This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft File: APTMQSzDD7L598N8PjkL7F5iVrA.mft (raw, json) Hash identifier: 8/2TrvI4P3QSc4zA7060WYgwYqbDXaFfxX5GHNjGVgw= Subject key identifier: AF:3F:DB:2E:B4:2F:CC:5D:22:51:A5:7E:68:40:4E:0D:31:6C:ED:86 Authority key identifier: 00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0 Certificate issuer: /CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0 Certificate serial: 019AF1D187D4AF2A148A9D2AA4BB35CF4010 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft Manifest number: 168E Signing time: Sat 06 Dec 2025 04:00:31 +0000 Manifest this update: Sat 06 Dec 2025 04:00:31 +0000 Manifest next update: Sun 07 Dec 2025 04:00:31 +0000 Files and hashes: 1: 5BciwgNYwMNFn5eFGl4Ow7HBSis.roa (hash: 3UceDm6E5z2xuYBvrfaNWIIbAo66nrZeoQOIOFL2Trc=) 2: APTMQSzDD7L598N8PjkL7F5iVrA.crl (hash: SR1Q6sZ1K3D469dvTpeU1u6SlMsakp9wTyqNdX5Aaa8=) 3: M7SEgufvftwnRCkx-25asjtCovc.roa (hash: U57VYWY1ePii662SbirLo+F12wZ7w8+u4EylfllvMp4=) 4: ebqyf5BiDM6j62bVjaE6r-bdVhw.roa (hash: +MzGy+AsjXhbDBl5ZXZ0wbyW9k0Dlt1wZj2p77zu+Lc=) 5: hoKOermCUGUXPhGJMB3htCGxKbo.roa (hash: C2bDkxfzxHRN/J0tOztxhLbDgje2XNYFfUjponmFTcE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:87:d4:af:2a:14:8a:9d:2a:a4:bb:35:cf:40:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00f4cc412cc30fb2f9f7c37c3e390bec5e6256b0 Validity Not Before: Dec 6 04:00:31 2025 GMT Not After : Dec 7 04:00:31 2025 GMT Subject: CN=af3fdb2eb42fcc5d2251a57e68404e0d316ced86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bf:2d:2d:b6:de:f9:96:7d:ce:57:6d:aa:37: 57:c9:d0:bc:86:56:4d:98:bb:5d:d2:2a:6a:24:d1: d3:0a:fd:ed:00:1e:88:8f:5e:79:d0:37:9e:7f:4e: d8:92:eb:25:79:3f:b6:60:57:7e:9a:20:be:78:97: 02:8e:1a:90:2a:57:d4:95:34:5c:08:9d:9a:1e:68: 8d:71:ae:a3:d2:04:6e:cc:13:4d:9a:4c:d0:c7:9b: 8f:cb:d1:a4:f7:d2:c4:ac:02:66:ab:aa:1e:f8:5e: 0d:7a:fd:0a:e0:39:b6:49:e3:7c:59:13:1f:5b:e0: 52:a1:71:8c:00:fd:d9:70:91:8c:f0:3b:85:01:6c: a4:e6:22:a7:36:84:23:8f:cc:43:1c:43:f5:df:48: 46:38:c4:57:d3:cc:78:9e:b2:d1:35:b8:8d:9a:d8: 10:32:d4:32:3c:df:ed:25:ee:af:b5:25:96:68:b8: dc:97:a7:fb:f9:91:58:13:1b:dd:13:52:6f:c5:65: 56:ac:4f:f3:39:5d:02:78:fe:38:ef:e8:27:05:1b: 01:03:d6:e6:27:30:99:d8:81:88:72:01:8a:cb:2a: ba:2f:d0:84:15:d0:34:45:15:0f:32:51:eb:c6:80: 66:e4:c5:3b:d8:97:5e:8d:ac:44:f2:ca:69:11:fa: 6b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3F:DB:2E:B4:2F:CC:5D:22:51:A5:7E:68:40:4E:0D:31:6C:ED:86 X509v3 Authority Key Identifier: