This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft File: aM_hqssnjBMjGzEORe5XaTL-m04.mft (raw, json) Hash identifier: bviE/W8kzUIYhuMsRtvsdxycBIRpBnv9jfZI5fbAkts= Subject key identifier: 68:FE:38:7D:E4:AC:1B:2B:09:26:CD:F5:6C:0A:A6:EC:8B:11:43:6B Authority key identifier: 68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E Certificate issuer: /CN=68cfe1aacb278c13231b310e45ee576932fe9b4e Certificate serial: 019AF23F61C244302E3A95ABB2C35F361533 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft Manifest number: 13F6 Signing time: Sat 06 Dec 2025 06:00:31 +0000 Manifest this update: Sat 06 Dec 2025 06:00:31 +0000 Manifest next update: Sun 07 Dec 2025 06:00:31 +0000 Files and hashes: 1: NAg_2lUwiNc2BXVWx1ALPDBcGK0.roa (hash: I6Xgg/yTyhGgk1wwRR5vfbPkXPHDlymI7Asksvi+yR4=) 2: aM_hqssnjBMjGzEORe5XaTL-m04.crl (hash: U7+xPkmBx2fLDyRw68hBYJVWTMPb6M+YPvEqDgUpTUs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:61:c2:44:30:2e:3a:95:ab:b2:c3:5f:36:15:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68cfe1aacb278c13231b310e45ee576932fe9b4e Validity Not Before: Dec 6 06:00:31 2025 GMT Not After : Dec 7 06:00:31 2025 GMT Subject: CN=68fe387de4ac1b2b0926cdf56c0aa6ec8b11436b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a6:1b:d1:5b:cb:6c:71:25:92:d4:8c:c3:25: 11:2f:24:47:b8:3a:98:d5:45:46:ab:b7:5f:be:2d: 18:52:0d:da:07:5c:a7:86:1e:36:1d:c1:43:42:cc: 2c:78:09:79:c6:03:e4:7e:70:35:5a:23:9b:ee:48: 11:18:08:a3:dd:e5:95:37:6c:b9:1b:40:db:83:7f: 27:d1:6b:77:25:a7:20:95:a8:92:2a:8a:ef:12:8f: 72:8a:b5:66:d7:94:e5:79:cf:b9:c4:c1:35:c7:e9: d4:e8:db:a8:c4:e4:53:67:a8:37:f0:88:89:03:40: 80:d5:43:8d:5d:4c:f4:be:c8:d6:4d:78:88:6c:40: b5:18:5f:11:8e:5d:01:ae:4b:0b:04:92:87:59:79: 3e:12:4c:ce:b8:10:f4:9f:80:c2:b6:03:30:8a:da: aa:14:4e:65:95:6a:3a:d0:dc:fa:9c:d4:4f:f9:0e: 80:82:2c:77:82:c5:cb:76:79:0f:e2:17:a4:38:1f: 14:c4:50:91:1c:5c:3c:db:6e:7e:60:32:ea:68:0f: fd:fa:f0:c6:e4:4b:bb:8a:c3:7e:37:d3:73:b8:55: 50:72:c8:fe:07:aa:06:a5:7b:a5:75:f4:62:a4:6f: ad:ec:80:96:d3:33:5c:ba:4c:7b:7a:24:3b:55:37: 47:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FE:38:7D:E4:AC:1B:2B:09:26:CD:F5:6C:0A:A6:EC:8B:11:43:6B X509v3 Authority Key Identifier: keyid:68:CF:E1:AA:CB:27:8C:13:23:1B:31:0E:45:EE:57:69:32:FE:9B:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM_hqssnjBMjGzEORe5XaTL-m04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/be9e88-512f-4b06-b196-89c2f666e905/1/aM_hqssnjBMjGzEORe5XaTL-m04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:41:1a:53:1e:4f:2a:85:3f:33:13:1f:5d:62:5f:5f:c3:6a: ec:1b:2d:4e:a3:0e:a7:bd:8f:2a:23:d4:64:55:68:b3:ee:98: 6b:7b:7e:84:37:61:e5:c7:e9:57:41:99:7c:42:ef:ed:88:64: 68:9f:51:97:f2:37:c2:de:4c:ff:81:4b:f3:ea:e9:9e:1b:a9: 3f:b3:b5:ab:f8:92:6c:2b:1e:8c:64:58:48:ed:ee:18:71:cd: 7e:e1:89:c0:e3:fd:c8:bd:0e:d8:39:48:b2:03:3a:d2:42:21: b9:2c:a8:d1:9f:78:58:c7:9a:dd:52:89:73:cb:30:d5:d9:64: ae:51:8f:e0:cc:b7:7b:0c:6a:cf:30:08:6a:22:0a:ce:b7:dc: 9d:28:ab:a2:88:13:63:6a:36:50:ee:93:01:7b:08:06:c9:d3: a0:85:3e:dd:dd:b2:db:89:32:00:1f:ea:04:2c:5b:56:9a:c1: 3f:12:40:3c:e1:28:8b:be:cb:b5:b4:b0:af:ba:75:c9:dc:f6: d8:7e:67:7f:8a:e5:4d:1c:52:50:6f:09:46:0d:f8:6e:37:89: ce:2e:5c:be:b4:9a:68:6b:46:70:e0:25:46:9d:e2:1c:62:d9: 44:61:7a:14:97:7b:19:2e:68:d4:3e:48:98:23:ef:c2:e8:11: 1b:50:ae:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP2HCRDAuOpWrssNfNhUzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4Y2ZlMWFhY2IyNzhjMTMyMzFiMzEwZTQ1ZWU1NzY5MzJm ZTliNGUwHhcNMjUxMjA2MDYwMDMxWhcNMjUxMjA3MDYwMDMxWjAzMTEwLwYDVQQD Eyg2OGZlMzg3ZGU0YWMxYjJiMDkyNmNkZjU2YzBhYTZlYzhiMTE0MzZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKYb0VvLbHElktSMwyURLyRHuDqY 1UVGq7dfvi0YUg3aB1ynhh42HcFDQswseAl5xgPkfnA1WiOb7kgRGAij3eWVN2y5 G0Dbg38n0Wt3JacglaiSKorvEo9yirVm15Tlec+5xME1x+nU6NuoxORTZ6g38IiJ A0CA1UONXUz0vsjWTXiIbEC1GF8Rjl0BrksLBJKHWXk+EkzOuBD0n4DCtgMwitqq FE5llWo60Nz6nNRP+Q6Agix3gsXLdnkP4hekOB8UxFCRHFw8225+YDLqaA/9+vDG 5Eu7isN+N9NzuFVQcsj+B6oGpXuldfRipG+t7ICW0zNcukx7eiQ7VTdHMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGj+OH3krBsrCSbN9WwKpuyLEUNrMB8GA1UdIwQY MBaAFGjP4arLJ4wTIxsxDkXuV2ky/ptOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYt ODljMmY2NjZlOTA1LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9iZTllODgtNTEyZi00YjA2LWIxOTYtODljMmY2NjZlOTA1 LzEvYU1faHFzc25qQk1qR3pFT1JlNVhhVEwtbTA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc0EaUx5P KoU/MxMfXWJfX8Nq7BstTqMOp72PKiPUZFVos+6Ya3t+hDdh5cfpV0GZfELv7Yhk aJ9Rl/I3wt5M/4FL8+rpnhupP7O1q/iSbCsejGRYSO3uGHHNfuGJwOP9yL0O2DlI sgM60kIhuSyo0Z94WMea3VKJc8sw1dlkrlGP4My3ewxqzzAIaiIKzrfcnSiroogT Y2o2UO6TAXsIBsnToIU+3d2y24kyAB/qBCxbVprBPxJAPOEoi77LtbSwr7p1ydz2 2H5nf4rlTRxSUG8JRg34bjeJzi5cvrSaaGtGcOAlRp3iHGLZRGF6FJd7GS5o1D5I mCPvwugRG1Cu4Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:12 2025 by rpki-client