This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft File: AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft (raw, json) Hash identifier: Rh5WuQFVq3GqRfEhyvFJNZM41NGMiskJUCoKFeSlm7M= Subject key identifier: AB:DE:66:E6:72:27:B6:B1:36:D0:C8:B0:B5:C9:33:07:54:6E:02:89 Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86 Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86 Certificate serial: 019B59E457CE17941987F70BDE87E68A641F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft Manifest number: 0CC5 Signing time: Fri 26 Dec 2025 09:01:35 +0000 Manifest this update: Fri 26 Dec 2025 09:01:35 +0000 Manifest next update: Sat 27 Dec 2025 09:01:35 +0000 Files and hashes: 1: 7elRG4gqnvY-kvee5EC-ljUx8zc.roa (hash: EBapcQW4LSNex4n/3b9OtP2KhuUXB5IUoQf2KZKkJ6Q=) 2: AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl (hash: 7R8a6lylWooy1oWXDiIpjuK5vYWQQl5Bm1+tCX3+gv0=) 3: GAzN8JgljKfA3A30CpTpB9I-ljg.roa (hash: rKanLHq74yk8hIMHAP3lf3yTM47zrxq0k/XrA6g5TqI=) 4: KlGeCuL83ckpFDxEzckjMn7_6RE.roa (hash: sQSDNJGP0PRAc42NznmCEsFt8+XssPeUkQMlKcFGyeg=) 5: cI0Z3sLe1xjrCwyg19NbzVWgf58.roa (hash: RgqBJJ2OAbbh0xonFH0+36oQyNXiwKW4rTJMbCMMDzs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:57:ce:17:94:19:87:f7:0b:de:87:e6:8a:64:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86 Validity Not Before: Dec 26 09:01:35 2025 GMT Not After : Dec 27 09:01:35 2025 GMT Subject: CN=abde66e67227b6b136d0c8b0b5c93307546e0289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9f:1f:28:10:2f:a6:f1:68:76:6e:7f:eb:c9: 4e:40:92:9e:63:d6:f7:72:e9:84:0e:59:0a:5b:c3: db:f2:f5:9f:69:c4:6a:9c:bb:08:52:aa:2b:c8:f3: 46:70:43:60:db:69:39:7a:e8:da:af:d2:cf:12:f2: bd:04:94:90:36:4f:b9:a4:e1:f4:d9:73:0d:f1:02: 01:aa:70:aa:90:45:de:b3:18:b0:17:e4:76:9d:28: 13:71:b6:dc:e9:6f:0b:8d:63:8f:cc:90:a3:1d:c0: bd:ba:ed:eb:37:42:df:91:35:44:44:bb:e0:ba:86: 43:5c:96:4c:f7:92:38:f1:e9:f9:fe:cd:08:14:de: 84:10:8b:cc:d1:d0:6a:52:dc:0b:92:a6:69:ff:72: 07:aa:68:a5:db:6a:58:5d:c2:d1:7c:da:15:08:f6: 49:11:0c:f2:66:f9:d8:26:82:66:4c:ff:61:82:6c: e9:39:30:30:99:cb:30:2e:41:2b:00:10:4f:46:f9: a8:b8:73:82:84:c0:7f:db:d7:fb:34:cd:fb:37:05: ff:03:d9:05:71:97:ed:c1:bf:64:45:86:0a:b3:fe: ef:97:38:fc:1d:ec:a8:de:52:65:d6:a7:f2:03:65: 67:fc:a2:56:a4:1f:21:63:4a:12:71:5c:65:6a:65: 13:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:DE:66:E6:72:27:B6:B1:36:D0:C8:B0:B5:C9:33:07:54:6E:02:89 