keyid:00:F4:CC:41:2C:C3:0F:B2:F9:F7:C3:7C:3E:39:0B:EC:5E:62:56:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APTMQSzDD7L598N8PjkL7F5iVrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9375a2-3e6f-4577-85d1-5f145cfd2070/1/APTMQSzDD7L598N8PjkL7F5iVrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:e6:4a:5b:a3:5f:d0:3a:6c:95:9b:90:ba:5c:29:11:f2:0a: 7f:3d:88:26:a5:63:a1:f7:2d:e8:96:ed:9d:f2:9e:cf:44:29: a8:59:e3:53:c4:9a:88:23:a2:46:d1:f2:34:b7:c4:a5:b5:ee: c2:3c:34:1d:ea:85:f7:48:3c:7c:60:9a:cf:6b:2e:e4:d4:ef: 47:cc:3d:25:24:b3:dc:62:3a:f1:17:72:cb:ca:13:5b:67:1d: 6a:30:c6:8b:86:a4:a0:86:43:1f:19:58:d0:ce:51:06:a1:83: a2:07:d7:32:4f:38:3c:65:6e:c3:2b:b9:b5:1a:10:c5:a7:de: b9:59:e5:c7:b1:3c:4a:12:17:93:24:00:b2:1e:91:7a:2f:f7: b0:26:b7:0e:35:bc:e3:25:de:c6:e5:27:30:31:4c:09:d3:83: e1:77:2f:2d:69:c4:39:6e:4a:7b:ce:ac:e9:6a:01:1f:4a:70: 99:9b:61:89:72:64:81:08:08:99:5e:58:b9:ae:8a:0b:ef:9b: a8:d4:bb:73:6a:16:7c:0d:8a:a4:39:be:1e:56:e5:c5:cc:13: 64:f4:53:37:ad:ff:3e:a6:35:17:ee:fb:a9:e8:d1:39:e0:6f: 7f:95:2d:80:c6:f2:f5:80:fd:c4:44:17:d4:7a:67:82:e1:19: 1a:5a:e1:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0YfUryoUip0qpLs1z0AQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZjRjYzQxMmNjMzBmYjJmOWY3YzM3YzNlMzkwYmVjNWU2 MjU2YjAwHhcNMjUxMjA2MDQwMDMxWhcNMjUxMjA3MDQwMDMxWjAzMTEwLwYDVQQD EyhhZjNmZGIyZWI0MmZjYzVkMjI1MWE1N2U2ODQwNGUwZDMxNmNlZDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAob8tLbbe+ZZ9zldtqjdXydC8hlZN mLtd0ipqJNHTCv3tAB6Ij1550Deef07YkusleT+2YFd+miC+eJcCjhqQKlfUlTRc CJ2aHmiNca6j0gRuzBNNmkzQx5uPy9Gk99LErAJmq6oe+F4Nev0K4Dm2SeN8WRMf W+BSoXGMAP3ZcJGM8DuFAWyk5iKnNoQjj8xDHEP130hGOMRX08x4nrLRNbiNmtgQ MtQyPN/tJe6vtSWWaLjcl6f7+ZFYExvdE1JvxWVWrE/zOV0CeP447+gnBRsBA9bm JzCZ2IGIcgGKyyq6L9CEFdA0RRUPMlHrxoBm5MU72JdejaxE8sppEfprgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK8/2y60L8xdIlGlfmhATg0xbO2GMB8GA1UdIwQY MBaAFAD0zEEsww+y+ffDfD45C+xeYlawMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEt NWYxNDVjZmQyMDcwLzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy85Mzc1YTItM2U2Zi00NTc3LTg1ZDEtNWYxNDVjZmQyMDcw LzEvQVBUTVFTekREN0w1OThOOFBqa0w3RjVpVnJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACeZKW6Nf 0DpslZuQulwpEfIKfz2IJqVjofct6JbtnfKez0QpqFnjU8SaiCOiRtHyNLfEpbXu wjw0HeqF90g8fGCaz2su5NTvR8w9JSSz3GI68Rdyy8oTW2cdajDGi4akoIZDHxlY 0M5RBqGDogfXMk84PGVuwyu5tRoQxafeuVnlx7E8ShIXkyQAsh6Rei/3sCa3DjW8 4yXexuUnMDFMCdOD4XcvLWnEOW5Ke86s6WoBH0pwmZthiXJkgQgImV5Yua6KC++b qNS7c2oWfA2KpDm+HlblxcwTZPRTN63/PqY1F+77qejROeBvf5UtgMby9YD9xEQX 1HpnguEZGlrhaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:03 2025 by rpki-client