This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft File: afURWpSbKIPEzDxJX_uJk97Z2F0.mft (raw, json) Hash identifier: PSQAUuGWydh7eutmdpELSzrndkp8bnC0YTtjy9bEkEU= Subject key identifier: BE:65:4D:05:55:8D:AD:A1:AD:A3:93:0C:C6:29:94:80:96:1A:BD:CD Authority key identifier: 69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D Certificate issuer: /CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d Certificate serial: 019AF38975648B4D9301494C87AD46A715DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft Manifest number: 0180 Signing time: Sat 06 Dec 2025 12:01:03 +0000 Manifest this update: Sat 06 Dec 2025 12:01:03 +0000 Manifest next update: Sun 07 Dec 2025 12:01:03 +0000 Files and hashes: 1: 4BZY4KShEUmhrY8s7jFk_wJEp5k.roa (hash: UlyxYtAIHY75kSHD+hMXhTJxJxd+/SUaiDAFT6/piUg=) 2: afURWpSbKIPEzDxJX_uJk97Z2F0.crl (hash: XXoCKIZcLylrK4G4yl8BxE+vdw6axHCcnmLNljiAXD4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:75:64:8b:4d:93:01:49:4c:87:ad:46:a7:15:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69f5115a949b2883c4cc3c495ffb8993ded9d85d Validity Not Before: Dec 6 12:01:03 2025 GMT Not After : Dec 7 12:01:03 2025 GMT Subject: CN=be654d05558dada1ada3930cc6299480961abdcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6c:d7:2c:24:6a:26:f2:f7:1f:6c:4a:02:ee: 67:72:91:c7:2e:9d:47:fb:e5:d8:e2:e2:35:95:58: c0:0d:bd:fe:8c:2c:72:28:32:9d:2b:dc:c1:dc:82: c1:e7:2e:58:71:af:75:e9:94:fd:2d:96:79:63:ac: b3:e3:8b:e9:c9:63:85:cc:c6:97:d6:25:01:7a:c3: dd:36:9e:66:62:92:5e:06:ba:08:06:77:da:dc:2f: 8d:b8:8d:3f:ef:94:e5:e9:65:08:27:84:d8:a4:f3: bf:79:a7:50:ed:67:cc:82:b3:e1:01:70:45:e4:00: 31:da:ab:b3:6a:88:e4:b3:7f:28:59:89:b0:d1:ba: c9:2c:6b:0a:24:9c:5e:23:0a:a8:10:82:af:bf:75: d7:df:c9:0c:94:29:74:a7:af:f5:62:cd:6c:e7:d3: 42:15:47:d4:5d:49:c5:25:ca:80:03:c8:85:d9:a5: 40:b0:bc:cc:bb:67:fd:c5:28:4c:2b:75:4c:d6:e7: d4:9f:f0:81:7d:eb:fe:75:92:2b:e6:e4:93:23:b6: 33:d7:af:b7:c5:c5:cd:1e:d5:73:08:ca:14:7f:a2: 82:eb:62:89:d9:c7:ea:57:07:8c:4c:78:e9:88:f6: 83:22:f1:42:51:48:2f:7e:8d:48:4b:28:bd:03:f9: 6d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:65:4D:05:55:8D:AD:A1:AD:A3:93:0C:C6:29:94:80:96:1A:BD:CD X509v3 Authority Key Identifier: keyid:69:F5:11:5A:94:9B:28:83:C4:CC:3C:49:5F:FB:89:93:DE:D9:D8:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afURWpSbKIPEzDxJX_uJk97Z2F0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c06536-01aa-4e39-89b6-b58704f28591/1/afURWpSbKIPEzDxJX_uJk97Z2F0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:ad:5b:e6:2a:f7:c7:89:72:7e:16:d3:22:fc:38:46:98:bd: 