This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft File: aGOaIXWXlv46HZGfm1c362jXCOQ.mft (raw, json) Hash identifier: 36PLc2Z8L0L5n2nPgqLzukmqXU4MHXqhFXlsPrVh+kQ= Subject key identifier: FC:52:13:95:FF:62:7A:C0:E9:86:ED:14:F6:31:F3:ED:82:33:B5:2F Authority key identifier: 68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4 Certificate issuer: /CN=68639a21759796fe3a1d919f9b5737eb68d708e4 Certificate serial: 019AF20968EA1C851E114EC6320436424230 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft Manifest number: 14AB Signing time: Sat 06 Dec 2025 05:01:34 +0000 Manifest this update: Sat 06 Dec 2025 05:01:34 +0000 Manifest next update: Sun 07 Dec 2025 05:01:34 +0000 Files and hashes: 1: HaUn7tg_GQoLwUeKln7B89E1Zus.roa (hash: UBP04zlDEuw8zGqO58s8vILU4LoszVd4p1cFKyVRANw=) 2: Vaj_SKghwhMr5GkrNo3CpxB4bEs.roa (hash: 2ufypWC+H0u1FT85vML3Y3XXLbc7QafpFQUC4EhAO8E=) 3: aGOaIXWXlv46HZGfm1c362jXCOQ.crl (hash: QDx9AFNuAYYGvcDQzr6F9/QCl7I/UkBZavctI+vY07c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:68:ea:1c:85:1e:11:4e:c6:32:04:36:42:42:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68639a21759796fe3a1d919f9b5737eb68d708e4 Validity Not Before: Dec 6 05:01:34 2025 GMT Not After : Dec 7 05:01:34 2025 GMT Subject: CN=fc521395ff627ac0e986ed14f631f3ed8233b52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:0a:e1:55:c4:95:1a:a9:a4:75:72:06:0a:a0: 91:ca:bf:52:ef:7e:e3:8b:d1:de:e7:43:47:1c:a9: 45:ca:16:22:40:aa:9e:7c:0a:18:25:d3:56:d7:74: 5c:f5:66:19:c0:79:13:a1:af:2b:38:f9:d4:9b:b7: a8:b0:64:53:f2:83:7b:19:3e:94:95:48:88:90:01: 96:2a:50:9b:0e:b6:b8:cd:5f:2d:29:1b:ff:b4:8a: fd:4f:67:ca:a6:07:e2:27:89:a6:32:8c:9b:58:fd: 35:9f:fb:3c:c2:e8:d9:f2:62:35:72:65:a5:e6:c0: 5a:41:8a:c7:9c:7b:27:77:50:f4:62:63:2f:85:a7: 13:47:7d:b7:82:62:40:1a:54:b5:76:e7:a1:98:eb: 6b:25:92:c4:23:2f:34:1f:a8:81:0a:da:8d:bc:ea: cf:0c:22:bd:f7:68:a1:c3:f3:d0:ee:3b:60:37:30: 2b:9b:fd:23:5b:f3:49:41:53:ce:b3:e2:b3:ae:46: 93:d0:d1:2e:a6:1d:95:96:0d:7f:22:2a:90:23:98: 11:5c:d8:b8:16:5d:6b:c3:9c:85:e2:c3:e9:60:cb: 34:3e:7c:9f:a9:65:ab:27:b7:e6:38:db:25:74:03: fd:23:20:dc:0e:7c:68:80:43:ac:6b:82:04:a1:56: 4f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:52:13:95:FF:62:7A:C0:E9:86:ED:14:F6:31:F3:ED:82:33:B5:2F X509v3 Authority Key Identifier: keyid:68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:fc:84:b5:fe:7d:7f:b9:34:ac:31:b1:22:2e:67:5f:a2:9e: 