This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft File: aYfUeTXhE31URCbbUojhKpwCWsI.mft (raw, json) Hash identifier: YRxorT4Se2WU2pT8RFHof47liKvj8MFnPqAAcDnKLSQ= Subject key identifier: D5:4F:E4:CE:09:E8:EC:FA:9B:66:A5:7E:B1:DD:72:16:B9:FD:79:AE Authority key identifier: 69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2 Certificate issuer: /CN=6987d47935e1137d544426db5288e12a9c025ac2 Certificate serial: 019B34FBC4D6415CE8A8CDA9CDE8608AAAC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft Manifest number: 0F49 Signing time: Fri 19 Dec 2025 05:01:13 +0000 Manifest this update: Fri 19 Dec 2025 05:01:13 +0000 Manifest next update: Sat 20 Dec 2025 05:01:13 +0000 Files and hashes: 1: aYfUeTXhE31URCbbUojhKpwCWsI.crl (hash: BHPyvtJiqvVsA8c3i/mNc5Wd+OGDQ+zbPNKXEst13xA=) 2: u5cM_QOizpw-qJJPqONMvmbrpo8.roa (hash: GZfhlRyj3hdFyyCNQhpcV7zv1K17zHPhBmiPFi/AntI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:c4:d6:41:5c:e8:a8:cd:a9:cd:e8:60:8a:aa:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6987d47935e1137d544426db5288e12a9c025ac2 Validity Not Before: Dec 19 05:01:13 2025 GMT Not After : Dec 20 05:01:13 2025 GMT Subject: CN=d54fe4ce09e8ecfa9b66a57eb1dd7216b9fd79ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:48:18:eb:50:5c:28:d1:d5:9a:ff:d1:f6:4d: 44:2e:5e:08:22:1f:45:47:a6:75:fe:0f:7d:81:3b: 12:b6:ff:4c:69:5a:b9:46:43:c9:a7:68:b1:83:f2: 89:f0:e4:10:43:12:f2:a4:c8:8d:e7:66:ab:c6:b6: 58:fc:21:98:66:cb:67:91:27:c2:46:95:f9:e2:30: 86:94:dc:a0:b2:1d:cd:cd:3f:1d:98:4d:ad:76:68: 25:de:82:80:c2:95:45:c3:20:33:e3:16:e0:c1:27: bf:07:dd:c5:70:3b:02:43:d1:5c:e3:e4:e6:b6:6c: dc:de:91:fd:13:a8:c1:89:b9:56:eb:ce:09:31:57: 4f:32:64:02:19:ca:d4:39:f8:bd:53:4f:95:2c:b9: 27:cf:53:e8:68:85:77:b5:80:94:29:d9:18:c7:29: 22:93:60:77:19:54:73:21:dc:b7:95:5b:14:96:57: 38:60:f3:91:f5:73:5c:36:7f:0b:58:1d:d9:a0:0f: 88:7d:eb:4e:0e:2e:c3:aa:f8:9b:6a:a7:ab:5b:2d: 92:8a:dc:5c:e6:84:d1:fe:46:63:63:0f:f3:88:f4: 00:e0:ca:3b:9a:7d:f4:64:29:6b:d1:0f:69:d7:27: b5:3d:eb:ac:ea:78:da:d4:0c:db:ce:a6:44:85:80: 07:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4F:E4:CE:09:E8:EC:FA:9B:66:A5:7E:B1:DD:72:16:B9:FD:79:AE X509v3 Authority Key Identifier: keyid:69:87:D4:79:35:E1:13:7D:54:44:26:DB:52:88:E1:2A:9C:02:5A:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYfUeTXhE31URCbbUojhKpwCWsI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/32d7ad-8bf9-4274-95f8-9c953594d6b1/1/aYfUeTXhE31URCbbUojhKpwCWsI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:58:8a:8b:0f:e0:c9:0f:f7:40:d8:47:a0:8b:b2:d3:64:96: 