This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft File: aZHFbxGnFxxhUyOXafVXvroQGC0.mft (raw, json) Hash identifier: qWL8KEz9q5DDbNKJyeBlmxijpMErgX2sskm5pm/kqWc= Subject key identifier: 0D:9C:DE:9C:D1:5B:CE:5D:E8:9A:A3:B4:31:90:64:6F:2A:14:C5:4A Authority key identifier: 69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D Certificate issuer: /CN=6991c56f11a7171c6153239769f557beba10182d Certificate serial: 019AF5AEDD046ACA492A363A9056EBF6EB24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft Manifest number: 0ADD Signing time: Sat 06 Dec 2025 22:01:08 +0000 Manifest this update: Sat 06 Dec 2025 22:01:08 +0000 Manifest next update: Sun 07 Dec 2025 22:01:08 +0000 Files and hashes: 1: 0ZnUbFz494YaFYXrrvpst6o3vps.roa (hash: OVgxGJmRNj8L4Akc46yjqXSfo2J2UzOCk6rafbqc2OA=) 2: 1gMhaWTt9SatCtzXb2x3evmqFAM.roa (hash: 6Y9a57NqqkLkQqCohM5S0/g04HJqvciLd/hsGJkposA=) 3: 2R9OObFNaEDkANSZ-coBJRfRpcg.roa (hash: PuD3VMT0jUQBkYxsd7Ldnl6ZWhsJPerlMMUp2zMDWgw=) 4: 3B48XSzrqRQbODZNf87x_kjUhNo.roa (hash: y14T24Ofee6GJVa1mI4/7qxhdq0jl8KEydSAoin8Qhg=) 5: 4Big0S_3eVdxzCi9Q5-ZazqY78k.roa (hash: MZj2ZauIX6SjNg/AhkH3xRZrKv7KoBeknyWj0YQB2/w=) 6: 5KCmcBzgBtGKXXIdhXDGwgQX-Nc.roa (hash: 3MBj03+qouTWcvDDud6sW23ZkQ0DtRDfsHdVwPfcmzA=) 7: Ge-sdc_RhsJevkQCq5DXSj7W5SM.roa (hash: cppMW1hN3HemsqcEnmgRLycbL6rv3c6Bv6GxyK4Dr7I=) 8: GzbjpWWbs-1PqotRsV09E9K9Lz4.roa (hash: DPdOn5R31znLhVjpEt/89hnY5IoUTo1sHiV7ubrKX6Q=) 9: IR0N93wyt194hpjTT9eshHBGwCY.roa (hash: hm8stnovqLivJRd1Zt72YsNy0Lv8colWOGD8fUtYhVw=) 10: Ipr3KewOoeNwtKcMjwWhhMZ4XGk.roa (hash: 3JCwXXZ0yyhMNw7g8hWZGcEbqAf0RiAf0XwSMEKW1/k=) 11: LiReZTb5eM73wM_EtDaxcTNj4Uc.roa (hash: VxzmF2kcB0hEh+Og8NMqll1d/dM5T/PwiOdBSWMF9+w=) 12: NdAX7Rrn7y-KonnG7TF23wCnJFU.roa (hash: 1r3koUbwGBNgbjNaxMGO8L4AUL4EQ4uI3dkO8TUFqEA=) 13: NxKKuEIzsEe5p3RwQBZ8j63Lsc4.roa (hash: mOT2nWmKWDEZ1VeM86bS3Qx+tjUuZhaB/QcxGF5t7y4=) 14: OxLywK9-WD8ykiaZCQkg8aVcCjY.roa (hash: iXcObwE6BigOurV7fYooDfgc8zyVyQ+nTBGFkUMqd08=) 15: Qjyx-VfeYJzhQ64OO3GeexbDjpo.roa (hash: rj+IOmmZrJFH/pGr6IiDQ9M39qURzS3Ek11UjeILldM=) 16: TvRgaW9-CsNjYomAsfORBTmW3OU.roa (hash: E1pW1tBEDD4gp+efpV/wAMGMYES5LCvHxLW4UcIoHuI=) 17: US4urt8SGYSwI0nrEmSfY23OtMo.roa (hash: WGkLaX+bRS10FeqEfnkw5XXJQ/dEDlUw6wG2fIeU7p0=) 18: UbTczMXH1DXAp6Y4rzAMo0-vjMY.roa (hash: /5fKT3FRRFYWFa0s/Qas8JVmnywA6hIsUQs3iIAfCSc=) 19: V9MunteQeVICf2ICr71lxQH0Fho.roa (hash: eyd5tdJUMOhtnb51XXGrnbSnVth9KptYyQQSksmwF/U=) 20: Xk5tmPIosW8yWOoBE4vC97DKTmI.roa (hash: n+WSuCldCqJF0J/zIrAAsy8W1NaktFT44ojEQwTF8/A=) 