This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft File: aYVKV6sNijySLI9qeaqP6KaiwJ4.mft (raw, json) Hash identifier: jTIYvlARC3W0Z/7/Ag2ve1xoJuzasXHFPE63TKrARA8= Subject key identifier: FA:55:B6:97:83:70:9E:D5:1E:A9:D5:C2:75:A3:83:68:6A:27:E4:11 Authority key identifier: 69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E Certificate issuer: /CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e Certificate serial: 019B44377B79B9720F8FD3CEBA461C1FA18C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft Manifest number: 11EE Signing time: Mon 22 Dec 2025 04:00:45 +0000 Manifest this update: Mon 22 Dec 2025 04:00:45 +0000 Manifest next update: Tue 23 Dec 2025 04:00:45 +0000 Files and hashes: 1: 8criSeClq2Eu3zzop6X6ae-0yfY.roa (hash: nOinS53G7GkxN9bqxtcws3EdTvx5t+9T2IsaBWfXBg8=) 2: aYVKV6sNijySLI9qeaqP6KaiwJ4.crl (hash: z1qninFFsfagp8NuYPW2s212iXT5DGMPNIuRV9o7doE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:37:7b:79:b9:72:0f:8f:d3:ce:ba:46:1c:1f:a1:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69854a57ab0d8a3c922c8f6a79aa8fe8a6a2c09e Validity Not Before: Dec 22 04:00:45 2025 GMT Not After : Dec 23 04:00:45 2025 GMT Subject: CN=fa55b69783709ed51ea9d5c275a383686a27e411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f4:58:ac:89:7e:2b:87:20:26:e6:a5:6b:25: 03:08:4b:90:1d:f5:fc:79:85:a1:72:cc:e0:b7:9f: 2d:32:6b:a7:34:c5:cd:ee:f5:d5:d8:11:4b:2e:4d: 3d:be:14:7c:31:23:52:b7:d8:22:50:04:ed:b1:ca: 26:99:45:f7:48:2c:e8:46:00:41:a5:e4:81:20:26: f1:4b:03:b8:e7:6e:7b:7a:b0:3e:31:4c:09:a4:e3: 99:10:32:76:da:97:92:42:c2:78:aa:86:96:a9:cb: 48:4b:9b:41:b7:63:91:ae:bd:fa:2c:75:7a:80:93: 7f:7e:05:8a:95:00:c9:84:64:86:d6:fd:0a:e2:d5: 34:bc:bf:b7:bf:68:95:02:6f:04:da:85:ff:a1:53: 3a:35:79:1a:4c:e7:a6:25:88:66:db:43:c5:5d:ed: a2:34:55:d2:d3:af:6a:55:0e:81:1b:79:ad:9c:51: be:d5:b6:1b:aa:89:0a:ac:ca:9c:b2:49:57:6e:77: 29:4b:e1:44:54:3a:e1:11:63:0e:3b:37:ea:f6:a7: 66:54:59:06:6a:53:b4:2b:cf:7f:d2:20:87:56:18: 56:84:30:ef:a5:d4:24:0b:bc:64:78:eb:75:0f:57: 4f:24:a8:c9:1f:89:59:af:e4:bc:b7:f9:cb:a1:d2: 9a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:55:B6:97:83:70:9E:D5:1E:A9:D5:C2:75:A3:83:68:6A:27:E4:11 X509v3 Authority Key Identifier: keyid:69:85:4A:57:AB:0D:8A:3C:92:2C:8F:6A:79:AA:8F:E8:A6:A2:C0:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYVKV6sNijySLI9qeaqP6KaiwJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/3f8107-fc15-4c71-81d4-5238b03545ca/1/aYVKV6sNijySLI9qeaqP6KaiwJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:ae:39:2b:ab:85:31:ac:58:e3:41:ef:83:f9:fd:8e:32:5f: 