This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json) Hash identifier: dGxPlmxuMw9ZWh9SOi348rmdQckWKN5tZ3nTbEkBzLM= Subject key identifier: D9:87:36:BB:A7:2E:19:4E:AC:5E:EE:41:8E:00:A5:16:17:BA:F5:D6 Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed Certificate serial: 019AF38960D972BBFC758A79A89ADD88E2F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 12:00:57 +0000 Manifest this update: Sat 06 Dec 2025 12:00:57 +0000 Manifest next update: Sun 07 Dec 2025 12:00:57 +0000 Files and hashes: 1: 1ikX92cBkm7W7rHfhLCtgqKM0d8.roa (hash: oY5BxXRyJZhAnRLwWm3V4CClsVP5JaJOwIydkhqNE80=) 2: 2KU1lG8tmW62eqBwxBBDds81m5A.roa (hash: DXWqInrCKLzcQadKZzuaDGdIbNbzO5YygQPkSyOtdqY=) 3: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: SH2GgagEy4ri2kWS79Eb2wi5LpDX76/vSvs3nqLa6DQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:60:d9:72:bb:fc:75:8a:79:a8:9a:dd:88:e2:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed Validity Not Before: Dec 6 12:00:57 2025 GMT Not After : Dec 7 12:00:57 2025 GMT Subject: CN=d98736bba72e194eac5eee418e00a51617baf5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c2:50:83:85:9b:0a:b7:ff:57:c8:c0:2a:0d: 69:71:5f:0c:c2:15:5a:d7:a7:f9:d8:ce:7a:c6:89: d0:05:96:28:d7:cb:f5:37:17:2d:dc:6f:6a:6e:c9: 63:0e:ad:e3:d8:90:e8:bd:a4:d9:2f:45:ed:41:51: 6d:b7:08:6b:3b:df:67:da:61:55:a1:0c:cc:24:20: 74:73:ad:a1:3f:34:9d:d0:6a:b7:21:94:f3:88:d4: 0a:12:a5:8a:bb:e4:3b:a7:20:52:d1:dd:e1:98:ea: 3f:6a:9e:1c:82:5a:52:45:8f:14:65:7e:3f:d2:3e: f2:31:f6:05:4a:02:f1:7b:68:47:e1:75:61:c8:78: 2f:e6:8c:fc:12:53:d3:72:6d:d8:54:da:89:9f:80: e2:3b:5c:83:91:5a:5e:0e:d6:90:db:66:29:0d:5c: 26:77:c2:f9:a4:3d:4c:a8:30:7d:9e:6c:42:4c:27: 0b:1f:2b:f1:f8:3e:9d:c9:f3:2d:a4:65:0e:36:33: 84:13:7c:e7:33:28:d6:db:62:e5:13:48:47:90:0c: ea:c5:48:c1:d5:80:00:7b:d3:64:94:8a:0b:e2:12: 3b:ea:ef:2e:54:60:25:a4:38:bc:44:9b:2e:16:ee: 34:f0:ea:7b:a0:12:62:1b:19:82:ab:69:22:23:dd: da:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:87:36:BB:A7:2E:19:4E:AC:5E:EE:41:8E:00:A5:16:17:BA:F5:D6 X509v3 Authority Key Identifier: keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:ef:2b:3f:cf:92:a0:61:e0:e0:97:47:ac:83:3c:07:af:e0: 06:2a:88:cd:d2:86:60:f7:aa:35:74:f8:2a:63:e0:68:07:c5: 1b:83:0a:d4:2b:ca:e5:71:50:81:cd:bc:1c:8c:42:56:78:82: c2:b2:18:c2:7c:78:15:b3:af:d4:9f:58:5a:df:61:ed:0a:fe: 24:0a:40:21:80:f5:a1:43:89:bf:11:b9:1c:a9:38:3b:90:aa: 21:56:8e:72:c2:0a:0f:0b:11:58:44:c7:d9:fd:90:aa:a7:33: ff:06:bb:d7:79:a0:76:9a:a9:b4:d1:57:55:fc:83:9a:18:9e: 75:6d:3e:05:90:a4:c3:bf:48:d4:73:29:ec:6d:c6:8a:64:48: 20:70:7d:50:28:12:b2:2a:b0:08:91:69:74:0b:a3:d5:9f:8a: 90:e4:72:22:d4:5b:e6:af:26:1d:3e:19:f9:0a:fa:ff:ad:fc: 2b:f4:a0:d0:82:eb:3a:b0:84:6d:2c:43:e7:e5:3f:1e:3e:79: 64:b5:9f:a7:43:80:46:f7:86:2c:4e:ad:85:ea:30:b5:f0:95: 88:a7:32:d4:b6:e0:cf:19:c9:83:56:9d:fc:14:d3:a2:8f:f7: e1:9e:b3:2e:74:72:2a:8f:9f:28:19:ad:3a:25:ec:1c:16:8c: 7a:71:4c:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziWDZcrv8dYp5qJrdiOL0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDQyNWNjN2IxYjc4ODBhODc1Zjc2YmVkYTgwZmUzMTA5 MzE5ZWQwHhcNMjUxMjA2MTIwMDU3WhcNMjUxMjA3MTIwMDU3WjAzMTEwLwYDVQQD EyhkOTg3MzZiYmE3MmUxOTRlYWM1ZWVlNDE4ZTAwYTUxNjE3YmFmNWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsJQg4WbCrf/V8jAKg1pcV8MwhVa 16f52M56xonQBZYo18v1Nxct3G9qbsljDq3j2JDovaTZL0XtQVFttwhrO99n2mFV oQzMJCB0c62hPzSd0Gq3IZTziNQKEqWKu+Q7pyBS0d3hmOo/ap4cglpSRY8UZX4/ 0j7yMfYFSgLxe2hH4XVhyHgv5oz8ElPTcm3YVNqJn4DiO1yDkVpeDtaQ22YpDVwm d8L5pD1MqDB9nmxCTCcLHyvx+D6dyfMtpGUONjOEE3znMyjW22LlE0hHkAzqxUjB 1YAAe9NklIoL4hI76u8uVGAlpDi8RJsuFu408Op7oBJiGxmCq2kiI93a4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmHNrunLhlOrF7uQY4ApRYXuvXWMB8GA1UdIwQY MBaAFGjUJcx7G3iAqHX3a+2oD+MQkxntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2Et NWM0NWI2MThmOTkwLzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2EtNWM0NWI2MThmOTkw LzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhe8rP8+S oGHg4JdHrIM8B6/gBiqIzdKGYPeqNXT4KmPgaAfFG4MK1CvK5XFQgc28HIxCVniC wrIYwnx4FbOv1J9YWt9h7Qr+JApAIYD1oUOJvxG5HKk4O5CqIVaOcsIKDwsRWETH 2f2Qqqcz/wa713mgdpqptNFXVfyDmhiedW0+BZCkw79I1HMp7G3GimRIIHB9UCgS siqwCJFpdAuj1Z+KkORyItRb5q8mHT4Z+Qr6/638K/Sg0ILrOrCEbSxD5+U/Hj55 ZLWfp0OARveGLE6theowtfCViKcy1LbgzxnJg1ad/BTToo/34Z6zLnRyKo+fKBmt OiXsHBaMenFMgQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:19:55 2025 by rpki-client