This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json) Hash identifier: i/zWVzlPRTTiZeZcqdqMAZX/B7/LyWWoi0LcUgbo3qA= Subject key identifier: AF:C1:0E:27:9D:05:EF:D6:5E:B6:A4:76:01:6F:55:AF:5C:B5:7A:1B Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39 Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39 Certificate serial: 019B5ABF991FFFC823DF5C2A5C02CD55E584 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft Manifest number: 1797 Signing time: Fri 26 Dec 2025 13:01:04 +0000 Manifest this update: Fri 26 Dec 2025 13:01:04 +0000 Manifest next update: Sat 27 Dec 2025 13:01:04 +0000 Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=) 2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=) 3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: EQeL0E83hc8PqwMnYSXaTUzOQDCkZKiLpcxQXrKdVHY=) 4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=) 5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:99:1f:ff:c8:23:df:5c:2a:5c:02:cd:55:e5:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39 Validity Not Before: Dec 26 13:01:04 2025 GMT Not After : Dec 27 13:01:04 2025 GMT Subject: CN=afc10e279d05efd65eb6a476016f55af5cb57a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b8:d4:48:61:cc:39:5f:5d:fb:ae:60:f0:44: c9:80:c3:9c:15:54:f8:67:c1:94:9b:fb:16:a6:a7: da:cc:49:64:50:cd:c7:75:98:60:fd:aa:1c:7b:2e: e3:84:07:72:65:9c:65:b5:23:09:5a:18:53:dd:00: 96:0a:5d:a2:b8:ff:19:8f:01:ba:d2:bb:f7:5a:4a: 64:b6:d1:7f:24:de:e2:7b:2b:83:0c:db:33:02:21: 47:fc:1c:1d:af:df:c4:0a:2f:14:f0:0c:89:31:5c: 88:79:c8:41:93:cf:dc:66:bc:dc:97:27:db:5e:ad: 9f:48:a0:76:d1:0b:02:13:fd:74:f8:6b:9c:dc:a1: 13:b2:51:29:b6:0f:7a:2e:a7:90:50:8d:a8:e2:88: 23:55:e6:ce:99:14:f9:8f:ab:24:84:f9:8b:bb:86: 73:57:44:e5:28:ea:90:58:d9:bd:4e:08:e3:1e:1b: 05:99:e3:a6:a0:62:4a:50:d2:3e:29:a4:e0:8f:ee: 61:31:9f:b5:45:33:35:98:0f:85:56:37:54:a0:5a: 33:f7:83:4a:5a:1d:42:27:a6:78:f5:9f:79:b2:3d: 31:9e:97:40:cf:cc:d5:01:48:bb:27:67:ed:68:45: ac:14:cc:5a:0a:75:33:f2:63:39:97:00:e5:c3:4f: ed:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C1:0E:27:9D:05:EF:D6:5E:B6:A4:76:01:6F:55:AF:5C:B5:7A:1B X509v3 Authority Key Identifier: keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:24:d4:22:1f:43:5a:4a:b1:85:fa:37:f2:ad:86:e9:42:38: f9:58:d6:88:f5:20:2e:b3:a7:51:95:b1:00:b2:3d:b9:be:c2: e8:75:2b:77:40:5d:30:f0:66:42:f2:f3:0d:67:b8:11:92:02: 6f:e9:54:ca:9f:f5:08:d6:77:81:85:8f:0d:29:12:f6:e8:97: 21:36:35:d7:f2:4e:6c:9f:56:12:ab:0d:51:2b:c8:61:22:4d: 7e:e1:d5:00:82:ff:f0:c5:54:90:98:c4:03:a1:ae:59:a4:48: 62:83:b6:33:77:50:49:9a:08:4e:56:5d:44:dd:73:9b:91:79: e2:ea:e8:d0:3e:93:88:ba:96:02:9f:64:b7:a4:5b:87:01:35: ea:b1:5a:be:50:ab:90:29:04:5c:05:dc:e9:2a:e1:1d:32:48: eb:56:5a:75:31:65:ca:a4:77:ec:f8:3c:e8:73:9b:02:45:e8: 5e:ab:a4:17:53:7d:58:13:5f:3c:49:d7:dc:51:c3:1f:c7:0f: 2a:7b:8c:3d:d7:bc:40:2a:dd:13:72:3b:f6:fd:34:e0:b4:9a: 6b:d7:29:5b:d0:46:34:b0:b0:7d:2c:1c:09:85:bb:c4:bc:88: f1:01:6b:8a:80:0a:ee:78:3b:08:db:7a:8d:38:aa:d4:01:ca: c0:b7:9b:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav5kf/8gj31wqXALNVeWEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZThiYWVhOTVkNDA0MDM0OGYwYTg5ZWM0ZTRiZDE1Mjc1 ZjZjMzkwHhcNMjUxMjI2MTMwMTA0WhcNMjUxMjI3MTMwMTA0WjAzMTEwLwYDVQQD EyhhZmMxMGUyNzlkMDVlZmQ2NWViNmE0NzYwMTZmNTVhZjVjYjU3YTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbjUSGHMOV9d+65g8ETJgMOcFVT4 Z8GUm/sWpqfazElkUM3HdZhg/aocey7jhAdyZZxltSMJWhhT3QCWCl2iuP8ZjwG6 0rv3WkpkttF/JN7ieyuDDNszAiFH/Bwdr9/ECi8U8AyJMVyIechBk8/cZrzclyfb Xq2fSKB20QsCE/10+Guc3KETslEptg96LqeQUI2o4ogjVebOmRT5j6skhPmLu4Zz V0TlKOqQWNm9TgjjHhsFmeOmoGJKUNI+KaTgj+5hMZ+1RTM1mA+FVjdUoFoz94NK Wh1CJ6Z49Z95sj0xnpdAz8zVAUi7J2ftaEWsFMxaCnUz8mM5lwDlw0/tpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/BDiedBe/WXrakdgFvVa9ctXobMB8GA1UdIwQY MBaAFGjouuqV1AQDSPConsTkvRUnX2w5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2Ut MzcxMWZhZThjYTc3LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2UtMzcxMWZhZThjYTc3 LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxSTUIh9D Wkqxhfo38q2G6UI4+VjWiPUgLrOnUZWxALI9ub7C6HUrd0BdMPBmQvLzDWe4EZIC b+lUyp/1CNZ3gYWPDSkS9uiXITY11/JObJ9WEqsNUSvIYSJNfuHVAIL/8MVUkJjE A6GuWaRIYoO2M3dQSZoITlZdRN1zm5F54uro0D6TiLqWAp9kt6RbhwE16rFavlCr kCkEXAXc6SrhHTJI61ZadTFlyqR37Pg86HObAkXoXqukF1N9WBNfPEnX3FHDH8cP KnuMPde8QCrdE3I79v004LSaa9cpW9BGNLCwfSwcCYW7xLyI8QFrioAK7ng7CNt6 jTiq1AHKwLebGQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:23 2025 by rpki-client