21: Y8kVBgTTg77JqceZAx8eeOkuigc.roa (hash: IFdbCND0Hr2WHlrHfsppyOn82/Cdt+j+/f3Y4nRrJM0=) 22: a0il1xPCzL5RX2zRZ16C5yrKQN0.roa (hash: jNHlYD8MG49p1qoIK36TKFr01Lgirahfew8083hVbhQ=) 23: a75rOpjpaPa3RoX99f00xHpyQQk.roa (hash: pBUN5kZ0kemGdrUfIg4JmP66bIvq4vhJcqUtu9xb4uk=) 24: aZHFbxGnFxxhUyOXafVXvroQGC0.crl (hash: +3lzQx0HGALklfu21hT+v/5qdF7S3eUXEubQ/Js2lgQ=) 25: eSDGXftwPU-DhjYptcEbu97gSEU.roa (hash: 298/MebJAxJVNu0RXxXXDu+aRB+xIjmk2sL/OavJmSI=) 26: gt8flTD_zJibygdA8dyeuF1l6X4.roa (hash: aubI8iptMgWbWF9zUBH11nChoCQulzBZponMqronaCU=) 27: h8jROV5bQoENdkPdOHcG_4qWdVY.roa (hash: glJfimln9Noz47bXSrY5ZJrPDNDjmCoZp6sAhb5XR58=) 28: hd5E-IfEq2TxeShk5Gaec24hUKw.roa (hash: gaGe3UUy/HO5uK3mGo4Jfk2cwdMRK/X0E0rPiNSPI88=) 29: mqFZ_6poK042LnYArfefb64YNZQ.roa (hash: z+bsA4ZcDvX2JPMlTZwVkKpOQPowKJ3wnhxnQ/pVUXU=) 30: qjt96n4RyTnwKt8f25Hzr4YOzU4.roa (hash: c+NeV173DV29fxhrcPqvFfp6/xCLnBsKjYjqezsWpbo=) 31: r72MZC6TP9HFp69hVblH2z8aLDw.roa (hash: 60a58tQ14AuL0odo9HIWNyGRLIp51J3Om0fY3oCEnBg=) 32: uuETfDd2MFEUFL6j7oWk0rsVxng.roa (hash: gq3xyqmM/tiK/h2Lc/3S6cQaZW777XfzMoLElI6p2tY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:dd:04:6a:ca:49:2a:36:3a:90:56:eb:f6:eb:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6991c56f11a7171c6153239769f557beba10182d Validity Not Before: Dec 6 22:01:08 2025 GMT Not After : Dec 7 22:01:08 2025 GMT Subject: CN=0d9cde9cd15bce5de89aa3b43190646f2a14c54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d2:01:38:ae:70:f3:aa:e2:53:1a:6f:b9:ab: bc:5b:65:ec:91:9d:71:f6:b4:a4:db:5a:42:0d:97: c2:16:9a:25:0b:c7:79:3c:2b:b3:8d:07:71:c2:ee: 12:9f:8b:c5:8c:f3:59:ad:2b:c8:81:7d:e6:9c:97: 68:c4:91:4c:74:c1:34:67:80:c0:c3:80:39:ff:a3: 77:54:9b:e1:e1:72:97:fc:b2:84:46:6e:44:e4:70: 32:e3:7b:69:42:ce:e6:96:0a:f1:02:3c:09:81:dd: 09:b5:f0:a9:e7:d5:9d:f0:8b:97:ea:21:55:b3:3d: dd:b5:8b:32:29:7d:70:3c:3d:1a:39:80:4b:b9:c3: da:cf:77:f0:5e:a8:e6:eb:75:4d:cb:8a:95:4c:42: 5b:43:b0:de:c4:e6:83:85:dd:7d:3a:8d:e5:89:f7: 3e:51:da:71:9e:8a:7d:5b:a2:91:07:02:08:b8:33: a3:6b:0c:5f:0a:00:b3:17:55:49:3f:db:9e:89:bf: ae:9e:d6:df:0a:05:72:57:b9:b7:24:fd:d0:8c:1c: d6:1a:40:cd:74:c9:8c:ec:ec:34:e8:d5:84:5a:4c: 85:1c:db:e6:00:56:f3:ab:4a:4a:97:86:5d:38:39: a6:e7:5c:3c:c2:a8:de:8d:08:21:b0:95:5c:04:08: 88:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9C:DE:9C:D1:5B:CE:5D:E8:9A:A3:B4:31:90:64:6F:2A:14:C5:4A X509v3 Authority Key Identifier: