This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft File: aXJqlhM2--eCCz10joEvSVyHLTU.mft (raw, json) Hash identifier: w8AUOQX+sSceN5EFrwDE4BrwHAS0PiDyENNcBCdD59s= Subject key identifier: 99:20:6D:3E:3D:2F:D2:29:07:9A:43:45:34:43:56:C0:55:EC:78:5B Authority key identifier: 69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35 Certificate issuer: /CN=69726a961336fbe7820b3d748e812f495c872d35 Certificate serial: 019AF2766A73E9D44F880CB13CBCC3DE0D3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft Manifest number: 0F51 Signing time: Sat 06 Dec 2025 07:00:37 +0000 Manifest this update: Sat 06 Dec 2025 07:00:37 +0000 Manifest next update: Sun 07 Dec 2025 07:00:37 +0000 Files and hashes: 1: TPjf70pa6qBZmpfYB0iX9CcL4Y4.roa (hash: swAbvLbVBmlLATlL/hX7o87L+INYtKkOcONzc8lraTI=) 2: aXJqlhM2--eCCz10joEvSVyHLTU.crl (hash: hHcsuVn5MQLlyefZu/NhzAMtVfHF8dtF9XJLaQb1B6A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:6a:73:e9:d4:4f:88:0c:b1:3c:bc:c3:de:0d:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69726a961336fbe7820b3d748e812f495c872d35 Validity Not Before: Dec 6 07:00:37 2025 GMT Not After : Dec 7 07:00:37 2025 GMT Subject: CN=99206d3e3d2fd229079a4345344356c055ec785b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:51:dd:e7:79:aa:28:e0:b1:1b:26:76:21:52: c2:0b:75:6f:ee:df:2d:75:91:60:3b:9b:12:97:91: 4c:88:12:d0:6f:b3:62:bc:75:bd:22:98:45:d0:ba: 16:34:4d:16:b9:3c:91:70:78:a6:86:3e:9d:6b:8d: 3f:cd:82:00:ea:22:13:bc:cd:8b:e1:49:a8:c6:d8: b1:5f:bc:5a:67:01:fc:a0:57:e6:5a:75:3b:2e:80: b8:e7:26:f8:8b:5a:1c:a1:09:fb:6f:c8:ff:71:00: 13:f0:f4:24:ca:b5:50:46:eb:21:0b:eb:ef:27:90: cc:5a:e7:27:7b:49:15:82:63:89:d8:95:67:17:c8: 59:40:02:a7:d3:c5:65:af:67:c0:43:9e:4e:22:be: 8e:6c:70:38:8d:42:a6:df:c9:cc:82:86:00:7f:ae: 14:a2:8a:e7:73:6b:3b:66:79:28:be:af:f4:1a:d7: 34:b3:b0:56:da:43:77:93:1a:94:d5:a8:1f:8e:55: 5e:aa:ae:0d:9f:0c:8b:b2:9c:84:5e:4f:ef:cc:32: e1:e7:51:fd:d0:75:3d:71:51:f2:a7:bd:d7:fa:8d: 1d:ff:32:9d:cd:0a:78:69:47:36:2f:0b:6d:9b:8f: 02:fa:56:f2:36:ed:c3:a7:d3:24:de:c3:d3:9d:9d: 66:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:20:6D:3E:3D:2F:D2:29:07:9A:43:45:34:43:56:C0:55:EC:78:5B X509v3 Authority Key Identifier: keyid:69:72:6A:96:13:36:FB:E7:82:0B:3D:74:8E:81:2F:49:5C:87:2D:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXJqlhM2--eCCz10joEvSVyHLTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/25e972-2842-4514-8ade-c0166d97010d/1/aXJqlhM2--eCCz10joEvSVyHLTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:1f:53:ef:4b:7f:bc:e1:a0:07:0b:3b:1c:d8:2c:d1:db:df: 