This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft File: aL8cWiHDgluLhlFqGllxIbVLPMM.mft (raw, json) Hash identifier: VTOtBvJjbN64hxVXpz7kxeVhV9fU5aOrfz017jWpuq8= Subject key identifier: 6C:4A:EB:63:04:84:EA:E5:F4:48:EC:4C:65:CC:0F:F2:E4:23:75:82 Authority key identifier: 68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3 Certificate issuer: /CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3 Certificate serial: 019AF31BE5B3B99DEFF709B158AC58B50069 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 10:01:23 +0000 Manifest this update: Sat 06 Dec 2025 10:01:23 +0000 Manifest next update: Sun 07 Dec 2025 10:01:23 +0000 Files and hashes: 1: K-gQWrDorOWk95T1Ck9YnvOvyOw.roa (hash: M7ISU7dx2mACRrVyXnpQ2vx1ALS4joyLkkEwNFtNto0=) 2: aL8cWiHDgluLhlFqGllxIbVLPMM.crl (hash: 8RUzNIIwqz2PpYi/InJR1q2RqQyRXfpi5R6IQhDKJCI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:e5:b3:b9:9d:ef:f7:09:b1:58:ac:58:b5:00:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68bf1c5a21c3825b8b86516a1a597121b54b3cc3 Validity Not Before: Dec 6 10:01:23 2025 GMT Not After : Dec 7 10:01:23 2025 GMT Subject: CN=6c4aeb630484eae5f448ec4c65cc0ff2e4237582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:37:57:fb:ef:71:a5:3d:65:5c:76:56:37:09: 5c:54:14:e3:c7:e9:94:37:7b:bc:fb:cf:b6:ea:fd: d9:c8:f2:0e:16:a2:4b:f7:f5:80:16:7e:14:b4:03: bd:6c:7b:22:f5:53:a3:ec:f2:cd:6e:ee:ec:7e:2b: 47:e0:1a:20:60:24:a9:56:b2:f0:17:b0:4e:82:72: 8e:1e:3b:64:c3:16:1d:ec:14:4c:22:17:59:d5:a4: cf:f1:81:d0:ce:cf:8b:bd:8b:cd:cb:1a:91:27:70: a3:b3:44:a6:bf:6f:2a:62:1c:75:56:e2:e6:94:aa: 07:ec:30:86:05:72:64:cf:87:0f:cd:c1:c9:95:13: f0:bb:fa:db:a3:c5:55:f5:eb:ef:3a:b5:f1:e2:41: 28:75:81:8b:11:ae:be:80:ca:b7:0b:41:ea:1e:24: ae:90:73:f1:59:bc:ff:00:00:1c:55:62:04:6a:60: 8b:98:94:d5:6e:30:61:2d:f7:fd:5a:c5:67:b3:06: 4c:26:b3:aa:05:a8:14:4f:4a:9d:23:08:4a:4f:9e: 0d:5b:7d:6e:0d:c2:bb:7b:77:65:ea:a0:76:b9:ac: b2:75:77:a8:30:bf:76:36:4b:70:30:da:f9:45:4e: d2:78:47:bf:09:a1:6d:30:42:8b:44:35:53:8d:56: 76:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4A:EB:63:04:84:EA:E5:F4:48:EC:4C:65:CC:0F:F2:E4:23:75:82 X509v3 Authority Key Identifier: keyid:68:BF:1C:5A:21:C3:82:5B:8B:86:51:6A:1A:59:71:21:B5:4B:3C:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL8cWiHDgluLhlFqGllxIbVLPMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/2fce5e-c915-4f02-ad3a-55eb5bb99e45/1/aL8cWiHDgluLhlFqGllxIbVLPMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:1f:eb:3b:cf:d1:ac:24:79:c0:dc:e4:64:11:c5:69:06:64: 