76:1c:08:62:f9:ac:06:ea:62:42:76:c3:08:ad:ad:de:53:c5: ca:e9:8d:ab:50:c3:93:8a:ce:06:04:7c:3f:70:18:e3:e1:a4: 65:14:32:22:61:00:65:21:c5:6a:7b:8b:28:fe:b2:2f:94:73: 81:ec:17:60:5b:f4:f5:e3:af:fd:cf:c4:7e:75:f9:04:4b:53: 6b:7e:c9:fb:db:f3:e4:1f:47:0b:12:97:61:99:5e:0c:b2:92: 04:64:b2:19:f2:c6:6a:c6:06:79:59:eb:31:9c:c8:0d:b7:f6: 92:2b:8a:9d:ab:74:32:81:bf:ca:ed:97:db:a9:ae:b7:e9:0b: 55:72:b6:27:ba:1c:a1:df:3f:01:20:0d:b1:fd:2c:00:02:9c: 3a:97:2e:08:7e:df:a1:64:27:a9:2c:d9:17:c0:25:71:ec:91: c5:0f:8b:76:84:75:ea:66:13:4e:f9:5c:76:16:3f:d5:13:84: a2:04:05:e6:76:ab:e1:d1:66:0e:f3:6c:0c:d1:9d:22:26:4e: cd:51:18:35:f8:8e:61:ef:6b:1a:5c:1e:bc:12:22:da:3b:cf: 2b:cd:93:58:0b:ec:d6:22:bf:69:98:c8:26:ae:ef:a7:11:08: 3a:14:fe:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziXVki02TAUlMh61GpxXfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZjUxMTVhOTQ5YjI4ODNjNGNjM2M0OTVmZmI4OTkzZGVk OWQ4NWQwHhcNMjUxMjA2MTIwMTAzWhcNMjUxMjA3MTIwMTAzWjAzMTEwLwYDVQQD EyhiZTY1NGQwNTU1OGRhZGExYWRhMzkzMGNjNjI5OTQ4MDk2MWFiZGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mzXLCRqJvL3H2xKAu5ncpHHLp1H ++XY4uI1lVjADb3+jCxyKDKdK9zB3ILB5y5Yca916ZT9LZZ5Y6yz44vpyWOFzMaX 1iUBesPdNp5mYpJeBroIBnfa3C+NuI0/75Tl6WUIJ4TYpPO/eadQ7WfMgrPhAXBF 5AAx2quzaojks38oWYmw0brJLGsKJJxeIwqoEIKvv3XX38kMlCl0p6/1Ys1s59NC FUfUXUnFJcqAA8iF2aVAsLzMu2f9xShMK3VM1ufUn/CBfev+dZIr5uSTI7Yz16+3 xcXNHtVzCMoUf6KC62KJ2cfqVweMTHjpiPaDIvFCUUgvfo1ISyi9A/ltfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL5lTQVVja2hraOTDMYplICWGr3NMB8GA1UdIwQY MBaAFGn1EVqUmyiDxMw8SV/7iZPe2dhdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWZVUldwU2JLSVBFekR4SlhfdUprOTdaMkYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDY1MzYtMDFhYS00ZTM5LTg5YjYt YjU4NzA0ZjI4NTkxLzEvYWZVUldwU2JLSVBFekR4SlhfdUprOTdaMkYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jMDY1MzYtMDFhYS00ZTM5LTg5YjYtYjU4NzA0ZjI4NTkx LzEvYWZVUldwU2JLSVBFekR4SlhfdUprOTdaMkYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAha1b5ir3 x4lyfhbTIvw4Rpi9dhwIYvmsBupiQnbDCK2t3lPFyumNq1DDk4rOBgR8P3AY4+Gk ZRQyImEAZSHFanuLKP6yL5RzgewXYFv09eOv/c/EfnX5BEtTa37J+9vz5B9HCxKX YZleDLKSBGSyGfLGasYGeVnrMZzIDbf2kiuKnat0MoG/yu2X26mut+kLVXK2J7oc od8/ASANsf0sAAKcOpcuCH7foWQnqSzZF8AlceyRxQ+LdoR16mYTTvlcdhY/1ROE ogQF5nar4dFmDvNsDNGdIiZOzVEYNfiOYe9rGlwevBIi2jvPK82TWAvs1iK/aZjI Jq7vpxEIOhT+0A== -----END CERTIFICATE-----Generated at Sat Dec 6 16:52:39 2025 by rpki-client