This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json) Hash identifier: wwen5AyXYAszrpVDwRgU2uAn+SvX2Ys63tNEKqhzo90= Subject key identifier: A9:73:B7:07:8D:0C:E6:EF:A5:8B:40:9A:52:AD:58:12:81:63:09:A3 Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f Certificate serial: 019B38339BB0B64700E8A605563D2506AA47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft Manifest number: 13D9 Signing time: Fri 19 Dec 2025 20:01:04 +0000 Manifest this update: Fri 19 Dec 2025 20:01:04 +0000 Manifest next update: Sat 20 Dec 2025 20:01:04 +0000 Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=) 2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: m8CAbwn+fkH/aoFlpZ1D5ZTkkU4OZXN/ddHgheJaOZI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:9b:b0:b6:47:00:e8:a6:05:56:3d:25:06:aa:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f Validity Not Before: Dec 19 20:01:04 2025 GMT Not After : Dec 20 20:01:04 2025 GMT Subject: CN=a973b7078d0ce6efa58b409a52ad5812816309a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:43:f2:38:66:c7:4a:e2:6c:b3:b2:88:20:fd: 4f:7a:c2:f2:c5:7d:c8:eb:9d:02:e1:e9:af:0a:1f: 82:4c:79:9c:79:ea:ee:be:01:ac:4f:41:1c:35:ae: a6:1b:4f:4a:97:28:01:0e:05:27:0b:93:3e:86:a9: 5d:5a:34:39:24:ef:ab:de:dd:63:12:25:38:30:ef: c1:f2:2e:d7:66:44:a4:51:79:ae:34:22:b5:68:c1: bb:8a:7a:28:88:65:be:49:55:5c:60:77:e0:15:2e: 56:c7:71:be:9f:cf:3d:fc:20:75:d7:b2:02:6e:89: 2b:8e:03:f2:21:97:8a:62:6c:e9:60:90:8f:51:d7: b0:a7:1e:36:22:72:50:ae:47:c5:78:80:6b:db:68: 29:56:b4:aa:8a:3e:74:ed:d0:d7:bf:01:1e:9d:e2: 10:7f:0f:c4:a4:52:45:10:7f:99:17:a5:a7:b6:3b: 39:1d:af:53:62:90:82:2d:51:e3:aa:03:f1:2b:14: b4:e3:e5:7a:d2:c6:eb:b1:82:d9:fc:27:30:ba:dc: 6a:5a:02:9b:a5:f2:85:77:95:c3:bb:20:2c:12:63: 96:0a:a4:54:e7:98:67:83:cb:c6:c4:6f:c3:19:84: f4:dc:63:cd:92:a1:a7:88:e8:07:8e:66:55:2c:a0: b7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:73:B7:07:8D:0C:E6:EF:A5:8B:40:9A:52:AD:58:12:81:63:09:A3 X509v3 Authority Key Identifier: keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:9e:b0:9d:ab:cf:c3:0f:d2:ca:5c:3d:75:cb:31:3e:4b:32: 22:17:db:3a:3a:43:3e:70:d5:71:88:3a:5b:13:2a:dc:a1:1e: ee:47:c2:9f:c6:5e:36:82:35:ee:5d:96:ac:76:e8:62:15:3d: e4:29:63:d5:48:56:ea:0b:a1:ab:b2:fc:ec:08:f1:a2:eb:a2: de:02:39:1b:86:aa:41:8d:fb:60:20:17:78:13:17:3e:15:8d: c0:9c:55:2a:e9:70:01:11:1f:ab:58:1f:9b:2b:f4:9d:3a:6e: 6b:4f:f7:e4:74:5c:02:00:db:2e:a2:70:e6:63:0b:74:d0:25: 1f:c5:34:7f:af:1a:56:2c:87:0f:1a:87:aa:02:cb:62:17:60: 07:00:7f:0b:fe:2e:7a:b6:6d:27:c6:00:32:5c:99:b5:3b:d1: b7:34:50:1c:ad:ea:27:91:fe:92:04:00:35:ec:2e:3b:c9:8d: 12:3c:5e:4e:a0:d8:d2:ff:08:3c:13:70:25:bd:5a:90:cd:c8: 63:8e:56:d9:e6:d5:88:86:2e:74:09:fc:ae:e8:cd:7d:dc:c0: 74:89:12:a8:59:0e:76:b9:ff:92:98:53:98:29:e4:6c:e3:78: b7:ba:cb:2a:d4:94:7e:b5:4a:b4:a5:89:ef:18:f9:e4:04:38: 14:15:1f:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4M5uwtkcA6KYFVj0lBqpHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDJjMjVkMDUzNGE0MDI3YzY5NTU2MmE4Y2U0ZjAwMWNk NTM5NmYwHhcNMjUxMjE5MjAwMTA0WhcNMjUxMjIwMjAwMTA0WjAzMTEwLwYDVQQD EyhhOTczYjcwNzhkMGNlNmVmYTU4YjQwOWE1MmFkNTgxMjgxNjMwOWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00PyOGbHSuJss7KIIP1PesLyxX3I 650C4emvCh+CTHmceeruvgGsT0EcNa6mG09KlygBDgUnC5M+hqldWjQ5JO+r3t1j EiU4MO/B8i7XZkSkUXmuNCK1aMG7inooiGW+SVVcYHfgFS5Wx3G+n889/CB117IC bokrjgPyIZeKYmzpYJCPUdewpx42InJQrkfFeIBr22gpVrSqij507dDXvwEeneIQ fw/EpFJFEH+ZF6Wntjs5Ha9TYpCCLVHjqgPxKxS04+V60sbrsYLZ/CcwutxqWgKb pfKFd5XDuyAsEmOWCqRU55hng8vGxG/DGYT03GPNkqGniOgHjmZVLKC3rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKlztweNDObvpYtAmlKtWBKBYwmjMB8GA1UdIwQY MBaAFGjSwl0FNKQCfGlVYqjOTwAc1TlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEt MTQ3OTdlYWM1MjJlLzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEtMTQ3OTdlYWM1MjJl LzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoJ6wnavP ww/Sylw9dcsxPksyIhfbOjpDPnDVcYg6WxMq3KEe7kfCn8ZeNoI17l2WrHboYhU9 5Clj1UhW6guhq7L87Ajxouui3gI5G4aqQY37YCAXeBMXPhWNwJxVKulwAREfq1gf myv0nTpua0/35HRcAgDbLqJw5mMLdNAlH8U0f68aViyHDxqHqgLLYhdgBwB/C/4u erZtJ8YAMlyZtTvRtzRQHK3qJ5H+kgQANewuO8mNEjxeTqDY0v8IPBNwJb1akM3I Y45W2ebViIYudAn8rujNfdzAdIkSqFkOdrn/kphTmCnkbON4t7rLKtSUfrVKtKWJ 7xj55AQ4FBUfEw== -----END CERTIFICATE-----Generated at Sat Dec 20 00:15:56 2025 by rpki-client