This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: Ry308+JbZqVJD7PqmkFwlZhmeYWVEQeM89t5tDegwa4= Subject key identifier: 56:21:93:5A:06:D0:60:85:1D:1A:97:AC:AD:71:DC:7A:9C:64:40:58 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019B35A10E5EF048136B6CE572DC15087375 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1882 Signing time: Fri 19 Dec 2025 08:01:45 +0000 Manifest this update: Fri 19 Dec 2025 08:01:45 +0000 Manifest next update: Sat 20 Dec 2025 08:01:45 +0000 Files and hashes: 1: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: Zam8/I7+11p/OlDi9dodOKBHMEyckyK9sUtlRgdBoYw=) 2: BY6vuao8dzcdWvFAFv0TrK8gbcs.roa (hash: ZDN7wXgq4/TF65FlyVO+h6CqqGxfq850Jit0suO59Nc=) 3: Gy4BQkIL8-jo1JkeIH41QUjBDjM.roa (hash: GpUKXk0u0UsVOL/OxmPGoTdxb+oJOueuidELp/hZqyI=) 4: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 5: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 6: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 7: UwuhHIRc9qSfEX6XGunAr85dyEA.roa (hash: v6KOr1rmHDt+GxwNeTG+w6jxSzGnr+bSVua9Q4OO8C0=) 8: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 9: gUrUyKlaxz6aQIR9owp7HgtROdE.roa (hash: Sn2ZbhkGVUO1p5ik4KeZ3uzqjHGzkxr7fWeO48lFYvE=) 10: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 11: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a1:0e:5e:f0:48:13:6b:6c:e5:72:dc:15:08:73:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Dec 19 08:01:45 2025 GMT Not After : Dec 20 08:01:45 2025 GMT Subject: CN=5621935a06d060851d1a97acad71dc7a9c644058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b1:be:24:1e:e5:88:89:a4:d8:37:ec:96:a6: af:4b:f9:58:59:d0:f5:b0:d4:73:93:2d:06:29:6b: 55:a7:58:80:05:ca:f1:6f:84:75:f8:6a:92:ac:77: a2:cb:60:73:08:f5:8d:a8:14:42:3a:fb:78:f7:ba: 8d:8a:63:93:83:aa:dd:4b:49:b1:29:86:82:d8:84: b4:6e:d7:96:77:08:5d:1c:d0:fe:66:4b:1a:37:ec: 32:4a:24:89:40:61:ab:31:95:43:ca:f5:28:a8:42: f7:dd:10:94:f4:2d:75:5a:99:9c:44:2e:e8:e2:c9: 54:36:8c:72:8f:d5:92:98:9a:3c:55:8d:f7:84:21: 1e:55:52:28:bc:b0:d7:37:bb:4d:52:5a:65:af:ba: 1b:11:90:af:ac:99:5a:ec:72:3e:57:fd:ea:70:0d: 28:03:5d:29:24:e7:e3:47:ff:61:60:cf:20:78:90: f3:6b:e7:91:69:10:cc:01:18:f4:66:98:da:4e:10: 44:b2:7d:72:46:07:31:c8:a0:0b:72:fa:3f:6f:2a: 95:45:88:3f:ed:08:23:f7:8e:88:9c:95:14:c3:b8: f7:a8:62:c8:51:af:96:b4:42:cb:9d:7a:62:75:ce: 47:1c:53:b8:de:7c:cf:73:07:77:ca:74:8d:a3:5e: 42:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:21:93:5A:06:D0:60:85:1D:1A:97:AC:AD:71:DC:7A:9C:64:40:58 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:35:22:d5:7c:81:ac:ac:85:ff:4f:c6:91:8d:25:3c:92:f0: bf:9b:d5:b2:f5:0e:99:ce:71:c4:d0:d7:67:4a:61:a0:5e:cb: cb:75:12:65:09:1b:e2:a3:1f:ee:72:88:a3:03:99:9f:09:c7: dc:b0:fe:7f:d9:5a:ec:14:1a:36:a8:6e:cc:93:17:88:5e:7b: ac:5e:ad:c2:df:49:8c:ec:dd:b9:05:4f:91:23:ff:2c:ab:04: 9a:0a:5e:37:0b:05:5b:9f:db:7e:5f:28:b7:8e:d3:1e:1b:84: a8:27:b9:67:98:6c:a4:e0:37:f0:33:d9:80:8f:06:8a:0c:16: 28:27:6f:df:1b:d5:8b:ee:8a:67:88:33:3b:7c:62:42:05:c7: 1b:98:72:15:76:66:ef:6e:fc:ba:f8:06:36:c4:3b:2a:1a:f0: eb:93:d1:ee:e5:4c:82:72:e2:2f:2c:22:1a:13:75:0e:19:5f: cb:ad:f7:bf:f5:e8:d2:a6:c5:85:00:37:b8:6f:4e:2b:1e:5a: 2a:1b:9c:79:92:38:1e:89:8c:34:1f:49:e0:4b:f9:47:63:44: a1:77:e3:68:df:c6:b9:51:36:cc:07:8a:ed:2a:33:c9:a6:ba: 7a:4b:86:7c:c2:55:d0:54:ed:ca:5c:76:6b:2c:92:37:62:23: f2:64:a7:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oQ5e8EgTa2zlctwVCHN1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUxMjE5MDgwMTQ1WhcNMjUxMjIwMDgwMTQ1WjAzMTEwLwYDVQQD Eyg1NjIxOTM1YTA2ZDA2MDg1MWQxYTk3YWNhZDcxZGM3YTljNjQ0MDU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbG+JB7liImk2DfslqavS/lYWdD1 sNRzky0GKWtVp1iABcrxb4R1+GqSrHeiy2BzCPWNqBRCOvt497qNimOTg6rdS0mx KYaC2IS0bteWdwhdHND+ZksaN+wySiSJQGGrMZVDyvUoqEL33RCU9C11WpmcRC7o 4slUNoxyj9WSmJo8VY33hCEeVVIovLDXN7tNUlplr7obEZCvrJla7HI+V/3qcA0o A10pJOfjR/9hYM8geJDza+eRaRDMARj0ZpjaThBEsn1yRgcxyKALcvo/byqVRYg/ 7Qgj946InJUUw7j3qGLIUa+WtELLnXpidc5HHFO43nzPcwd3ynSNo15ChwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYhk1oG0GCFHRqXrK1x3HqcZEBYMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeTUi1XyB rKyF/0/GkY0lPJLwv5vVsvUOmc5xxNDXZ0phoF7Ly3USZQkb4qMf7nKIowOZnwnH 3LD+f9la7BQaNqhuzJMXiF57rF6twt9JjOzduQVPkSP/LKsEmgpeNwsFW5/bfl8o t47THhuEqCe5Z5hspOA38DPZgI8GigwWKCdv3xvVi+6KZ4gzO3xiQgXHG5hyFXZm 7278uvgGNsQ7Khrw65PR7uVMgnLiLywiGhN1Dhlfy633v/Xo0qbFhQA3uG9OKx5a KhuceZI4HomMNB9J4Ev5R2NEoXfjaN/GuVE2zAeK7Sozyaa6ekuGfMJV0FTtylx2 ayySN2Ij8mSn+A== -----END CERTIFICATE-----Generated at Fri Dec 19 16:20:17 2025 by rpki-client