5d:32:9e:22:a6:dc:19:4a:91:0d:bd:ed:cf:65:81:1b:5c:ee: 5d:9e:33:9d:a0:ff:95:a9:86:3c:c1:48:b5:92:ff:ee:c4:2e: 94:64:aa:bc:61:50:a1:c1:70:7e:81:ea:b7:09:4b:aa:f0:29: 12:42:31:0e:4a:4a:36:cc:c2:e2:ff:66:92:20:8a:74:bf:5e: cd:f9:89:cc:15:1a:92:e8:fa:9e:97:55:f1:28:a9:15:8e:ae: ed:dc:a4:01:f2:84:e1:d5:13:9b:b1:d9:05:40:e5:d1:a7:d6: dc:bb:1d:fb:f4:db:64:0a:af:1e:20:4a:87:be:30:42:ba:d8: 1a:32:8c:b1:10:7c:2e:25:8a:c7:f6:15:d7:f8:a6:cc:c8:0b: 2e:83:b3:d9:54:70:2d:5a:f0:e3:39:f2:9c:81:5f:a9:1b:a8: ea:1d:d3:42:1b:32:1b:fc:f9:d2:62:7b:17:52:d6:92:69:85: f4:03:59:a9:95:cf:dc:b1:d1:32:53:66:5e:1e:7c:70:52:ed: a9:ec:32:cb:36:61:1f:d6:8b:d7:1e:bd:62:03:06:dc:df:05: c4:4c:35:d5:a9:6f:6c:06:b4:96:5a:5f:e7:ca:23:46:6f:b8: 2a:f2:ac:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydmpz6dRPiAyxPLzD3g0+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NzI2YTk2MTMzNmZiZTc4MjBiM2Q3NDhlODEyZjQ5NWM4 NzJkMzUwHhcNMjUxMjA2MDcwMDM3WhcNMjUxMjA3MDcwMDM3WjAzMTEwLwYDVQQD Eyg5OTIwNmQzZTNkMmZkMjI5MDc5YTQzNDUzNDQzNTZjMDU1ZWM3ODViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFHd53mqKOCxGyZ2IVLCC3Vv7t8t dZFgO5sSl5FMiBLQb7NivHW9IphF0LoWNE0WuTyRcHimhj6da40/zYIA6iITvM2L 4UmoxtixX7xaZwH8oFfmWnU7LoC45yb4i1ocoQn7b8j/cQAT8PQkyrVQRushC+vv J5DMWucne0kVgmOJ2JVnF8hZQAKn08Vlr2fAQ55OIr6ObHA4jUKm38nMgoYAf64U oornc2s7Znkovq/0Gtc0s7BW2kN3kxqU1agfjlVeqq4NnwyLspyEXk/vzDLh51H9 0HU9cVHyp73X+o0d/zKdzQp4aUc2Lwttm48C+lbyNu3Dp9Mk3sPTnZ1mvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJkgbT49L9IpB5pDRTRDVsBV7HhbMB8GA1UdIwQY MBaAFGlyapYTNvvnggs9dI6BL0lchy01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVhKcWxoTTItLWVDQ3oxMGpvRXZTVnlITFRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8yNWU5NzItMjg0Mi00NTE0LThhZGUt YzAxNjZkOTcwMTBkLzEvYVhKcWxoTTItLWVDQ3oxMGpvRXZTVnlITFRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS8yNWU5NzItMjg0Mi00NTE0LThhZGUtYzAxNjZkOTcwMTBk LzEvYVhKcWxoTTItLWVDQ3oxMGpvRXZTVnlITFRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZh9T70t/ vOGgBws7HNgs0dvfXTKeIqbcGUqRDb3tz2WBG1zuXZ4znaD/lamGPMFItZL/7sQu lGSqvGFQocFwfoHqtwlLqvApEkIxDkpKNszC4v9mkiCKdL9ezfmJzBUakuj6npdV 8SipFY6u7dykAfKE4dUTm7HZBUDl0afW3Lsd+/TbZAqvHiBKh74wQrrYGjKMsRB8 LiWKx/YV1/imzMgLLoOz2VRwLVrw4znynIFfqRuo6h3TQhsyG/z50mJ7F1LWkmmF 9ANZqZXP3LHRMlNmXh58cFLtqewyyzZhH9aL1x69YgMG3N8FxEw11alvbAa0llpf 58ojRm+4KvKsxA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:08:09 2025 by rpki-client