This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft File: AEp1iisKfpOKnw3uZCzsXkECdrU.mft (raw, json) Hash identifier: 7ZglkbldRxgpTJxLAgK/xM/lXrosTwMSaiY3v6iE2nk= Subject key identifier: E5:13:F3:BB:34:D2:77:39:56:6B:77:07:2F:F5:98:B8:41:72:73:4A Authority key identifier: 00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5 Certificate issuer: /CN=004a758a2b0a7e938a9f0dee642cec5e410276b5 Certificate serial: 019AF0886022A34742ADEC76986511AC41C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft Manifest number: 0CCC Signing time: Fri 05 Dec 2025 22:01:00 +0000 Manifest this update: Fri 05 Dec 2025 22:01:00 +0000 Manifest next update: Sat 06 Dec 2025 22:01:00 +0000 Files and hashes: 1: AEp1iisKfpOKnw3uZCzsXkECdrU.crl (hash: K54AwcevRt9idxdjE+39HoHmedx1lXhqzAjV4yaP2qo=) 2: Zu7qmPE7Yu9qaSBN9WsSyKAeY2Y.roa (hash: 6EpeKHcevQPaPF9U/VGXI0S4HRJnkl5xIMQ3xA5Np4w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:60:22:a3:47:42:ad:ec:76:98:65:11:ac:41:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=004a758a2b0a7e938a9f0dee642cec5e410276b5 Validity Not Before: Dec 5 22:01:00 2025 GMT Not After : Dec 6 22:01:00 2025 GMT Subject: CN=e513f3bb34d27739566b77072ff598b84172734a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b8:b9:ec:a4:04:2f:e1:c0:07:d1:36:66:50: 87:56:7f:81:da:c7:dc:20:10:fc:4d:d4:eb:27:ad: b4:9a:d1:2e:d4:d7:80:b1:16:03:e0:77:b0:c2:80: d6:34:9a:01:7f:95:c3:ec:ef:6a:39:db:cf:a3:5c: f1:5c:7e:e3:44:40:5b:44:1c:3e:2a:98:b3:ad:dd: 6d:55:bf:65:4e:01:37:3e:f4:ee:7e:27:93:9a:eb: a5:da:20:d4:16:e7:81:79:a4:09:d1:6f:17:ad:5a: 7f:59:0c:5b:80:bd:14:19:0b:e7:aa:ce:b2:16:96: 78:27:f4:2f:8a:a8:d9:64:a7:7a:2e:76:a4:a9:f4: 59:4d:13:0b:4c:1e:7c:98:77:6f:27:1c:96:b2:1f: 65:3d:3a:18:9d:22:78:cb:7e:e7:5f:30:d2:e2:5b: 75:46:e0:50:00:f3:79:1d:ab:5c:a8:fa:52:9b:af: 44:12:76:fb:38:d9:18:97:33:cb:37:6c:32:da:09: ed:67:53:65:80:d0:aa:2a:ad:97:09:6f:88:28:c0: bb:7d:fe:8a:37:aa:12:0b:ac:63:4e:ad:c5:4a:1d: 58:f0:2d:53:34:55:14:3b:84:08:7a:eb:60:fe:ea: f9:55:67:27:bb:25:26:13:7c:51:9c:b5:7f:79:59: 1f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:13:F3:BB:34:D2:77:39:56:6B:77:07:2F:F5:98:B8:41:72:73:4A X509v3 Authority Key Identifier: keyid:00:4A:75:8A:2B:0A:7E:93:8A:9F:0D:EE:64:2C:EC:5E:41:02:76:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEp1iisKfpOKnw3uZCzsXkECdrU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/bf5915-96aa-4dad-af2a-0110272dec17/1/AEp1iisKfpOKnw3uZCzsXkECdrU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:a4:a8:b3:b9:31:02:b9:77:5d:0c:1f:a4:cd:87:bb:1e:77: 