This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json) Hash identifier: 9m6eGtKdENJE9GlWkfleshsqQFgquhqNkEXvHXGMxYg= Subject key identifier: 5D:9C:49:DF:37:57:77:3C:19:15:60:74:B8:21:5C:B5:C0:CC:92:69 Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93 Certificate serial: 019B0E5BB7F78B6096A32C7780C7E697FB36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft Manifest number: 177C Signing time: Thu 11 Dec 2025 17:00:50 +0000 Manifest this update: Thu 11 Dec 2025 17:00:50 +0000 Manifest next update: Fri 12 Dec 2025 17:00:50 +0000 Files and hashes: 1: Mmi06jAh1KR0NNHlTuLcdFXGdm4.roa (hash: Q9joIkxkfDcIZMMuVnLQE37iPkqzALSBCPVV1CY/m7A=) 2: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: zZbSnFq2muSI+yJVyaof1zsHku9hN7BjFbR0iSsnhS4=) 3: bObL7vPF35vh9LuEyJYMk5yU3-U.roa (hash: eG1lFL25ltcNTKgnhPFmeY0axMsTOI37jTMaagRA/AM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:b7:f7:8b:60:96:a3:2c:77:80:c7:e6:97:fb:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93 Validity Not Before: Dec 11 17:00:50 2025 GMT Not After : Dec 12 17:00:50 2025 GMT Subject: CN=5d9c49df3757773c19156074b8215cb5c0cc9269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4e:64:e6:75:98:9b:36:21:90:10:18:09:30: d6:85:09:0e:e1:06:27:2b:66:bc:59:d8:7c:50:62: b1:21:a3:78:59:af:07:45:37:90:a0:df:57:ec:0f: c4:bb:82:34:9e:ab:16:57:97:b8:5e:35:b5:db:09: b5:04:0f:3b:5f:bf:86:f4:2a:f3:1e:aa:17:89:d1: 8d:62:2e:e4:35:14:70:cb:0a:d4:a4:4d:c0:7b:d8: 38:e3:d0:da:06:3f:0b:78:14:45:f0:ee:1b:2a:b6: 10:c9:1b:c1:46:a0:ee:ce:82:8e:d4:ba:10:8b:4a: 30:9d:c2:ec:5b:4d:31:c5:bc:1c:1e:42:28:a3:b6: fa:2f:44:e5:99:2d:62:04:83:6b:19:13:2f:3a:20: b7:d7:be:70:76:e8:fc:6b:88:57:a8:08:4e:4d:b0: df:d1:fe:db:25:d7:fd:80:3e:ad:81:73:11:96:3c: 85:bf:e6:ba:32:59:7b:b9:3c:73:b3:e1:ba:8e:8f: 15:17:df:43:fb:cd:cc:ae:77:d2:21:4c:1e:f2:ee: c9:82:96:a5:06:a1:08:74:25:e7:99:d2:09:d3:a2: e0:1b:64:9c:53:7a:1b:34:d0:f7:58:31:d6:d0:be: 2e:27:c0:1f:93:c6:5a:57:3e:42:aa:de:82:9d:2d: 78:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:9C:49:DF:37:57:77:3C:19:15:60:74:B8:21:5C:B5:C0:CC:92:69 X509v3 Authority Key Identifier: keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:a4:c0:3a:84:1a:64:e7:3f:6f:1a:43:7c:4c:0d:8c:24:70: 2c:04:ea:60:92:59:e4:13:7d:f8:b7:8e:f4:0d:2c:0e:0a:5a: 3a:d5:01:58:c7:93:78:8b:22:71:c5:dd:77:f6:c5:da:db:02: 90:69:d8:8e:22:1c:84:7a:d1:85:d0:3c:13:0e:2e:6c:3e:39: d3:1f:d9:38:c6:67:e6:ef:83:85:fe:f4:cb:44:0a:38:db:e7: 76:1f:ed:7d:66:db:51:03:4f:e3:5f:be:6e:26:ba:df:e3:73: 3f:31:ac:cc:77:92:4d:6f:7b:ce:72:90:cb:9e:79:ad:cd:b0: 24:78:20:c4:45:61:c1:c5:72:b4:4c:7a:62:74:17:c1:5c:fc: bf:20:d3:2f:50:ac:07:86:f5:b8:95:a5:c1:81:a7:62:ba:5a: 9f:a6:be:eb:7e:d1:6a:65:a4:2e:0b:fe:ce:53:36:fd:d2:12: 88:76:4d:77:62:da:b7:e5:c0:08:67:f5:e7:c7:e6:4b:9d:5a: 2f:7b:fd:2f:ce:26:3b:3d:19:90:82:d6:c4:7a:ff:25:24:b2: 2b:46:39:6b:58:8e:6f:30:87:0e:cc:51:55:5b:f4:3f:bd:6a: 14:c9:81:ab:37:cc:48:f6:dc:9e:43:32:29:fc:5d:28:de:79: 21:9f:3f:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW7f3i2CWoyx3gMfml/s2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YThlOTNkM2Y1OTBmNDQ1MGQxZGIzYzIwNzQ1OTgyNDQz NTNlOTMwHhcNMjUxMjExMTcwMDUwWhcNMjUxMjEyMTcwMDUwWjAzMTEwLwYDVQQD Eyg1ZDljNDlkZjM3NTc3NzNjMTkxNTYwNzRiODIxNWNiNWMwY2M5MjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuk5k5nWYmzYhkBAYCTDWhQkO4QYn K2a8Wdh8UGKxIaN4Wa8HRTeQoN9X7A/Eu4I0nqsWV5e4XjW12wm1BA87X7+G9Crz HqoXidGNYi7kNRRwywrUpE3Ae9g449DaBj8LeBRF8O4bKrYQyRvBRqDuzoKO1LoQ i0owncLsW00xxbwcHkIoo7b6L0TlmS1iBINrGRMvOiC3175wduj8a4hXqAhOTbDf 0f7bJdf9gD6tgXMRljyFv+a6Mll7uTxzs+G6jo8VF99D+83MrnfSIUwe8u7Jgpal BqEIdCXnmdIJ06LgG2ScU3obNND3WDHW0L4uJ8Afk8ZaVz5Cqt6CnS14pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF2cSd83V3c8GRVgdLghXLXAzJJpMB8GA1UdIwQY MBaAFGio6T0/WQ9EUNHbPCB0WYJENT6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMt MjVkZDRjYmIzNjk4LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iYjNiMjktODFlNS00NWEyLTgxZWMtMjVkZDRjYmIzNjk4 LzEvYUtqcFBUOVpEMFJRMGRzOElIUlpna1ExUHBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATaTAOoQa ZOc/bxpDfEwNjCRwLATqYJJZ5BN9+LeO9A0sDgpaOtUBWMeTeIsiccXdd/bF2tsC kGnYjiIchHrRhdA8Ew4ubD450x/ZOMZn5u+Dhf70y0QKONvndh/tfWbbUQNP41++ bia63+NzPzGszHeSTW97znKQy555rc2wJHggxEVhwcVytEx6YnQXwVz8vyDTL1Cs B4b1uJWlwYGnYrpan6a+637RamWkLgv+zlM2/dISiHZNd2Lat+XACGf158fmS51a L3v9L84mOz0ZkILWxHr/JSSyK0Y5a1iObzCHDsxRVVv0P71qFMmBqzfMSPbcnkMy KfxdKN55IZ8/vw== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:17 2025 by rpki-client