This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft File: AahezixTn1hQ-nAfLUWiEn3IZ1U.mft (raw, json) Hash identifier: J7iAkAK3jqo0P9TkOXGo5uVTm3+qbdpcVfva+WIW35s= Subject key identifier: A2:D9:3B:65:66:83:DB:32:ED:33:36:CB:E7:6B:B7:50:F2:E4:0B:19 Authority key identifier: 01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55 Certificate issuer: /CN=01a85ece2c539f5850fa701f2d45a2127dc86755 Certificate serial: 019AF12DEAA248D4E32D59CBA30AEBD90BCE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft Manifest number: 0A06 Signing time: Sat 06 Dec 2025 01:01:49 +0000 Manifest this update: Sat 06 Dec 2025 01:01:49 +0000 Manifest next update: Sun 07 Dec 2025 01:01:49 +0000 Files and hashes: 1: 1YtqoFQLtfGDiVmHDelz4DRg3EU.roa (hash: IK9E4boh47Pzwtuw3Las8hTZNUl+rwA5t6hlkkr2bx4=) 2: AahezixTn1hQ-nAfLUWiEn3IZ1U.crl (hash: VITjGCoeDHK/fwSBM+ZfIPsUuSNDvpHrC2Uofm+C5mE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:ea:a2:48:d4:e3:2d:59:cb:a3:0a:eb:d9:0b:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01a85ece2c539f5850fa701f2d45a2127dc86755 Validity Not Before: Dec 6 01:01:49 2025 GMT Not After : Dec 7 01:01:49 2025 GMT Subject: CN=a2d93b656683db32ed3336cbe76bb750f2e40b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:11:a3:4c:73:04:a8:39:96:a9:00:d8:64:d3: 78:b6:24:3c:c8:07:34:7d:4e:60:92:73:dd:e3:ae: 1c:43:a5:c7:2c:4f:a1:fd:36:a4:05:b6:90:7f:8b: 3d:0c:00:07:91:3e:f1:b1:a8:95:c9:93:84:23:93: 59:67:e8:4b:8d:73:7d:bb:8e:8d:a5:3a:be:7e:c2: dd:1f:a8:dd:55:bb:83:59:ee:cf:8e:0a:f0:dd:ce: f9:c2:0c:3a:a3:27:b6:d9:b2:c0:b6:1d:cf:07:b7: dc:97:44:6e:25:4e:cc:1b:62:3d:40:d4:01:92:e1: bd:91:d0:57:d9:99:55:6b:fd:8d:c5:4b:09:15:48: 11:55:a2:d1:84:e1:5a:be:4b:da:42:96:7c:d9:46: c5:a2:65:18:39:05:71:bf:96:85:c9:f9:4a:25:86: ab:0b:7e:be:0b:0d:60:d7:72:00:46:23:d7:c6:dc: 39:ed:fc:9d:8f:91:94:85:f1:8d:ed:44:d8:d1:80: 15:bd:4e:4e:e8:78:94:66:2f:03:79:a6:5e:bc:7a: 1e:1c:60:3c:74:b6:e3:7c:39:a3:90:d6:34:fb:ff: 54:1c:0e:7b:98:4e:dd:3b:14:d4:ff:f5:25:1f:6f: b5:ca:9e:bf:83:e5:8c:b8:70:ad:6f:8c:35:87:6e: 4c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D9:3B:65:66:83:DB:32:ED:33:36:CB:E7:6B:B7:50:F2:E4:0B:19 X509v3 Authority Key Identifier: keyid:01:A8:5E:CE:2C:53:9F:58:50:FA:70:1F:2D:45:A2:12:7D:C8:67:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AahezixTn1hQ-nAfLUWiEn3IZ1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/43a91c-3aac-495c-8081-752a45c32dff/1/AahezixTn1hQ-nAfLUWiEn3IZ1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:4e:b8:cd:f2:41:9f:2e:ac:7c:66:39:8f:0a:69:04:49:8b: 