This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft File: aKfCyE_6STTPD3PvGhoaM3hzGCY.mft (raw, json) Hash identifier: 4gKxH4zJEEPOf8hR860AGXm9xz0iGnTh8NcWYl5dpEw= Subject key identifier: 8D:AB:14:58:2F:37:42:B1:0F:98:AD:B8:39:17:AE:AC:53:38:E9:60 Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26 Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826 Certificate serial: 019AF23F72F8452B2217C8549DB697C71F9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft Manifest number: 0E47 Signing time: Sat 06 Dec 2025 06:00:35 +0000 Manifest this update: Sat 06 Dec 2025 06:00:35 +0000 Manifest next update: Sun 07 Dec 2025 06:00:35 +0000 Files and hashes: 1: KnUOYk5bdwDOyPRpWUFQ6FTo7gs.roa (hash: oV64n7K/Nu3TxpzkL+waUqCMMUTsVFeqTi3s1yY0Zn0=) 2: aKfCyE_6STTPD3PvGhoaM3hzGCY.crl (hash: 574ENnap3uwD5JZfjbOltKXYabBJdmo3b7pRHFBy/M8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:72:f8:45:2b:22:17:c8:54:9d:b6:97:c7:1f:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826 Validity Not Before: Dec 6 06:00:35 2025 GMT Not After : Dec 7 06:00:35 2025 GMT Subject: CN=8dab14582f3742b10f98adb83917aeac5338e960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:92:4b:5a:2e:52:3e:03:79:74:99:99:7a:de: 8d:90:28:df:47:86:f5:e2:c2:27:1d:cf:be:19:6e: 55:fe:cd:8f:1d:2f:c8:b0:f3:6c:41:a4:a5:5e:a5: d0:64:e5:16:d9:42:bf:3e:9b:17:32:01:db:0d:24: 9a:f1:b4:2a:2a:16:70:06:e6:9a:0a:42:bc:3d:d3: 39:4c:ec:a4:71:7e:9a:44:61:b1:56:ad:5a:e7:28: 5a:26:70:48:c3:d2:b4:e6:15:95:e0:29:5f:a8:fe: 41:03:e7:e7:e1:a6:bf:80:36:8a:34:49:62:f6:0b: ff:bb:3a:ac:c5:eb:48:46:28:12:6b:e0:0a:4b:c2: a0:e7:68:e2:72:3c:6d:51:ce:3b:d0:20:f8:b1:df: 0f:df:a4:8f:bb:f7:e6:0a:d5:a6:bf:30:22:3c:39: 1c:20:8c:b4:24:2a:b1:81:b9:17:4a:86:1a:df:05: df:01:99:de:d5:87:82:ce:a3:16:a9:c0:ce:c6:a4: f5:f6:0f:53:29:d3:bb:35:9a:87:dd:be:fd:f4:6f: 68:18:bb:23:a1:f6:68:cb:87:f4:68:7e:ae:f4:45: 90:0a:da:33:bb:35:35:54:f8:4c:d8:bb:17:d8:07: e1:b2:20:3f:2c:f1:66:26:6f:69:8a:bd:23:c3:40: b7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AB:14:58:2F:37:42:B1:0F:98:AD:B8:39:17:AE:AC:53:38:E9:60 X509v3 Authority Key Identifier: keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:09:83:6e:62:bf:a2:86:03:61:44:43:cd:1d:f8:d7:36:51: 8e:b4:ad:b8:25:cb:3e:4e:84:04:4b:3c:22:15:c2:0a:d4:d7: e7:11:92:ce:07:b2:7d:b3:50:59:dc:44:86:05:6e:f7:7f:a3: c9:41:fd:7e:30:35:e2:9f:64:e6:76:96:43:d4:3a:74:bc:56: 45:07:41:4a:bf:85:3e:13:70:06:6b:d7:16:3d:68:88:f2:a3: 4d:73:8f:bd:ad:ec:d7:a9:46:79:08:1e:41:2e:f8:b5:9e:1d: a5:1d:41:a2:f5:2a:ac:36:3e:e2:69:72:a9:b8:bd:62:86:77: 28:55:8a:d3:94:7c:c2:f0:1e:11:1f:e2:8c:f0:bb:ab:89:fb: 79:6a:d2:4a:d2:bf:50:da:42:96:2a:be:8d:af:02:12:4e:d4: 43:a2:af:84:72:5a:27:3c:45:ac:2d:2c:f5:2d:6f:d6:62:1c: cb:3a:27:9f:01:8b:e6:5a:ac:a5:81:76:a5:e9:8b:87:36:ff: 46:eb:9f:4f:8d:c1:1b:86:b8:12:30:9a:26:d5:c3:48:9d:ca: b5:84:cf:24:5d:64:24:8d:03:32:f6:e6:f2:0c:3d:97:68:69: 51:03:5e:4f:67:20:3b:21:3d:32:1f:e5:cb:c6:87:fb:a0:70: ee:89:90:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP3L4RSsiF8hUnbaXxx+dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YTdjMmM4NGZmYTQ5MzRjZjBmNzNlZjFhMWExYTMzNzg3 MzE4MjYwHhcNMjUxMjA2MDYwMDM1WhcNMjUxMjA3MDYwMDM1WjAzMTEwLwYDVQQD Eyg4ZGFiMTQ1ODJmMzc0MmIxMGY5OGFkYjgzOTE3YWVhYzUzMzhlOTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJJLWi5SPgN5dJmZet6NkCjfR4b1 4sInHc++GW5V/s2PHS/IsPNsQaSlXqXQZOUW2UK/PpsXMgHbDSSa8bQqKhZwBuaa CkK8PdM5TOykcX6aRGGxVq1a5yhaJnBIw9K05hWV4ClfqP5BA+fn4aa/gDaKNEli 9gv/uzqsxetIRigSa+AKS8Kg52jicjxtUc470CD4sd8P36SPu/fmCtWmvzAiPDkc IIy0JCqxgbkXSoYa3wXfAZne1YeCzqMWqcDOxqT19g9TKdO7NZqH3b799G9oGLsj ofZoy4f0aH6u9EWQCtozuzU1VPhM2LsX2AfhsiA/LPFmJm9pir0jw0C3pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2rFFgvN0KxD5ituDkXrqxTOOlgMB8GA1UdIwQY MBaAFGinwshP+kk0zw9z7xoaGjN4cxgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjct ZGI2ZGRiNGE0NGU1LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9mZTQ1NWQtZjZjZS00MzZjLTgzMjctZGI2ZGRiNGE0NGU1 LzEvYUtmQ3lFXzZTVFRQRDNQdkdob2FNM2h6R0NZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWwmDbmK/ ooYDYURDzR341zZRjrStuCXLPk6EBEs8IhXCCtTX5xGSzgeyfbNQWdxEhgVu93+j yUH9fjA14p9k5naWQ9Q6dLxWRQdBSr+FPhNwBmvXFj1oiPKjTXOPva3s16lGeQge QS74tZ4dpR1BovUqrDY+4mlyqbi9YoZ3KFWK05R8wvAeER/ijPC7q4n7eWrSStK/ UNpCliq+ja8CEk7UQ6KvhHJaJzxFrC0s9S1v1mIcyzonnwGL5lqspYF2pemLhzb/ RuufT43BG4a4EjCaJtXDSJ3KtYTPJF1kJI0DMvbm8gw9l2hpUQNeT2cgOyE9Mh/l y8aH+6Bw7omQWg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:59:12 2025 by rpki-client