This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json) Hash identifier: e5vN4mtsr6GtxFIvtmOI/qE3r4J8tcFWLXA9h6wuC+w= Subject key identifier: 3E:45:47:89:DD:0F:80:5D:37:AF:DB:F2:1E:90:BE:18:6E:F8:4B:22 Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Certificate serial: 019AF2090F3CF190DBE1015D8D57487CBF29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft Manifest number: 14AC Signing time: Sat 06 Dec 2025 05:01:11 +0000 Manifest this update: Sat 06 Dec 2025 05:01:11 +0000 Manifest next update: Sun 07 Dec 2025 05:01:11 +0000 Files and hashes: 1: BS_uFjltIa2QdarHmlrjr-N1lfU.roa (hash: In6YLEFgpwciZfoYuJdlvQqiCYVNTfn1vSODPqF0a14=) 2: KyGy1yiZWdO5Baarc34FhluuX6o.roa (hash: PluDSAEvqHUwzzXaYjhHiEYtCeH5Nq3YEFQLeyKhxg0=) 3: MTuQql9Rh88BHIoSEfi0N5xULhQ.roa (hash: c4KaJbDb+YQM6dcx+R5wyGu53GnRsEWM+y0F8Wui/6Q=) 4: aPIQbORfDqMdRus3FUsayPmmxSc.roa (hash: Bjwo2XfxvG4dmeK0piMxmJc9w9b8pe3Sc6uuX95IjTw=) 5: aTlzb3K-mNhSWkbEKv29Xc3ITT0.roa (hash: Y8Xw4D+ihA3z60B6zW48nfEFoOcri17+Bm+/jPd3INc=) 6: kL_2gvtUAFUX3-zbMD5AfdbkkFc.roa (hash: i5sBmgPlAzgh1HcdG7lTgrd/mdbOcJciFVKfQ5U2fAw=) 7: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: +bb7gM7LBWFdAg359Plx57Wz6PK5p/dfGqxCFYNvplw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:0f:3c:f1:90:db:e1:01:5d:8d:57:48:7c:bf:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a Validity Not Before: Dec 6 05:01:11 2025 GMT Not After : Dec 7 05:01:11 2025 GMT Subject: CN=3e454789dd0f805d37afdbf21e90be186ef84b22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:2a:e9:60:22:56:a0:bf:97:5a:af:e9:5a: 93:61:54:3f:ea:93:35:bb:28:6a:4c:4a:d4:a6:3f: a9:d5:ff:68:18:fc:43:b9:52:3e:bd:98:20:55:06: 9a:17:da:10:3c:0e:99:c6:7e:2b:0f:5d:17:15:6f: 60:73:91:29:5f:c8:37:d2:1b:41:14:54:59:45:8c: dd:ef:1d:8e:2a:ba:64:7f:f1:d1:82:95:86:26:68: 13:2f:c2:c4:23:02:28:49:99:e5:3b:db:a8:1b:66: ba:37:b4:60:64:7c:a9:35:63:58:d8:9d:cf:ba:5f: 19:87:36:91:1d:f7:f0:6d:bc:c9:16:f1:2d:f7:c6: 9b:f7:18:84:95:a6:72:7e:f6:d2:1c:09:92:1b:7e: 7c:17:3f:c1:85:11:d6:e7:a5:a2:64:ef:af:e9:06: af:65:c7:b8:51:50:ca:7e:2c:70:8c:68:2b:42:86: 7b:af:24:43:8c:e7:de:5c:1c:e2:ee:dd:72:d7:4e: 6c:90:75:fe:63:34:6b:69:9b:b6:bc:ba:24:25:f6: 5d:8a:28:2c:ef:17:ab:23:60:e1:cd:58:93:0b:c5: dd:c2:07:8e:5a:0d:ca:0a:1f:15:ab:0f:d3:73:da: b2:d5:44:d8:c9:b2:8f:f7:a6:bc:68:e4:c5:80:36: e0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:45:47:89:DD:0F:80:5D:37:AF:DB:F2:1E:90:BE:18:6E:F8:4B:22 