1c:36:ae:e8:4c:7e:be:1f:60:7d:32:36:13:0f:ee:01:46:e2: 27:0c:c8:cd:85:2a:35:09:f2:29:d0:6d:21:1d:f5:94:fa:2b: 4d:0b:84:1c:c0:b8:da:0c:46:10:3e:67:16:cd:0a:17:5e:31: 44:4d:bc:66:73:87:9c:bd:3b:d7:d1:66:43:ee:81:00:62:eb: c8:25:c9:db:30:c6:78:44:ad:fc:a5:66:0f:1c:2b:ee:d6:86: 01:10:7b:a4:1f:c2:8b:90:b5:2b:b3:c6:a8:ec:9f:5a:dd:06: b6:fb:cb:86:98:f7:ee:97:ee:3b:bb:01:83:78:6f:12:3b:24: be:c7:db:5c:85:89:f1:bd:e1:d7:6d:ed:32:ad:67:13:ee:fa: ee:d1:83:21:85:37:43:56:24:6c:d7:3b:7c:ac:c2:26:3b:31: e7:69:77:1b:c8:a5:a2:6f:e8:01:8b:59:2b:d1:d3:cf:11:da: ef:30:cf:1f:56:e0:25:b6:1d:31:31:24:9d:77:33:e3:e4:0e: 61:f9:ff:8d:75:ea:8d:a8:9a:b0:a0:37:3d:42:6a:13:08:c0: 23:07:f7:91:12:f8:e4:cd:3e:21:f8:7a:0f:93:9b:58:7c:22: 7b:08:10:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEN3t5uXIPj9POukYcH6GMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODU0YTU3YWIwZDhhM2M5MjJjOGY2YTc5YWE4ZmU4YTZh MmMwOWUwHhcNMjUxMjIyMDQwMDQ1WhcNMjUxMjIzMDQwMDQ1WjAzMTEwLwYDVQQD EyhmYTU1YjY5NzgzNzA5ZWQ1MWVhOWQ1YzI3NWEzODM2ODZhMjdlNDExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4fRYrIl+K4cgJualayUDCEuQHfX8 eYWhcszgt58tMmunNMXN7vXV2BFLLk09vhR8MSNSt9giUATtscommUX3SCzoRgBB peSBICbxSwO45257erA+MUwJpOOZEDJ22peSQsJ4qoaWqctIS5tBt2ORrr36LHV6 gJN/fgWKlQDJhGSG1v0K4tU0vL+3v2iVAm8E2oX/oVM6NXkaTOemJYhm20PFXe2i NFXS069qVQ6BG3mtnFG+1bYbqokKrMqcsklXbncpS+FEVDrhEWMOOzfq9qdmVFkG alO0K89/0iCHVhhWhDDvpdQkC7xkeOt1D1dPJKjJH4lZr+S8t/nLodKaawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPpVtpeDcJ7VHqnVwnWjg2hqJ+QRMB8GA1UdIwQY MBaAFGmFSlerDYo8kiyPanmqj+imosCeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQt NTIzOGIwMzU0NWNhLzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8zZjgxMDctZmMxNS00YzcxLTgxZDQtNTIzOGIwMzU0NWNh LzEvYVlWS1Y2c05panlTTEk5cWVhcVA2S2Fpd0o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUK45K6uF MaxY40Hvg/n9jjJfHDau6Ex+vh9gfTI2Ew/uAUbiJwzIzYUqNQnyKdBtIR31lPor TQuEHMC42gxGED5nFs0KF14xRE28ZnOHnL0719FmQ+6BAGLryCXJ2zDGeESt/KVm Dxwr7taGARB7pB/Ci5C1K7PGqOyfWt0GtvvLhpj37pfuO7sBg3hvEjskvsfbXIWJ 8b3h123tMq1nE+767tGDIYU3Q1YkbNc7fKzCJjsx52l3G8ilom/oAYtZK9HTzxHa 7zDPH1bgJbYdMTEknXcz4+QOYfn/jXXqjaiasKA3PUJqEwjAIwf3kRL45M0+Ifh6 D5ObWHwiewgQBw== -----END CERTIFICATE-----Generated at Mon Dec 22 06:14:31 2025 by rpki-client