This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft File: aAImjB8WbJ31GjQgRbsTLw-WyC0.mft (raw, json) Hash identifier: KZkgFo4fMjzbDIx7UWQ91drO6kGndrlsytdaQWvV2J8= Subject key identifier: 6C:4C:40:8F:5E:4B:9A:A5:8D:AA:F4:4F:C8:51:04:1F:C3:BC:3A:C8 Authority key identifier: 68:02:26:8C:1F:16:6C:9D:F5:1A:34:20:45:BB:13:2F:0F:96:C8:2D Certificate issuer: /CN=6802268c1f166c9df51a342045bb132f0f96c82d Certificate serial: 019B597744338B3BEB62CE186D8067A39F0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAImjB8WbJ31GjQgRbsTLw-WyC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft Manifest number: 0D19 Signing time: Fri 26 Dec 2025 07:02:27 +0000 Manifest this update: Fri 26 Dec 2025 07:02:27 +0000 Manifest next update: Sat 27 Dec 2025 07:02:27 +0000 Files and hashes: 1: aAImjB8WbJ31GjQgRbsTLw-WyC0.crl (hash: 23HuWK3eAXUcNkPKWbH+nenIis6anjmMlfMDe5NFqw4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aAImjB8WbJ31GjQgRbsTLw-WyC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:44:33:8b:3b:eb:62:ce:18:6d:80:67:a3:9f:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6802268c1f166c9df51a342045bb132f0f96c82d Validity Not Before: Dec 26 07:02:27 2025 GMT Not After : Dec 27 07:02:27 2025 GMT Subject: CN=6c4c408f5e4b9aa58daaf44fc851041fc3bc3ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e8:61:af:41:bc:da:78:94:09:c7:87:e9:9f: 93:33:32:12:36:64:7e:6b:50:02:62:ce:8d:ad:11: 26:a1:35:c9:84:8a:cc:ba:4e:ef:a2:5b:15:0a:8b: 23:c5:3f:82:75:87:97:71:9d:44:b2:47:7d:75:0a: 76:bb:6e:8a:a4:06:67:8f:3d:b4:2c:03:1f:2c:79: 5d:1d:3d:5a:92:a1:1c:84:86:9d:8e:fc:6e:99:ca: 5f:6e:27:f2:9c:05:6c:13:9c:98:3c:d9:20:eb:9c: 2d:64:7f:4a:ae:2c:3a:8e:64:87:7c:8c:a4:f2:4f: 4b:74:3a:fa:bb:57:0d:4a:f6:5f:93:82:ca:bb:6f: f4:1c:f4:df:72:57:9a:85:7a:e7:e4:80:a2:d4:47: 32:f6:5a:61:f7:63:5c:f0:e5:e5:29:2a:09:8b:b2: dd:21:f6:d1:a8:51:0e:87:af:2e:2e:f3:f5:c9:0f: de:9d:6d:bb:f2:5b:ca:0a:2b:4d:02:a4:88:a7:3c: 0b:1e:f7:97:4a:01:3d:de:2e:15:68:45:83:76:c1: cd:0c:b6:32:c7:b2:d9:14:39:d0:80:50:b8:5f:55: 88:5e:60:d8:1f:b4:e0:8c:51:a7:e9:72:a1:ed:0c: 0f:11:92:43:20:1c:22:48:8c:99:5c:62:7f:9d:8f: f3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4C:40:8F:5E:4B:9A:A5:8D:AA:F4:4F:C8:51:04:1F:C3:BC:3A:C8 X509v3 Authority Key Identifier: keyid:68:02:26:8C:1F:16:6C:9D:F5:1A:34:20:45:BB:13:2F:0F:96:C8:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAImjB8WbJ31GjQgRbsTLw-WyC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/c8649d-2f00-4663-8e4e-e3c22d0f6207/1/aAImjB8WbJ31GjQgRbsTLw-WyC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:9c:58:ab:fe:56:2c:a3:01:a6:e1:e6:ff:a0:c1:b6:d5:f6: cf:85:d3:eb:c5:94:31:bb:52:95:ed:68:77:83:74:f4:29:24: 36:90:f9:eb:12:70:98:71:d8:d2:0d:bb:65:40:15:8e:11:ae: 51:2b:e5:ec:2b:b4:61:39:e0:66:2a:30:af:08:3a:93:49:c3: a0:86:f5:73:6c:5b:67:3d:5a:87:b9:6b:bb:01:c1:69:8c:ee: d0:f8:9c:38:41:a0:b7:53:84:2f:14:03:f2:7a:6f:ca:90:69: 26:9a:29:aa:32:33:a3:77:96:72:cc:dd:c1:cd:60:af:66:10: 95:bf:75:4c:a3:4f:58:2b:b9:b5:fe:63:65:7b:a5:7f:49:4b: ed:2c:c3:8b:38:4e:47:2c:d1:9b:84:b7:46:5d:c5:f1:26:df: 69:50:94:ff:80:eb:fc:ed:e8:90:95:b0:08:9e:34:18:fa:b7: 01:74:57:7d:49:14:1d:48:20:d6:b6:14:1b:4b:5e:88:be:54: 42:49:07:9e:72:21:c9:b7:75:c6:c2:28:41:0b:b0:0c:b0:0c: 27:37:84:59:ac:32:33:94:01:33:20:61:74:7b:96:e1:9b:88: 84:bd:01:04:02:2d:89:ed:96:db:82:23:0c:92:47:18:86:b6: 19:4c:3d:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd0QzizvrYs4YbYBno58MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MDIyNjhjMWYxNjZjOWRmNTFhMzQyMDQ1YmIxMzJmMGY5 NmM4MmQwHhcNMjUxMjI2MDcwMjI3WhcNMjUxMjI3MDcwMjI3WjAzMTEwLwYDVQQD Eyg2YzRjNDA4ZjVlNGI5YWE1OGRhYWY0NGZjODUxMDQxZmMzYmMzYWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOhhr0G82niUCceH6Z+TMzISNmR+ a1ACYs6NrREmoTXJhIrMuk7volsVCosjxT+CdYeXcZ1Eskd9dQp2u26KpAZnjz20 LAMfLHldHT1akqEchIadjvxumcpfbifynAVsE5yYPNkg65wtZH9Kriw6jmSHfIyk 8k9LdDr6u1cNSvZfk4LKu2/0HPTfcleahXrn5ICi1Ecy9lph92Nc8OXlKSoJi7Ld IfbRqFEOh68uLvP1yQ/enW278lvKCitNAqSIpzwLHveXSgE93i4VaEWDdsHNDLYy x7LZFDnQgFC4X1WIXmDYH7TgjFGn6XKh7QwPEZJDIBwiSIyZXGJ/nY/zcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGxMQI9eS5qljar0T8hRBB/DvDrIMB8GA1UdIwQY MBaAFGgCJowfFmyd9Ro0IEW7Ey8PlsgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUFJbWpCOFdiSjMxR2pRZ1Jic1RMdy1XeUMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9jODY0OWQtMmYwMC00NjYzLThlNGUt ZTNjMjJkMGY2MjA3LzEvYUFJbWpCOFdiSjMxR2pRZ1Jic1RMdy1XeUMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9jODY0OWQtMmYwMC00NjYzLThlNGUtZTNjMjJkMGY2MjA3 LzEvYUFJbWpCOFdiSjMxR2pRZ1Jic1RMdy1XeUMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMpxYq/5W LKMBpuHm/6DBttX2z4XT68WUMbtSle1od4N09CkkNpD56xJwmHHY0g27ZUAVjhGu USvl7Cu0YTngZiowrwg6k0nDoIb1c2xbZz1ah7lruwHBaYzu0PicOEGgt1OELxQD 8npvypBpJpopqjIzo3eWcszdwc1gr2YQlb91TKNPWCu5tf5jZXulf0lL7SzDizhO RyzRm4S3Rl3F8SbfaVCU/4Dr/O3okJWwCJ40GPq3AXRXfUkUHUgg1rYUG0teiL5U QkkHnnIhybd1xsIoQQuwDLAMJzeEWawyM5QBMyBhdHuW4ZuIhL0BBAItie2W24Ij DJJHGIa2GUw9fA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:15:41 2025 by rpki-client