This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft File: AH5rWqQ302kxUVAqIRSW431K4sU.mft (raw, json) Hash identifier: yecUvmKg3kOZbwH+A0oduPRKuXPDFuMGYuOOYdrIlbs= Subject key identifier: 68:8E:C4:3D:00:D5:29:15:CA:78:7D:A0:1F:89:DD:7F:DF:BD:BF:45 Authority key identifier: 00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5 Certificate issuer: /CN=007e6b5aa437d3693151502a211496e37d4ae2c5 Certificate serial: 019B3079ED8831A3AE1A5B950350B07CE89C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft Manifest number: 1500 Signing time: Thu 18 Dec 2025 08:00:55 +0000 Manifest this update: Thu 18 Dec 2025 08:00:55 +0000 Manifest next update: Fri 19 Dec 2025 08:00:55 +0000 Files and hashes: 1: 6F_Q4XpRKgEexZcCv84M_kGGwx8.roa (hash: jzUe5knYI2NZSGwBtOwn1dJh+2wMTZvaI6KEnoCDN6M=) 2: AH5rWqQ302kxUVAqIRSW431K4sU.crl (hash: GFZRud6Uk3PYfr/jbLJeuK572ctkai9fOlyDKXpmXuU=) 3: Ry-o6BvHlNuOD_d14wdLVmhDsgM.roa (hash: S/jHrYJPbAAtdA+RZZOotd+GpMfWfmGdhS0b8Kc0V30=) 4: VFSqRzcGMZ3Y2JFZb1Fsblb27nQ.roa (hash: UUfcXkF0GWrqVSNu+3z9VDCb/uLRbXj4ZsTEe5POQ7M=) 5: W_b0Ax5Mpx_fhvv-92F8GttV04I.roa (hash: y/SVVGY3IuSmMubg1JbInzxD9q8qop1Ol37UDvpp3pE=) 6: gZrmTs3ukQIINjYb9akCKLL_iZM.roa (hash: WbSg2tywBgMqpLgEuUZPOKgd7CPp10c7QuJJvyuvaco=) 7: mV18Ah11BcP39CQhLtpf79pVug8.roa (hash: RGt06BrejPetx9+VOGQ2Y1/RTWPMTF5VhkkYrYGyW40=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 08:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:79:ed:88:31:a3:ae:1a:5b:95:03:50:b0:7c:e8:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=007e6b5aa437d3693151502a211496e37d4ae2c5 Validity Not Before: Dec 18 08:00:55 2025 GMT Not After : Dec 19 08:00:55 2025 GMT Subject: CN=688ec43d00d52915ca787da01f89dd7fdfbdbf45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:23:8f:d2:ee:de:46:f0:0f:34:9e:e4:77:9b: 2a:db:c3:76:cf:a5:fd:a9:6d:38:21:e2:15:2d:13: ca:ab:9c:cf:06:c9:9d:ef:39:b5:ed:a9:b6:eb:73: ec:04:60:86:7a:fe:b3:8d:e3:3b:57:5c:63:2d:41: 83:1b:84:9b:fb:2f:26:be:f4:9a:02:22:f2:0e:c1: c7:08:a6:e7:b3:f7:03:2e:89:ad:b4:ef:70:69:8f: cc:6d:36:dc:46:07:f1:a9:f7:8f:01:e1:27:dc:0d: bb:45:42:a8:67:99:55:6f:1b:8c:ca:9f:56:9f:47: 9c:10:f4:6a:99:fe:1c:19:05:85:3f:e9:37:c5:b9: 05:5f:cb:89:95:7d:2c:75:29:67:71:25:c5:5f:d8: 85:72:7f:04:80:21:7d:a8:62:65:79:d1:e3:3f:c0: 3a:ca:67:ae:a2:d3:77:94:ea:3b:2c:4c:81:09:5d: 9e:50:6f:03:aa:c2:48:59:1c:5d:64:ee:60:76:ad: c2:a6:26:95:7d:42:af:8d:7b:48:17:74:28:e0:78: ec:0b:22:f6:a9:97:d7:a9:5e:6c:76:b1:d0:4e:af: e8:6c:56:71:8a:09:1e:8e:8e:2c:42:5e:47:66:ca: 1b:f1:f2:a8:0d:8d:a4:ea:39:37:04:f4:46:11:06: 2a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8E:C4:3D:00:D5:29:15:CA:78:7D:A0:1F:89:DD:7F:DF:BD:BF:45 X509v3 