This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft File: aQMR37ZbZZViGO_0cZep65akB9s.mft (raw, json) Hash identifier: rFpDPN0DSnL3b/6j56wVDwKdHWL8VI4gXp8aXRtpDSI= Subject key identifier: 05:7D:1B:A6:CA:A1:7C:3B:76:64:7F:DA:0E:ED:60:C9:C8:BC:A7:01 Authority key identifier: 69:03:11:DF:B6:5B:65:95:62:18:EF:F4:71:97:A9:EB:96:A4:07:DB Certificate issuer: /CN=690311dfb65b65956218eff47197a9eb96a407db Certificate serial: 019AF12DF57BE24CAD7D939DB260548AD6D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQMR37ZbZZViGO_0cZep65akB9s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:01:52 +0000 Manifest this update: Sat 06 Dec 2025 01:01:52 +0000 Manifest next update: Sun 07 Dec 2025 01:01:52 +0000 Files and hashes: 1: aQMR37ZbZZViGO_0cZep65akB9s.crl (hash: myFnDdplD4qpZ3chsOGzL4qxtmmgqGKVYVYjn7r0RIQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft rsync://rpki.ripe.net/repository/DEFAULT/aQMR37ZbZZViGO_0cZep65akB9s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:f5:7b:e2:4c:ad:7d:93:9d:b2:60:54:8a:d6:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=690311dfb65b65956218eff47197a9eb96a407db Validity Not Before: Dec 6 01:01:52 2025 GMT Not After : Dec 7 01:01:52 2025 GMT Subject: CN=057d1ba6caa17c3b76647fda0eed60c9c8bca701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:02:65:51:f5:e3:9e:da:d8:00:76:90:45: c9:24:41:3b:42:73:e6:61:3c:83:19:bc:e7:84:65: 15:ee:60:64:60:79:0a:82:23:49:ff:b2:33:81:e9: 82:de:af:07:0a:76:15:a7:7e:35:01:77:de:3a:4e: 15:63:18:95:7b:0c:5e:d7:56:5c:e9:c6:e3:85:8a: a0:9c:b8:0c:3b:79:ac:07:65:8a:06:d7:9e:d9:b6: d0:43:e9:87:03:50:a6:ef:ea:3a:54:1b:82:a7:1b: a9:eb:03:f7:85:b2:74:00:dd:b2:9b:ca:f7:32:68: c0:2b:1c:b7:e9:54:0a:db:32:cf:9a:fe:9f:7f:59: eb:59:79:3e:35:7d:d6:61:4a:de:88:fe:32:11:76: 68:8a:ec:fd:63:aa:db:c5:66:4c:f9:58:13:94:26: 8c:f7:e3:af:c8:fd:fe:c1:0f:9d:95:79:32:5c:2d: d2:6e:b7:71:4e:cb:9b:c4:7a:76:ef:12:a4:cc:66: d1:8f:c2:e7:68:94:48:51:04:54:84:27:03:84:70: 27:61:ff:98:af:8c:10:8c:c1:b2:76:6c:b6:98:d2: a7:c9:dc:a6:9c:ee:18:55:b2:2c:44:d4:8b:3d:50: 40:fa:36:d1:73:32:f4:de:ed:af:54:2f:41:ca:8f: cd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:7D:1B:A6:CA:A1:7C:3B:76:64:7F:DA:0E:ED:60:C9:C8:BC:A7:01 X509v3 Authority Key Identifier: keyid:69:03:11:DF:B6:5B:65:95:62:18:EF:F4:71:97:A9:EB:96:A4:07:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQMR37ZbZZViGO_0cZep65akB9s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/8266a6-39f2-4a9f-a4dd-a456e364cb0e/1/aQMR37ZbZZViGO_0cZep65akB9s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:95:14:38:38:79:63:81:bd:41:17:f1:56:98:4e:16:14:4f: b1:33:ac:d0:da:cf:25:7a:df:cb:ec:05:e0:cb:59:44:1e:c1: fa:4f:dd:07:16:81:46:64:e1:ae:25:31:4c:f3:1b:ec:e1:e4: 72:a7:75:ff:84:c3:32:13:db:1a:e6:d8:a7:bd:2f:d6:37:66: 7d:78:1a:ab:31:bf:bf:1b:73:69:a7:6b:c6:84:15:0b:28:33: 83:1d:cc:f3:da:db:b9:d6:01:9b:66:8e:ed:a8:33:5d:89:85: b1:c1:db:fc:2d:52:ed:f0:6b:ff:01:61:f4:ba:d2:03:65:4b: 20:c6:9b:0c:00:ce:a3:60:74:86:ef:79:f2:40:19:87:ff:2a: 13:0f:39:40:ef:f0:1a:60:dc:5e:00:17:4b:e4:49:d4:da:e2: 68:6a:15:61:67:7c:61:f5:05:c0:95:71:5c:d9:56:81:7d:ee: c1:c9:04:32:67:7b:43:e2:fe:25:c2:27:2a:32:01:f2:cc:b0: 38:49:8f:a3:4c:17:25:f2:04:15:a5:89:98:c2:ce:36:a8:ff: 74:76:fb:09:b3:70:2b:32:db:c2:48:b1:44:ee:08:a0:a7:c0: 7b:ed:b2:80:4b:0f:15:75:62:6d:c7:07:f6:38:c9:66:bc:ab: 77:1c:fe:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLfV74kytfZOdsmBUitbYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5MDMxMWRmYjY1YjY1OTU2MjE4ZWZmNDcxOTdhOWViOTZh NDA3ZGIwHhcNMjUxMjA2MDEwMTUyWhcNMjUxMjA3MDEwMTUyWjAzMTEwLwYDVQQD EygwNTdkMWJhNmNhYTE3YzNiNzY2NDdmZGEwZWVkNjBjOWM4YmNhNzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQICZVH1457a2AB2kEXJJEE7QnPm YTyDGbznhGUV7mBkYHkKgiNJ/7IzgemC3q8HCnYVp341AXfeOk4VYxiVewxe11Zc 6cbjhYqgnLgMO3msB2WKBtee2bbQQ+mHA1Cm7+o6VBuCpxup6wP3hbJ0AN2ym8r3 MmjAKxy36VQK2zLPmv6ff1nrWXk+NX3WYUreiP4yEXZoiuz9Y6rbxWZM+VgTlCaM 9+OvyP3+wQ+dlXkyXC3SbrdxTsubxHp27xKkzGbRj8LnaJRIUQRUhCcDhHAnYf+Y r4wQjMGydmy2mNKnydymnO4YVbIsRNSLPVBA+jbRczL03u2vVC9Byo/NSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAV9G6bKoXw7dmR/2g7tYMnIvKcBMB8GA1UdIwQY MBaAFGkDEd+2W2WVYhjv9HGXqeuWpAfbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVFNUjM3WmJaWlZpR09fMGNaZXA2NWFrQjlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS84MjY2YTYtMzlmMi00YTlmLWE0ZGQt YTQ1NmUzNjRjYjBlLzEvYVFNUjM3WmJaWlZpR09fMGNaZXA2NWFrQjlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS84MjY2YTYtMzlmMi00YTlmLWE0ZGQtYTQ1NmUzNjRjYjBl LzEvYVFNUjM3WmJaWlZpR09fMGNaZXA2NWFrQjlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD5UUODh5 Y4G9QRfxVphOFhRPsTOs0NrPJXrfy+wF4MtZRB7B+k/dBxaBRmThriUxTPMb7OHk cqd1/4TDMhPbGubYp70v1jdmfXgaqzG/vxtzaadrxoQVCygzgx3M89rbudYBm2aO 7agzXYmFscHb/C1S7fBr/wFh9LrSA2VLIMabDADOo2B0hu958kAZh/8qEw85QO/w GmDcXgAXS+RJ1NriaGoVYWd8YfUFwJVxXNlWgX3uwckEMmd7Q+L+JcInKjIB8syw OEmPo0wXJfIEFaWJmMLONqj/dHb7CbNwKzLbwkixRO4IoKfAe+2ygEsPFXVibccH 9jjJZryrdxz+CQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:30 2025 by rpki-client