5f:25:f6:2a:75:22:fb:d4:13:0b:d1:38:5b:4d:b8:80:b1:8a: ac:d9:59:7d:46:77:bb:06:60:02:2e:3b:96:b8:5f:44:44:b3: b3:10:ba:05:1d:25:11:9c:d0:2b:57:56:44:90:26:96:23:c5: 70:54:e1:08:fe:4b:3e:cd:82:d0:0a:c1:f4:38:f4:7d:0b:d4: 7b:48:b6:de:c8:e1:cd:9a:f6:b8:0e:32:62:cf:bb:63:9c:f2: ad:95:b8:5c:dc:06:64:94:23:b7:d5:fa:3c:bf:55:51:58:f0: aa:21:d8:e0:9c:60:19:0c:a3:d5:92:8a:03:ec:c5:04:46:95: 11:15:99:2e:54:4d:69:5f:06:4c:f4:c0:79:8d:38:c3:76:4a: 11:2f:a5:b5:51:31:d3:3f:af:06:86:1d:d7:62:94:91:1a:b2: 46:67:e9:36:37:36:da:ae:bd:14:37:da:0c:84:b6:f2:b9:f3: 10:7b:e7:b3:8c:b0:e8:9e:de:d0:51:63:c5:ff:09:0d:6d:54: 4d:39:18:f7:18:d8:2e:5a:42:0d:8f:3b:64:99:80:6b:82:b9: 2b:22:82:2c:2c:a9:a6:02:36:49:a8:04:fa:2b:16:af:39:79: 06:91:47:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG+WzuZ3v9wmxWKxYtQBpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YmYxYzVhMjFjMzgyNWI4Yjg2NTE2YTFhNTk3MTIxYjU0 YjNjYzMwHhcNMjUxMjA2MTAwMTIzWhcNMjUxMjA3MTAwMTIzWjAzMTEwLwYDVQQD Eyg2YzRhZWI2MzA0ODRlYWU1ZjQ0OGVjNGM2NWNjMGZmMmU0MjM3NTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DdX++9xpT1lXHZWNwlcVBTjx+mU N3u8+8+26v3ZyPIOFqJL9/WAFn4UtAO9bHsi9VOj7PLNbu7sfitH4BogYCSpVrLw F7BOgnKOHjtkwxYd7BRMIhdZ1aTP8YHQzs+LvYvNyxqRJ3Cjs0Smv28qYhx1VuLm lKoH7DCGBXJkz4cPzcHJlRPwu/rbo8VV9evvOrXx4kEodYGLEa6+gMq3C0HqHiSu kHPxWbz/AAAcVWIEamCLmJTVbjBhLff9WsVnswZMJrOqBagUT0qdIwhKT54NW31u DcK7e3dl6qB2uayydXeoML92NktwMNr5RU7SeEe/CaFtMEKLRDVTjVZ2vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGxK62MEhOrl9EjsTGXMD/LkI3WCMB8GA1UdIwQY MBaAFGi/HFohw4Jbi4ZRahpZcSG1SzzDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2Et NTVlYjViYjk5ZTQ1LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8yZmNlNWUtYzkxNS00ZjAyLWFkM2EtNTVlYjViYjk5ZTQ1 LzEvYUw4Y1dpSERnbHVMaGxGcUdsbHhJYlZMUE1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIh/rO8/R rCR5wNzkZBHFaQZkXyX2KnUi+9QTC9E4W024gLGKrNlZfUZ3uwZgAi47lrhfRESz sxC6BR0lEZzQK1dWRJAmliPFcFThCP5LPs2C0ArB9Dj0fQvUe0i23sjhzZr2uA4y Ys+7Y5zyrZW4XNwGZJQjt9X6PL9VUVjwqiHY4JxgGQyj1ZKKA+zFBEaVERWZLlRN aV8GTPTAeY04w3ZKES+ltVEx0z+vBoYd12KUkRqyRmfpNjc22q69FDfaDIS28rnz EHvns4yw6J7e0FFjxf8JDW1UTTkY9xjYLlpCDY87ZJmAa4K5KyKCLCyppgI2SagE +isWrzl5BpFHuQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:46 2025 by rpki-client