keyid:69:91:C5:6F:11:A7:17:1C:61:53:23:97:69:F5:57:BE:BA:10:18:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZHFbxGnFxxhUyOXafVXvroQGC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/428815-02b9-4606-b066-65d1567340fd/1/aZHFbxGnFxxhUyOXafVXvroQGC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:1d:c7:d9:ff:69:da:28:ae:86:e6:9c:a1:fe:f2:f9:bf:f3: a2:25:80:ec:8c:37:46:8f:00:b6:29:fd:80:de:60:79:06:a4: fa:21:97:07:8f:d4:45:cb:76:0b:b9:9a:ec:28:45:d9:d8:5a: 89:56:40:88:d2:3a:f4:74:03:1a:5f:d6:98:92:aa:c5:e7:30: 0c:2f:e8:16:56:4c:e1:7c:a4:a9:31:cc:0c:cf:79:d3:10:af: ad:0d:6d:79:14:69:98:4e:b3:e3:c1:94:58:39:b0:cb:b5:73: 24:61:29:98:af:7e:98:ff:f7:98:0f:5b:cb:9d:3a:ab:82:6d: 2b:8f:9e:0b:4e:7a:40:fb:92:74:6d:92:9e:72:05:36:f0:cc: 96:b1:3d:05:0c:5a:f3:14:2c:79:93:dd:dc:93:b9:82:0e:b6: 70:a5:f2:a6:4e:b2:a4:65:49:8f:20:d6:b0:05:1c:4f:34:c0: e2:16:d6:5b:0a:a3:60:0b:33:8b:f7:8f:f5:18:89:98:9a:2f: 1c:8d:7d:3e:b8:46:ee:c7:aa:54:77:22:aa:cd:64:2d:71:6e: 28:e5:df:2c:fb:92:1b:71:80:30:d1:1a:44:1d:32:87:50:0d: 9b:88:3f:da:06:3c:e7:84:cb:a2:7e:57:e1:4e:26:4e:98:1e: e6:60:ff:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rt0EaspJKjY6kFbr9uskMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5OTFjNTZmMTFhNzE3MWM2MTUzMjM5NzY5ZjU1N2JlYmEx MDE4MmQwHhcNMjUxMjA2MjIwMTA4WhcNMjUxMjA3MjIwMTA4WjAzMTEwLwYDVQQD EygwZDljZGU5Y2QxNWJjZTVkZTg5YWEzYjQzMTkwNjQ2ZjJhMTRjNTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNIBOK5w86riUxpvuau8W2XskZ1x 9rSk21pCDZfCFpolC8d5PCuzjQdxwu4Sn4vFjPNZrSvIgX3mnJdoxJFMdME0Z4DA w4A5/6N3VJvh4XKX/LKERm5E5HAy43tpQs7mlgrxAjwJgd0JtfCp59Wd8IuX6iFV sz3dtYsyKX1wPD0aOYBLucPaz3fwXqjm63VNy4qVTEJbQ7DexOaDhd19Oo3lifc+ Udpxnop9W6KRBwIIuDOjawxfCgCzF1VJP9ueib+untbfCgVyV7m3JP3QjBzWGkDN dMmM7Ow06NWEWkyFHNvmAFbzq0pKl4ZdODmm51w8wqjejQghsJVcBAiIuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA2c3pzRW85d6JqjtDGQZG8qFMVKMB8GA1UdIwQY MBaAFGmRxW8RpxccYVMjl2n1V766EBgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYt NjVkMTU2NzM0MGZkLzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80Mjg4MTUtMDJiOS00NjA2LWIwNjYtNjVkMTU2NzM0MGZk LzEvYVpIRmJ4R25GeHhoVXlPWGFmVlh2cm9RR0MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsR3H2f9p 2iiuhuacof7y+b/zoiWA7Iw3Ro8Atin9gN5geQak+iGXB4/URct2C7ma7ChF2dha iVZAiNI69HQDGl/WmJKqxecwDC/oFlZM4XykqTHMDM950xCvrQ1teRRpmE6z48GU WDmwy7VzJGEpmK9+mP/3mA9by506q4JtK4+eC056QPuSdG2SnnIFNvDMlrE9BQxa 8xQseZPd3JO5gg62cKXypk6ypGVJjyDWsAUcTzTA4hbWWwqjYAszi/eP9RiJmJov HI19PrhG7seqVHciqs1kLXFuKOXfLPuSG3GAMNEaRB0yh1ANm4g/2gY854TLon5X 4U4mTpge5mD/3g== -----END CERTIFICATE-----Generated at Sun Dec 7 00:55:52 2025 by rpki-client