr8M8iD/ODMRyPipM7VODhIxQ74mzcrkkOZnlEfa 9VSlZagOH1lJMTCMRnHBMZOs9cVkKU11Pmnu+xGxn7SoeH8Huzvb2fEnwy6DoWw8 VnFmgRs3N8sqZa6f6pauEsFav3fqH2Ls5KmES8ntqt4OkGl1zdkljkhwfGpuCf8f f9ZwZATqxx2A4SbbdEhKWM1wuJth3fArOwDgH6kRAl4iA0Er7nBBorOCXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIB7t9lNFkErMUAxczBcEvhkFB90MB8GA1UdIwQY MBaAFGj2BoOzdyV0J9u/bs414sWFo7AdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8yZWI5NjktODYzYS00NjJkLTlmOWQt MzU0NzQwMzZhOWQ3LzEvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8yZWI5NjktODYzYS00NjJkLTlmOWQtMzU0NzQwMzZhOWQ3 LzEvYVBZR2c3TjNKWFFuMjc5dXpqWGl4WVdqc0IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACAu9IhyI 1WwF/QwuGuV42U+u6VDL4OKtXtxYJ65FpdvTk54VcbEGXg+bJimsyAjJCFoC5Kfw u8XSKpRvXSVFHbr1tZuANQtBlnOA0y8OhSVWlwv4ozSvrEEX7v0DMRr7ZgIEnPSX 3q9+OG9PcGc1xgOkiHh/Mjnt2HB0Gc/WNduOMemOME/3kg+97y3qibTrFIxfQlqS dFBnATQqEnX8ruIAArQcl/XKxuL52u59t/Vennvg4YkXVH4of5EK14FUMfP2bty/ R6FtwOU2kVcw4R1pJpXMsK6yy0twWi8UNeXDhgoYnVI/TvzPnrdgCKImxmCh+oI6 a5OZLkhTP1POhg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:35 2025 by rpki-client