This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json) Hash identifier: kubkUYUChXbRiKzaBY7fpzWBuJbTvBJorHrbcxPVbRs= Subject key identifier: 78:C6:47:D3:C8:53:30:94:60:E8:41:ED:98:DC:38:A0:6B:19:F8:35 Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b Certificate serial: 019B4437C797578D0EE0C9F84998B177ED5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft Manifest number: 178E Signing time: Mon 22 Dec 2025 04:01:04 +0000 Manifest this update: Mon 22 Dec 2025 04:01:04 +0000 Manifest next update: Tue 23 Dec 2025 04:01:04 +0000 Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=) 2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: VoQvpUL5RZMp/ALDnlAhW8sbyiAVBoe+aHnylwLDKjo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:37:c7:97:57:8d:0e:e0:c9:f8:49:98:b1:77:ed:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b Validity Not Before: Dec 22 04:01:04 2025 GMT Not After : Dec 23 04:01:04 2025 GMT Subject: CN=78c647d3c853309460e841ed98dc38a06b19f835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d0:b4:d1:fb:42:b5:4b:f7:c7:b2:13:da:91: 58:b6:35:e1:69:ef:ce:dd:4e:ae:3b:43:65:3b:0a: e5:57:08:c5:02:cd:e3:b1:57:9d:88:2e:40:d5:8d: b2:a1:92:bc:33:1d:3c:c9:fd:f7:d4:97:37:d1:d5: 3a:ad:6e:af:c6:09:4b:f3:77:8f:64:2c:61:eb:3c: ba:f3:86:90:3b:95:a2:18:b4:55:32:8e:5a:77:3c: ce:50:c4:3c:11:7f:2e:5c:1c:52:aa:d1:bf:af:37: 65:3c:49:8a:9a:7d:55:db:f4:9e:6c:14:fe:75:24: ec:58:d9:d6:29:e7:9e:70:d7:e3:69:81:c3:e8:eb: 45:76:97:17:6e:9d:bb:2a:57:57:b0:4e:5f:c5:9b: e4:2c:de:77:01:97:79:a9:36:50:54:d7:bf:bf:1c: c6:47:f1:8f:e2:75:62:83:bc:07:9d:54:a7:d5:16: ed:96:0b:5d:b6:d0:98:4d:40:30:97:1b:04:45:89: e8:b9:06:82:60:12:fa:f2:cb:0e:6c:9d:af:c9:61: 3e:e2:84:3d:9b:05:03:45:22:3d:cb:b0:37:94:19: 33:09:b1:4a:e1:b8:a5:be:30:f9:cd:17:4c:74:4c: ce:e3:76:51:5e:b9:51:c4:0c:a2:a3:3e:56:aa:88: 9f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:47:D3:C8:53:30:94:60:E8:41:ED:98:DC:38:A0:6B:19:F8:35 X509v3 Authority Key Identifier: keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:59:64:b2:aa:fb:03:46:04:79:93:f1:6e:1b:d2:56:98:89: e3:ca:df:82:33:17:e3:9f:e7:b1:6b:64:e0:bf:9d:d3:b3:e3: 6c:13:19:08:1d:17:8d:0a:82:fc:f7:f9:3c:16:f4:de:c3:5f: 6e:b8:3d:12:c4:35:38:06:39:b3:b9:87:0d:ba:d8:ad:68:7d: 0c:4f:56:a5:db:c5:c0:8d:eb:7c:5f:fb:d9:1b:2d:12:ca:3c: bb:66:64:06:1a:c0:4e:bb:f6:e5:92:b1:95:2f:de:58:ec:91: cc:53:c8:28:e8:7f:b8:1e:d5:80:31:87:27:d2:97:01:a5:ed: 1b:80:45:34:ab:fd:15:c1:6c:81:21:b2:77:4d:9c:31:f1:f1: 71:38:5a:ff:e3:4b:e6:9d:c7:cf:07:26:d0:44:10:8c:4f:24: cb:f1:a1:35:88:17:7f:01:de:b5:18:37:e2:99:24:d9:cb:4f: bc:64:fb:37:7d:47:29:38:ff:c4:7c:03:fc:de:4c:af:bd:86: 13:fb:7b:e2:23:42:39:21:1c:2d:b5:49:c4:ec:5b:8a:75:65: 03:a1:9d:40:48:0f:25:9c:e0:95:4b:40:69:91:f9:18:06:3c: 78:13:2c:b8:00:a0:c0:29:8e:07:54:55:df:d5:d8:dd:00:7e: 8e:1f:49:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEN8eXV40O4Mn4SZixd+1eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NGU1MTVjYzViZTRlMjdlOWQzZDEzZTVlMWMxMWRjNzUy OTI3NGIwHhcNMjUxMjIyMDQwMTA0WhcNMjUxMjIzMDQwMTA0WjAzMTEwLwYDVQQD Eyg3OGM2NDdkM2M4NTMzMDk0NjBlODQxZWQ5OGRjMzhhMDZiMTlmODM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7NC00ftCtUv3x7IT2pFYtjXhae/O 3U6uO0NlOwrlVwjFAs3jsVediC5A1Y2yoZK8Mx08yf331Jc30dU6rW6vxglL83eP ZCxh6zy684aQO5WiGLRVMo5adzzOUMQ8EX8uXBxSqtG/rzdlPEmKmn1V2/SebBT+ dSTsWNnWKeeecNfjaYHD6OtFdpcXbp27KldXsE5fxZvkLN53AZd5qTZQVNe/vxzG R/GP4nVig7wHnVSn1RbtlgtdttCYTUAwlxsERYnouQaCYBL68ssObJ2vyWE+4oQ9 mwUDRSI9y7A3lBkzCbFK4bilvjD5zRdMdEzO43ZRXrlRxAyioz5WqoifBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHjGR9PIUzCUYOhB7ZjcOKBrGfg1MB8GA1UdIwQY MBaAFGlOUVzFvk4n6dPRPl4cEdx1KSdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYt NTFjNzdjYzQ5MTQ2LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYtNTFjNzdjYzQ5MTQ2 LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD1lksqr7 A0YEeZPxbhvSVpiJ48rfgjMX45/nsWtk4L+d07PjbBMZCB0XjQqC/Pf5PBb03sNf brg9EsQ1OAY5s7mHDbrYrWh9DE9WpdvFwI3rfF/72RstEso8u2ZkBhrATrv25ZKx lS/eWOyRzFPIKOh/uB7VgDGHJ9KXAaXtG4BFNKv9FcFsgSGyd02cMfHxcTha/+NL 5p3Hzwcm0EQQjE8ky/GhNYgXfwHetRg34pkk2ctPvGT7N31HKTj/xHwD/N5Mr72G E/t74iNCOSEcLbVJxOxbinVlA6GdQEgPJZzglUtAaZH5GAY8eBMsuACgwCmOB1RV 39XY3QB+jh9JuA== -----END CERTIFICATE-----Generated at Mon Dec 22 06:11:43 2025 by rpki-client