This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft File: aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft (raw, json) Hash identifier: 8nYQZAsFFwsWaqRNvEw21EwfpkrEZ0rz9jdJUOvow8g= Subject key identifier: 84:1C:28:C3:29:24:88:0C:E5:D0:E8:64:EB:21:0A:B6:D8:E6:9F:B4 Authority key identifier: 69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B Certificate issuer: /CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b Certificate serial: 019B0E2549BBA84A695226A3FC7D06480F79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft Manifest number: 1772 Signing time: Thu 11 Dec 2025 16:01:23 +0000 Manifest this update: Thu 11 Dec 2025 16:01:23 +0000 Manifest next update: Fri 12 Dec 2025 16:01:23 +0000 Files and hashes: 1: 1LWuminfGd450btHCMbnnbPQ_ZE.roa (hash: TISDdBpwKFkkTeSDLc72qwKWM7K/Xn5/55e5YUo0nnQ=) 2: aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl (hash: CGNLJWFZ1SkZncdL7VszxSdhylnMHiE86+QjUfhFvkI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:49:bb:a8:4a:69:52:26:a3:fc:7d:06:48:0f:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=694e515cc5be4e27e9d3d13e5e1c11dc7529274b Validity Not Before: Dec 11 16:01:23 2025 GMT Not After : Dec 12 16:01:23 2025 GMT Subject: CN=841c28c32924880ce5d0e864eb210ab6d8e69fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:10:4b:5e:e9:bf:9f:b9:be:7d:74:6d:e3:32: 2f:6c:90:70:e0:08:15:46:c0:e5:b8:57:5d:bf:d1: 98:a3:89:9f:65:22:35:cc:f3:c8:65:d8:b1:5b:e0: 57:6c:eb:1c:41:85:93:14:e0:d8:b0:f6:58:da:0a: f0:22:87:32:54:19:9b:61:9b:47:28:29:24:70:bf: 7a:73:63:6f:15:52:c3:56:5b:90:11:de:b4:6a:20: 5f:c1:de:e3:10:35:c0:e6:a7:dc:98:c7:57:a1:e7: d0:5c:73:49:37:84:82:09:d4:30:c1:62:1f:54:d8: c3:41:41:c0:8a:3f:37:af:00:67:97:96:30:57:ea: 48:81:e4:73:e4:11:83:97:6c:4a:bc:b1:02:8c:0b: 4c:3d:60:8c:b1:19:e0:8f:74:97:5f:2c:e7:66:3d: d0:14:a4:9c:4f:41:13:a0:df:94:e1:c8:a0:1b:dc: c2:01:0e:36:40:f0:cd:31:ca:7f:62:d1:90:19:1d: 80:cf:38:fd:54:17:32:3c:ae:4d:7e:14:c5:c1:8c: 93:6c:b6:1b:e6:7e:98:aa:a8:5a:f9:6c:e2:a9:6d: 95:41:a0:cc:df:08:b7:d6:de:32:a3:11:48:f3:44: 3a:09:f3:89:e6:a9:8d:23:6d:15:c1:a5:90:8d:9d: 05:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1C:28:C3:29:24:88:0C:E5:D0:E8:64:EB:21:0A:B6:D8:E6:9F:B4 X509v3 Authority Key Identifier: