This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft File: aaEKEpVYyDgLwT2axFQB0h2rnfA.mft (raw, json) Hash identifier: +oku4BBi23/lrqLMsEDSn/pZffG1cXgBpziSz90Hp6o= Subject key identifier: 4F:7B:58:EA:D7:DF:F1:6A:D4:05:18:EC:F3:D3:9D:A2:44:43:F6:DB Authority key identifier: 69:A1:0A:12:95:58:C8:38:0B:C1:3D:9A:C4:54:01:D2:1D:AB:9D:F0 Certificate issuer: /CN=69a10a129558c8380bc13d9ac45401d21dab9df0 Certificate serial: 019AF12CFE7982BB70EB2B185BDFBB46F8B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaEKEpVYyDgLwT2axFQB0h2rnfA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:00:48 +0000 Manifest this update: Sat 06 Dec 2025 01:00:48 +0000 Manifest next update: Sun 07 Dec 2025 01:00:48 +0000 Files and hashes: 1: aaEKEpVYyDgLwT2axFQB0h2rnfA.crl (hash: 14+RoJO/z/yxy8SsOVI8ejmhDEgHOG8Vgb0f2sljE7Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft rsync://rpki.ripe.net/repository/DEFAULT/aaEKEpVYyDgLwT2axFQB0h2rnfA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:fe:79:82:bb:70:eb:2b:18:5b:df:bb:46:f8:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a10a129558c8380bc13d9ac45401d21dab9df0 Validity Not Before: Dec 6 01:00:48 2025 GMT Not After : Dec 7 01:00:48 2025 GMT Subject: CN=4f7b58ead7dff16ad40518ecf3d39da24443f6db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:44:1b:2c:91:31:c3:39:fe:67:12:44:76:7f: 2d:99:30:6c:4e:7e:81:f9:89:65:f7:99:2c:b4:f1: 18:9e:e5:c7:9c:81:e7:33:2d:5c:23:eb:f0:65:ec: 40:23:7a:6f:bd:8a:f3:b9:16:6b:d4:0d:4d:57:dd: 61:95:1c:d1:ca:46:7b:b0:b2:6e:d1:4d:72:e1:00: 8e:06:11:ec:32:c4:c7:3f:71:48:74:c9:20:0a:8b: a2:be:66:de:0c:94:6b:e9:aa:32:25:97:31:df:e0: 9d:83:87:99:69:4b:58:e7:5a:0f:7f:c9:ac:b2:2a: 6e:5b:59:9b:57:df:73:d4:7f:c2:25:f0:a9:62:ca: ad:82:8f:56:b2:26:ad:f5:d8:6c:77:57:cf:8b:8a: 30:5d:b0:5c:01:de:35:19:64:d8:96:6a:18:ff:8b: a5:cd:e6:87:46:35:00:b5:a5:a6:65:cd:31:e9:06: 30:91:cc:58:6a:ef:98:fe:cf:37:e3:75:1e:0e:9d: ca:a9:a5:48:85:78:bc:b1:14:2c:d8:ef:ab:e9:07: 02:3a:68:ee:e2:bc:25:9d:64:d2:fc:7f:f6:c8:93: 8f:50:b4:b2:51:3d:35:17:00:c5:6d:9b:bd:16:34: e8:bb:de:5e:f3:64:f6:ac:5a:25:c5:42:c7:9f:b5: 9e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7B:58:EA:D7:DF:F1:6A:D4:05:18:EC:F3:D3:9D:A2:44:43:F6:DB X509v3 Authority Key Identifier: keyid:69:A1:0A:12:95:58:C8:38:0B:C1:3D:9A:C4:54:01:D2:1D:AB:9D:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaEKEpVYyDgLwT2axFQB0h2rnfA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:f8:b7:fa:49:29:38:8f:61:bd:f8:55:2c:4b:87:a0:bd:28: 