X509v3 Authority Key Identifier: keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:ac:2a:e7:36:25:69:a1:da:ec:2f:5e:14:0e:e0:a4:42:66: c5:6c:88:fa:70:9b:b0:25:e7:ea:9f:7a:3e:46:20:e5:5b:6a: 70:ff:f5:8f:1e:04:d9:5b:f4:e6:88:d8:9d:5c:77:83:47:46: 17:c9:05:80:02:ac:96:0c:0c:8a:39:a9:f0:7a:72:37:2a:67: 64:4f:7d:82:fc:fd:e0:5f:58:7d:03:68:bc:34:2e:5a:da:58: da:e7:21:1e:b5:9f:ae:67:04:7b:4d:26:4b:1a:e9:07:26:20: bd:ec:cd:3e:69:c4:a8:ec:80:4e:a7:66:b0:6f:97:f7:64:aa: 0c:96:e5:31:26:13:c4:d3:3c:f8:70:d5:85:5f:4e:cb:f7:c2: 91:9d:80:d8:21:f6:a7:eb:c5:86:0a:31:5d:e5:4a:78:36:49: 35:99:a0:f8:5d:3e:28:28:35:8b:dc:95:ee:1f:b9:5e:ea:4b: c6:67:a7:b2:cb:33:62:39:72:59:39:47:b8:98:0d:ca:e4:4e: 6f:1c:b1:52:7b:8f:0c:bb:33:1d:74:d7:e0:41:e4:3c:c8:0d: b1:d6:54:01:48:c2:20:27:0a:65:83:e4:96:b0:be:f5:12:31: 76:aa:18:21:6a:88:7b:06:10:6f:78:1b:57:03:8f:86:1b:ce: bb:c5:86:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQ888ZDb4QFdjVdIfL8pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZTA4ZDkzMzZmMmU2Y2QxNjVlYjczMDI5N2ZlNmQyMGM4 M2MzOWEwHhcNMjUxMjA2MDUwMTExWhcNMjUxMjA3MDUwMTExWjAzMTEwLwYDVQQD EygzZTQ1NDc4OWRkMGY4MDVkMzdhZmRiZjIxZTkwYmUxODZlZjg0YjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4Uq6WAiVqC/l1qv6VqTYVQ/6pM1 uyhqTErUpj+p1f9oGPxDuVI+vZggVQaaF9oQPA6Zxn4rD10XFW9gc5EpX8g30htB FFRZRYzd7x2OKrpkf/HRgpWGJmgTL8LEIwIoSZnlO9uoG2a6N7RgZHypNWNY2J3P ul8ZhzaRHffwbbzJFvEt98ab9xiElaZyfvbSHAmSG358Fz/BhRHW56WiZO+v6Qav Zce4UVDKfixwjGgrQoZ7ryRDjOfeXBzi7t1y105skHX+YzRraZu2vLokJfZdiigs 7xerI2DhzViTC8XdwgeOWg3KCh8Vqw/Tc9qy1UTYybKP96a8aOTFgDbgiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD5FR4ndD4BdN6/b8h6Qvhhu+EsiMB8GA1UdIwQY MBaAFK7gjZM28ubNFl63MCl/5tIMg8OaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAt NDk3YmVkZDcxZWI5LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9mODUzZjgtMjA3MS00OWRlLWI2YTAtNDk3YmVkZDcxZWI5 LzEvcnVDTmt6Ynk1czBXWHJjd0tYX20wZ3lEdzVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp6wq5zYl aaHa7C9eFA7gpEJmxWyI+nCbsCXn6p96PkYg5VtqcP/1jx4E2Vv05ojYnVx3g0dG F8kFgAKslgwMijmp8HpyNypnZE99gvz94F9YfQNovDQuWtpY2uchHrWfrmcEe00m SxrpByYgvezNPmnEqOyATqdmsG+X92SqDJblMSYTxNM8+HDVhV9Oy/fCkZ2A2CH2 p+vFhgoxXeVKeDZJNZmg+F0+KCg1i9yV7h+5XupLxmenssszYjlyWTlHuJgNyuRO bxyxUnuPDLszHXTX4EHkPMgNsdZUAUjCICcKZYPklrC+9RIxdqoYIWqIewYQb3gb VwOPhhvOu8WGKg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:01 2025 by rpki-client