This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json) Hash identifier: jG8bA67OZ9nxg5RBT4+69p4m3tCsV1gbT8mjd29xEXs= Subject key identifier: B6:25:43:3D:9C:BD:CD:5E:E5:56:0D:01:07:50:E9:E3:AB:17:54:18 Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75 Certificate serial: 019AF19B136F9E8BE7872710E170B260834F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft Manifest number: 03BF Signing time: Sat 06 Dec 2025 03:01:03 +0000 Manifest this update: Sat 06 Dec 2025 03:01:03 +0000 Manifest next update: Sun 07 Dec 2025 03:01:03 +0000 Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=) 2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: zBGMOkiVMewRFQranhRO27DkkFJjJZjGwZ3Rw/ag+ys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:13:6f:9e:8b:e7:87:27:10:e1:70:b2:60:83:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75 Validity Not Before: Dec 6 03:01:03 2025 GMT Not After : Dec 7 03:01:03 2025 GMT Subject: CN=b625433d9cbdcd5ee5560d010750e9e3ab175418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:db:e8:69:45:b6:71:8f:6c:d9:b6:39:3f:69: 3c:b1:fa:8b:fe:c4:b0:d5:4a:bd:b3:c3:59:4f:d3: 24:7c:d8:25:6b:62:67:70:8e:06:c5:cc:a6:60:5e: f2:34:6f:6e:39:81:f9:99:79:67:25:6d:82:89:c7: 0c:12:c7:57:85:24:42:dd:58:13:99:9d:b8:98:6c: c4:65:10:49:b8:6f:55:1d:66:d6:cb:f8:a6:0c:dd: 89:4a:0a:ff:73:4a:b2:3a:d9:1d:c0:74:7a:17:42: d1:0b:99:4c:69:e9:2a:71:da:67:12:15:18:9d:2c: a9:cb:c9:3f:01:ca:65:db:c9:c0:17:7e:b3:2a:f3: 45:73:35:ab:83:a8:bb:ce:50:89:da:a4:c3:31:ce: 0a:8a:65:a6:40:16:70:43:be:92:8c:38:c8:01:48: c7:1f:22:ba:b9:ce:7b:18:21:4b:bc:eb:ab:c9:0c: 9d:15:9d:90:8c:b8:96:41:84:68:a0:d3:4f:b6:ce: 86:a3:7a:1d:53:65:cd:ba:d1:a0:17:bc:5b:83:f4: c7:c4:04:36:a6:da:82:fa:59:05:be:e7:c0:3b:72: 79:1c:39:82:9b:0c:29:cc:b3:c0:e9:b5:8a:fc:83: 32:85:bb:fc:4e:64:54:be:f2:a8:4f:5a:03:d3:12: 03:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:25:43:3D:9C:BD:CD:5E:E5:56:0D:01:07:50:E9:E3:AB:17:54:18 X509v3 Authority Key Identifier: keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:18:9e:c3:d5:35:11:e4:7e:14:a3:46:03:24:c0:c8:df:75: aa:5f:34:82:4c:cb:66:2e:46:31:f8:97:56:b9:9b:05:b4:2a: 5e:60:25:fd:9f:1c:05:50:34:07:af:28:8a:b9:de:b5:2e:27: 65:ed:d5:d0:e4:c8:ef:57:9d:d4:e1:49:43:b4:da:c6:5d:61: 3d:41:9e:d1:2a:fb:21:84:f0:7f:9a:fe:6f:8d:d4:c9:8c:55: 79:56:f6:2d:33:ac:34:fb:66:9a:ab:0e:66:d6:fc:ca:ca:df: 0a:4b:4e:ff:12:66:92:42:76:8a:74:71:a0:05:71:5d:5c:83: 9d:bf:08:28:9b:ea:bb:97:4b:88:90:77:c4:d0:d9:69:7b:fc: 95:e7:f9:77:a3:09:cb:99:c2:3b:fd:0f:66:ba:92:6c:00:49: ae:b6:87:bb:1a:f8:12:f8:37:64:9f:cb:23:0a:bd:84:86:e5: 78:7a:86:cd:0d:2c:73:f3:77:43:d9:2c:c2:e4:68:b4:be:be: 66:68:d9:81:c9:12:71:69:fa:b4:5d:65:7e:c3:9c:18:7b:d3: 1c:0e:99:e9:a7:5c:c9:7e:dd:ef:8b:a4:0b:00:a4:f0:ec:03: db:6b:56:e0:bc:fa:8b:f6:76:6f:44:7a:5e:1d:ed:6e:e6:3e: 28:2a:5e:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmxNvnovnhycQ4XCyYINPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm NTVkNzUwHhcNMjUxMjA2MDMwMTAzWhcNMjUxMjA3MDMwMTAzWjAzMTEwLwYDVQQD EyhiNjI1NDMzZDljYmRjZDVlZTU1NjBkMDEwNzUwZTllM2FiMTc1NDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6dvoaUW2cY9s2bY5P2k8sfqL/sSw 1Uq9s8NZT9MkfNgla2JncI4GxcymYF7yNG9uOYH5mXlnJW2CiccMEsdXhSRC3VgT mZ24mGzEZRBJuG9VHWbWy/imDN2JSgr/c0qyOtkdwHR6F0LRC5lMaekqcdpnEhUY nSypy8k/Acpl28nAF36zKvNFczWrg6i7zlCJ2qTDMc4KimWmQBZwQ76SjDjIAUjH HyK6uc57GCFLvOuryQydFZ2QjLiWQYRooNNPts6Go3odU2XNutGgF7xbg/THxAQ2 ptqC+lkFvufAO3J5HDmCmwwpzLPA6bWK/IMyhbv8TmRUvvKoT1oD0xID/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLYlQz2cvc1e5VYNAQdQ6eOrF1QYMB8GA1UdIwQY MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbhiew9U1 EeR+FKNGAyTAyN91ql80gkzLZi5GMfiXVrmbBbQqXmAl/Z8cBVA0B68oirnetS4n Ze3V0OTI71ed1OFJQ7Taxl1hPUGe0Sr7IYTwf5r+b43UyYxVeVb2LTOsNPtmmqsO Ztb8ysrfCktO/xJmkkJ2inRxoAVxXVyDnb8IKJvqu5dLiJB3xNDZaXv8lef5d6MJ y5nCO/0PZrqSbABJrraHuxr4Evg3ZJ/LIwq9hIbleHqGzQ0sc/N3Q9kswuRotL6+ ZmjZgckScWn6tF1lfsOcGHvTHA6Z6adcyX7d74ukCwCk8OwD22tW4Lz6i/Z2b0R6 Xh3tbuY+KCpe8w== -----END CERTIFICATE-----Generated at Sat Dec 6 12:12:31 2025 by rpki-client