This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json) Hash identifier: HiDpXBcnVJ5dno3QMZZ9RjDRIbVoKe7nB4YJFNabWnk= Subject key identifier: 0A:03:AA:4B:D1:0E:52:7F:70:9A:A3:0E:CF:A4:63:9A:6C:8E:B9:4F Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28 Certificate serial: 019B32D66326F9A96FB5966A75534E7112F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft Manifest number: 0BEC Signing time: Thu 18 Dec 2025 19:01:09 +0000 Manifest this update: Thu 18 Dec 2025 19:01:09 +0000 Manifest next update: Fri 19 Dec 2025 19:01:09 +0000 Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=) 2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: q1DqZIazOU708eM4Eue4xqwqZLM+PxjlpXvhJS0EwS4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:63:26:f9:a9:6f:b5:96:6a:75:53:4e:71:12:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28 Validity Not Before: Dec 18 19:01:09 2025 GMT Not After : Dec 19 19:01:09 2025 GMT Subject: CN=0a03aa4bd10e527f709aa30ecfa4639a6c8eb94f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:36:c8:22:20:ea:99:74:fd:de:12:09:36: 6e:c7:46:07:3b:3f:98:f5:b8:d4:4c:41:4e:38:84: 3f:d0:17:7f:75:ed:21:38:5a:8b:06:4b:43:6b:2c: ba:1e:41:69:89:fd:ea:ea:c7:cc:f6:3d:81:25:da: c2:7b:74:d1:76:26:22:20:f8:51:cc:59:92:e3:b3: 27:df:8f:f9:65:a3:9d:b8:13:4d:b3:67:2a:b0:91: 40:51:43:01:ff:da:d3:81:5b:aa:d3:26:99:86:ed: c1:10:58:03:d9:4c:c7:cf:c5:13:f3:38:44:98:6d: 0d:66:8a:27:5f:19:0e:e3:a5:6d:7b:a6:6a:aa:0b: ab:e1:99:c1:33:7f:cf:4d:3d:d5:d4:20:71:08:cb: c5:d9:cb:4d:3a:8c:55:ae:ca:ab:ee:86:44:dc:82: f3:12:f5:72:13:83:2c:ea:b6:bd:2c:f4:7d:0b:3d: 0e:2a:24:e0:71:dd:65:69:a3:ae:b4:d2:81:33:99: 1c:81:ea:de:5a:be:cc:9f:9f:07:b6:53:24:fb:74: 56:4c:62:30:27:0c:df:10:aa:39:ad:c4:c1:98:ca: df:dd:f0:b1:95:eb:7d:e1:e5:8a:44:6b:36:05:c4: 07:04:26:12:f6:95:ad:7b:49:89:29:19:dd:03:6c: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:03:AA:4B:D1:0E:52:7F:70:9A:A3:0E:CF:A4:63:9A:6C:8E:B9:4F X509v3 Authority Key Identifier: keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:96:46:70:0f:3b:7c:9c:a8:42:74:ab:b0:fc:24:9a:22:24: 2b:ae:fb:88:5b:0a:bf:00:e5:34:56:3c:c4:2f:9b:11:6f:c9: a0:89:4d:c0:6a:76:e0:8c:64:d0:25:c9:81:0c:f0:71:64:c8: 0c:53:4b:f5:0a:8d:12:08:c7:c4:5b:82:1f:bd:6c:76:de:2d: 5c:44:70:1e:18:8d:1d:eb:2f:b4:ec:1d:50:05:c2:79:82:7f: d3:17:79:ea:10:f8:4f:31:df:ae:77:56:fa:ea:65:f9:bc:b2: a7:76:5e:91:5a:04:ab:9c:1c:d8:dd:55:03:fe:c0:5c:39:d5: ad:5c:1d:3a:55:a4:76:1a:01:15:0d:09:fd:02:0e:04:15:b4: fa:e2:c4:4b:c1:c6:67:7e:48:be:ab:5d:84:97:39:b8:33:12: 23:14:45:48:3c:e6:89:e9:60:f2:6b:df:5c:48:1f:79:7a:66: b0:91:c7:5c:6b:ac:5b:83:fa:82:1d:9d:b6:39:2c:d7:ef:58: 31:6f:38:c1:6d:de:c8:b3:a8:75:6f:a5:2a:1a:93:03:f3:cb: 6f:83:e6:0a:72:fa:8d:69:8d:bf:f1:68:74:7a:d9:ac:50:a2: 18:1b:07:9e:50:4f:c3:00:4d:55:06:46:e9:df:3c:6b:9b:d8: b0:09:2e:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1mMm+alvtZZqdVNOcRLwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2 NGZkMjgwHhcNMjUxMjE4MTkwMTA5WhcNMjUxMjE5MTkwMTA5WjAzMTEwLwYDVQQD EygwYTAzYWE0YmQxMGU1MjdmNzA5YWEzMGVjZmE0NjM5YTZjOGViOTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaM2yCIg6pl0/d4SCTZux0YHOz+Y 9bjUTEFOOIQ/0Bd/de0hOFqLBktDayy6HkFpif3q6sfM9j2BJdrCe3TRdiYiIPhR zFmS47Mn34/5ZaOduBNNs2cqsJFAUUMB/9rTgVuq0yaZhu3BEFgD2UzHz8UT8zhE mG0NZoonXxkO46Vte6Zqqgur4ZnBM3/PTT3V1CBxCMvF2ctNOoxVrsqr7oZE3ILz EvVyE4Ms6ra9LPR9Cz0OKiTgcd1laaOutNKBM5kcgereWr7Mn58HtlMk+3RWTGIw JwzfEKo5rcTBmMrf3fCxlet94eWKRGs2BcQHBCYS9pWte0mJKRndA2z+7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAoDqkvRDlJ/cJqjDs+kY5psjrlPMB8GA1UdIwQY MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt MTRjNmI5NTRkOTc2LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2 LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASpZGcA87 fJyoQnSrsPwkmiIkK677iFsKvwDlNFY8xC+bEW/JoIlNwGp24Ixk0CXJgQzwcWTI DFNL9QqNEgjHxFuCH71sdt4tXERwHhiNHesvtOwdUAXCeYJ/0xd56hD4TzHfrndW +upl+byyp3ZekVoEq5wc2N1VA/7AXDnVrVwdOlWkdhoBFQ0J/QIOBBW0+uLES8HG Z35IvqtdhJc5uDMSIxRFSDzmielg8mvfXEgfeXpmsJHHXGusW4P6gh2dtjks1+9Y MW84wW3eyLOodW+lKhqTA/PLb4PmCnL6jWmNv/FodHrZrFCiGBsHnlBPwwBNVQZG 6d88a5vYsAkuOQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:50:51 2025 by rpki-client