This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft File: aNogbIPVBeJUs-88dlD5-5NFNDU.mft (raw, json) Hash identifier: qYilxvCoKpBLxYxxmkMjEJtKfufjnZ3mP1dJ4UKB49I= Subject key identifier: 25:A8:0E:96:30:7E:37:90:2F:BC:E5:A1:4F:11:16:86:83:C7:89:46 Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35 Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435 Certificate serial: 019AFB42A4C0F0E784C199986047DD6DD4B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft Manifest number: 0A55 Signing time: Mon 08 Dec 2025 00:00:39 +0000 Manifest this update: Mon 08 Dec 2025 00:00:39 +0000 Manifest next update: Tue 09 Dec 2025 00:00:39 +0000 Files and hashes: 1: 9yjOyCjaNQvZmslgCNfY4UdjDvM.roa (hash: BLcuMbjq4mGuK5Vn41A+M+OAou14cd2H96ukojI5mmM=) 2: aNogbIPVBeJUs-88dlD5-5NFNDU.crl (hash: Eo8KZlNxuJHpEQWfkgPhL0X6+E0rYRMSV2IERmteENg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Dec 2025 00:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fb:42:a4:c0:f0:e7:84:c1:99:98:60:47:dd:6d:d4:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435 Validity Not Before: Dec 8 00:00:39 2025 GMT Not After : Dec 9 00:00:39 2025 GMT Subject: CN=25a80e96307e37902fbce5a14f11168683c78946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:67:81:f6:e5:3c:13:75:24:8c:50:07:fc:eb: bd:33:90:49:ed:63:66:5a:9d:58:31:22:fc:9a:30: 38:e1:ae:7b:3a:7e:ff:d3:46:8b:ee:d2:60:04:da: 8e:13:81:98:14:ff:af:3d:0e:f2:1f:a5:c3:e4:2d: 3d:ac:65:22:80:03:e9:4f:08:13:da:b8:2a:6d:ab: bc:9a:35:3f:ef:49:fd:df:eb:2b:c8:d7:64:de:86: 61:f8:59:ee:f3:33:65:4a:f9:78:d4:8b:d2:3e:1e: 2f:fa:6d:dd:57:d2:45:81:9d:c1:46:5a:22:6f:dd: 7c:e8:1e:11:96:54:74:a9:f1:1d:1b:14:0b:8f:b4: 2a:3d:5e:53:92:d2:6c:20:48:40:58:1f:de:66:52: 68:8f:21:8e:da:86:d8:1f:b0:3b:08:d5:f0:a9:b0: 52:bb:86:39:9c:11:29:cd:d1:73:f2:c5:e5:e3:aa: c1:1c:34:9c:a5:18:85:16:76:39:8b:c0:72:04:b4: 00:6e:54:2b:2b:7e:84:6e:9c:56:60:e5:0c:f7:53: 8a:01:e2:dc:11:8e:63:1a:94:10:0b:2b:5b:ec:97: 80:e3:55:2f:73:76:5f:fa:66:be:26:c9:5e:54:12: 03:d5:22:52:cb:fa:9e:59:76:fd:5b:ba:e1:d5:05: 57:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A8:0E:96:30:7E:37:90:2F:BC:E5:A1:4F:11:16:86:83:C7:89:46 X509v3 Authority Key Identifier: keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:60:ea:01:04:b7:db:e1:08:2c:76:ea:c5:56:bc:66:ae:86: 31:72:1f:18:f2:0e:22:d0:a6:07:2c:de:46:1e:21:17:eb:17: cf:c6:b3:51:75:9e:2a:db:8e:a9:e3:e6:68:13:bf:91:f9:cf: 28:bb:db:16:7b:01:49:3f:02:22:77:af:b4:cc:e2:88:8d:5e: f2:c6:1d:71:78:af:d8:64:c9:d4:70:d1:6a:11:3d:4c:ce:4f: e0:3c:9f:77:09:9e:98:55:e6:d1:ec:5b:e0:c0:0b:1b:3e:98: 17:64:8e:9b:6b:bb:8b:12:ff:4b:68:8e:1e:0e:3a:e1:d3:c7: 9d:c6:74:1e:0b:43:0d:77:5e:4f:e1:50:df:28:0b:33:89:55: 88:c5:1c:95:e1:af:19:18:56:39:01:d4:b4:9d:b6:7d:d5:54: 05:ec:53:d9:6c:29:6d:0f:85:a7:a2:8f:95:ea:66:fd:a3:8c: ba:0d:f4:78:bd:e4:09:78:f2:cc:6b:52:ad:0d:b6:7d:05:00: e0:8b:6b:82:b0:5a:32:5b:e9:21:74:ef:77:7e:db:1c:65:ca: f5:9b:ec:ab:19:9c:ad:fa:3a:62:07:86:49:08:0f:b4:f0:76: 79:19:32:2a:02:7f:3e:64:c4:a4:da:9a:1a:6f:89:ac:8b:1a: 3b:f5:57:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr7QqTA8OeEwZmYYEfdbdS1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZGEyMDZjODNkNTA1ZTI1NGIzZWYzYzc2NTBmOWZiOTM0 NTM0MzUwHhcNMjUxMjA4MDAwMDM5WhcNMjUxMjA5MDAwMDM5WjAzMTEwLwYDVQQD EygyNWE4MGU5NjMwN2UzNzkwMmZiY2U1YTE0ZjExMTY4NjgzYzc4OTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmeB9uU8E3UkjFAH/Ou9M5BJ7WNm Wp1YMSL8mjA44a57On7/00aL7tJgBNqOE4GYFP+vPQ7yH6XD5C09rGUigAPpTwgT 2rgqbau8mjU/70n93+sryNdk3oZh+Fnu8zNlSvl41IvSPh4v+m3dV9JFgZ3BRloi b9186B4RllR0qfEdGxQLj7QqPV5TktJsIEhAWB/eZlJojyGO2obYH7A7CNXwqbBS u4Y5nBEpzdFz8sXl46rBHDScpRiFFnY5i8ByBLQAblQrK36EbpxWYOUM91OKAeLc EY5jGpQQCytb7JeA41Uvc3Zf+ma+JsleVBID1SJSy/qeWXb9W7rh1QVXAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWoDpYwfjeQL7zloU8RFoaDx4lGMB8GA1UdIwQY MBaAFGjaIGyD1QXiVLPvPHZQ+fuTRTQ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEt MTFkNjM2YjU2ZGFiLzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEtMTFkNjM2YjU2ZGFi LzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoGDqAQS3 2+EILHbqxVa8Zq6GMXIfGPIOItCmByzeRh4hF+sXz8azUXWeKtuOqePmaBO/kfnP KLvbFnsBST8CInevtMziiI1e8sYdcXiv2GTJ1HDRahE9TM5P4DyfdwmemFXm0exb 4MALGz6YF2SOm2u7ixL/S2iOHg464dPHncZ0HgtDDXdeT+FQ3ygLM4lViMUcleGv GRhWOQHUtJ22fdVUBexT2WwpbQ+Fp6KPlepm/aOMug30eL3kCXjyzGtSrQ22fQUA 4ItrgrBaMlvpIXTvd37bHGXK9Zvsqxmcrfo6YgeGSQgPtPB2eRkyKgJ/PmTEpNqa Gm+JrIsaO/VXBQ== -----END CERTIFICATE-----Generated at Mon Dec 8 08:41:54 2025 by rpki-client