4f:86:eb:25:6e:af:dc:5d:46:84:cd:b3:05:e9:5d:a4:dd:d5: 11:54:c7:05:ce:e5:78:d0:f3:11:75:c8:f9:e9:e3:79:74:84: 8e:dc:6f:47:84:8e:9a:76:4c:28:a3:b2:f5:35:25:cc:65:69: ba:2d:b3:cf:1d:1b:b6:9e:00:46:d8:27:c2:9b:71:00:d0:ff: ec:4d:b0:2d:04:c4:7f:42:df:2a:c5:59:15:69:03:f3:a4:04: 70:0b:c3:6a:ae:9d:74:98:b5:22:da:7a:43:29:af:d3:60:dd: be:53:f7:41:a8:a5:bb:37:4d:a4:64:61:dc:e1:9a:1c:e3:1c: 96:79:50:36:04:92:fb:d2:c0:bb:41:4c:2f:3b:3e:29:54:63: a0:1a:5c:7b:a6:be:d2:ec:10:6b:09:22:b7:ad:29:0d:c7:cd: 79:9d:7e:4c:72:e0:38:ca:85:5e:ea:82:2f:3a:f6:f7:11:0c: 65:62:a5:3c:1d:b2:c7:e1:cb:69:1d:2e:25:77:1c:e6:f5:a9: 21:03:55:62:42:29:8d:16:a6:13:6c:86:c5:82:b2:3d:08:76: aa:b6:80:f9:00:16:98:bc:b0:3d:27:31:b3:fd:48:ec:aa:f6: fd:69:31:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLeqiSNTjLVnLowrr2QvOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxYTg1ZWNlMmM1MzlmNTg1MGZhNzAxZjJkNDVhMjEyN2Rj ODY3NTUwHhcNMjUxMjA2MDEwMTQ5WhcNMjUxMjA3MDEwMTQ5WjAzMTEwLwYDVQQD EyhhMmQ5M2I2NTY2ODNkYjMyZWQzMzM2Y2JlNzZiYjc1MGYyZTQwYjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRGjTHMEqDmWqQDYZNN4tiQ8yAc0 fU5gknPd464cQ6XHLE+h/TakBbaQf4s9DAAHkT7xsaiVyZOEI5NZZ+hLjXN9u46N pTq+fsLdH6jdVbuDWe7Pjgrw3c75wgw6oye22bLAth3PB7fcl0RuJU7MG2I9QNQB kuG9kdBX2ZlVa/2NxUsJFUgRVaLRhOFavkvaQpZ82UbFomUYOQVxv5aFyflKJYar C36+Cw1g13IARiPXxtw57fydj5GUhfGN7UTY0YAVvU5O6HiUZi8DeaZevHoeHGA8 dLbjfDmjkNY0+/9UHA57mE7dOxTU//UlH2+1yp6/g+WMuHCtb4w1h25MoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLZO2Vmg9sy7TM2y+drt1Dy5AsZMB8GA1UdIwQY MBaAFAGoXs4sU59YUPpwHy1FohJ9yGdVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEt NzUyYTQ1YzMyZGZmLzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy80M2E5MWMtM2FhYy00OTVjLTgwODEtNzUyYTQ1YzMyZGZm LzEvQWFoZXppeFRuMWhRLW5BZkxVV2lFbjNJWjFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh064zfJB ny6sfGY5jwppBEmLT4brJW6v3F1GhM2zBeldpN3VEVTHBc7leNDzEXXI+enjeXSE jtxvR4SOmnZMKKOy9TUlzGVpui2zzx0btp4ARtgnwptxAND/7E2wLQTEf0LfKsVZ FWkD86QEcAvDaq6ddJi1Itp6Qymv02DdvlP3QailuzdNpGRh3OGaHOMclnlQNgSS +9LAu0FMLzs+KVRjoBpce6a+0uwQawkit60pDcfNeZ1+THLgOMqFXuqCLzr29xEM ZWKlPB2yx+HLaR0uJXcc5vWpIQNVYkIpjRamE2yGxYKyPQh2qraA+QAWmLywPScx s/1I7Kr2/Wkx5A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:57:10 2025 by rpki-client