This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft File: aAONTKy9QZGZUus3CcFlM4OJAOM.mft (raw, json) Hash identifier: Iujphj9PLq3WuvVe65jk+2ZOC6ZOKEqvRsWg71jT8Zo= Subject key identifier: EF:DA:63:62:BF:81:BE:D1:71:6B:ED:D4:4F:C1:79:C1:91:CE:2F:3D Authority key identifier: 68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3 Certificate issuer: /CN=68038d4cacbd41919952eb3709c16533838900e3 Certificate serial: 019B1D994A47CA9411F745EE056BDF915A18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft Manifest number: 177B Signing time: Sun 14 Dec 2025 16:02:23 +0000 Manifest this update: Sun 14 Dec 2025 16:02:23 +0000 Manifest next update: Mon 15 Dec 2025 16:02:23 +0000 Files and hashes: 1: K7Q4iSU5tGlQaFLDbZ74ga5u7QI.roa (hash: 4IoPifHHzLWAa9SoaMyYdsFHlPVY27b7G1cPfRmMmFw=) 2: aAONTKy9QZGZUus3CcFlM4OJAOM.crl (hash: xX2U1fG+BSzmyQBIYJkLn5MXyttekqO/lGhcKZBVdig=) 3: lZ9mN5xTttKw5Lu3kt5TBdxoI_c.roa (hash: oCvvxX98yWLH3kfCtYuDTFzL1eqlVEqmDIMPTij8zho=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:99:4a:47:ca:94:11:f7:45:ee:05:6b:df:91:5a:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68038d4cacbd41919952eb3709c16533838900e3 Validity Not Before: Dec 14 16:02:23 2025 GMT Not After : Dec 15 16:02:23 2025 GMT Subject: CN=efda6362bf81bed1716bedd44fc179c191ce2f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:0e:5f:0f:fa:b2:79:1e:a7:d3:7c:c3:4f:d9: 35:64:9b:19:19:44:b0:6b:8a:78:7c:4e:63:5d:48: f9:51:88:1b:ee:20:b2:45:8e:18:f7:81:b0:46:1f: 1c:66:1f:5c:8e:db:82:af:6b:cd:da:2d:05:e7:23: b2:ff:d5:81:85:e4:7a:43:42:cd:4c:94:80:a6:96: 93:ca:9f:b9:00:80:a5:ca:2c:33:05:67:6a:2e:79: 05:b7:90:81:06:d8:2d:dc:b8:86:75:6a:7d:d3:c3: 59:a3:8b:75:7f:57:19:75:f7:5e:da:e6:81:90:96: d6:78:07:b4:22:11:e3:51:87:47:06:77:c5:86:1c: 4e:7c:ff:24:b1:cb:37:d2:16:8a:ac:d2:71:91:88: fd:5c:41:18:d5:d2:25:0d:5c:4b:a6:86:e7:61:15: b1:52:d3:b0:b6:e1:31:e1:db:db:07:a6:4f:03:d8: 05:30:64:fc:28:d8:f2:fb:65:b8:b9:24:ae:d1:ab: cb:3f:a8:f9:5f:df:a7:f5:96:6c:dc:93:46:c2:f6: 3e:8e:f3:62:6b:8f:19:1e:4c:77:c5:68:c6:86:b3: 89:a7:05:e6:e3:58:69:d7:8d:f5:a0:53:92:5a:d6: d5:46:de:7e:c0:60:ad:d7:53:80:09:50:cc:8f:30: d2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DA:63:62:BF:81:BE:D1:71:6B:ED:D4:4F:C1:79:C1:91:CE:2F:3D X509v3 Authority Key Identifier: keyid:68:03:8D:4C:AC:BD:41:91:99:52:EB:37:09:C1:65:33:83:89:00:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aAONTKy9QZGZUus3CcFlM4OJAOM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/207167-d551-41ba-86a8-2f50ea27213c/1/aAONTKy9QZGZUus3CcFlM4OJAOM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:b4:ed:5a:16:ee:df:ca:a9:f2:ff:19:b5:b0:ac:f2:7d:3a: 8a:bc:56:2f:81:68:a3:ad:eb:f6:66:96:6c:74:e4:19:54:23: b8:eb:24:1d:53:31:91:be:3f:39:ef:6a:fc:38:1b:4d:0d:00: 97:f4:09:99:8d:12:4d:f5:78:f7:57:41:7d:d6:b7:fb:7d:3e: 23:a0:f9:ed:4c:f8:d0:56:78:19:1b:74:94:96:a0:1b:e5:12: 02:72:ad:fc:be:f0:7c:8e:ee:3b:c7:8e:ed:4d:81:ec:6e:82: e7:55:78:39:a5:e8:1f:fc:f0:01:43:ae:78:4a:fd:5f:da:24: 2f:26:43:5c:86:79:6e:84:35:40:df:2f:2e:96:90:de:0b:f4: 94:4e:5e:10:15:81:95:f1:63:43:eb:9a:cd:6e:d9:0d:8c:89: 74:81:bb:77:31:45:57:90:22:57:79:b2:e1:bd:45:f3:f9:93: 03:7a:e1:77:9b:63:67:22:6f:7e:b2:df:84:75:b4:62:1b:3a: fb:d0:da:18:d5:ac:94:ba:3e:46:a4:ab:76:43:85:81:f0:25: b7:02:9a:36:49:af:e2:7f:45:49:c9:ac:9b:29:b0:d4:cb:2d: ca:b7:b0:19:a5:79:6b:74:b2:43:fc:74:5e:cb:4a:cd:fd:3b: f2:fe:8b:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdmUpHypQR90XuBWvfkVoYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MDM4ZDRjYWNiZDQxOTE5OTUyZWIzNzA5YzE2NTMzODM4 OTAwZTMwHhcNMjUxMjE0MTYwMjIzWhcNMjUxMjE1MTYwMjIzWjAzMTEwLwYDVQQD EyhlZmRhNjM2MmJmODFiZWQxNzE2YmVkZDQ0ZmMxNzljMTkxY2UyZjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAig5fD/qyeR6n03zDT9k1ZJsZGUSw a4p4fE5jXUj5UYgb7iCyRY4Y94GwRh8cZh9cjtuCr2vN2i0F5yOy/9WBheR6Q0LN TJSAppaTyp+5AIClyiwzBWdqLnkFt5CBBtgt3LiGdWp908NZo4t1f1cZdfde2uaB kJbWeAe0IhHjUYdHBnfFhhxOfP8kscs30haKrNJxkYj9XEEY1dIlDVxLpobnYRWx UtOwtuEx4dvbB6ZPA9gFMGT8KNjy+2W4uSSu0avLP6j5X9+n9ZZs3JNGwvY+jvNi a48ZHkx3xWjGhrOJpwXm41hp1431oFOSWtbVRt5+wGCt11OACVDMjzDSKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/aY2K/gb7RcWvt1E/BecGRzi89MB8GA1UdIwQY MBaAFGgDjUysvUGRmVLrNwnBZTODiQDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgt MmY1MGVhMjcyMTNjLzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8yMDcxNjctZDU1MS00MWJhLTg2YTgtMmY1MGVhMjcyMTNj LzEvYUFPTlRLeTlRWkdaVXVzM0NjRmxNNE9KQU9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA7TtWhbu 38qp8v8ZtbCs8n06irxWL4Foo63r9maWbHTkGVQjuOskHVMxkb4/Oe9q/DgbTQ0A l/QJmY0STfV491dBfda3+30+I6D57Uz40FZ4GRt0lJagG+USAnKt/L7wfI7uO8eO 7U2B7G6C51V4OaXoH/zwAUOueEr9X9okLyZDXIZ5boQ1QN8vLpaQ3gv0lE5eEBWB lfFjQ+uazW7ZDYyJdIG7dzFFV5AiV3my4b1F8/mTA3rhd5tjZyJvfrLfhHW0Yhs6 +9DaGNWslLo+RqSrdkOFgfAltwKaNkmv4n9FScmsmymw1MstyrewGaV5a3SyQ/x0 XstKzf078v6LEw== -----END CERTIFICATE-----Generated at Sun Dec 14 19:47:20 2025 by rpki-client