This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft File: aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft (raw, json) Hash identifier: YVFkBYde2FG0fb9m18bM+5gQdypqUGDCprqLveiXoLQ= Subject key identifier: 36:84:DE:33:51:81:87:31:E2:7F:46:F9:40:F0:74:14:57:93:66:3A Authority key identifier: 68:FE:D5:08:CC:A5:F7:16:E4:DD:97:4D:E3:50:0E:7D:D1:9B:AA:15 Certificate issuer: /CN=68fed508cca5f716e4dd974de3500e7dd19baa15 Certificate serial: 019B59ACD3443CBCD7C1CF5DB43B0BA65303 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aP7VCMyl9xbk3ZdN41AOfdGbqhU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft Manifest number: 1679 Signing time: Fri 26 Dec 2025 08:00:57 +0000 Manifest this update: Fri 26 Dec 2025 08:00:57 +0000 Manifest next update: Sat 27 Dec 2025 08:00:57 +0000 Files and hashes: 1: VuecASVmjUcKvyphdlmWhBLtzCY.roa (hash: 9pywbAdYpVLPp0+Qv028vFSYWXiOfuf7WbI6OQxi+GI=) 2: aP7VCMyl9xbk3ZdN41AOfdGbqhU.crl (hash: XtYApNWZCT5Vc7Hdaj+WB9Nfd8oMp+TXueOoeWCdWAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft rsync://rpki.ripe.net/repository/DEFAULT/aP7VCMyl9xbk3ZdN41AOfdGbqhU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:d3:44:3c:bc:d7:c1:cf:5d:b4:3b:0b:a6:53:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68fed508cca5f716e4dd974de3500e7dd19baa15 Validity Not Before: Dec 26 08:00:57 2025 GMT Not After : Dec 27 08:00:57 2025 GMT Subject: CN=3684de3351818731e27f46f940f074145793663a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f0:06:54:40:6a:56:36:38:33:c9:4e:42:f8: 1e:00:ad:64:c1:17:9e:23:eb:32:ff:6c:4a:63:ad: 1d:1a:d7:23:1d:98:2d:4a:59:f2:ab:e5:20:a0:b1: 26:49:9c:d8:bf:c9:9e:ac:63:43:6b:6e:cb:4b:7e: b3:54:21:36:ae:83:d8:b4:17:1f:b9:69:74:37:8b: 0a:b9:e0:60:f2:6b:2f:df:24:ba:05:f4:2c:98:47: 59:0c:c6:3b:1f:b6:59:23:7c:92:7a:01:46:f7:68: dd:7d:aa:87:76:26:0b:aa:97:53:49:e1:ed:2c:85: db:ac:15:98:ba:70:d6:81:c1:8b:b0:1a:25:c3:f3: 62:06:e6:34:16:88:5d:20:b9:6a:9f:0b:cf:78:98: 4b:1e:55:98:fc:66:03:47:24:bc:fe:36:92:28:fc: 66:50:b3:be:01:3f:a3:44:64:d2:bd:00:10:db:ee: 2c:74:0a:b7:91:b3:9c:3a:3c:10:5f:20:c7:67:58: 3e:a6:7d:aa:cb:ce:b8:8e:9f:90:76:6a:b1:61:8a: 56:88:58:10:93:51:44:c2:a4:e1:d5:b9:a7:d8:34: 1a:6e:77:c8:6a:db:34:b7:e8:db:f5:3a:95:c6:3c: 23:ec:93:fb:a5:d7:4a:94:7e:df:95:1f:bb:cb:ad: 16:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:84:DE:33:51:81:87:31:E2:7F:46:F9:40:F0:74:14:57:93:66:3A X509v3 Authority Key Identifier: keyid:68:FE:D5:08:CC:A5:F7:16:E4:DD:97:4D:E3:50:0E:7D:D1:9B:AA:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aP7VCMyl9xbk3ZdN41AOfdGbqhU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c5ea31-7bc1-477a-8bdc-41a35e7c22f8/1/aP7VCMyl9xbk3ZdN41AOfdGbqhU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:df:59:27:65:19:e3:b5:96:c5:24:d0:b7:07:0e:4b:bd:98: 38:f0:31:61:cf:0d:a3:16:b5:88:db:95:5f:f6:97:9a:1f:36: ed:6f:6b:41:ab:53:28:50:c0:86:8d:e4:44:c9:f1:88:98:4b: 22:bb:43:b0:56:1d:bc:70:ca:4f:d4:a8:fc:df:39:4e:f5:35: 15:24:5e:89:67:5c:da:4a:e2:fc:78:a3:f6:e7:7c:23:54:50: a4:3a:dc:6d:8a:e0:97:1d:8e:22:b6:98:7a:36:26:7b:21:9b: 7f:16:49:37:b4:23:5f:dc:ef:c7:16:4a:a9:f0:35:98:5e:15: d4:e7:e2:9d:c8:e1:9f:35:7b:34:69:21:3b:3b:a5:41:5b:02: e2:99:78:f6:7f:2c:2a:dc:a2:8f:db:10:36:7e:6e:ac:ab:c3: 5a:16:a9:9d:44:a5:a1:06:51:9e:66:ae:6b:51:4f:08:6e:91: df:c7:03:a6:c8:f5:64:1f:5c:f0:27:0d:36:88:f3:70:84:7b: f7:6a:94:9b:b0:f1:10:3a:71:de:2a:bc:d0:cc:24:cf:6e:e7: fa:05:45:b8:a5:1e:08:1e:0b:bf:46:10:0b:12:8d:1d:58:3a: fe:79:52:16:68:60:00:0a:d6:41:b9:0a:22:02:3e:2b:f8:05: 1d:b7:cc:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrNNEPLzXwc9dtDsLplMDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZmVkNTA4Y2NhNWY3MTZlNGRkOTc0ZGUzNTAwZTdkZDE5 YmFhMTUwHhcNMjUxMjI2MDgwMDU3WhcNMjUxMjI3MDgwMDU3WjAzMTEwLwYDVQQD EygzNjg0ZGUzMzUxODE4NzMxZTI3ZjQ2Zjk0MGYwNzQxNDU3OTM2NjNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vAGVEBqVjY4M8lOQvgeAK1kwRee I+sy/2xKY60dGtcjHZgtSlnyq+UgoLEmSZzYv8merGNDa27LS36zVCE2roPYtBcf uWl0N4sKueBg8msv3yS6BfQsmEdZDMY7H7ZZI3ySegFG92jdfaqHdiYLqpdTSeHt LIXbrBWYunDWgcGLsBolw/NiBuY0FohdILlqnwvPeJhLHlWY/GYDRyS8/jaSKPxm ULO+AT+jRGTSvQAQ2+4sdAq3kbOcOjwQXyDHZ1g+pn2qy864jp+QdmqxYYpWiFgQ k1FEwqTh1bmn2DQabnfIats0t+jb9TqVxjwj7JP7pddKlH7flR+7y60W6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDaE3jNRgYcx4n9G+UDwdBRXk2Y6MB8GA1UdIwQY MBaAFGj+1QjMpfcW5N2XTeNQDn3Rm6oVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVA3VkNNeWw5eGJrM1pkTjQxQU9mZEdicWhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9jNWVhMzEtN2JjMS00NzdhLThiZGMt NDFhMzVlN2MyMmY4LzEvYVA3VkNNeWw5eGJrM1pkTjQxQU9mZEdicWhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9jNWVhMzEtN2JjMS00NzdhLThiZGMtNDFhMzVlN2MyMmY4 LzEvYVA3VkNNeWw5eGJrM1pkTjQxQU9mZEdicWhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmt9ZJ2UZ 47WWxSTQtwcOS72YOPAxYc8Noxa1iNuVX/aXmh827W9rQatTKFDAho3kRMnxiJhL IrtDsFYdvHDKT9So/N85TvU1FSReiWdc2kri/Hij9ud8I1RQpDrcbYrglx2OIraY ejYmeyGbfxZJN7QjX9zvxxZKqfA1mF4V1OfincjhnzV7NGkhOzulQVsC4pl49n8s Ktyij9sQNn5urKvDWhapnUSloQZRnmaua1FPCG6R38cDpsj1ZB9c8CcNNojzcIR7 92qUm7DxEDpx3iq80Mwkz27n+gVFuKUeCB4Lv0YQCxKNHVg6/nlSFmhgAArWQbkK IgI+K/gFHbfM0g== -----END CERTIFICATE-----Generated at Fri Dec 26 14:06:09 2025 by rpki-client