This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft File: APTMQSzDD7L598N8PjkL7F5iVrA.mft (raw, json) Hash identifier: EHjfAPWitJpJwht1B+9Vc4sEJ/14Rlq4SeSK2zZfM5c= Subject key identifier: 25:89:3E:9E:56:08:C4:21:36:CF:82:3B:F8:8B:43:07:B2:94:8C:4A Authority key identifier: 00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0 Certificate issuer: /CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0 Certificate serial: 019B318CB1F71E74A0563966D2072A920A50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft Manifest number: 16AF Signing time: Thu 18 Dec 2025 13:01:02 +0000 Manifest this update: Thu 18 Dec 2025 13:01:02 +0000 Manifest next update: Fri 19 Dec 2025 13:01:02 +0000 Files and hashes: 1: 5BciwgNYwMNFn5eFGl4Ow7HBSis.roa (hash: 3UceDm6E5z2xuYBvrfaNWIIbAo66nrZeoQOIOFL2Trc=) 2: APTMQSzDD7L598N8PjkL7F5iVrA.crl (hash: dwc3sYfNq17lQBr/P6ZrYWkoQiRNxPSHJwCHa3+ubFI=) 3: M7SEgufvftwnRCkx-25asjtCovc.roa (hash: U57VYWY1ePii662SbirLo+F12wZ7w8+u4EylfllvMp4=) 4: ebqyf5BiDM6j62bVjaE6r-bdVhw.roa (hash: +MzGy+AsjXhbDBl5ZXZ0wbyW9k0Dlt1wZj2p77zu+Lc=) 5: hoKOermCUGUXPhGJMB3htCGxKbo.roa (hash: C2bDkxfzxHRN/J0tOztxhLbDgje2XNYFfUjponmFTcE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:8c:b1:f7:1e:74:a0:56:39:66:d2:07:2a:92:0a:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0 Validity Not Before: Dec 18 13:01:02 2025 GMT Not After : Dec 19 13:01:02 2025 GMT Subject: CN=25893e9e5608c42136cf823bf88b4307b2948c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3e:9b:de:5e:07:b5:1a:45:d8:21:a5:8a:60: 51:e2:cc:b0:37:80:97:28:a8:a0:18:4f:cc:02:29: 9a:a8:ff:a9:5b:a6:8b:43:95:f9:d2:b4:55:05:2e: 40:ce:59:69:5e:8a:2b:b0:f0:4c:63:bc:15:0e:8b: 68:d8:11:8e:57:a8:5f:51:93:65:42:f7:c8:48:4c: 22:6d:c2:44:6a:ff:61:a8:e4:5e:85:f3:b0:d6:c9: 7f:2f:11:82:88:1b:eb:1d:f2:f9:ca:c1:ab:5f:23: 4b:50:22:29:36:f0:ab:b2:27:1e:3d:a2:f0:93:8e: 07:55:47:c4:b7:d6:de:df:65:dc:5d:2c:a3:41:ae: bc:2b:aa:95:d1:22:33:e0:d5:40:59:a7:b0:5d:12: 93:85:ec:f4:8e:45:30:b7:82:a8:97:ce:ca:f0:da: fd:68:91:ee:21:02:f6:6e:88:82:b2:0d:ee:85:9d: d0:ba:ee:ad:f0:96:31:96:6d:e8:f7:bb:d5:83:5a: 9d:6c:49:46:e5:e7:8d:08:c3:b8:a7:be:cc:71:0a: 18:9b:9e:2d:d7:9b:19:78:db:42:13:b5:0e:47:f8: 0e:26:b4:ec:02:df:ff:ed:a8:90:3c:0a:0f:7a:49: bb:08:0a:95:e0:47:80:29:ca:d9:04:f0:34:67:4c: 1e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:89:3E:9E:56:08:C4:21:36:CF:82:3B:F8:8B:43:07:B2:94:8C:4A