7d:cd:4a:b5:fa:ea:94:d9:5c:c1:dd:33:9e:f5:f8:1a:58:a0: 77:a1:fc:99:85:b6:67:2f:6d:5e:53:d7:c9:e8:bf:97:ac:f2: c3:32:ce:26:09:ee:fa:dd:dc:63:71:1e:65:13:ac:12:f0:6f: b9:e0:8a:f8:c2:4c:d6:a8:81:c3:b8:f8:b4:e5:8e:f6:46:c9: 69:7d:dc:e6:dd:4f:cc:96:b6:fc:8f:05:50:2c:4c:e9:f7:2f: 06:65:00:4d:fe:49:d2:ab:60:e9:dd:d2:72:db:7e:6b:b7:3c: 1a:7f:60:ab:41:cb:30:a8:59:87:4a:ea:94:3d:f2:45:19:f4: 95:ff:e2:c5:55:7b:c7:69:18:a3:d7:4b:9b:85:b4:61:56:f3: 52:e4:87:5d:45:1f:35:68:3f:5f:06:38:6e:44:0d:ae:76:1e: 70:5f:72:c1:c5:0f:09:8d:52:b3:0f:fa:e8:bb:8e:31:bb:8b: 05:d6:09:97:86:35:26:e8:d1:94:c8:c5:f2:11:91:2e:bc:4e: e8:84:bb:d8:7b:60:7a:8a:23:8a:a3:1b:80:13:c9:7a:f9:10: 89:f3:35:cf:0b:d3:62:3c:d1:3c:46:f1:f6:c5:16:36:58:b5: cf:bf:99:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLP55grtw6ysYW9+7Rvi1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTEwYTEyOTU1OGM4MzgwYmMxM2Q5YWM0NTQwMWQyMWRh YjlkZjAwHhcNMjUxMjA2MDEwMDQ4WhcNMjUxMjA3MDEwMDQ4WjAzMTEwLwYDVQQD Eyg0ZjdiNThlYWQ3ZGZmMTZhZDQwNTE4ZWNmM2QzOWRhMjQ0NDNmNmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUQbLJExwzn+ZxJEdn8tmTBsTn6B +Yll95kstPEYnuXHnIHnMy1cI+vwZexAI3pvvYrzuRZr1A1NV91hlRzRykZ7sLJu 0U1y4QCOBhHsMsTHP3FIdMkgCouivmbeDJRr6aoyJZcx3+Cdg4eZaUtY51oPf8ms sipuW1mbV99z1H/CJfCpYsqtgo9Wsiat9dhsd1fPi4owXbBcAd41GWTYlmoY/4ul zeaHRjUAtaWmZc0x6QYwkcxYau+Y/s8343UeDp3KqaVIhXi8sRQs2O+r6QcCOmju 4rwlnWTS/H/2yJOPULSyUT01FwDFbZu9FjTou95e82T2rFolxULHn7WecwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE97WOrX3/Fq1AUY7PPTnaJEQ/bbMB8GA1UdIwQY MBaAFGmhChKVWMg4C8E9msRUAdIdq53wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFFS0VwVll5RGdMd1QyYXhGUUIwaDJybmZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yYTZmYjAtNDhiMi00ZjkzLTg1NWIt ODc3YzY1YjAxNDU2LzEvYWFFS0VwVll5RGdMd1QyYXhGUUIwaDJybmZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8yYTZmYjAtNDhiMi00ZjkzLTg1NWItODc3YzY1YjAxNDU2 LzEvYWFFS0VwVll5RGdMd1QyYXhGUUIwaDJybmZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATfi3+kkp OI9hvfhVLEuHoL0ofc1KtfrqlNlcwd0znvX4Gligd6H8mYW2Zy9tXlPXyei/l6zy wzLOJgnu+t3cY3EeZROsEvBvueCK+MJM1qiBw7j4tOWO9kbJaX3c5t1PzJa2/I8F UCxM6fcvBmUATf5J0qtg6d3Sctt+a7c8Gn9gq0HLMKhZh0rqlD3yRRn0lf/ixVV7 x2kYo9dLm4W0YVbzUuSHXUUfNWg/XwY4bkQNrnYecF9ywcUPCY1Ssw/66LuOMbuL BdYJl4Y1JujRlMjF8hGRLrxO6IS72HtgeoojiqMbgBPJevkQifM1zwvTYjzRPEbx 9sUWNli1z7+ZPw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:31:45 2025 by rpki-client