This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json) Hash identifier: HhO1h1lOCkxyQVQx1iZt28N6a3jEFW4I205WQpZ07GA= Subject key identifier: 29:C2:E2:91:24:1C:45:F0:68:71:08:FA:57:04:23:C9:ED:B4:09:02 Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b Certificate serial: 019AF5782AD9A68A3BFA6CBFE0DC5814A649 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 21:01:24 +0000 Manifest this update: Sat 06 Dec 2025 21:01:24 +0000 Manifest next update: Sun 07 Dec 2025 21:01:24 +0000 Files and hashes: 1: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: HeChUttAkFRj0sRvKdZROqMpv+J0rAtla9Q84YvgPAI=) 2: ndozZxXsqqvoYlnvn2R8eG6q9WM.roa (hash: J/bxB2F1VD9ABMhf1I4cZo/1cjeHrt4Cto7ZdYkPM28=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:2a:d9:a6:8a:3b:fa:6c:bf:e0:dc:58:14:a6:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b Validity Not Before: Dec 6 21:01:24 2025 GMT Not After : Dec 7 21:01:24 2025 GMT Subject: CN=29c2e291241c45f0687108fa570423c9edb40902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:13:42:89:73:90:3f:e1:c9:6f:19:8a:a3:dc: 3d:9a:dd:4f:00:24:02:69:5d:db:c5:63:02:c5:fc: 5e:53:a0:84:0e:7b:54:6f:2e:41:54:2e:eb:a9:eb: 23:7d:c6:ab:0f:81:2d:8d:2e:bd:f2:22:fe:ed:6c: 6c:1f:84:8d:3e:97:47:9e:1c:18:4a:da:dd:d7:40: 29:c0:9e:35:27:00:98:af:04:26:1c:37:4e:5c:b0: d2:7f:b7:6b:a9:9b:c1:18:d0:2a:4a:d9:12:07:86: d1:06:5c:fd:2a:88:fc:53:e7:7f:de:d8:27:65:cd: f4:36:ea:cd:d3:cf:3b:0c:8b:13:ac:c2:71:d2:19: 41:75:cb:e0:26:9f:c5:a0:d2:31:70:3b:0e:cf:e5: a0:e7:1e:a5:00:0e:95:e9:8b:0e:89:38:14:b1:26: ef:1b:17:06:e6:a0:c5:92:05:96:c0:0f:e9:03:55: cb:be:d9:eb:c0:d4:91:ce:a9:6d:cc:6c:a0:ad:41: 4f:b2:96:04:56:89:b5:c5:ab:c4:73:40:4b:f7:1e: 40:8f:a5:85:79:f5:4f:98:62:4a:5c:65:94:90:13: b8:2b:00:63:7d:d1:68:6e:24:b6:fc:dc:35:85:df: 23:a2:a8:c7:dc:db:66:26:12:e5:b0:2c:15:c0:91: ad:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C2:E2:91:24:1C:45:F0:68:71:08:FA:57:04:23:C9:ED:B4:09:02 X509v3 Authority Key Identifier: keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e7:60:43:3d:e7:55:ce:7d:67:80:27:46:2e:0b:28:16:d0:9e: 94:88:72:f7:ee:44:2c:69:0b:13:e2:39:cd:b8:8e:f2:92:59: 2b:6c:8e:f3:8f:c8:c6:ad:28:e2:30:5e:83:11:68:e3:32:10: 7b:b5:38:55:f0:fc:7c:5c:97:2d:ea:b7:d9:91:8b:ab:d2:51: df:95:a8:34:c2:5c:b0:8c:b0:a4:02:5d:ae:b1:ca:67:cd:a4: 88:67:97:ab:03:4f:2b:39:91:f5:67:7d:ae:ad:c7:bb:cd:66: 3c:0e:11:44:74:e5:03:83:fb:c6:21:9d:4f:89:75:81:a4:19: 75:a3:b7:46:d9:a3:ed:91:ac:e1:a7:d0:10:8d:a6:30:ce:12: 4c:3a:9b:f8:ca:c1:d0:a1:81:56:ea:0e:c8:b4:16:c4:62:ab: 5c:bd:cc:89:e5:a6:73:16:de:bf:69:c3:61:f0:9a:cf:21:be: 83:09:0d:f7:9e:78:ec:0d:fd:8a:21:51:85:79:7f:5c:e6:36: 38:9d:5b:8d:98:00:ed:3a:9c:ff:bb:60:38:9d:8a:d1:b7:90: 2b:92:c7:59:f0:9d:22:75:35:47:d2:db:9f:17:e1:6c:e8:16: 75:12:ff:0f:b3:19:94:66:32:da:ce:92:79:7e:cc:7f:bd:be: 70:28:c6:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eCrZpoo7+my/4NxYFKZJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzhkYjdlNjk5MTI3ZGE0YzFjNWE1ZTkzZjQ0ZjMwMmI2 Mjg2M2IwHhcNMjUxMjA2MjEwMTI0WhcNMjUxMjA3MjEwMTI0WjAzMTEwLwYDVQQD EygyOWMyZTI5MTI0MWM0NWYwNjg3MTA4ZmE1NzA0MjNjOWVkYjQwOTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRNCiXOQP+HJbxmKo9w9mt1PACQC aV3bxWMCxfxeU6CEDntUby5BVC7rqesjfcarD4EtjS698iL+7WxsH4SNPpdHnhwY Strd10ApwJ41JwCYrwQmHDdOXLDSf7drqZvBGNAqStkSB4bRBlz9Koj8U+d/3tgn Zc30NurN0887DIsTrMJx0hlBdcvgJp/FoNIxcDsOz+Wg5x6lAA6V6YsOiTgUsSbv GxcG5qDFkgWWwA/pA1XLvtnrwNSRzqltzGygrUFPspYEVom1xavEc0BL9x5Aj6WF efVPmGJKXGWUkBO4KwBjfdFobiS2/Nw1hd8joqjH3NtmJhLlsCwVwJGtXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCnC4pEkHEXwaHEI+lcEI8nttAkCMB8GA1UdIwQY MBaAFGg4235pkSfaTBxaXpP0TzArYoY7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQt MmY5Y2FjNzAwZmE1LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQtMmY5Y2FjNzAwZmE1 LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA52BDPedV zn1ngCdGLgsoFtCelIhy9+5ELGkLE+I5zbiO8pJZK2yO84/Ixq0o4jBegxFo4zIQ e7U4VfD8fFyXLeq32ZGLq9JR35WoNMJcsIywpAJdrrHKZ82kiGeXqwNPKzmR9Wd9 rq3Hu81mPA4RRHTlA4P7xiGdT4l1gaQZdaO3Rtmj7ZGs4afQEI2mMM4STDqb+MrB 0KGBVuoOyLQWxGKrXL3MieWmcxbev2nDYfCazyG+gwkN95547A39iiFRhXl/XOY2 OJ1bjZgA7Tqc/7tgOJ2K0beQK5LHWfCdInU1R9LbnxfhbOgWdRL/D7MZlGYy2s6S eX7Mf72+cCjGPw== -----END CERTIFICATE-----Generated at Sun Dec 7 04:12:12 2025 by rpki-client