This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft File: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft (raw, json) Hash identifier: nLiRl68foJkBja22EJfoqYIyDX4DV9UHeByC4CG3cp0= Subject key identifier: E8:92:14:DB:F1:38:C4:68:C5:48:0E:1C:DF:F6:F1:0F:7E:A2:D2:2C Authority key identifier: E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF Certificate issuer: /CN=e1a323546484220cb402063380f4016369262acf Certificate serial: 019AF051C6BF3F9BC48AD5AA2279A9B64DFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft Manifest number: 0AA5 Signing time: Fri 05 Dec 2025 21:01:22 +0000 Manifest this update: Fri 05 Dec 2025 21:01:22 +0000 Manifest next update: Sat 06 Dec 2025 21:01:22 +0000 Files and hashes: 1: 4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl (hash: 0x0AOhQubhbhR5d5fPzuN56Dpkdo4AmeZoffxnpYCA4=) 2: oLxnPDOjx34zqrjQ27ju_ZuWYV4.roa (hash: aFW6lgXJpeg0bmQI7iZHPliZcmK0ToNkD5OYtI2CIQI=) 3: s6V5k75uP9Du1h1TOqbJVxNQlpk.asa (hash: 4gKeo2b3gnQfAxzJIIq7R9o3by/qPWXIYyzmMQ3wxD4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:c6:bf:3f:9b:c4:8a:d5:aa:22:79:a9:b6:4d:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1a323546484220cb402063380f4016369262acf Validity Not Before: Dec 5 21:01:22 2025 GMT Not After : Dec 6 21:01:22 2025 GMT Subject: CN=e89214dbf138c468c5480e1cdff6f10f7ea2d22c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:38:1a:3a:e2:ba:20:ee:1c:65:f6:8b:e9:45: 90:12:d0:80:7a:cb:a5:c3:e1:14:ba:1c:78:63:6e: 1c:12:08:a5:b0:49:7b:9e:0b:46:c7:c9:20:0d:15: 2c:27:9c:e6:ae:32:f8:75:a7:e9:61:90:f7:ec:e1: da:8d:8c:3d:18:67:0c:f5:39:f7:09:a7:3d:0d:dc: f0:ca:ee:c5:1a:96:44:8e:1b:4b:ee:f6:4f:4d:62: 4f:65:36:2b:99:e1:93:95:99:39:3d:4c:b2:c8:25: d6:fd:0f:76:8e:cd:6d:c4:61:49:f7:32:a8:cc:05: 0e:fe:2a:99:fe:f6:9f:1f:3a:3c:78:b6:7e:02:51: 5e:7a:04:3f:8e:03:92:6f:0d:3c:a4:37:5b:22:4e: a5:de:3b:51:23:9a:c8:80:84:b5:22:aa:c3:b3:a3: 0c:7c:79:c1:57:6f:43:b8:a1:a1:e1:e4:1d:54:b1: 57:d5:77:72:9b:3e:e2:41:58:11:e9:b3:83:d6:eb: ed:65:a1:32:dd:a2:95:42:a4:3e:7f:3d:a1:81:e3: 63:a5:4f:48:eb:59:6c:6c:a6:5a:88:db:99:06:c8: d8:7d:c8:dc:47:aa:c9:76:fc:1e:50:b1:5a:b9:d3: 8b:d7:16:7f:1f:45:e4:e9:cc:82:8e:fa:f7:a0:aa: 8f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:92:14:DB:F1:38:C4:68:C5:48:0E:1C:DF:F6:F1:0F:7E:A2:D2:2C X509v3 Authority Key Identifier: keyid:E1:A3:23:54:64:84:22:0C:B4:02:06:33:80:F4:01:63:69:26:2A:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4aMjVGSEIgy0AgYzgPQBY2kmKs8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d21da4-f65b-4531-976a-8ec0604e6929/1/4aMjVGSEIgy0AgYzgPQBY2kmKs8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:72:b9:16:37:ec:7a:ea:e0:d4:36:ab:15:25:7b:9a:d2:bf: 3e:b8:11:3a:5b:df:39:8b:83:9f:65:29:4f:83:a4:dd:dd:03: b8:6d:37:84:12:c8:c4:fb:a7:d0:e4:b0:db:b3:32:9e:08:01: e9:fc:47:20:45:49:e1:c7:93:d3:68:2b:27:82:7d:b7:41:23: 55:9e:73:a0:4a:c5:c1:ab:ea:9e:66:14:9a:e3:bb:06:99:fa: ad:63:ae:16:8d:44:55:30:1b:03:8f:29:ee:66:23:fa:b6:7f: 9c:b8:7e:42:c4:3a:49:68:34:87:ab:da:17:50:61:7c:19:a7: 56:41:5a:5b:3a:ea:a7:f2:be:a2:6a:06:2e:9a:82:69:1e:3f: ba:59:20:05:f8:3e:75:52:9a:e4:1e:25:0e:a7:fd:0d:98:7a: 0a:35:77:16:70:b9:88:8e:1f:9f:be:f5:cf:cb:01:6c:d0:50: dc:5f:3a:05:07:cc:9b:54:27:3e:c7:ab:11:32:18:07:14:ec: 20:6f:07:8e:7d:26:04:7b:25:7e:1f:e0:bc:f4:4d:a8:1c:4e: a7:e9:31:4f:be:c7:61:ed:c7:1c:e1:42:31:02:81:84:30:0c: e2:17:ff:e6:2d:eb:cc:c4:c7:d0:39:97:b9:61:bb:92:29:72: 1f:a8:64:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUca/P5vEitWqInmptk36MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxYTMyMzU0NjQ4NDIyMGNiNDAyMDYzMzgwZjQwMTYzNjky NjJhY2YwHhcNMjUxMjA1MjEwMTIyWhcNMjUxMjA2MjEwMTIyWjAzMTEwLwYDVQQD EyhlODkyMTRkYmYxMzhjNDY4YzU0ODBlMWNkZmY2ZjEwZjdlYTJkMjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDgaOuK6IO4cZfaL6UWQEtCAesul w+EUuhx4Y24cEgilsEl7ngtGx8kgDRUsJ5zmrjL4dafpYZD37OHajYw9GGcM9Tn3 Cac9Ddzwyu7FGpZEjhtL7vZPTWJPZTYrmeGTlZk5PUyyyCXW/Q92js1txGFJ9zKo zAUO/iqZ/vafHzo8eLZ+AlFeegQ/jgOSbw08pDdbIk6l3jtRI5rIgIS1IqrDs6MM fHnBV29DuKGh4eQdVLFX1Xdymz7iQVgR6bOD1uvtZaEy3aKVQqQ+fz2hgeNjpU9I 61lsbKZaiNuZBsjYfcjcR6rJdvweULFaudOL1xZ/H0Xk6cyCjvr3oKqPIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOiSFNvxOMRoxUgOHN/28Q9+otIsMB8GA1UdIwQY MBaAFOGjI1RkhCIMtAIGM4D0AWNpJirPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEt OGVjMDYwNGU2OTI5LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC9kMjFkYTQtZjY1Yi00NTMxLTk3NmEtOGVjMDYwNGU2OTI5 LzEvNGFNalZHU0VJZ3kwQWdZemdQUUJZMmttS3M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXK5Fjfs eurg1DarFSV7mtK/PrgROlvfOYuDn2UpT4Ok3d0DuG03hBLIxPun0OSw27MynggB 6fxHIEVJ4ceT02grJ4J9t0EjVZ5zoErFwavqnmYUmuO7Bpn6rWOuFo1EVTAbA48p 7mYj+rZ/nLh+QsQ6SWg0h6vaF1BhfBmnVkFaWzrqp/K+omoGLpqCaR4/ulkgBfg+ dVKa5B4lDqf9DZh6CjV3FnC5iI4fn771z8sBbNBQ3F86BQfMm1QnPserETIYBxTs IG8Hjn0mBHslfh/gvPRNqBxOp+kxT77HYe3HHOFCMQKBhDAM4hf/5i3rzMTH0DmX uWG7kilyH6hkWA== -----END CERTIFICATE-----Generated at Sat Dec 6 05:50:57 2025 by rpki-client