This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json) Hash identifier: wsSde0BbHCupO2vfM5tvBCMV1sQ1B0CbwIDrpYzHqI4= Subject key identifier: 0C:F9:F5:4D:92:89:3C:B3:C1:18:A7:F6:6C:E5:21:6B:7C:70:31:F1 Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd Certificate serial: 019AF2AD3A642D2054D56583B3541C959783 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft Manifest number: 14A5 Signing time: Sat 06 Dec 2025 08:00:30 +0000 Manifest this update: Sat 06 Dec 2025 08:00:30 +0000 Manifest next update: Sun 07 Dec 2025 08:00:30 +0000 Files and hashes: 1: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=) 2: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: iCC51/nd9kLukcgV0vhyt3bcjhgJYUz1BGfEu4q6Mus=) 3: lqHZHTtSjRTsulRT9uODOQE8lxE.roa (hash: ps3jNh8IrB0LkmVcReSQZ1oXuY/U8lzEpr6J8ijs+08=) 4: xE9IyAhq0aHlL6_ym_xgvZ2_5uk.roa (hash: 1YgjglAtdi0WFBDpDXQ7veTTeatE49sPF4fCDK08QO0=) 5: z6mBzW6H29uI5KxETsJqR2soNbo.roa (hash: UhKW2I+drpoL0LurJwnMOqRysLzBC/O6KKhMC7EQlLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:3a:64:2d:20:54:d5:65:83:b3:54:1c:95:97:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd Validity Not Before: Dec 6 08:00:30 2025 GMT Not After : Dec 7 08:00:30 2025 GMT Subject: CN=0cf9f54d92893cb3c118a7f66ce5216b7c7031f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:5e:72:aa:01:e8:c3:4f:9a:63:81:4a:9c:0b: 61:12:21:a2:1a:8e:a8:77:67:11:cb:93:39:ad:6b: 80:f2:fa:35:7b:54:a9:f8:12:8a:39:f6:3e:4b:e0: f5:b6:f0:e3:18:47:28:1c:ae:f0:f0:73:6e:30:10: 7a:5f:dc:ea:9e:f9:96:c9:5d:b8:c3:11:40:f5:23: 8c:f9:0d:86:e2:f2:f7:bf:48:c6:ab:bc:da:eb:70: fd:7a:c6:65:21:61:77:f8:b2:d7:34:2f:c0:30:a6: 79:b4:aa:aa:f1:fb:3a:70:ac:b8:b6:94:30:d3:e0: 57:e2:29:36:e9:cf:bc:fd:f1:1b:3e:b4:3f:a9:9c: 14:fd:eb:92:e3:0e:5a:dd:66:12:c2:f6:6f:f9:2a: b7:32:b0:c9:4c:ff:62:14:40:1b:0b:88:91:48:4a: d1:82:be:70:fc:59:06:b9:77:20:92:90:d4:d1:b5: d2:fb:5b:4b:8d:d0:e4:18:af:de:61:19:6f:ae:f0: bd:94:b0:4e:d7:c0:a4:b7:9f:59:c8:43:8d:d6:ef: 79:b0:dd:0a:d0:87:5b:a2:2b:b7:70:91:3a:af:6e: f2:15:3c:98:e5:53:ea:3c:e3:d8:7b:a8:ef:38:36: 2c:a2:71:e3:cf:f8:b8:ad:c8:8d:43:26:72:4e:60: 3d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F9:F5:4D:92:89:3C:B3:C1:18:A7:F6:6C:E5:21:6B:7C:70:31:F1 X509v3 Authority Key Identifier: keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e9:95:86:77:30:a7:74:2d:d2:86:c7:cb:dc:ce:54:4d:0e:5f: 1d:11:30:6f:e1:49:23:b4:4d:4f:5d:d1:e8:60:44:c4:e6:41: c5:17:33:ef:77:9a:22:6a:04:cd:ac:9b:eb:20:5d:de:72:53: f3:7d:4c:a0:96:04:e9:ce:c1:1f:a6:5a:1f:40:35:75:05:9c: 74:62:77:a1:05:f9:64:4b:b6:27:00:a9:d2:83:f3:40:fc:19: 91:ed:25:bd:76:78:cc:cb:63:71:f9:b1:42:88:a8:d4:c3:bd: bc:04:e5:71:ca:f3:17:0e:a5:45:09:fb:2a:1e:0b:76:9e:e3: 76:71:5b:fc:bf:fe:5f:ac:54:05:b9:08:57:a4:17:61:99:83: fa:f7:81:20:07:9b:63:71:79:d3:bb:9e:8b:4d:1b:a9:d4:44: d4:d1:c5:bf:93:0e:29:9d:dc:03:ac:41:aa:d6:63:2c:30:d9: 05:51:0b:88:6b:50:39:86:5a:11:80:70:60:40:2c:b2:b4:fc: 9e:cb:e4:53:ec:3f:28:76:e6:34:4a:54:32:c5:0c:06:50:00: f1:1a:ed:43:97:82:f5:61:02:7e:5c:8c:02:dd:4d:65:7b:84: 9e:d0:3d:cf:e8:8d:35:c5:ff:38:3d:83:62:f5:87:1e:f5:ae: 9d:d5:99:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrTpkLSBU1WWDs1QclZeDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1 NTBlYmQwHhcNMjUxMjA2MDgwMDMwWhcNMjUxMjA3MDgwMDMwWjAzMTEwLwYDVQQD EygwY2Y5ZjU0ZDkyODkzY2IzYzExOGE3ZjY2Y2U1MjE2YjdjNzAzMWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+l5yqgHow0+aY4FKnAthEiGiGo6o d2cRy5M5rWuA8vo1e1Sp+BKKOfY+S+D1tvDjGEcoHK7w8HNuMBB6X9zqnvmWyV24 wxFA9SOM+Q2G4vL3v0jGq7za63D9esZlIWF3+LLXNC/AMKZ5tKqq8fs6cKy4tpQw 0+BX4ik26c+8/fEbPrQ/qZwU/euS4w5a3WYSwvZv+Sq3MrDJTP9iFEAbC4iRSErR gr5w/FkGuXcgkpDU0bXS+1tLjdDkGK/eYRlvrvC9lLBO18Ckt59ZyEON1u95sN0K 0Idboiu3cJE6r27yFTyY5VPqPOPYe6jvODYsonHjz/i4rciNQyZyTmA9oQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAz59U2SiTyzwRin9mzlIWt8cDHxMB8GA1UdIwQY MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt MzE5NzExMDA5N2M5LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5 LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6ZWGdzCn dC3ShsfL3M5UTQ5fHREwb+FJI7RNT13R6GBExOZBxRcz73eaImoEzayb6yBd3nJT 831MoJYE6c7BH6ZaH0A1dQWcdGJ3oQX5ZEu2JwCp0oPzQPwZke0lvXZ4zMtjcfmx Qoio1MO9vATlccrzFw6lRQn7Kh4Ldp7jdnFb/L/+X6xUBbkIV6QXYZmD+veBIAeb Y3F507uei00bqdRE1NHFv5MOKZ3cA6xBqtZjLDDZBVELiGtQOYZaEYBwYEAssrT8 nsvkU+w/KHbmNEpUMsUMBlAA8RrtQ5eC9WECflyMAt1NZXuEntA9z+iNNcX/OD2D YvWHHvWundWZxA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:04 2025 by rpki-client