This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json) Hash identifier: Q+dtZel6attByR7x+/6uhJkx26MeW1sZN+dCROXQk+o= Subject key identifier: 93:CF:10:32:E9:6C:BE:67:7A:4A:78:99:13:20:52:53:1F:A2:6D:B8 Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49 Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249 Certificate serial: 019AF4657A766E925BEAC6DBDFDF30D49877 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft Manifest number: 1765 Signing time: Sat 06 Dec 2025 16:01:22 +0000 Manifest this update: Sat 06 Dec 2025 16:01:22 +0000 Manifest next update: Sun 07 Dec 2025 16:01:22 +0000 Files and hashes: 1: WdYc6wSLVkfUe7irxf4uyXxEIsM.roa (hash: dpYwLA3RR3eH0lZ7/JtVVQoaXF1Y2bKy7GfyH86APlE=) 2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: RGgCxFr/OUKQ6RAx8o0eBKcvZB9EPuKm7/r4Oq1hoO8=) 3: tUMiGCgmsKV0vxqojlEA4oJxpRM.roa (hash: UydNeJbpnz/tc0fGV+RmvBf+BwmLoVjaXgDPrRLbpVY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 16:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:7a:76:6e:92:5b:ea:c6:db:df:df:30:d4:98:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249 Validity Not Before: Dec 6 16:01:22 2025 GMT Not After : Dec 7 16:01:22 2025 GMT Subject: CN=93cf1032e96cbe677a4a7899132052531fa26db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c2:44:6a:72:ff:7f:8c:3a:a6:32:b5:f6:2b: 4a:5f:06:61:1f:88:f7:86:70:a5:e4:63:ec:d5:c8: 3c:31:71:30:d5:e5:27:cd:4a:d1:9e:d4:de:34:4e: 58:55:df:57:8e:de:e3:b9:fc:dd:37:97:8e:d0:60: 3f:6b:ff:15:9c:d6:60:f2:e0:60:78:ad:0c:5f:69: 01:af:15:af:1f:91:1b:53:1f:d0:74:62:79:26:1e: bf:e7:6a:35:af:f7:37:59:46:23:2e:1a:fe:4b:58: e2:4b:c7:c0:da:e0:95:f8:b2:60:64:fb:54:62:bc: 34:98:82:c3:ba:94:dd:97:b0:e2:e9:ee:58:07:db: 46:9a:8a:81:2a:e7:2e:3f:38:17:73:bd:a5:80:c3: fa:57:46:ae:24:7b:36:61:dc:6a:e3:28:fd:78:8b: 28:05:0b:7c:4d:42:47:c9:dc:2c:ab:c3:fc:cf:37: cc:d1:7c:f8:c8:ca:b0:d0:d5:34:2a:b2:bd:69:33: 58:29:3f:9c:04:9d:c2:eb:24:96:2f:aa:b0:41:a7: ed:20:e2:7a:f6:df:ac:d2:a7:4d:7b:b7:96:eb:01: 78:fb:e3:01:d4:8f:fc:31:fd:b0:5d:74:d1:a7:aa: 3e:94:e2:fd:69:ac:b0:69:8d:94:cf:f8:23:fa:1e: d2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CF:10:32:E9:6C:BE:67:7A:4A:78:99:13:20:52:53:1F:A2:6D:B8 X509v3 Authority Key Identifier: keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:0c:fa:f2:c3:6c:6b:5f:24:38:c2:78:d7:36:84:bf:9d:6b: