This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft File: ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft (raw, json) Hash identifier: bHZ3Ap66g3LwHWTrw0sqmWIKIrfMwKDlDbUfp0KP0cM= Subject key identifier: 23:D8:04:E6:D9:62:8B:06:6E:B5:86:B7:D3:E2:B9:D7:16:A4:6F:08 Authority key identifier: AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32 Certificate issuer: /CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132 Certificate serial: 019B465CED24C4A5D368580EDBDFC30AE98E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft Manifest number: 0569 Signing time: Mon 22 Dec 2025 14:00:53 +0000 Manifest this update: Mon 22 Dec 2025 14:00:53 +0000 Manifest next update: Tue 23 Dec 2025 14:00:53 +0000 Files and hashes: 1: Y8bxmFfpWoR5ksX0Qq13ZOagVPo.roa (hash: C0DVCgE5f6/2s7WXTWOG0D5IiTtwmNwV6icT5/Rn4Qg=) 2: ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl (hash: 0L585ld04cUYlON1szZqFs/JZqYa7dgKM6zrHPzmL+w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:5c:ed:24:c4:a5:d3:68:58:0e:db:df:c3:0a:e9:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aee1d3a425edbd9d8adad04106ab12d7c76ac132 Validity Not Before: Dec 22 14:00:53 2025 GMT Not After : Dec 23 14:00:53 2025 GMT Subject: CN=23d804e6d9628b066eb586b7d3e2b9d716a46f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:0e:e4:b8:cb:0e:6d:63:75:22:04:09:d6: 7a:3d:7b:30:fc:f4:88:43:db:82:bf:9e:71:e3:83: 9c:36:04:b8:93:74:45:b0:04:36:4a:28:38:a4:db: 48:a9:31:a5:a0:1c:44:a6:14:4c:5a:cd:55:47:24: 97:8a:71:66:6f:98:64:c5:d8:c2:ed:d5:ca:06:7f: 7d:c9:08:da:de:e4:5f:f4:98:b7:5a:a1:84:a4:72: 7a:43:3d:7a:0f:08:42:6a:83:25:1c:b2:c7:0f:ee: 07:60:90:67:cf:1b:ae:5f:c5:9a:f9:d7:84:c0:9d: 70:b6:ae:9c:eb:14:e2:ef:1d:3f:c4:e8:51:83:b2: 7f:71:88:88:3c:4c:40:54:34:1f:2b:d7:ff:2f:25: 0d:8e:bd:44:e4:e9:74:7d:38:a9:db:fc:50:dd:1b: 61:f2:72:cf:ba:1d:02:c0:64:b4:18:9d:19:ea:b1: a2:71:b0:95:3c:93:38:06:c3:d8:3a:72:7f:3f:45: 3b:c8:7e:7b:e8:69:53:a2:25:90:86:2f:31:6d:a0: 63:a0:c3:19:31:ba:d6:95:c8:24:bc:48:15:22:3a: 2c:3b:d4:e8:1d:1d:02:04:68:fe:ee:08:f5:e0:6e: ad:88:30:b3:80:48:23:e5:d9:49:ee:d4:3a:34:f3: 79:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D8:04:E6:D9:62:8B:06:6E:B5:86:B7:D3:E2:B9:D7:16:A4:6F:08 X509v3 Authority Key Identifier: keyid:AE:E1:D3:A4:25:ED:BD:9D:8A:DA:D0:41:06:AB:12:D7:C7:6A:C1:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruHTpCXtvZ2K2tBBBqsS18dqwTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aca4ad-1df0-4797-9a90-fbe5fdcf0ed3/1/ruHTpCXtvZ2K2tBBBqsS18dqwTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:68:12:68:1a:32:9a:07:ce:e7:ed:ec:62:01:4a:2a:3a:86: