This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json) Hash identifier: BXMdaWLj+7E5QFtCsolgNsFQ10tmCv/FXYyHTr25jnc= Subject key identifier: EC:B5:71:95:E5:FB:75:E0:45:3A:23:16:1D:68:27:8E:A9:B7:85:52 Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Certificate serial: 019AF2ADEFEEF73E5DA098DB1939475A9068 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft Manifest number: 16B5 Signing time: Sat 06 Dec 2025 08:01:16 +0000 Manifest this update: Sat 06 Dec 2025 08:01:16 +0000 Manifest next update: Sun 07 Dec 2025 08:01:16 +0000 Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=) 2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: ZempMY6GVCstJ/N41LnaPan2n62g7hF/dcug6wWgHdw=) 3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:ef:ee:f7:3e:5d:a0:98:db:19:39:47:5a:90:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Validity Not Before: Dec 6 08:01:16 2025 GMT Not After : Dec 7 08:01:16 2025 GMT Subject: CN=ecb57195e5fb75e0453a23161d68278ea9b78552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:92:d3:33:68:02:bd:ac:98:65:1d:04:46:e0: f7:53:b9:5f:30:d0:6b:6a:53:e8:55:ee:96:7c:48: a6:6a:43:a1:4a:54:6c:48:dd:91:73:c0:22:d8:8e: d9:e7:a7:ef:10:df:99:e9:29:46:c1:f1:7f:12:ec: 3a:08:89:4a:2d:63:b5:1b:ae:07:55:ad:ba:9b:05: b7:c2:c5:ef:9d:55:13:2d:ad:cc:e6:3f:b6:78:f4: aa:53:22:6d:23:64:81:1e:69:54:0b:a4:c4:b4:79: 56:17:67:fc:28:1f:2b:48:94:5c:5d:68:a9:9c:1e: 14:6c:32:e3:cc:87:33:8c:20:a4:8b:7d:ab:80:d0: 28:c1:92:67:a2:a2:b3:b5:01:5b:bf:10:6a:5c:22: ac:fd:7c:6b:97:b8:20:71:a5:3b:2b:d8:fd:dc:30: 8c:8b:8e:e7:25:61:b2:55:73:54:27:1c:50:04:25: 05:4b:43:73:a2:50:e4:79:e9:37:6b:44:45:cf:80: 5b:7f:01:92:6b:bd:0f:6d:21:44:c2:16:08:d0:0c: a1:79:cc:2c:17:e8:dd:c0:9e:e7:1b:90:79:08:4e: 33:1e:0f:1c:9d:ab:c6:d8:de:9c:c3:06:a8:dc:0b: 12:f2:79:8e:97:da:84:55:de:0b:99:e1:f2:5c:b8: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B5:71:95:E5:FB:75:E0:45:3A:23:16:1D:68:27:8E:A9:B7:85:52 X509v3 Authority Key Identifier: keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ca:44:f2:0e:6b:0b:1e:1d:2b:da:bb:ac:96:01:bf:9d:66: 17:b4:ce:65:2b:e1:46:56:ab:3c:be:75:b9:f6:68:d3:ea:cf: 7e:12:67:c7:13:a4:d6:16:97:b5:a9:ff:3e:a8:c0:30:c6:6c: c2:2c:4e:9a:52:a1:01:80:c1:ad:5d:63:6d:8d:75:1e:32:53: bd:3a:ba:b0:67:e6:9e:55:6d:b9:4a:79:7f:07:6e:46:06:a7: 62:39:38:36:e0:d1:5e:a5:16:a5:b7:90:84:19:26:75:26:d0: 1b:ba:fd:74:6c:11:f8:25:b0:e0:8e:31:71:a7:43:6e:60:b3: 74:a0:0f:42:b4:49:a0:28:dc:51:c8:a7:1b:3d:9e:ae:78:48: d0:60:83:1e:b9:5b:47:8f:fc:75:ac:f9:10:3a:57:21:ae:59: 77:46:df:05:00:31:7b:aa:41:c1:f5:61:fc:07:48:de:8d:30: 45:aa:05:e5:d4:ae:96:e7:9e:cc:e4:21:ea:a7:aa:f7:8d:d3: e9:00:ae:57:0a:73:59:3f:92:3a:c3:8e:c3:1c:7f:02:e3:bb: c7:d9:62:cc:d6:78:d6:bd:e4:84:8e:78:31:c0:7b:c4:4c:e7: 64:57:dd:91:31:d2:fb:f2:82:ee:63:17:24:71:0a:84:ab:dc: 1e:f6:ed:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryre/u9z5doJjbGTlHWpBoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzVmMDliM2E5MDM5NTBmM2ZjZDFiMjU1MDg2ZWRlNDg3 NmViMTEwHhcNMjUxMjA2MDgwMTE2WhcNMjUxMjA3MDgwMTE2WjAzMTEwLwYDVQQD EyhlY2I1NzE5NWU1ZmI3NWUwNDUzYTIzMTYxZDY4Mjc4ZWE5Yjc4NTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpLTM2gCvayYZR0ERuD3U7lfMNBr alPoVe6WfEimakOhSlRsSN2Rc8Ai2I7Z56fvEN+Z6SlGwfF/Euw6CIlKLWO1G64H Va26mwW3wsXvnVUTLa3M5j+2ePSqUyJtI2SBHmlUC6TEtHlWF2f8KB8rSJRcXWip nB4UbDLjzIczjCCki32rgNAowZJnoqKztQFbvxBqXCKs/Xxrl7ggcaU7K9j93DCM i47nJWGyVXNUJxxQBCUFS0NzolDkeek3a0RFz4BbfwGSa70PbSFEwhYI0Ayhecws F+jdwJ7nG5B5CE4zHg8cnavG2N6cwwao3AsS8nmOl9qEVd4LmeHyXLjISQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOy1cZXl+3XgRTojFh1oJ46pt4VSMB8GA1UdIwQY MBaAFGjF8Js6kDlQ8/zRslUIbt5IdusRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgt OTQ4MDI2MzZiYWQ5LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgtOTQ4MDI2MzZiYWQ5 LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8pE8g5r Cx4dK9q7rJYBv51mF7TOZSvhRlarPL51ufZo0+rPfhJnxxOk1haXtan/PqjAMMZs wixOmlKhAYDBrV1jbY11HjJTvTq6sGfmnlVtuUp5fwduRganYjk4NuDRXqUWpbeQ hBkmdSbQG7r9dGwR+CWw4I4xcadDbmCzdKAPQrRJoCjcUcinGz2ernhI0GCDHrlb R4/8daz5EDpXIa5Zd0bfBQAxe6pBwfVh/AdI3o0wRaoF5dSulueezOQh6qeq943T 6QCuVwpzWT+SOsOOwxx/AuO7x9lizNZ41r3khI54McB7xEznZFfdkTHS+/KC7mMX JHEKhKvcHvbtxw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:43 2025 by rpki-client