This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft File: aAONTKy9QZGZUus3CcFlM4OJAOM.mft (raw, json) Hash identifier: xrW1lvvFXXKUBNyX70W/SzXozs8oEDNdjf8+0gPMRm4= Subject key identifier: D0:10:67:04:78:60:8B:16:1D:00:DA:DA:D4:52:BA:DF:AC:A1:91:AC Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3 Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3 Certificate serial: 019AF12E9AAA9A38486E93CA1A854B58B4B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 01:02:34 +0000 Manifest this update: Sat 06 Dec 2025 01:02:34 +0000 Manifest next update: Sun 07 Dec 2025 01:02:34 +0000 Files and hashes: 1: K7Q4iSU5tGlQaFLDbZ74ga5u7QI.roa (hash: 4IoPifHHzLWAa9SoaMyYdsFHlPVY27b7G1cPfRmMmFw=) 2: aAONTKy9QZGZUus3CcFlM4OJAOM.crl (hash: ebcdmgxwEtZjsf+WkkO85NH4Il1yKd3s9qRj/zb+cD8=) 3: lZ9mN5xTttKw5Lu3kt5TBdxoI_c.roa (hash: oCvvxX98yWLH3kfCtYuDTFzL1eqlVEqmDIMPTij8zho=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:9a:aa:9a:38:48:6e:93:ca:1a:85:4b:58:b4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3 Validity Not Before: Dec 6 01:02:34 2025 GMT Not After : Dec 7 01:02:34 2025 GMT Subject: CN=d010670478608b161d00dadad452badfaca191ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:91:93:c9:92:db:aa:00:ed:33:40:20:45:e3: 2e:c0:02:95:c3:e5:3b:32:76:c8:78:20:98:6a:ff: 3e:63:39:8b:9d:d6:e4:27:7e:9e:98:c2:15:5f:f9: 8d:0c:0e:bd:15:bf:bc:b4:69:6c:6e:fa:9e:7d:18: f5:cd:1f:c0:40:2a:95:2d:f1:b9:63:2c:1d:be:9e: bf:4f:2c:bb:82:ca:af:0f:5a:f2:01:b1:ae:f0:3a: 59:d3:7f:5e:80:e3:27:5b:f5:ce:3c:80:e3:8e:9f: 94:78:98:91:9a:d6:a3:ba:77:fd:30:c6:df:e5:29: 7e:39:ba:41:fc:2b:3b:47:db:da:be:8b:f9:e6:7f: 4b:1d:76:df:db:84:f5:62:22:66:e5:a0:bd:77:f5: 74:ff:a6:d6:c9:7f:9b:de:6d:9a:00:2d:e8:07:2a: c4:d8:88:a6:61:3b:e6:e5:37:82:8e:48:57:c1:86: 92:c3:44:92:46:13:4d:c2:1d:e5:93:f6:82:92:a5: 39:2e:c7:36:1b:d9:a9:29:59:64:b8:eb:f0:42:4a: ac:28:00:ba:42:45:70:db:be:71:21:4a:28:f3:b2: 97:38:a2:9e:39:2d:1c:65:a0:3a:b0:15:e5:78:b2: 28:98:a5:1a:51:55:7d:8e:80:c5:2a:b4:4a:c7:5d: 16:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:10:67:04:78:60:8B:16:1D:00:DA:DA:D4:52:BA:DF:AC:A1:91:AC X509v3 Authority Key Identifier: keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:f6:ff:14:5c:08:17:75:b8:cd:37:0e:01:9e:b8:24:db:3f: 0b:95:6d:ff:86:76:91:b4:e9:c0:9f:cf:39:ff:9b:52:f5:6b: b5:e5:a7:24:d4:2e:46:25:b5:77:75:78:a7:06:f6:a2:f8:94: 65:22:09:4a:ca:30:2f:3d:a6:8e:49:34:94:8c:2e:48:86:c2: f9:5c:4e:d4:dc:ed:17:2c:48:38:29:31:be:3a:67:ec:7a:fc: ea:bf:05:07:55:2e:15:5e:50:ac:b3:1a:c9:60:bc:c8:b8:25: 0b:e5:7b:f0:f3:5a:9d:de:57:69:ab:c5:b7:a8:62:39:5a:99: ce:16:0d:d0:08:96:0c:63:e5:45:3a:42:36:60:c9:8a:ea:d4: cd:e1:75:c9:a5:42:0c:ee:68:d3:81:29:4f:21:8b:d4:68:ac: c5:62:17:5a:ef:c1:58:2b:1f:3e:6c:01:04:a3:d0:fd:bf:5c: 98:e8:7e:39:7e:c3:14:f2:f2:38:3d:87:47:41:c1:b8:f5:b7: 9b:2e:ac:15:fa:0c:55:a5:66:db:58:f1:7c:7c:40:a2:ae:81: 3a:4c:cd:e2:0b:fc:32:1d:48:23:98:76:3e:23:54:07:08:9c: 9a:6b:c6:53:58:54:c9:83:c1:54:b0:e6:0e:6e:69:17:2a:1e: 93:82:99:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLpqqmjhIbpPKGoVLWLSwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MDM4ZDRjYWNiZDQxOTE5OTUyZWIzNzA5YzE2NTMzODM4 OTAwZTMwHhcNMjUxMjA2MDEwMjM0WhcNMjUxMjA3MDEwMjM0WjAzMTEwLwYDVQQD EyhkMDEwNjcwNDc4NjA4YjE2MWQwMGRhZGFkNDUyYmFkZmFjYTE5MWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JGTyZLbqgDtM0AgReMuwAKVw+U7 MnbIeCCYav8+YzmLndbkJ36emMIVX/mNDA69Fb+8tGlsbvqefRj1zR/AQCqVLfG5 Yywdvp6/Tyy7gsqvD1ryAbGu8DpZ039egOMnW/XOPIDjjp+UeJiRmtajunf9MMbf 5Sl+ObpB/Cs7R9vavov55n9LHXbf24T1YiJm5aC9d/V0/6bWyX+b3m2aAC3oByrE 2IimYTvm5TeCjkhXwYaSw0SSRhNNwh3lk/aCkqU5Lsc2G9mpKVlkuOvwQkqsKAC6 QkVw275xIUoo87KXOKKeOS0cZaA6sBXleLIomKUaUVV9joDFKrRKx10WIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNAQZwR4YIsWHQDa2tRSut+soZGsMB8GA1UdIwQY MBaAFGgDjUysvUGRmVLrNwnBZTODiQDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgt MmY1MGVhMjcyMTNjLzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgtMmY1MGVhMjcyMTNj LzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVPb/FFwI F3W4zTcOAZ64JNs/C5Vt/4Z2kbTpwJ/POf+bUvVrteWnJNQuRiW1d3V4pwb2oviU ZSIJSsowLz2mjkk0lIwuSIbC+VxO1NztFyxIOCkxvjpn7Hr86r8FB1UuFV5QrLMa yWC8yLglC+V78PNand5XaavFt6hiOVqZzhYN0AiWDGPlRTpCNmDJiurUzeF1yaVC DO5o04EpTyGL1GisxWIXWu/BWCsfPmwBBKPQ/b9cmOh+OX7DFPLyOD2HR0HBuPW3 my6sFfoMVaVm21jxfHxAoq6BOkzN4gv8Mh1II5h2PiNUBwicmmvGU1hUyYPBVLDm Dm5pFyoek4KZsA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:53 2025 by rpki-client