This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json) Hash identifier: TI8IrL7m6ktvXD1jntRYApbPq53Vp6+VQIRGcjcyPVE= Subject key identifier: C4:D3:B3:E6:F7:F0:83:BD:9C:F0:4D:CE:B2:55:B6:EF:3A:DC:26:95 Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49 Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249 Certificate serial: 019B34FB652BFC8F17F732B179C0DB79C29A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft Manifest number: 016C Signing time: Fri 19 Dec 2025 05:00:49 +0000 Manifest this update: Fri 19 Dec 2025 05:00:49 +0000 Manifest next update: Sat 20 Dec 2025 05:00:49 +0000 Files and hashes: 1: Ft7Frn9ocyQeuHjXMeEeGoh_tdk.roa (hash: +hbGdiT9EB+gQ7hEwq4X6SV+6RnEdb4t2Cal6rg6Zcw=) 2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: CtAlEe4s3vIAB2DsnIn9JHsGMEifjc4kNNC5Veev9Oo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:65:2b:fc:8f:17:f7:32:b1:79:c0:db:79:c2:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249 Validity Not Before: Dec 19 05:00:49 2025 GMT Not After : Dec 20 05:00:49 2025 GMT Subject: CN=c4d3b3e6f7f083bd9cf04dceb255b6ef3adc2695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1f:e3:0e:05:87:d6:be:3a:90:41:07:bf:f4: 22:cf:ed:22:1d:b2:e8:5e:0c:b7:ec:2c:58:83:d8: de:8b:15:46:d0:44:55:89:e5:59:07:c5:07:0f:21: 34:59:63:06:94:55:92:e9:d5:b0:0d:0f:b6:bb:ab: 40:f1:35:ee:cb:54:14:a5:27:d5:aa:5c:d7:00:92: 1d:f6:46:7b:9c:4f:78:50:08:60:45:f7:c2:f2:c9: 3c:5d:fc:f3:13:fe:62:cf:95:5a:30:62:54:ae:b7: 7f:6b:0e:10:fa:55:eb:b2:84:6b:83:6d:50:d2:64: ab:fb:b3:f6:cf:14:08:05:5f:bd:a6:eb:8c:3a:00: ac:75:11:28:e7:e2:61:c7:bf:9f:cc:ad:c2:85:5f: 66:aa:ff:94:b4:11:df:53:a7:3e:66:58:29:dc:a8: 0b:dd:5a:70:ab:95:2d:10:db:ae:c1:a1:5a:0e:e8: ef:55:d2:5b:db:22:09:66:c5:34:0a:cc:5f:22:79: eb:96:ac:97:a9:a5:b5:13:42:ec:f3:f0:32:37:30: 87:0e:f2:64:4a:89:22:10:2e:b7:a3:a4:39:dc:0c: 29:e9:26:7e:49:57:cb:5c:5e:8e:ae:cf:13:cb:5f: 4d:0f:b0:e5:e0:d6:42:66:a5:31:fe:49:94:f9:cb: f2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D3:B3:E6:F7:F0:83:BD:9C:F0:4D:CE:B2:55:B6:EF:3A:DC:26:95 X509v3 Authority Key Identifier: keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:0f:14:f1:3f:1a:bd:0a:29:13:b0:e6:2b:eb:46:a7:a6:96: a2:ea:b2:1b:2a:99:7c:fb:d5:1d:be:40:49:7c:2b:07:d7:ee: 0a:a9:12:7d:27:0a:a2:9d:a5:71:9b:14:83:67:7d:9f:ef:9a: fd:70:d7:9f:b6:15:cd:e8:73:0e:d9:a8:cd:f3:ab:b2:b0:81: 8d:a6:ab:2d:67:cf:70:3a:19:e2:f6:b3:a0:32:88:fc:2e:5b: 99:ad:5a:8b:b1:03:e8:10:00:85:34:b8:ee:f4:26:cf:04:d3: c8:3e:3d:25:a3:61:22:1f:30:aa:76:91:95:61:09:43:28:6f: ca:db:54:47:f1:a6:a9:74:19:90:44:17:40:a7:ee:2b:ac:8a: f1:b3:31:64:0e:1d:00:95:ff:e7:05:ad:49:92:64:09:c6:9a: f9:e0:83:a5:8d:37:5c:b6:a1:fd:06:9a:9c:a8:ae:4a:83:38: 80:5d:cc:36:bb:50:ff:54:cc:08:5e:5a:d4:b7:7f:28:9b:d6: 84:d7:9a:03:ea:23:d9:c7:ae:17:12:95:ee:d3:72:68:d0:c2: 6b:a7:e9:1f:26:ca:01:7f:8f:38:1a:1a:d3:72:b4:f8:97:7d: 7a:59:e9:d2:26:9e:59:82:53:6d:78:dd:23:32:cb:13:08:35: 5b:1d:16:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+2Ur/I8X9zKxecDbecKaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5MGFlMTc1ZmJlNjNiMGU5MzA0NjkwOTdjOTQ5MmQ0MmVk NzkyNDkwHhcNMjUxMjE5MDUwMDQ5WhcNMjUxMjIwMDUwMDQ5WjAzMTEwLwYDVQQD EyhjNGQzYjNlNmY3ZjA4M2JkOWNmMDRkY2ViMjU1YjZlZjNhZGMyNjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6x/jDgWH1r46kEEHv/Qiz+0iHbLo Xgy37CxYg9jeixVG0ERVieVZB8UHDyE0WWMGlFWS6dWwDQ+2u6tA8TXuy1QUpSfV qlzXAJId9kZ7nE94UAhgRffC8sk8XfzzE/5iz5VaMGJUrrd/aw4Q+lXrsoRrg21Q 0mSr+7P2zxQIBV+9puuMOgCsdREo5+Jhx7+fzK3ChV9mqv+UtBHfU6c+Zlgp3KgL 3Vpwq5UtENuuwaFaDujvVdJb2yIJZsU0CsxfInnrlqyXqaW1E0Ls8/AyNzCHDvJk SokiEC63o6Q53Awp6SZ+SVfLXF6Ors8Ty19ND7Dl4NZCZqUx/kmU+cvykwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMTTs+b38IO9nPBNzrJVtu863CaVMB8GA1UdIwQY MBaAFGkK4XX75jsOkwRpCXyUktQu15JJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgt OGEwODZlYTk0YmU1LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgtOGEwODZlYTk0YmU1 LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcw8U8T8a vQopE7DmK+tGp6aWouqyGyqZfPvVHb5ASXwrB9fuCqkSfScKop2lcZsUg2d9n++a /XDXn7YVzehzDtmozfOrsrCBjaarLWfPcDoZ4vazoDKI/C5bma1ai7ED6BAAhTS4 7vQmzwTTyD49JaNhIh8wqnaRlWEJQyhvyttUR/GmqXQZkEQXQKfuK6yK8bMxZA4d AJX/5wWtSZJkCcaa+eCDpY03XLah/QaanKiuSoM4gF3MNrtQ/1TMCF5a1Ld/KJvW hNeaA+oj2ceuFxKV7tNyaNDCa6fpHybKAX+POBoa03K0+Jd9elnp0iaeWYJTbXjd IzLLEwg1Wx0Wwg== -----END CERTIFICATE-----Generated at Fri Dec 19 10:35:44 2025 by rpki-client