This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft File: usA65sVFitKAdlulUnmAoG_sI6g.mft (raw, json) Hash identifier: KjyY/wGpUjyKdnP8uOrs2RMrtX4F0MjiNg2oCbe+b0c= Subject key identifier: 68:DC:4A:81:D7:3F:62:52:D9:6A:9E:F1:84:D6:B1:35:7D:FF:5C:34 Authority key identifier: BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8 Certificate issuer: /CN=bac03ae6c5458ad280765ba5527980a06fec23a8 Certificate serial: 019B0F373786CE1927FAF5A18C0E441B356D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft Manifest number: 1770 Signing time: Thu 11 Dec 2025 21:00:35 +0000 Manifest this update: Thu 11 Dec 2025 21:00:35 +0000 Manifest next update: Fri 12 Dec 2025 21:00:35 +0000 Files and hashes: 1: umBmq8XFX-zXziXQ4pyACUgy-FQ.roa (hash: JuI2qHr6MZgrFWdKqrf8sXobXSWHVnMHISH4QdZzmLE=) 2: usA65sVFitKAdlulUnmAoG_sI6g.crl (hash: 4tUKcjlHMEk0VOwSWGdDQtWNwlklihbBZzOvZMHr29U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:37:86:ce:19:27:fa:f5:a1:8c:0e:44:1b:35:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bac03ae6c5458ad280765ba5527980a06fec23a8 Validity Not Before: Dec 11 21:00:35 2025 GMT Not After : Dec 12 21:00:35 2025 GMT Subject: CN=68dc4a81d73f6252d96a9ef184d6b1357dff5c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:3a:18:3a:a7:bf:a3:52:3d:0d:37:ab:df: 40:0d:2a:a3:15:b2:3c:5e:29:d3:76:56:7b:19:1d: 92:e7:40:30:fb:e8:8f:c6:a6:26:88:93:b1:46:dc: 89:8a:81:f7:89:1b:d8:bf:3b:64:01:d4:f9:85:bd: b7:52:8d:ed:89:0c:56:93:e8:3d:f8:bb:bd:1a:02: fc:21:a3:52:61:18:8b:3c:f6:9c:82:43:2e:82:f0: 7d:03:25:83:c5:50:01:67:f0:da:20:ad:50:b2:00: d7:bb:3e:9c:17:26:3d:d7:51:03:08:2c:bb:10:47: 20:2b:38:3b:99:ac:06:71:b2:b7:cd:c7:23:90:80: 45:43:25:85:c8:9e:88:14:8d:ef:bc:30:26:96:57: bb:60:5c:e9:11:c2:cb:45:e4:dc:81:f6:de:f9:37: 2a:9b:80:5e:65:71:e1:7e:e5:3d:8d:f8:d9:f2:00: 6d:8c:72:ed:7b:3a:fd:52:a5:63:ad:8c:31:de:33: 24:e6:ab:96:60:e2:21:3b:ba:0c:5c:bf:97:a3:64: 8e:62:c4:30:61:33:e8:b4:21:c5:ea:29:56:8a:31: 46:ea:d0:c1:14:70:26:59:ce:4b:93:97:9c:9c:e7: 30:c5:05:2b:a3:1e:ee:d0:65:cd:12:2e:73:9c:4f: 83:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DC:4A:81:D7:3F:62:52:D9:6A:9E:F1:84:D6:B1:35:7D:FF:5C:34 X509v3 Authority Key Identifier: keyid:BA:C0:3A:E6:C5:45:8A:D2:80:76:5B:A5:52:79:80:A0:6F:EC:23:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usA65sVFitKAdlulUnmAoG_sI6g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e931e6-a152-4a1a-b08a-1081aeb121b3/1/usA65sVFitKAdlulUnmAoG_sI6g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d9:6c:e0:b3:49:71:d9:21:1f:1d:43:0a:d2:74:56:ee:7c: 