X509v3 Authority Key Identifier: keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:5e:73:cf:e2:36:f3:2a:cb:43:10:23:43:2b:8f:55:bd:3e: dd:31:ea:51:b5:94:d1:26:5b:ac:1e:d5:38:57:30:01:5e:b8: d0:8a:59:32:9f:2d:b2:75:2e:ad:a4:04:7f:d7:c9:ca:9e:c8: a9:9c:c6:e7:92:de:5f:b9:b6:f0:04:60:2c:3e:e9:75:b2:d0: 51:33:ad:c4:4e:0e:79:5c:70:23:a7:77:73:02:bc:d0:dc:fd: 8a:c6:ac:f6:77:96:14:0e:0b:cd:a1:cb:74:32:cb:ee:2c:4f: 18:83:25:a7:71:46:5a:af:ac:90:2a:d5:05:2f:6a:f4:a4:d1: eb:49:62:61:00:67:77:29:1f:88:fa:87:e4:e0:7c:77:cf:75: 41:c4:d6:53:bb:cb:77:c7:ec:2d:a7:bb:1d:e8:ff:f4:80:45: 0b:f6:b5:fe:3d:94:53:d8:e9:d6:4d:97:b0:2a:06:ff:54:07: 39:76:7f:34:d0:43:96:7d:aa:ce:fc:53:1a:65:f2:49:07:0b: 88:9d:fc:ce:48:3e:da:e0:c1:1f:98:43:b6:23:a9:29:3b:93: 20:ae:07:4a:97:c8:5b:20:b4:a6:3f:a0:f3:3e:ad:29:77:5d: b7:7e:2b:53:81:de:8a:8c:7d:08:32:00:fa:30:19:e7:ee:dc: 71:b6:9c:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5FfOF5QZh/cL3ofmimQfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwMDc1MzRlYjc3Y2FhODM2ZjhmMTE4NjMwMTY0ZTAyMzZl NWZlODYwHhcNMjUxMjI2MDkwMTM1WhcNMjUxMjI3MDkwMTM1WjAzMTEwLwYDVQQD EyhhYmRlNjZlNjcyMjdiNmIxMzZkMGM4YjBiNWM5MzMwNzU0NmUwMjg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy58fKBAvpvFodm5/68lOQJKeY9b3 cumEDlkKW8Pb8vWfacRqnLsIUqoryPNGcENg22k5eujar9LPEvK9BJSQNk+5pOH0 2XMN8QIBqnCqkEXesxiwF+R2nSgTcbbc6W8LjWOPzJCjHcC9uu3rN0LfkTVERLvg uoZDXJZM95I48en5/s0IFN6EEIvM0dBqUtwLkqZp/3IHqmil22pYXcLRfNoVCPZJ EQzyZvnYJoJmTP9hgmzpOTAwmcswLkErABBPRvmouHOChMB/29f7NM37NwX/A9kF cZftwb9kRYYKs/7vlzj8Heyo3lJl1qfyA2Vn/KJWpB8hY0oScVxlamUTpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKveZuZyJ7axNtDIsLXJMwdUbgKJMB8GA1UdIwQY MBaAFAAHU063fKqDb48RhjAWTgI25f6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgt NmQxYzliMTUzY2YwLzEvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgtNmQxYzliMTUzY2Yw LzEvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHV5zz+I2 8yrLQxAjQyuPVb0+3THqUbWU0SZbrB7VOFcwAV640IpZMp8tsnUuraQEf9fJyp7I qZzG55LeX7m28ARgLD7pdbLQUTOtxE4OeVxwI6d3cwK80Nz9isas9neWFA4LzaHL dDLL7ixPGIMlp3FGWq+skCrVBS9q9KTR60liYQBndykfiPqH5OB8d891QcTWU7vL d8fsLae7Hej/9IBFC/a1/j2UU9jp1k2XsCoG/1QHOXZ/NNBDln2qzvxTGmXySQcL iJ38zkg+2uDBH5hDtiOpKTuTIK4HSpfIWyC0pj+g8z6tKXddt34rU4Heiox9CDIA +jAZ5+7ccbactA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:01:03 2025 by rpki-client