68:59:e0:df:ec:21:04:8f:0a:74:fc:31:5a:6f:35:f6:3f:8a: da:96:9a:ce:f6:96:98:5b:63:f7:b7:82:5e:6c:ce:98:fc:14: 75:b2:36:fa:e9:dd:21:ab:b7:3a:85:d7:2a:80:99:d9:a7:c1: d2:3d:67:26:82:ce:63:30:40:6b:89:1e:d3:36:3c:60:49:b8: 65:d5:bb:f0:08:b6:a6:ab:04:62:e0:e5:21:b3:d7:dd:67:21: a7:bf:23:32:65:b2:21:79:fd:38:c0:73:5f:4d:d7:18:4d:15: 88:b2:61:d0:47:88:c7:df:af:cb:29:bf:ca:bf:16:53:d7:1d: 07:5b:9b:73:f4:6f:a1:cd:f3:f5:e9:92:24:a6:18:c8:1a:b6: 9d:a2:b0:1e:44:74:58:4c:2a:f4:65:0e:63:08:36:62:36:3d: ee:79:cd:98:05:4e:55:0f:a5:14:26:04:73:3e:3d:69:77:5d: e3:bf:5c:b5:f4:a5:87:56:6a:9d:95:09:82:dd:58:0c:25:86: ec:18:e5:65:0a:e7:7f:bd:87:8f:bf:08:06:c6:9e:eb:04:3c: 8b:3b:43:32:4d:e8:8f:e5:72:2c:24:6e:46:aa:ab:85:9b:59: a9:08:1a:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiGAio0dCrex2mGURrEHBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNGE3NThhMmIwYTdlOTM4YTlmMGRlZTY0MmNlYzVlNDEw Mjc2YjUwHhcNMjUxMjA1MjIwMTAwWhcNMjUxMjA2MjIwMTAwWjAzMTEwLwYDVQQD EyhlNTEzZjNiYjM0ZDI3NzM5NTY2Yjc3MDcyZmY1OThiODQxNzI3MzRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7i57KQEL+HAB9E2ZlCHVn+B2sfc IBD8TdTrJ620mtEu1NeAsRYD4HewwoDWNJoBf5XD7O9qOdvPo1zxXH7jREBbRBw+ Kpizrd1tVb9lTgE3PvTufieTmuul2iDUFueBeaQJ0W8XrVp/WQxbgL0UGQvnqs6y FpZ4J/QviqjZZKd6LnakqfRZTRMLTB58mHdvJxyWsh9lPToYnSJ4y37nXzDS4lt1 RuBQAPN5HatcqPpSm69EEnb7ONkYlzPLN2wy2gntZ1NlgNCqKq2XCW+IKMC7ff6K N6oSC6xjTq3FSh1Y8C1TNFUUO4QIeutg/ur5VWcnuyUmE3xRnLV/eVkfZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOUT87s00nc5Vmt3By/1mLhBcnNKMB8GA1UdIwQY MBaAFABKdYorCn6Tip8N7mQs7F5BAna1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEt MDExMDI3MmRlYzE3LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9iZjU5MTUtOTZhYS00ZGFkLWFmMmEtMDExMDI3MmRlYzE3 LzEvQUVwMWlpc0tmcE9LbnczdVpDenNYa0VDZHJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJKSos7kx Arl3XQwfpM2Hux53aFng3+whBI8KdPwxWm819j+K2paazvaWmFtj97eCXmzOmPwU dbI2+undIau3OoXXKoCZ2afB0j1nJoLOYzBAa4ke0zY8YEm4ZdW78Ai2pqsEYuDl IbPX3Wchp78jMmWyIXn9OMBzX03XGE0ViLJh0EeIx9+vyym/yr8WU9cdB1ubc/Rv oc3z9emSJKYYyBq2naKwHkR0WEwq9GUOYwg2YjY97nnNmAVOVQ+lFCYEcz49aXdd 479ctfSlh1ZqnZUJgt1YDCWG7BjlZQrnf72Hj78IBsae6wQ8iztDMk3oj+VyLCRu RqqrhZtZqQgaSQ== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:09 2025 by rpki-client