4d:67:f7:58:e1:ac:a7:8d:a5:2b:9c:ba:e1:8a:16:cf:4b:7a: b2:70:7d:d4:02:b1:09:0e:f4:52:c7:97:d1:cd:dd:91:d2:ec: 3c:ad:e5:92:8d:a3:15:1e:99:e9:ac:ef:e8:76:aa:2a:e3:32: 19:98:04:9d:e0:84:1d:09:1b:79:c0:6a:33:4c:19:6e:7a:5d: a8:7d:4c:98:8a:f2:d9:3c:7d:45:41:d3:f4:9f:2a:be:a7:ec: 36:26:36:7e:8f:70:61:16:21:ce:97:eb:93:c9:0e:d8:23:88: 83:c0:6a:41:05:8d:c5:7f:fa:bb:41:25:9c:d7:33:11:cb:d6: fb:50:47:0a:1f:72:19:7c:9c:cb:a1:3c:6b:e8:71:c7:e1:1e: 1b:b6:4a:d1:ee:c5:90:bf:17:5c:bb:ac:f2:da:fd:2f:c6:42: e0:c2:86:2c:42:08:c3:60:11:43:7a:ca:ee:2d:9e:0f:44:76: 3f:9b:a2:47:a5:c4:7f:eb:ea:16:4a:10:af:6e:a2:c9:1a:7b: 81:7f:26:fb:9d:7f:a4:99:88:49:34:9c:6e:e8:db:c8:78:47: 89:38:15:f2:a8:a8:01:eb:2e:f5:22:f5:1d:a0:bb:ce:d9:3d: 85:82:bf:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPNzeGzhkn+vWhjA5EGzVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYzAzYWU2YzU0NThhZDI4MDc2NWJhNTUyNzk4MGEwNmZl YzIzYTgwHhcNMjUxMjExMjEwMDM1WhcNMjUxMjEyMjEwMDM1WjAzMTEwLwYDVQQD Eyg2OGRjNGE4MWQ3M2Y2MjUyZDk2YTllZjE4NGQ2YjEzNTdkZmY1YzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHw6GDqnv6NSPQ03q99ADSqjFbI8 XinTdlZ7GR2S50Aw++iPxqYmiJOxRtyJioH3iRvYvztkAdT5hb23Uo3tiQxWk+g9 +Lu9GgL8IaNSYRiLPPacgkMugvB9AyWDxVABZ/DaIK1QsgDXuz6cFyY911EDCCy7 EEcgKzg7mawGcbK3zccjkIBFQyWFyJ6IFI3vvDAmlle7YFzpEcLLReTcgfbe+Tcq m4BeZXHhfuU9jfjZ8gBtjHLtezr9UqVjrYwx3jMk5quWYOIhO7oMXL+Xo2SOYsQw YTPotCHF6ilWijFG6tDBFHAmWc5Lk5ecnOcwxQUrox7u0GXNEi5znE+DJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjcSoHXP2JS2Wqe8YTWsTV9/1w0MB8GA1UdIwQY MBaAFLrAOubFRYrSgHZbpVJ5gKBv7COoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9lOTMxZTYtYTE1Mi00YTFhLWIwOGEt MTA4MWFlYjEyMWIzLzEvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9lOTMxZTYtYTE1Mi00YTFhLWIwOGEtMTA4MWFlYjEyMWIz LzEvdXNBNjVzVkZpdEtBZGx1bFVubUFvR19zSTZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn9ls4LNJ cdkhHx1DCtJ0Vu58TWf3WOGsp42lK5y64YoWz0t6snB91AKxCQ70UseX0c3dkdLs PK3lko2jFR6Z6azv6HaqKuMyGZgEneCEHQkbecBqM0wZbnpdqH1MmIry2Tx9RUHT 9J8qvqfsNiY2fo9wYRYhzpfrk8kO2COIg8BqQQWNxX/6u0ElnNczEcvW+1BHCh9y GXycy6E8a+hxx+EeG7ZK0e7FkL8XXLus8tr9L8ZC4MKGLEIIw2ARQ3rK7i2eD0R2 P5uiR6XEf+vqFkoQr26iyRp7gX8m+51/pJmISTScbujbyHhHiTgV8qioAesu9SL1 HaC7ztk9hYK/Wg== -----END CERTIFICATE-----Generated at Fri Dec 12 05:13:01 2025 by rpki-client