46:1b:61:d7:7a:10:ca:ba:32:06:b4:dc:53:f6:aa:01:62:f1: 48:5f:bb:da:93:8f:c4:51:3d:95:69:e0:b5:2d:55:d7:64:81: 03:ec:52:4c:23:2c:31:7a:bf:53:08:37:de:4b:35:ba:de:85: 54:99:af:90:66:0b:c4:ac:50:ba:51:03:dc:7e:5d:68:d8:81: a1:79:6c:b4:c2:76:fd:d1:8f:65:fc:81:31:c9:fe:32:8a:d8: 0f:cb:a6:e8:36:22:48:ba:67:c6:06:cb:f7:aa:05:4c:1e:a3: f8:dd:74:a4:ca:f0:03:52:6f:41:9c:68:60:e5:fd:5e:35:82: c4:31:6c:dc:80:b8:7d:87:14:c3:42:11:ae:73:a1:97:a5:56: 11:42:d2:18:80:5b:ff:f6:bc:80:4a:a9:92:41:5c:e4:55:ec: 23:06:fa:d2:70:48:ed:c3:36:05:09:8c:79:10:64:83:ca:96: 5b:8f:45:b2:3d:f2:7c:05:9e:c0:44:8f:5b:44:ba:b9:81:1d: ae:69:ba:8d:ed:af:76:ec:bc:c9:26:06:23:62:ae:a6:4f:c7: da:93:99:86:f2:24:d8:f1:e2:74:04:11:23:e6:86:36:92:8d: 96:02:87:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+8TWQVzoqM2pzehgiqrGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODdkNDc5MzVlMTEzN2Q1NDQ0MjZkYjUyODhlMTJhOWMw MjVhYzIwHhcNMjUxMjE5MDUwMTEzWhcNMjUxMjIwMDUwMTEzWjAzMTEwLwYDVQQD EyhkNTRmZTRjZTA5ZThlY2ZhOWI2NmE1N2ViMWRkNzIxNmI5ZmQ3OWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0gY61BcKNHVmv/R9k1ELl4IIh9F R6Z1/g99gTsStv9MaVq5RkPJp2ixg/KJ8OQQQxLypMiN52arxrZY/CGYZstnkSfC RpX54jCGlNygsh3NzT8dmE2tdmgl3oKAwpVFwyAz4xbgwSe/B93FcDsCQ9Fc4+Tm tmzc3pH9E6jBiblW684JMVdPMmQCGcrUOfi9U0+VLLknz1PoaIV3tYCUKdkYxyki k2B3GVRzIdy3lVsUllc4YPOR9XNcNn8LWB3ZoA+IfetODi7DqvibaqerWy2Sitxc 5oTR/kZjYw/ziPQA4Mo7mn30ZClr0Q9p1ye1Peus6nja1AzbzqZEhYAHhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNVP5M4J6Oz6m2alfrHdcha5/XmuMB8GA1UdIwQY MBaAFGmH1Hk14RN9VEQm21KI4SqcAlrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlmVWVUWGhFMzFVUkNiYlVvamhLcHdDV3NJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8zMmQ3YWQtOGJmOS00Mjc0LTk1Zjgt OWM5NTM1OTRkNmIxLzEvYVlmVWVUWGhFMzFVUkNiYlVvamhLcHdDV3NJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC8zMmQ3YWQtOGJmOS00Mjc0LTk1ZjgtOWM5NTM1OTRkNmIx LzEvYVlmVWVUWGhFMzFVUkNiYlVvamhLcHdDV3NJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcFiKiw/g yQ/3QNhHoIuy02SWRhth13oQyroyBrTcU/aqAWLxSF+72pOPxFE9lWngtS1V12SB A+xSTCMsMXq/Uwg33ks1ut6FVJmvkGYLxKxQulED3H5daNiBoXlstMJ2/dGPZfyB Mcn+MorYD8um6DYiSLpnxgbL96oFTB6j+N10pMrwA1JvQZxoYOX9XjWCxDFs3IC4 fYcUw0IRrnOhl6VWEULSGIBb//a8gEqpkkFc5FXsIwb60nBI7cM2BQmMeRBkg8qW W49Fsj3yfAWewESPW0S6uYEdrmm6je2vduy8ySYGI2Kupk/H2pOZhvIk2PHidAQR I+aGNpKNlgKH8g== -----END CERTIFICATE-----Generated at Fri Dec 19 13:14:04 2025 by rpki-client