This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json) Hash identifier: U25648/Eo4ZG6B3h4c3l8wgfXBotOvM5mEXsc42r8TI= Subject key identifier: 0E:7B:13:D3:26:CF:9C:C0:49:86:4A:08:BD:18:AC:40:24:11:D6:48 Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5 Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5 Certificate serial: 019B3F48021D13E83BC4CBB0036EA884A663 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft Manifest number: 0C3B Signing time: Sun 21 Dec 2025 05:00:42 +0000 Manifest this update: Sun 21 Dec 2025 05:00:42 +0000 Manifest next update: Mon 22 Dec 2025 05:00:42 +0000 Files and hashes: 1: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: 54ZjE4i6fMJ+S4Q8JWMml6RABpouciOEBxMbf3FMZzE=) 2: fAKnpTzt0oxsrzvaA1bygJJ8CWQ.roa (hash: cdf+GHG9jpY7S3hS2aX03Crb7b2Au3gPgbB6NvaxmuA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:02:1d:13:e8:3b:c4:cb:b0:03:6e:a8:84:a6:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5 Validity Not Before: Dec 21 05:00:42 2025 GMT Not After : Dec 22 05:00:42 2025 GMT Subject: CN=0e7b13d326cf9cc049864a08bd18ac402411d648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3c:38:0e:21:ea:a0:ad:bf:8d:57:e8:4b:08: ed:3d:63:a6:f8:69:a8:04:68:fc:28:9f:33:98:10: 84:8d:d5:0c:f1:7b:9c:ed:77:a2:48:d0:82:51:62: 93:b4:68:35:0a:d6:ce:a8:e2:90:89:12:50:53:68: 85:1b:62:4c:7c:ca:58:9b:b6:88:e6:d8:b3:54:da: 28:60:12:b4:c8:4a:65:c9:92:63:b1:b1:ed:aa:85: 73:1b:3d:af:27:88:4e:08:19:f7:38:65:c3:c1:78: 8a:c5:a8:04:6d:c0:6b:3b:fe:fd:7b:63:54:87:10: 24:65:34:99:9a:ee:d9:1f:1d:37:d5:aa:e6:99:f1: c5:88:82:fe:2e:a2:c0:06:3b:ce:18:94:4b:25:9a: 6a:8d:cc:ce:da:c6:85:ac:c8:21:69:58:4d:af:2d: c2:25:6e:99:bf:5f:54:05:73:6e:3d:24:64:3f:b3: 87:81:17:b3:71:ea:58:0f:f8:1a:fb:9d:3e:55:b7: ab:cb:18:8b:65:8c:e4:d9:7c:8b:a6:51:5e:ad:fe: 97:a2:76:0d:d6:cb:33:33:15:c3:8e:5e:28:67:08: 9f:9f:9f:bf:fc:75:11:83:55:76:c5:b6:b5:1c:43: 99:21:c8:aa:9e:78:97:ec:f5:c3:81:b6:7d:54:31: f1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:7B:13:D3:26:CF:9C:C0:49:86:4A:08:BD:18:AC:40:24:11:D6:48 X509v3 Authority Key Identifier: keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:86:b5:0d:ea:66:e7:04:f2:cd:25:79:24:d9:a4:c7:8a:29: 04:9f:da:34:8a:11:df:33:16:8d:35:39:dd:53:19:05:67:15: 49:41:e2:23:ae:0d:31:e0:16:5b:14:68:2d:94:ea:0b:bf:59: 57:2d:45:6d:93:0b:33:1c:26:df:32:93:2a:a9:41:85:4c:21: b2:99:9b:d5:79:0d:30:94:eb:a1:3a:76:48:c5:20:19:39:fa: 73:aa:95:2e:9a:5d:08:78:83:9e:0f:75:6e:a4:fd:68:14:e6: bf:ac:0e:8c:90:41:2c:31:2e:4d:3e:af:a2:1c:a6:b6:e5:57: 7e:25:de:06:5a:e0:99:6c:eb:d7:90:1f:d3:db:e8:87:88:b4: a5:6a:b6:86:ba:8e:b1:11:43:b6:6f:75:d0:27:e0:db:f6:ce: d6:48:a9:4a:96:f0:03:3d:14:f1:64:1f:86:4b:ca:c0:cf:d4: a6:33:4c:12:3a:70:17:4a:d3:ac:4b:f3:50:0b:40:1f:9e:ad: 8b:92:e8:ff:be:8c:c0:5b:ec:f5:bc:c9:34:a9:1f:62:e6:11: b5:fc:d0:bd:a8:84:68:d2:10:f8:7d:7a:23:78:5e:b8:8e:86: a5:ee:54:59:6a:f3:97:20:c3:6f:38:31:df:7e:e9:11:0a:d2: e0:fb:df:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SAIdE+g7xMuwA26ohKZjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ODJmMDUxMzJhOTk4OTUwN2ViZjZlZTk4OTUxODc1M2Jh MmNkYjUwHhcNMjUxMjIxMDUwMDQyWhcNMjUxMjIyMDUwMDQyWjAzMTEwLwYDVQQD EygwZTdiMTNkMzI2Y2Y5Y2MwNDk4NjRhMDhiZDE4YWM0MDI0MTFkNjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzw4DiHqoK2/jVfoSwjtPWOm+Gmo BGj8KJ8zmBCEjdUM8Xuc7XeiSNCCUWKTtGg1CtbOqOKQiRJQU2iFG2JMfMpYm7aI 5tizVNooYBK0yEplyZJjsbHtqoVzGz2vJ4hOCBn3OGXDwXiKxagEbcBrO/79e2NU hxAkZTSZmu7ZHx031armmfHFiIL+LqLABjvOGJRLJZpqjczO2saFrMghaVhNry3C JW6Zv19UBXNuPSRkP7OHgRezcepYD/ga+50+VberyxiLZYzk2XyLplFerf6XonYN 1sszMxXDjl4oZwifn5+//HURg1V2xba1HEOZIciqnniX7PXDgbZ9VDHxdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA57E9Mmz5zASYZKCL0YrEAkEdZIMB8GA1UdIwQY MBaAFGmC8FEyqZiVB+v27piVGHU7os21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMt ZjkyNmZhYmY3YWZhLzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi82OTA0MDktMDE5ZC00ODEyLTkzMGMtZjkyNmZhYmY3YWZh LzEvYVlMd1VUS3BtSlVINl9idW1KVVlkVHVpemJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbYa1Depm 5wTyzSV5JNmkx4opBJ/aNIoR3zMWjTU53VMZBWcVSUHiI64NMeAWWxRoLZTqC79Z Vy1FbZMLMxwm3zKTKqlBhUwhspmb1XkNMJTroTp2SMUgGTn6c6qVLppdCHiDng91 bqT9aBTmv6wOjJBBLDEuTT6vohymtuVXfiXeBlrgmWzr15Af09voh4i0pWq2hrqO sRFDtm910Cfg2/bO1kipSpbwAz0U8WQfhkvKwM/UpjNMEjpwF0rTrEvzUAtAH56t i5Lo/76MwFvs9bzJNKkfYuYRtfzQvaiEaNIQ+H16I3heuI6Gpe5UWWrzlyDDbzgx 337pEQrS4PvfNA== -----END CERTIFICATE-----Generated at Sun Dec 21 09:31:55 2025 by rpki-client