This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json) Hash identifier: +Ww4TidMYQtVXtjFX5+frcvuUXTo9PoKy6DtGFo+lsY= Subject key identifier: E4:DE:7B:ED:49:BD:BA:CB:AF:11:AD:C4:64:42:60:22:55:29:C9:33 Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Certificate serial: 019B41DB95F6902C2FD54B5968D0EA3202AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft Manifest number: 16DE Signing time: Sun 21 Dec 2025 17:01:08 +0000 Manifest this update: Sun 21 Dec 2025 17:01:08 +0000 Manifest next update: Mon 22 Dec 2025 17:01:08 +0000 Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=) 2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: 9TSYaZ48u1tIqIBa6LVgK+WSSj/Spieygq551mowcqQ=) 3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 17:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:db:95:f6:90:2c:2f:d5:4b:59:68:d0:ea:32:02:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Validity Not Before: Dec 21 17:01:08 2025 GMT Not After : Dec 22 17:01:08 2025 GMT Subject: CN=e4de7bed49bdbacbaf11adc4644260225529c933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f4:11:22:4e:70:58:58:72:5e:ac:52:fe:39: a6:15:e8:d5:11:4e:df:66:94:8b:37:9c:98:cd:7d: bf:91:61:23:5f:9c:80:75:df:b1:96:19:cd:39:db: 29:95:53:cc:68:61:e5:80:de:c4:2d:0a:7e:4b:db: 0a:81:af:e0:d9:6f:18:02:a1:08:99:a4:8c:66:18: ec:ff:3b:e2:62:48:3c:aa:d6:76:be:ae:c9:9f:5e: 3a:7b:87:d6:23:4d:a8:cb:2e:55:aa:fb:74:5d:cd: a2:bc:65:f2:1d:0a:f3:9a:13:1b:d5:94:0f:bd:62: 15:4f:eb:4f:7d:d5:ec:6b:b6:f3:a8:c7:eb:33:24: f7:04:63:e5:18:50:02:eb:10:57:aa:6f:6d:8a:e8: 94:5b:8e:ca:6b:7f:f7:b2:25:4f:7e:9d:94:c9:be: 96:18:d2:2a:0c:ca:bb:f0:68:08:0d:ef:4a:cb:74: 95:e1:a1:94:58:c5:25:fd:4a:68:8d:44:8a:f1:4a: 7b:7b:ec:4d:c7:03:68:1c:22:18:7b:4f:1c:2c:47: 81:18:85:b7:99:61:db:2a:36:64:92:a8:98:21:0e: ee:4c:bc:e4:e6:09:11:90:0e:50:bc:cf:fd:cb:81: 31:1e:5e:bd:a6:10:4e:76:fc:c5:26:16:14:2a:23: 0d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DE:7B:ED:49:BD:BA:CB:AF:11:AD:C4:64:42:60:22:55:29:C9:33 X509v3 Authority Key Identifier: keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:31:7f:a0:9e:19:c2:34:28:eb:95:11:c5:df:16:8d:34:87: 33:c7:1e:34:a8:97:61:32:da:d3:5e:52:1e:27:c2:79:91:ef: b1:b9:4e:93:ae:e1:80:39:c9:65:7f:24:4f:4f:71:fe:48:e3: 75:3d:26:92:11:96:dd:61:65:88:a4:39:8b:a9:a5:b6:ae:6a: 3f:bf:43:d9:58:5f:5c:b9:16:e6:29:59:9c:a2:45:ef:8f:c3: dd:bc:c1:9b:73:f1:33:c4:3a:5c:5c:e0:07:e5:f6:17:d5:32: 88:39:be:5f:61:03:96:8b:1c:42:d2:2c:11:c7:52:bf:09:2b: 25:07:a1:1b:60:e3:90:76:a6:b9:a5:29:17:7d:68:8d:2a:d3: 2f:77:d2:4d:bf:87:22:5e:ea:54:2f:e0:f7:d7:27:e4:2c:40: 19:f2:c5:2b:0f:91:f9:2a:e9:d6:d4:cc:f5:90:39:2c:c2:8b: f7:c8:83:a6:dc:ac:d5:8e:cf:d3:27:f0:a5:e0:e5:13:e2:2a: ae:cb:84:2c:ca:26:2d:97:d7:ec:ed:e8:0f:9e:e7:3e:cf:31: 95:b7:ef:c5:f5:3e:90:0b:3e:73:32:5b:d2:54:bf:da:72:95: da:06:60:ac:ff:70:d5:7e:56:cd:d0:36:06:9b:83:e8:13:bf: 66:08:a4:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtB25X2kCwv1UtZaNDqMgKsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzVmMDliM2E5MDM5NTBmM2ZjZDFiMjU1MDg2ZWRlNDg3 NmViMTEwHhcNMjUxMjIxMTcwMTA4WhcNMjUxMjIyMTcwMTA4WjAzMTEwLwYDVQQD EyhlNGRlN2JlZDQ5YmRiYWNiYWYxMWFkYzQ2NDQyNjAyMjU1MjljOTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PQRIk5wWFhyXqxS/jmmFejVEU7f ZpSLN5yYzX2/kWEjX5yAdd+xlhnNOdsplVPMaGHlgN7ELQp+S9sKga/g2W8YAqEI maSMZhjs/zviYkg8qtZ2vq7Jn146e4fWI02oyy5Vqvt0Xc2ivGXyHQrzmhMb1ZQP vWIVT+tPfdXsa7bzqMfrMyT3BGPlGFAC6xBXqm9tiuiUW47Ka3/3siVPfp2Uyb6W GNIqDMq78GgIDe9Ky3SV4aGUWMUl/UpojUSK8Up7e+xNxwNoHCIYe08cLEeBGIW3 mWHbKjZkkqiYIQ7uTLzk5gkRkA5QvM/9y4ExHl69phBOdvzFJhYUKiMNEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOTee+1JvbrLrxGtxGRCYCJVKckzMB8GA1UdIwQY MBaAFGjF8Js6kDlQ8/zRslUIbt5IdusRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgt OTQ4MDI2MzZiYWQ5LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgtOTQ4MDI2MzZiYWQ5 LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXTF/oJ4Z wjQo65URxd8WjTSHM8ceNKiXYTLa015SHifCeZHvsblOk67hgDnJZX8kT09x/kjj dT0mkhGW3WFliKQ5i6mltq5qP79D2VhfXLkW5ilZnKJF74/D3bzBm3PxM8Q6XFzg B+X2F9UyiDm+X2EDloscQtIsEcdSvwkrJQehG2DjkHamuaUpF31ojSrTL3fSTb+H Il7qVC/g99cn5CxAGfLFKw+R+Srp1tTM9ZA5LMKL98iDptys1Y7P0yfwpeDlE+Iq rsuELMomLZfX7O3oD57nPs8xlbfvxfU+kAs+czJb0lS/2nKV2gZgrP9w1X5WzdA2 BpuD6BO/ZgikLA== -----END CERTIFICATE-----Generated at Mon Dec 22 02:17:15 2025 by rpki-client