This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json) Hash identifier: 1Bw1atXvKCL/dy62Wr7aqQyu6hS1JGJRDwAJkPpUfzM= Subject key identifier: 7E:58:82:BD:EF:07:37:15:F6:5A:05:66:78:AF:90:FD:9F:70:AC:43 Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93 Certificate serial: 019AF352BAE49ED44B11A125B9068FEEDE70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft Manifest number: 176E Signing time: Sat 06 Dec 2025 11:01:16 +0000 Manifest this update: Sat 06 Dec 2025 11:01:16 +0000 Manifest next update: Sun 07 Dec 2025 11:01:16 +0000 Files and hashes: 1: Mmi06jAh1KR0NNHlTuLcdFXGdm4.roa (hash: Q9joIkxkfDcIZMMuVnLQE37iPkqzALSBCPVV1CY/m7A=) 2: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: G9yDFAy4xkHzpGGg6a6QBbURbrhKjB6NB1/vkj6an20=) 3: bObL7vPF35vh9LuEyJYMk5yU3-U.roa (hash: eG1lFL25ltcNTKgnhPFmeY0axMsTOI37jTMaagRA/AM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:ba:e4:9e:d4:4b:11:a1:25:b9:06:8f:ee:de:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93 Validity Not Before: Dec 6 11:01:16 2025 GMT Not After : Dec 7 11:01:16 2025 GMT Subject: CN=7e5882bdef073715f65a056678af90fd9f70ac43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:dd:36:6a:85:39:87:d4:2a:72:67:3e:88:e6: 37:e7:b6:0d:03:8c:af:7c:f6:a8:a7:11:7b:7d:e2: 87:2f:80:70:cd:4b:a5:c6:b5:47:1b:b0:60:08:33: b3:61:26:59:6e:73:80:b5:eb:c1:4c:7a:91:58:5e: c8:71:3b:cf:ce:c6:10:aa:b7:e9:df:17:39:31:94: 15:04:32:46:92:00:90:f5:95:77:c5:17:aa:28:98: ab:61:fc:7a:38:db:a7:36:96:97:a4:d5:4d:37:4a: 21:b1:06:af:86:d7:e6:ce:b0:19:77:68:88:7b:7b: f6:dc:4a:6c:56:52:95:f3:92:8c:4d:36:55:4e:cc: 3f:5f:1e:e1:e7:cf:66:be:b7:bf:7d:14:dc:79:f8: d8:8b:43:e8:bb:1c:a2:97:38:b0:06:28:17:fb:e5: 1c:18:7e:4e:86:1d:49:99:f5:78:5e:b9:ba:cb:7e: 4b:6a:55:9d:dd:8e:39:c3:c7:49:cb:39:13:03:1f: 9e:5c:ed:e6:55:db:64:d4:8b:77:b0:b7:a3:a6:f2: 55:f7:75:3c:77:05:39:12:a1:67:88:1f:f4:c6:e3: 9f:29:8a:f7:27:f2:f1:2d:90:0d:6e:94:bc:1b:a5: 10:c5:1f:7b:c9:af:12:e9:58:a1:5d:55:db:12:44: f5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:58:82:BD:EF:07:37:15:F6:5A:05:66:78:AF:90:FD:9F:70:AC:43 X509v3 Authority Key Identifier: keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:fd:41:63:ae:de:5c:c6:81:3a:bb:94:d5:dd:6f:2f:29:89: 30:99:32:5c:5e:fc:7d:48:50:2a:25:59:90:b3:f7:cc:31:b0: 1b:fa:ca:55:d0:77:85:9f:74:3e:ec:5c:57:f6:de:d8:b1:4f: f3:b8:d8:84:e2:8f:ec:02:6a:bc:7f:a6:fa:36:7c:39:93:fc: e2:04:df:b2:1e:b2:47:ae:37:2d:44:bf:f1:5c:8f:22:57:f4: 6d:fd:d8:03:35:66:4b:e4:86:4d:9f:64:81:d8:fe:93:44:a6: a1:09:a6:a8:30:35:b6:2c:1f:b2:5e:91:c4:4d:03:8d:6f:06: b5:71:45:4c:64:90:bf:b1:fd:7d:9a:29:8e:14:a7:10:14:5c: e8:73:fa:39:55:0e:69:c5:c2:5d:c8:f3:37:c6:75:03:5a:cc: 7e:19:6f:de:03:3a:ef:62:0f:c3:78:a4:c9:ea:f4:16:cf:7f: 65:56:d5:48:7a:ab:91:94:5f:66:e2:72:16:c7:ef:7e:dc:95: ea:98:fd:e9:ad:f7:8b:3b:ee:a8:26:3a:d9:72:52:40:ff:c2: d1:b9:78:d3:01:42:8c:af:82:5d:fe:fa:9b:e9:92:51:b5:84: 31:ec:6f:1f:d2:b0:66:3a:41:4c:9d:4b:8a:04:23:28:6f:13: 7e:8d:9f:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUrrkntRLEaEluQaP7t5wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz NTNlOTMwHhcNMjUxMjA2MTEwMTE2WhcNMjUxMjA3MTEwMTE2WjAzMTEwLwYDVQQD Eyg3ZTU4ODJiZGVmMDczNzE1ZjY1YTA1NjY3OGFmOTBmZDlmNzBhYzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4902aoU5h9Qqcmc+iOY357YNA4yv fPaopxF7feKHL4BwzUulxrVHG7BgCDOzYSZZbnOAtevBTHqRWF7IcTvPzsYQqrfp 3xc5MZQVBDJGkgCQ9ZV3xReqKJirYfx6ONunNpaXpNVNN0ohsQavhtfmzrAZd2iI e3v23EpsVlKV85KMTTZVTsw/Xx7h589mvre/fRTcefjYi0PouxyilziwBigX++Uc GH5Ohh1JmfV4Xrm6y35LalWd3Y45w8dJyzkTAx+eXO3mVdtk1It3sLejpvJV93U8 dwU5EqFniB/0xuOfKYr3J/LxLZANbpS8G6UQxR97ya8S6VihXVXbEkT1IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH5Ygr3vBzcV9loFZnivkP2fcKxDMB8GA1UdIwQY MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4 LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI/1BY67e XMaBOruU1d1vLymJMJkyXF78fUhQKiVZkLP3zDGwG/rKVdB3hZ90PuxcV/be2LFP 87jYhOKP7AJqvH+m+jZ8OZP84gTfsh6yR643LUS/8VyPIlf0bf3YAzVmS+SGTZ9k gdj+k0SmoQmmqDA1tiwfsl6RxE0DjW8GtXFFTGSQv7H9fZopjhSnEBRc6HP6OVUO acXCXcjzN8Z1A1rMfhlv3gM672IPw3ikyer0Fs9/ZVbVSHqrkZRfZuJyFsfvftyV 6pj96a33izvuqCY62XJSQP/C0bl40wFCjK+CXf76m+mSUbWEMexvH9KwZjpBTJ1L igQjKG8Tfo2fZQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:26:25 2025 by rpki-client