This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json) Hash identifier: fP+UPystfnvoEPzBGoW2IIvIMpGIfx3PfWJqaHwIBPU= Subject key identifier: 4D:5E:07:8F:83:B3:BA:8D:7B:80:8B:44:99:CB:24:BD:A7:B2:5B:86 Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97 Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97 Certificate serial: 019B5ABF8B3B421DA4144E90B4168B79CD43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft Manifest number: 0702 Signing time: Fri 26 Dec 2025 13:01:00 +0000 Manifest this update: Fri 26 Dec 2025 13:01:00 +0000 Manifest next update: Sat 27 Dec 2025 13:01:00 +0000 Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=) 2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: BbdLw2n+02StZXt0JSROju2M3MBR8v5X7M9WZ0dktos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:8b:3b:42:1d:a4:14:4e:90:b4:16:8b:79:cd:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97 Validity Not Before: Dec 26 13:01:00 2025 GMT Not After : Dec 27 13:01:00 2025 GMT Subject: CN=4d5e078f83b3ba8d7b808b4499cb24bda7b25b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:76:c6:1b:2b:54:58:d5:1c:4a:68:87:7c:6d: eb:06:42:5c:39:ae:34:48:14:0d:88:49:66:41:1d: ea:8d:3c:96:88:d3:cb:b1:af:76:bf:a7:36:41:75: ba:9d:58:a5:de:9d:30:c4:48:ab:98:12:cb:f1:5e: f5:d7:5b:66:6a:5f:3f:4f:96:94:16:cb:7e:db:a5: c2:a4:82:cd:cf:db:9c:a7:22:12:37:d4:d0:fd:a8: 6b:56:8b:9c:94:a8:a1:77:42:86:a7:6a:2f:0a:32: de:42:3c:bc:d9:02:72:78:c3:ad:a5:60:d6:45:06: 66:c9:38:7f:75:7f:ef:c9:e6:9b:bd:ac:0f:33:c7: 2d:e0:9d:b8:6f:d0:61:a1:31:28:a9:7d:ff:66:59: e0:07:4f:2b:e2:c5:c4:08:1c:af:83:bd:d1:d2:14: de:93:d2:a1:4b:97:c9:33:62:f8:65:bf:61:b0:92: 1e:fb:10:81:11:2b:55:62:25:e3:bf:59:3f:10:ee: a1:dc:fe:c6:6e:20:1b:23:f0:ac:08:72:02:87:c0: 21:f5:39:14:da:6d:86:61:d8:7d:a7:be:19:4b:a3: 11:79:e0:ef:54:8c:c2:9f:30:1a:29:7f:76:7a:56: 37:64:c3:fb:0b:9b:de:ad:28:9a:a1:ef:d5:d2:55: e8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5E:07:8F:83:B3:BA:8D:7B:80:8B:44:99:CB:24:BD:A7:B2:5B:86 X509v3 Authority Key Identifier: keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:56:9f:46:05:0d:90:98:0c:72:f3:6a:f3:79:7d:f1:6c:5b: 83:98:31:60:ad:6a:6c:ef:d0:3b:6d:cd:9d:f3:04:5b:77:53: da:a5:4e:2e:38:dd:68:07:a6:9f:6f:2b:92:30:75:6a:72:00: 6f:cb:d0:5f:fc:b6:35:0a:c3:69:55:08:ce:56:47:af:81:25: 4d:ec:08:7e:db:f0:f6:31:a2:25:7e:67:f2:eb:f0:c9:17:5b: 1e:c9:e4:65:1d:7b:36:ba:0a:28:6f:73:30:be:d3:df:3d:00: 7d:52:e2:49:fe:da:4d:13:e0:88:34:c8:b4:b9:d9:c4:76:72: b7:cc:86:b3:0a:cc:ef:cb:94:da:ab:88:ca:45:39:8c:54:d4: 59:e1:a3:6c:db:32:87:55:b3:0e:ea:b0:dd:49:24:20:85:80: 6d:ca:4f:e7:7c:69:94:96:6c:9d:d7:29:0c:25:d2:f7:b8:35: e9:62:40:4a:37:3e:fc:1f:41:70:ec:71:3f:11:f3:37:90:14: 17:09:0c:9d:3c:aa:35:19:44:74:0e:fc:d2:90:b4:39:f5:97: db:14:f1:02:f8:3f:33:44:93:9b:d1:75:eb:76:c5:08:83:c7: ee:35:cb:53:7b:b0:e9:85:7f:7d:71:39:89:66:33:b5:8d:26: 9b:db:75:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav4s7Qh2kFE6QtBaLec1DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4N2I5MWVkYTE2YjZmMWIxZmEwMTc1ZDY3Yzc5OTRmNjkx ZDhlOTcwHhcNMjUxMjI2MTMwMTAwWhcNMjUxMjI3MTMwMTAwWjAzMTEwLwYDVQQD Eyg0ZDVlMDc4ZjgzYjNiYThkN2I4MDhiNDQ5OWNiMjRiZGE3YjI1Yjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHbGGytUWNUcSmiHfG3rBkJcOa40 SBQNiElmQR3qjTyWiNPLsa92v6c2QXW6nVil3p0wxEirmBLL8V7111tmal8/T5aU Fst+26XCpILNz9ucpyISN9TQ/ahrVouclKihd0KGp2ovCjLeQjy82QJyeMOtpWDW RQZmyTh/dX/vyeabvawPM8ct4J24b9BhoTEoqX3/ZlngB08r4sXECByvg73R0hTe k9KhS5fJM2L4Zb9hsJIe+xCBEStVYiXjv1k/EO6h3P7GbiAbI/CsCHICh8Ah9TkU 2m2GYdh9p74ZS6MReeDvVIzCnzAaKX92elY3ZMP7C5verSiaoe/V0lXouwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE1eB4+Ds7qNe4CLRJnLJL2nsluGMB8GA1UdIwQY MBaAFGh7ke2ha28bH6AXXWfHmU9pHY6XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUh1UjdhRnJieHNmb0JkZFo4ZVpUMmtkanBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8yZmI4ZGYtMGU0OC00NjY1LWE5OWIt ZGZmZTU5MDIzZTg5LzEvYUh1UjdhRnJieHNmb0JkZFo4ZVpUMmtkanBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS8yZmI4ZGYtMGU0OC00NjY1LWE5OWItZGZmZTU5MDIzZTg5 LzEvYUh1UjdhRnJieHNmb0JkZFo4ZVpUMmtkanBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWFafRgUN kJgMcvNq83l98Wxbg5gxYK1qbO/QO23NnfMEW3dT2qVOLjjdaAemn28rkjB1anIA b8vQX/y2NQrDaVUIzlZHr4ElTewIftvw9jGiJX5n8uvwyRdbHsnkZR17NroKKG9z ML7T3z0AfVLiSf7aTRPgiDTItLnZxHZyt8yGswrM78uU2quIykU5jFTUWeGjbNsy h1WzDuqw3UkkIIWAbcpP53xplJZsndcpDCXS97g16WJASjc+/B9BcOxxPxHzN5AU FwkMnTyqNRlEdA780pC0OfWX2xTxAvg/M0STm9F163bFCIPH7jXLU3uw6YV/fXE5 iWYztY0mm9t1oQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:26 2025 by rpki-client