keyid:69:4E:51:5C:C5:BE:4E:27:E9:D3:D1:3E:5E:1C:11:DC:75:29:27:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aU5RXMW-Tifp09E-XhwR3HUpJ0s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/795620-2003-4785-999f-51c77cc49146/1/aU5RXMW-Tifp09E-XhwR3HUpJ0s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:ac:d8:55:a4:7b:43:08:67:2c:8e:8a:4e:94:cb:d5:fa:f1: 0e:74:74:71:53:c4:1d:62:ab:a5:c8:cf:06:fc:27:a7:1d:2d: 5b:be:ee:ed:04:0c:e6:ee:68:d7:9d:40:11:c9:ae:66:3a:1f: 2b:5b:6b:6f:32:07:6d:80:ac:cc:b8:5e:9d:58:bf:b1:ea:fa: 53:25:f9:2e:a8:3a:35:de:c5:fd:f2:03:27:c2:2d:4e:3a:2f: 60:56:d1:db:19:57:7a:f4:f3:a9:71:21:3c:ad:fd:14:5b:34: eb:0e:f2:f0:07:20:5a:95:ba:63:6f:61:d3:a9:d7:cc:38:09: 67:b6:ad:a3:fb:57:65:de:2d:21:3c:52:d7:e5:7e:ad:06:8c: e6:74:4b:51:72:18:2a:1f:21:32:74:74:55:1f:df:d4:e2:d1: 7f:e2:21:ba:0e:0d:78:05:4f:6b:9e:e7:b9:06:3d:1a:69:01: 58:0e:1d:96:c8:b3:01:a1:df:8c:3f:a8:b2:b5:5d:02:e7:80: 63:8c:14:b9:92:6e:61:46:b0:0b:f0:18:a8:c6:b3:87:df:04: eb:38:de:21:b8:ea:d5:72:fe:60:e3:a2:89:3f:69:75:6f:e4: 4e:38:26:e3:96:74:96:20:f4:23:a3:eb:f7:0d:09:7f:1e:a1: 11:30:fe:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJUm7qEppUiaj/H0GSA95MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NGU1MTVjYzViZTRlMjdlOWQzZDEzZTVlMWMxMWRjNzUy OTI3NGIwHhcNMjUxMjExMTYwMTIzWhcNMjUxMjEyMTYwMTIzWjAzMTEwLwYDVQQD Eyg4NDFjMjhjMzI5MjQ4ODBjZTVkMGU4NjRlYjIxMGFiNmQ4ZTY5ZmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3BBLXum/n7m+fXRt4zIvbJBw4AgV RsDluFddv9GYo4mfZSI1zPPIZdixW+BXbOscQYWTFODYsPZY2grwIocyVBmbYZtH KCkkcL96c2NvFVLDVluQEd60aiBfwd7jEDXA5qfcmMdXoefQXHNJN4SCCdQwwWIf VNjDQUHAij83rwBnl5YwV+pIgeRz5BGDl2xKvLECjAtMPWCMsRngj3SXXyznZj3Q FKScT0EToN+U4cigG9zCAQ42QPDNMcp/YtGQGR2Azzj9VBcyPK5NfhTFwYyTbLYb 5n6Yqqha+WziqW2VQaDM3wi31t4yoxFI80Q6CfOJ5qmNI20VwaWQjZ0FtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIQcKMMpJIgM5dDoZOshCrbY5p+0MB8GA1UdIwQY MBaAFGlOUVzFvk4n6dPRPl4cEdx1KSdLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYt NTFjNzdjYzQ5MTQ2LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS83OTU2MjAtMjAwMy00Nzg1LTk5OWYtNTFjNzdjYzQ5MTQ2 LzEvYVU1UlhNVy1UaWZwMDlFLVhod1IzSFVwSjBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF6zYVaR7 QwhnLI6KTpTL1frxDnR0cVPEHWKrpcjPBvwnpx0tW77u7QQM5u5o151AEcmuZjof K1trbzIHbYCszLhenVi/ser6UyX5Lqg6Nd7F/fIDJ8ItTjovYFbR2xlXevTzqXEh PK39FFs06w7y8AcgWpW6Y29h06nXzDgJZ7ato/tXZd4tITxS1+V+rQaM5nRLUXIY Kh8hMnR0VR/f1OLRf+Ihug4NeAVPa57nuQY9GmkBWA4dlsizAaHfjD+osrVdAueA Y4wUuZJuYUawC/AYqMazh98E6zjeIbjq1XL+YOOiiT9pdW/kTjgm45Z0liD0I6Pr 9w0Jfx6hETD+2Q== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:40 2025 by rpki-client