Authority Key Identifier: keyid:00:7E:6B:5A:A4:37:D3:69:31:51:50:2A:21:14:96:E3:7D:4A:E2:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AH5rWqQ302kxUVAqIRSW431K4sU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/518fab-7606-4832-aa66-5a8c67842389/1/AH5rWqQ302kxUVAqIRSW431K4sU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:50:32:68:3a:f8:5b:48:8f:23:f3:a5:b1:1b:1d:a1:aa:bd: a3:56:81:1a:ca:9d:d4:ce:63:b7:2e:87:d6:dc:60:f1:82:d6: 34:f2:e7:72:83:8e:da:ba:54:6e:68:0a:02:6d:82:a2:f3:6c: 88:61:9e:a6:79:c2:fa:c7:36:5a:f6:2c:5d:5e:52:63:81:e9: 9b:8d:ef:7d:36:a2:8a:36:6b:6b:e1:77:9d:64:78:00:6c:4f: e8:55:8e:66:d5:37:33:9f:33:4e:e1:a0:e1:69:5e:fb:97:5e: 95:6c:e1:3c:d1:85:b7:ac:74:27:32:98:0a:f0:a1:85:2c:36: eb:7e:1f:5e:42:a1:9f:43:86:26:93:27:be:16:a1:c5:69:5a: f7:48:b3:2e:09:d5:9c:cf:42:7e:6c:fa:e7:e9:38:62:81:44: 80:af:2a:70:52:eb:dd:e3:95:0d:bd:60:8c:5e:73:4a:ba:69: 28:51:dc:5a:32:51:92:7e:10:16:70:2c:f7:e1:68:da:ba:7c: 7f:8e:d9:e1:8f:29:fe:b6:82:ac:97:8c:8f:68:3f:19:e6:f7: ff:ad:87:0c:3d:af:70:db:c6:e7:ba:89:1c:a3:97:a4:08:22: 1a:55:3e:b2:87:a4:58:32:16:52:c6:7a:a9:a4:4a:0b:93:0a: f6:9a:20:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswee2IMaOuGluVA1CwfOicMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwN2U2YjVhYTQzN2QzNjkzMTUxNTAyYTIxMTQ5NmUzN2Q0 YWUyYzUwHhcNMjUxMjE4MDgwMDU1WhcNMjUxMjE5MDgwMDU1WjAzMTEwLwYDVQQD Eyg2ODhlYzQzZDAwZDUyOTE1Y2E3ODdkYTAxZjg5ZGQ3ZmRmYmRiZjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCOP0u7eRvAPNJ7kd5sq28N2z6X9 qW04IeIVLRPKq5zPBsmd7zm17am263PsBGCGev6zjeM7V1xjLUGDG4Sb+y8mvvSa AiLyDsHHCKbns/cDLomttO9waY/MbTbcRgfxqfePAeEn3A27RUKoZ5lVbxuMyp9W n0ecEPRqmf4cGQWFP+k3xbkFX8uJlX0sdSlncSXFX9iFcn8EgCF9qGJledHjP8A6 ymeuotN3lOo7LEyBCV2eUG8DqsJIWRxdZO5gdq3CpiaVfUKvjXtIF3Qo4HjsCyL2 qZfXqV5sdrHQTq/obFZxigkejo4sQl5HZsob8fKoDY2k6jk3BPRGEQYqvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGiOxD0A1SkVynh9oB+J3X/fvb9FMB8GA1UdIwQY MBaAFAB+a1qkN9NpMVFQKiEUluN9SuLFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy81MThmYWItNzYwNi00ODMyLWFhNjYt NWE4YzY3ODQyMzg5LzEvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy81MThmYWItNzYwNi00ODMyLWFhNjYtNWE4YzY3ODQyMzg5 LzEvQUg1cldxUTMwMmt4VVZBcUlSU1c0MzFLNHNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAblAyaDr4 W0iPI/OlsRsdoaq9o1aBGsqd1M5jty6H1txg8YLWNPLncoOO2rpUbmgKAm2CovNs iGGepnnC+sc2WvYsXV5SY4Hpm43vfTaiijZra+F3nWR4AGxP6FWOZtU3M58zTuGg 4Wle+5delWzhPNGFt6x0JzKYCvChhSw2634fXkKhn0OGJpMnvhahxWla90izLgnV nM9Cfmz65+k4YoFEgK8qcFLr3eOVDb1gjF5zSrppKFHcWjJRkn4QFnAs9+Fo2rp8 f47Z4Y8p/raCrJeMj2g/Geb3/62HDD2vcNvG57qJHKOXpAgiGlU+soekWDIWUsZ6 qaRKC5MK9pog9A== -----END CERTIFICATE-----Generated at Thu Dec 18 18:32:43 2025 by rpki-client