X509v3 Authority Key Identifier: keyid:00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:db:48:11:f3:ac:63:9e:55:c5:dd:cd:d9:1e:e5:77:cd:a7: ce:09:e2:28:d5:cf:c7:4f:d8:8d:46:92:51:be:7f:4b:35:27: 0f:cc:57:72:2b:f7:dd:b0:0b:76:96:31:6e:59:d6:65:cc:60: d5:ad:f7:de:a8:44:d0:35:ea:39:7e:14:5a:13:b6:05:72:b6: 53:c8:d1:7c:44:2f:ae:4e:4a:1a:51:43:3e:17:df:c3:f7:22: 25:f4:84:0d:73:5f:56:53:3a:74:1b:22:80:03:36:64:dd:91: 0f:23:ab:2b:8a:14:1a:4d:3f:0f:11:9a:43:f5:12:51:9a:e7: 0d:7e:90:36:37:74:4c:61:ba:09:e7:bd:86:fb:c9:9e:3f:ac: ff:31:8b:9a:5b:54:46:55:0d:fa:b1:62:b0:e1:08:e6:5d:a6: e5:4c:45:48:c9:a5:37:8f:f9:f5:23:b9:16:0c:f1:41:f0:f9: 48:a5:3e:63:8d:da:cd:91:58:7a:1d:30:de:5b:62:cd:ca:db: 95:66:8b:79:c2:1c:8c:ea:24:2e:fa:9e:e4:77:b4:7f:94:a6: f3:4c:ea:d6:b3:7d:eb:f5:1e:20:65:19:73:96:2d:a2:4c:ee: 57:17:32:4a:f0:f8:d1:62:63:64:5e:55:ad:10:59:df:7a:34: 77:77:81:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxjLH3HnSgVjlm0gcqkgpQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZjRjYzQxMmNjMzBmYjJmOWY3YzM3YzNlMzkwYmVjNWU2 MjU2YjAwHhcNMjUxMjE4MTMwMTAyWhcNMjUxMjE5MTMwMTAyWjAzMTEwLwYDVQQD EygyNTg5M2U5ZTU2MDhjNDIxMzZjZjgyM2JmODhiNDMwN2IyOTQ4YzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAij6b3l4HtRpF2CGlimBR4sywN4CX KKigGE/MAimaqP+pW6aLQ5X50rRVBS5AzllpXoorsPBMY7wVDoto2BGOV6hfUZNl QvfISEwibcJEav9hqORehfOw1sl/LxGCiBvrHfL5ysGrXyNLUCIpNvCrsicePaLw k44HVUfEt9be32XcXSyjQa68K6qV0SIz4NVAWaewXRKThez0jkUwt4Kol87K8Nr9 aJHuIQL2boiCsg3uhZ3Quu6t8JYxlm3o97vVg1qdbElG5eeNCMO4p77McQoYm54t 15sZeNtCE7UOR/gOJrTsAt//7aiQPAoPekm7CAqV4EeAKcrZBPA0Z0wegQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWJPp5WCMQhNs+CO/iLQweylIxKMB8GA1UdIwQY MBaAFAD0zEEsww+y+ffDfD45C+xeYlawMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEt NWYxNDVjZmQyMDcwLzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEtNWYxNDVjZmQyMDcw LzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKdtIEfOs Y55Vxd3N2R7ld82nzgniKNXPx0/YjUaSUb5/SzUnD8xXciv33bALdpYxblnWZcxg 1a333qhE0DXqOX4UWhO2BXK2U8jRfEQvrk5KGlFDPhffw/ciJfSEDXNfVlM6dBsi gAM2ZN2RDyOrK4oUGk0/DxGaQ/USUZrnDX6QNjd0TGG6Cee9hvvJnj+s/zGLmltU RlUN+rFisOEI5l2m5UxFSMmlN4/59SO5FgzxQfD5SKU+Y43azZFYeh0w3ltizcrb lWaLecIcjOokLvqe5He0f5Sm80zq1rN96/UeIGUZc5YtokzuVxcySvD40WJjZF5V rRBZ33o0d3eBlA== -----END CERTIFICATE-----Generated at Thu Dec 18 14:17:39 2025 by rpki-client