bc:79:85:f0:fc:0b:48:44:0d:c2:0e:57:a5:6b:2b:e8:6a:08: 2e:fe:ee:08:31:e4:11:2a:56:1c:a3:d9:6d:f5:63:98:8e:15: 83:c2:85:26:1e:52:65:d5:f3:d4:fb:95:a1:69:11:a4:67:4e: 51:b1:cd:57:c9:84:1a:aa:75:44:3b:11:15:20:b5:cb:20:c3: f9:0e:b3:ee:02:78:c9:5f:8f:3b:3a:03:50:78:3c:e8:f5:8d: e0:69:a8:77:3c:5c:b2:3e:df:a1:a4:48:d6:97:93:03:71:2b: 42:40:29:2c:6d:1c:9e:d1:17:64:01:6c:75:62:8b:5b:09:4d: 58:e3:b6:db:38:d1:3c:4c:da:71:04:a9:b5:02:9c:e4:fd:74: e6:78:59:ca:91:19:b1:73:4a:7d:3a:dc:7a:48:a4:d5:d4:66: 67:02:8c:ad:2e:80:6f:ce:af:5d:f3:2d:1d:ec:3f:90:25:43: c0:f2:b8:3e:92:18:8b:05:f9:e6:4a:d5:ec:e4:c0:d6:73:11: dd:08:7e:14:fb:0e:9d:aa:47:be:31:58:53:1d:dc:d5:b2:28: 36:54:77:e9:a3:23:f5:4a:a1:c4:fd:e3:0d:2f:c4:e7:b2:cf: 8e:e9:fe:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZXp2bpJb6sbb398w1Jh3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTI4YzJmODRjNzVlOGQwMzg4Njk0MzU1MTUyZGQyYjcz MWYyNDkwHhcNMjUxMjA2MTYwMTIyWhcNMjUxMjA3MTYwMTIyWjAzMTEwLwYDVQQD Eyg5M2NmMTAzMmU5NmNiZTY3N2E0YTc4OTkxMzIwNTI1MzFmYTI2ZGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcJEanL/f4w6pjK19itKXwZhH4j3 hnCl5GPs1cg8MXEw1eUnzUrRntTeNE5YVd9Xjt7jufzdN5eO0GA/a/8VnNZg8uBg eK0MX2kBrxWvH5EbUx/QdGJ5Jh6/52o1r/c3WUYjLhr+S1jiS8fA2uCV+LJgZPtU Yrw0mILDupTdl7Di6e5YB9tGmoqBKucuPzgXc72lgMP6V0auJHs2Ydxq4yj9eIso BQt8TUJHydwsq8P8zzfM0Xz4yMqw0NU0KrK9aTNYKT+cBJ3C6ySWL6qwQaftIOJ6 9t+s0qdNe7eW6wF4++MB1I/8Mf2wXXTRp6o+lOL9aaywaY2Uz/gj+h7SUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJPPEDLpbL5nekp4mRMgUlMfom24MB8GA1UdIwQY MBaAFGmijC+Ex16NA4hpQ1UVLdK3MfJJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS84OWZmNDctMGI3Yi00MzA5LWE4YWYt MmNiZDU1ZjlhOGVlLzEvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS84OWZmNDctMGI3Yi00MzA5LWE4YWYtMmNiZDU1ZjlhOGVl LzEvYWFLTUw0VEhYbzBEaUdsRFZSVXQwcmN4OGtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvAz68sNs a18kOMJ41zaEv51rvHmF8PwLSEQNwg5XpWsr6GoILv7uCDHkESpWHKPZbfVjmI4V g8KFJh5SZdXz1PuVoWkRpGdOUbHNV8mEGqp1RDsRFSC1yyDD+Q6z7gJ4yV+POzoD UHg86PWN4Gmodzxcsj7foaRI1peTA3ErQkApLG0cntEXZAFsdWKLWwlNWOO22zjR PEzacQSptQKc5P105nhZypEZsXNKfTrcekik1dRmZwKMrS6Ab86vXfMtHew/kCVD wPK4PpIYiwX55krV7OTA1nMR3Qh+FPsOnapHvjFYUx3c1bIoNlR36aMj9UqhxP3j DS/E57LPjun+xQ== -----END CERTIFICATE-----Generated at Sun Dec 7 02:16:42 2025 by rpki-client