This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json) Hash identifier: aIK5rdyaFHQI04eLzw12fcAkw0P8GYgQlfWqgtZ20Dw= Subject key identifier: 36:E5:0F:42:4D:71:46:EE:D1:63:A1:99:6F:08:6C:91:45:1A:A7:AC Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed Certificate serial: 019B0E92C7DCF61B445D19F55C182D9BC375 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft Manifest number: 1771 Signing time: Thu 11 Dec 2025 18:00:58 +0000 Manifest this update: Thu 11 Dec 2025 18:00:58 +0000 Manifest next update: Fri 12 Dec 2025 18:00:58 +0000 Files and hashes: 1: 1ikX92cBkm7W7rHfhLCtgqKM0d8.roa (hash: oY5BxXRyJZhAnRLwWm3V4CClsVP5JaJOwIydkhqNE80=) 2: 2KU1lG8tmW62eqBwxBBDds81m5A.roa (hash: DXWqInrCKLzcQadKZzuaDGdIbNbzO5YygQPkSyOtdqY=) 3: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: WH4D55q6e8pHNrGfuLlOUDMlx9qk0q35NbTHnIxtm58=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 18:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:92:c7:dc:f6:1b:44:5d:19:f5:5c:18:2d:9b:c3:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed Validity Not Before: Dec 11 18:00:58 2025 GMT Not After : Dec 12 18:00:58 2025 GMT Subject: CN=36e50f424d7146eed163a1996f086c91451aa7ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d7:74:38:c5:85:3c:b5:b4:a8:ef:3c:b9:70: 45:b5:81:2b:4f:6e:bd:09:b9:32:20:03:aa:2e:8b: 4c:df:86:96:90:5b:ea:7f:a1:ce:9a:4f:b9:ec:20: 09:d7:a2:a5:32:36:e7:2b:7b:92:9a:7b:45:07:10: 92:f2:b8:10:55:71:96:81:cb:da:d3:87:bc:2e:e0: a0:25:8f:b0:3e:d4:b0:31:d2:04:6e:51:15:a9:ca: 44:d0:7a:46:c4:cb:b6:6e:75:0e:37:6d:ed:24:4d: e2:01:3b:26:61:41:56:79:a2:11:e8:02:58:6a:bb: bc:dd:ee:4c:b8:b2:a6:3e:15:fd:c0:f6:7c:98:c7: f9:17:69:ce:4b:5f:d0:90:4a:73:a1:26:af:e6:16: fe:13:94:23:6c:87:12:0f:df:e4:37:12:e7:1d:55: a1:91:0e:b6:40:48:ea:0b:e1:20:b0:86:c4:b3:ae: 1b:6f:51:cf:84:4e:13:85:1c:ef:fe:6f:de:ee:7e: cb:fd:bb:f1:e0:f9:58:70:4a:94:28:02:69:84:90: e4:8a:43:36:82:16:04:0d:16:a4:df:d7:b4:d2:3b: ea:ce:92:85:0c:bd:32:cd:a9:05:ad:62:37:7c:a3: 6f:03:58:b6:86:7b:13:b2:42:73:0a:7f:e8:89:80: 48:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E5:0F:42:4D:71:46:EE:D1:63:A1:99:6F:08:6C:91:45:1A:A7:AC X509v3 Authority Key Identifier: keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:cf:b2:86:bd:71:61:66:a7:61:7a:2e:40:52:65:03:a5:6b: 40:3b:b7:ec:0f:aa:49:75:b1:92:c0:9a:c4:d9:af:d8:59:36: 05:9e:5d:cf:e6:5d:8a:77:d8:8f:f2:ea:b4:28:83:2c:dc:51: 16:34:dd:f1:45:a6:8f:63:bf:b0:af:d3:be:4f:01:00:dd:11: b2:ce:4e:30:43:3c:92:21:44:9d:2c:33:38:5a:08:1f:39:84: d3:5e:74:e3:99:0f:13:d9:6d:32:07:ac:01:0b:33:c5:2b:e3: e0:c5:95:86:52:85:79:48:a3:83:d4:33:f1:65:a2:0f:29:66: ec:3f:4d:c7:eb:e6:ac:3f:4c:ce:7e:e1:6b:8e:57:dd:26:c4: 30:15:c0:a0:ae:e5:0d:11:08:5e:ee:f8:72:32:d1:cf:ba:c6: 82:90:0d:27:e6:89:c5:e6:32:9f:c0:1b:ef:b7:8e:e5:e0:71: 98:70:ae:92:30:4a:0f:a9:66:58:c2:60:33:35:60:76:96:74: 0e:33:a0:f2:79:00:98:c7:05:c6:b5:9e:b3:48:cc:58:7c:98: 3b:8c:fc:96:c0:22:1c:99:7f:b5:65:b9:ce:63:70:58:03:10: f7:e4:a2:34:1f:53:b1:c7:92:9e:e8:c1:6b:de:80:19:9b:08: 3b:82:21:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOksfc9htEXRn1XBgtm8N1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDQyNWNjN2IxYjc4ODBhODc1Zjc2YmVkYTgwZmUzMTA5 MzE5ZWQwHhcNMjUxMjExMTgwMDU4WhcNMjUxMjEyMTgwMDU4WjAzMTEwLwYDVQQD EygzNmU1MGY0MjRkNzE0NmVlZDE2M2ExOTk2ZjA4NmM5MTQ1MWFhN2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltd0OMWFPLW0qO88uXBFtYErT269 CbkyIAOqLotM34aWkFvqf6HOmk+57CAJ16KlMjbnK3uSmntFBxCS8rgQVXGWgcva 04e8LuCgJY+wPtSwMdIEblEVqcpE0HpGxMu2bnUON23tJE3iATsmYUFWeaIR6AJY aru83e5MuLKmPhX9wPZ8mMf5F2nOS1/QkEpzoSav5hb+E5QjbIcSD9/kNxLnHVWh kQ62QEjqC+EgsIbEs64bb1HPhE4ThRzv/m/e7n7L/bvx4PlYcEqUKAJphJDkikM2 ghYEDRak39e00jvqzpKFDL0yzakFrWI3fKNvA1i2hnsTskJzCn/oiYBIAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDblD0JNcUbu0WOhmW8IbJFFGqesMB8GA1UdIwQY MBaAFGjUJcx7G3iAqHX3a+2oD+MQkxntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2Et NWM0NWI2MThmOTkwLzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2EtNWM0NWI2MThmOTkw LzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuc+yhr1x YWanYXouQFJlA6VrQDu37A+qSXWxksCaxNmv2Fk2BZ5dz+ZdinfYj/LqtCiDLNxR FjTd8UWmj2O/sK/Tvk8BAN0Rss5OMEM8kiFEnSwzOFoIHzmE015045kPE9ltMges AQszxSvj4MWVhlKFeUijg9Qz8WWiDylm7D9Nx+vmrD9Mzn7ha45X3SbEMBXAoK7l DREIXu74cjLRz7rGgpANJ+aJxeYyn8Ab77eO5eBxmHCukjBKD6lmWMJgMzVgdpZ0 DjOg8nkAmMcFxrWes0jMWHyYO4z8lsAiHJl/tWW5zmNwWAMQ9+SiNB9TsceSnujB a96AGZsIO4IhbQ== -----END CERTIFICATE-----Generated at Fri Dec 12 00:22:25 2025 by rpki-client