30:a0:48:83:e2:3a:4e:7a:45:67:49:5e:c9:9e:00:70:61:7a: 54:de:e3:4f:13:54:d9:f3:b3:64:fc:e7:1e:4a:10:4f:81:88: 6e:4c:c8:12:18:7f:6a:5c:1a:8a:da:59:b9:af:98:e3:85:e8: 47:7d:01:9d:ff:5b:67:0a:66:88:19:93:1d:ae:6e:3d:46:3e: 88:61:66:ab:88:fc:3a:7e:e3:fd:fd:88:6a:07:00:40:1b:ad: c1:e0:11:f1:e3:f8:fa:55:f0:f4:97:99:86:69:e7:73:e5:db: 34:8f:56:bf:e7:00:f1:cb:58:79:04:4c:2a:35:73:14:7d:b6: 43:b5:7f:be:d6:20:85:72:04:c8:3f:08:a7:b3:0e:72:af:63: 9c:3a:23:b0:c1:5b:b9:82:1a:df:de:79:3b:ca:6c:57:4d:6b: 21:a4:59:a6:56:17:a1:d1:73:6d:d9:0e:9c:fb:0c:c9:f8:99: 80:d8:de:21:c3:d1:c8:99:78:b1:32:f8:4f:e0:bd:f7:f0:d9: 3c:af:77:65:0b:b6:13:3a:33:6a:4b:2f:d7:38:c8:8e:5c:a2: 56:6e:12:dc:13:95:62:5a:af:2b:e1:0a:b5:17:5d:11:70:dd: bb:eb:d6:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWjqHIUeEU7GMgQ2QkIwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NjM5YTIxNzU5Nzk2ZmUzYTFkOTE5ZjliNTczN2ViNjhk NzA4ZTQwHhcNMjUxMjA2MDUwMTM0WhcNMjUxMjA3MDUwMTM0WjAzMTEwLwYDVQQD EyhmYzUyMTM5NWZmNjI3YWMwZTk4NmVkMTRmNjMxZjNlZDgyMzNiNTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwrhVcSVGqmkdXIGCqCRyr9S737j i9He50NHHKlFyhYiQKqefAoYJdNW13Rc9WYZwHkToa8rOPnUm7eosGRT8oN7GT6U lUiIkAGWKlCbDra4zV8tKRv/tIr9T2fKpgfiJ4mmMoybWP01n/s8wujZ8mI1cmWl 5sBaQYrHnHsnd1D0YmMvhacTR323gmJAGlS1duehmOtrJZLEIy80H6iBCtqNvOrP DCK992ihw/PQ7jtgNzArm/0jW/NJQVPOs+KzrkaT0NEuph2Vlg1/IiqQI5gRXNi4 Fl1rw5yF4sPpYMs0PnyfqWWrJ7fmONsldAP9IyDcDnxogEOsa4IEoVZP9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPxSE5X/YnrA6YbtFPYx8+2CM7UvMB8GA1UdIwQY MBaAFGhjmiF1l5b+Oh2Rn5tXN+to1wjkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUdPYUlYV1hsdjQ2SFpHZm0xYzM2MmpYQ09RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9lNTY4MTEtOTgwMS00NTk1LTg3ZTct MTNkMTY4ZDU5YjExLzEvYUdPYUlYV1hsdjQ2SFpHZm0xYzM2MmpYQ09RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9lNTY4MTEtOTgwMS00NTk1LTg3ZTctMTNkMTY4ZDU5YjEx LzEvYUdPYUlYV1hsdjQ2SFpHZm0xYzM2MmpYQ09RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXfyEtf59 f7k0rDGxIi5nX6KeMKBIg+I6TnpFZ0leyZ4AcGF6VN7jTxNU2fOzZPznHkoQT4GI bkzIEhh/alwaitpZua+Y44XoR30Bnf9bZwpmiBmTHa5uPUY+iGFmq4j8On7j/f2I agcAQButweAR8eP4+lXw9JeZhmnnc+XbNI9Wv+cA8ctYeQRMKjVzFH22Q7V/vtYg hXIEyD8Ip7MOcq9jnDojsMFbuYIa3955O8psV01rIaRZplYXodFzbdkOnPsMyfiZ gNjeIcPRyJl4sTL4T+C99/DZPK93ZQu2Ezozaksv1zjIjlyiVm4S3BOVYlqvK+EK tRddEXDdu+vWwA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:37:05 2025 by rpki-client