This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft File: aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json) Hash identifier: suVzZWE+ecEPbQkWO45boOWIpgQczC0maKMhDMbE418= Subject key identifier: BB:B7:3C:EE:D8:A6:ED:C5:8A:25:74:1E:92:32:C2:3F:2D:75:C3:75 Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0 Certificate issuer: /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0 Certificate serial: 019AF19B9685A1AC3F27C0103F89F47C31D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft Manifest number: 069E Signing time: Sat 06 Dec 2025 03:01:36 +0000 Manifest this update: Sat 06 Dec 2025 03:01:36 +0000 Manifest next update: Sun 07 Dec 2025 03:01:36 +0000 Files and hashes: 1: NluQuRsgOiFaIXTWt3y3rez6Bh4.roa (hash: JKkT06F430W2THw9Cv6TXAFRcJ7i7LHFoCLoKhmOqSc=) 2: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: uiMb/K8NvJ7kjsMWtfShmtnQjmKTm2vd6gAnMri30Y0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:96:85:a1:ac:3f:27:c0:10:3f:89:f4:7c:31:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0 Validity Not Before: Dec 6 03:01:36 2025 GMT Not After : Dec 7 03:01:36 2025 GMT Subject: CN=bbb73ceed8a6edc58a25741e9232c23f2d75c375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2e:07:ef:07:e5:3f:60:cb:00:17:d5:aa:ad: af:75:84:82:6d:e0:a4:62:a9:c5:0d:6a:59:c1:4f: 2a:4c:34:d7:44:48:e0:8d:97:d6:6d:67:8a:2f:0f: 9d:cf:a5:38:03:6e:83:f4:57:08:d6:1d:56:2c:73: 5e:29:94:a6:59:ec:22:b4:11:8c:f4:e5:db:8c:10: a6:df:f2:45:18:43:42:d4:cd:19:a1:a7:90:d9:93: 2c:b1:0d:f8:99:bd:03:3d:ae:93:18:62:51:22:b2: 3f:57:24:15:84:46:e0:6b:83:06:1f:a0:0d:aa:52: 03:c9:b8:24:b4:59:a0:6d:f6:eb:a7:25:a5:7a:02: 28:e7:ff:5e:8b:00:ed:4e:f0:d2:65:34:ea:49:29: e4:76:b7:cd:0c:51:c3:e6:53:18:6e:d8:43:53:70: 66:89:aa:6f:4b:02:a2:43:13:bf:7f:33:17:c2:cb: 3d:47:55:30:db:5a:14:b3:3a:13:f9:17:df:aa:ed: b9:a3:27:bb:14:d8:53:79:73:ad:f1:05:dd:39:8c: aa:58:c7:8f:dc:5d:8d:09:b9:67:49:53:96:43:ad: 50:fa:35:5a:d4:82:b8:dc:97:f3:37:4c:3c:4f:2c: b5:33:a2:ac:6c:b0:01:37:ae:7b:c7:1a:d3:f1:99: de:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B7:3C:EE:D8:A6:ED:C5:8A:25:74:1E:92:32:C2:3F:2D:75:C3:75 X509v3 Authority Key Identifier: keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:4e:6a:75:46:c8:d6:f3:d3:a8:86:ee:62:62:bf:77:1d:8e: 00:e0:37:b8:c3:30:fc:f3:a4:58:c3:e5:56:76:cc:f9:04:61: d8:b2:21:8f:da:da:a9:15:f8:e2:c9:02:bd:f0:ca:d3:87:41: d0:24:0c:f8:b4:8b:a5:22:be:a9:9c:3e:8a:e9:e5:65:29:a8: d3:e8:5f:a5:64:01:cc:0c:0c:03:dc:ef:7b:5a:12:ec:f3:16: 0b:d0:81:68:7d:cb:0f:38:c1:0b:e0:f4:86:92:da:bc:33:aa: a5:ee:1f:79:7a:38:5f:02:d8:bc:b0:98:49:15:4a:0f:56:48: b0:52:15:3f:56:34:da:ff:3a:bf:61:4b:85:af:28:19:9e:1c: 19:8a:4e:ad:c1:60:13:18:a8:cc:d7:0e:71:eb:52:7c:37:ac: da:58:8a:3d:8b:65:9a:3a:91:eb:97:d6:74:32:ea:66:bd:cb: 6e:c6:aa:8e:b8:20:61:70:28:0d:43:33:6f:81:b9:4a:b9:10: 66:3f:f6:e7:69:93:ab:05:6d:7d:29:b6:aa:60:ea:da:54:20: a6:b8:6a:4d:f4:e2:37:44:ed:ef:58:30:0f:23:8c:50:3b:6c: 19:5f:26:3a:00:f0:aa:0f:e3:e4:b1:cd:3d:a0:47:00:65:f8: ec:e7:e4:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5aFoaw/J8AQP4n0fDHTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5MzFkN2U3YTk5NzQ5YTM4NWVhZWIyN2Y4NTBhYjg5ZGE4 ZjJlZTAwHhcNMjUxMjA2MDMwMTM2WhcNMjUxMjA3MDMwMTM2WjAzMTEwLwYDVQQD EyhiYmI3M2NlZWQ4YTZlZGM1OGEyNTc0MWU5MjMyYzIzZjJkNzVjMzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5y4H7wflP2DLABfVqq2vdYSCbeCk YqnFDWpZwU8qTDTXREjgjZfWbWeKLw+dz6U4A26D9FcI1h1WLHNeKZSmWewitBGM 9OXbjBCm3/JFGENC1M0ZoaeQ2ZMssQ34mb0DPa6TGGJRIrI/VyQVhEbga4MGH6AN qlIDybgktFmgbfbrpyWlegIo5/9eiwDtTvDSZTTqSSnkdrfNDFHD5lMYbthDU3Bm iapvSwKiQxO/fzMXwss9R1Uw21oUszoT+Rffqu25oye7FNhTeXOt8QXdOYyqWMeP 3F2NCblnSVOWQ61Q+jVa1IK43JfzN0w8Tyy1M6KsbLABN657xxrT8ZnemwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLu3PO7Ypu3FiiV0HpIywj8tdcN1MB8GA1UdIwQY MBaAFGkx1+epl0mjherrJ/hQq4najy7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC84Y2ZkNzMtMTI1Ny00ZGZhLThjNTkt NzZhZTQyMzU2Y2U1LzEvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC84Y2ZkNzMtMTI1Ny00ZGZhLThjNTktNzZhZTQyMzU2Y2U1 LzEvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVk5qdUbI 1vPTqIbuYmK/dx2OAOA3uMMw/POkWMPlVnbM+QRh2LIhj9raqRX44skCvfDK04dB 0CQM+LSLpSK+qZw+iunlZSmo0+hfpWQBzAwMA9zve1oS7PMWC9CBaH3LDzjBC+D0 hpLavDOqpe4feXo4XwLYvLCYSRVKD1ZIsFIVP1Y02v86v2FLha8oGZ4cGYpOrcFg ExiozNcOcetSfDes2liKPYtlmjqR65fWdDLqZr3LbsaqjrggYXAoDUMzb4G5SrkQ Zj/252mTqwVtfSm2qmDq2lQgprhqTfTiN0Tt71gwDyOMUDtsGV8mOgDwqg/j5LHN PaBHAGX47Ofk8w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:02 2025 by rpki-client