a2:a6:75:f6:ee:3c:7f:7a:61:b2:ef:c6:3e:0c:55:28:ad:b4: 81:87:51:ba:8d:9d:f8:d8:e8:1b:4f:54:1f:92:9d:81:1a:8c: 88:0e:6c:c5:b6:87:a6:c5:33:e7:fa:0b:1f:28:8c:33:d6:19: 06:b4:26:5a:51:7c:66:e5:7a:43:a6:70:3c:26:f4:e5:30:28: aa:e3:4e:4f:51:6c:2e:15:bb:62:d9:c5:f9:fd:dd:99:23:8e: b4:a3:bc:6d:6b:dc:e5:be:26:cd:4c:b7:80:d4:6d:d4:12:6f: 51:99:35:15:81:15:eb:72:67:3f:86:18:b2:7c:68:1a:85:71: 98:d7:31:1c:78:83:5d:63:c0:e6:b2:bc:91:87:06:dd:24:1e: 1f:fa:5c:46:9b:21:55:4c:3f:a8:d1:73:83:c0:f5:da:96:46: f0:a1:a4:a4:2e:c7:2f:0e:92:a8:4a:2e:30:d8:64:e4:94:18: 91:59:4f:90:e9:30:fe:1e:ee:37:9c:fe:7b:f9:0c:90:14:18: 30:b4:b7:df:1a:d1:26:51:40:e2:aa:99:81:73:eb:f6:59:17: b1:51:23:6c:90:44:12:9c:e0:26:e0:88:fc:3f:9e:e6:c5:15: a0:bf:cb:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGXO0kxKXTaFgO29/DCumOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZTFkM2E0MjVlZGJkOWQ4YWRhZDA0MTA2YWIxMmQ3Yzc2 YWMxMzIwHhcNMjUxMjIyMTQwMDUzWhcNMjUxMjIzMTQwMDUzWjAzMTEwLwYDVQQD EygyM2Q4MDRlNmQ5NjI4YjA2NmViNTg2YjdkM2UyYjlkNzE2YTQ2ZjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0PEO5LjLDm1jdSIECdZ6PXsw/PSI Q9uCv55x44OcNgS4k3RFsAQ2Sig4pNtIqTGloBxEphRMWs1VRySXinFmb5hkxdjC 7dXKBn99yQja3uRf9Ji3WqGEpHJ6Qz16DwhCaoMlHLLHD+4HYJBnzxuuX8Wa+deE wJ1wtq6c6xTi7x0/xOhRg7J/cYiIPExAVDQfK9f/LyUNjr1E5Ol0fTip2/xQ3Rth 8nLPuh0CwGS0GJ0Z6rGicbCVPJM4BsPYOnJ/P0U7yH576GlToiWQhi8xbaBjoMMZ MbrWlcgkvEgVIjosO9ToHR0CBGj+7gj14G6tiDCzgEgj5dlJ7tQ6NPN58wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPYBObZYosGbrWGt9PiudcWpG8IMB8GA1UdIwQY MBaAFK7h06Ql7b2ditrQQQarEtfHasEyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hY2E0YWQtMWRmMC00Nzk3LTlhOTAt ZmJlNWZkY2YwZWQzLzEvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9hY2E0YWQtMWRmMC00Nzk3LTlhOTAtZmJlNWZkY2YwZWQz LzEvcnVIVHBDWHR2WjJLMnRCQkJxc1MxOGRxd1RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAmgSaBoy mgfO5+3sYgFKKjqGoqZ19u48f3phsu/GPgxVKK20gYdRuo2d+NjoG09UH5KdgRqM iA5sxbaHpsUz5/oLHyiMM9YZBrQmWlF8ZuV6Q6ZwPCb05TAoquNOT1FsLhW7YtnF +f3dmSOOtKO8bWvc5b4mzUy3gNRt1BJvUZk1FYEV63JnP4YYsnxoGoVxmNcxHHiD XWPA5rK8kYcG3SQeH/pcRpshVUw/qNFzg8D12pZG8KGkpC7HLw6SqEouMNhk5JQY kVlPkOkw/h7uN5z+e/kMkBQYMLS33xrRJlFA4qqZgXPr9lkXsVEjbJBEEpzgJuCI /D+e5sUVoL/Lhw== -----END CERTIFICATE-----Generated at Mon Dec 22 20:35:24 2025 by rpki-client