This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft File: aNLCXQU0pAJ8aVViqM5PABzVOW8.mft (raw, json) Hash identifier: MQy6mYp0Sr1RDiYL6cETcQqzZ19q3NR6+0jyA1W0APM= Subject key identifier: E0:03:39:7F:AF:CF:94:08:34:3C:9C:9F:9C:AA:8B:66:29:EA:D2:FC Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f Certificate serial: 019B722304323C4BDDBD10C719448BAD6320 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft Manifest number: 13F7 Signing time: Wed 31 Dec 2025 02:00:55 +0000 Manifest this update: Wed 31 Dec 2025 02:00:55 +0000 Manifest next update: Thu 01 Jan 2026 02:00:55 +0000 Files and hashes: 1: SALrx8y5x39WJ8efwGiimpmg788.roa (hash: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=) 2: aNLCXQU0pAJ8aVViqM5PABzVOW8.crl (hash: GSspbZmy89i1KbhIlKRkXxXgYDH1jqIAzilDrfEKiJQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 23:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:72:23:04:32:3c:4b:dd:bd:10:c7:19:44:8b:ad:63:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f Validity Not Before: Dec 31 02:00:55 2025 GMT Not After : Jan 1 02:00:55 2026 GMT Subject: CN=e003397fafcf9408343c9c9f9caa8b6629ead2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:54:d5:d4:db:df:7f:d1:ea:2d:ac:96:3c: d1:bb:a2:07:fe:a7:b5:ad:b4:6d:1c:68:3d:86:bf: a2:74:11:c8:14:b8:77:98:cd:84:ce:47:7d:19:66: 7e:a1:15:85:41:f7:5f:0e:e2:c2:8b:e8:4f:93:20: bb:e7:f5:eb:f4:97:db:7c:5e:f3:b0:b9:fc:45:41: 13:29:e8:76:fa:cb:68:4a:93:f5:ed:25:54:78:d2: 67:6f:0a:c8:fa:47:de:93:65:38:30:9d:0b:f4:8f: 06:26:fc:7f:40:fa:cd:35:12:4a:95:d5:c7:b6:ed: 54:3d:92:fa:41:a3:12:d9:c6:d6:1b:cd:27:78:c6: 92:da:ba:01:fb:d1:ef:c9:5c:ec:2c:69:a6:17:be: 47:4e:c8:3d:c4:8f:9d:5c:b9:94:0c:e3:7e:94:e4: 88:20:ac:4c:4a:74:a0:64:0b:c7:18:de:07:70:0a: 9e:7b:5a:e0:9f:6e:de:44:8e:77:e1:80:14:b6:a4: c9:51:51:77:bd:42:c8:7f:42:21:33:68:dd:92:9e: 93:7c:bd:b6:83:ca:ab:3a:8b:d1:d9:ff:92:9b:84: 26:4c:5c:8e:b5:ba:31:e9:cf:57:5f:1c:f5:08:0d: a4:15:cb:f3:f3:c0:db:a8:ff:12:06:2d:fe:f0:13: d8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:03:39:7F:AF:CF:94:08:34:3C:9C:9F:9C:AA:8B:66:29:EA:D2:FC X509v3 Authority Key Identifier: keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:b9:b7:a1:6e:6e:5d:74:ed:8e:b0:d8:3b:6b:8f:84:37:af: 33:e6:1a:e0:03:00:fb:33:85:f0:28:d6:45:dc:bb:bb:27:65: 21:72:09:2f:65:9e:ed:e8:02:f6:19:36:eb:7a:2a:73:5f:ac: 95:83:6d:63:81:f0:ee:e3:77:d4:37:c4:db:31:3c:ba:78:28: 78:f1:16:60:7e:a9:67:40:ba:90:60:f1:db:22:8c:a0:c9:da: 93:97:14:a8:b2:be:30:80:40:2b:2d:35:76:02:a6:f9:60:ee: 0b:bf:a3:f5:d5:33:37:3c:d9:52:a5:6b:6c:62:93:5f:13:91: 0e:c8:3c:ab:03:2b:49:39:7a:5d:6a:3b:4d:40:17:27:3a:89: c4:0f:b4:8e:c2:0e:04:d4:41:38:dc:d2:d6:f2:cb:70:7f:2a: 02:aa:c3:ca:90:32:60:57:b7:60:59:69:a5:48:74:7e:6f:97: 9d:6b:40:43:e9:0c:78:31:c5:4a:cc:f8:85:fd:23:1a:4f:9a: 5b:d9:9f:de:a4:49:9c:60:08:aa:9b:1e:cb:b7:a7:49:37:28: b4:66:ab:8b:57:ed:7f:31:03:b8:82:ba:4d:31:bd:e2:4d:33: dc:2c:fd:06:70:8f:8b:09:87:4c:01:2f:76:41:f9:dd:ef:cc: a2:f1:0d:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtyIwQyPEvdvRDHGUSLrWMgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDJjMjVkMDUzNGE0MDI3YzY5NTU2MmE4Y2U0ZjAwMWNk NTM5NmYwHhcNMjUxMjMxMDIwMDU1WhcNMjYwMTAxMDIwMDU1WjAzMTEwLwYDVQQD EyhlMDAzMzk3ZmFmY2Y5NDA4MzQzYzljOWY5Y2FhOGI2NjI5ZWFkMmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwadU1dTb33/R6i2sljzRu6IH/qe1 rbRtHGg9hr+idBHIFLh3mM2Ezkd9GWZ+oRWFQfdfDuLCi+hPkyC75/Xr9JfbfF7z sLn8RUETKeh2+stoSpP17SVUeNJnbwrI+kfek2U4MJ0L9I8GJvx/QPrNNRJKldXH tu1UPZL6QaMS2cbWG80neMaS2roB+9HvyVzsLGmmF75HTsg9xI+dXLmUDON+lOSI IKxMSnSgZAvHGN4HcAqee1rgn27eRI534YAUtqTJUVF3vULIf0IhM2jdkp6TfL22 g8qrOovR2f+Sm4QmTFyOtbox6c9XXxz1CA2kFcvz88DbqP8SBi3+8BPYowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOADOX+vz5QINDycn5yqi2Yp6tL8MB8GA1UdIwQY MBaAFGjSwl0FNKQCfGlVYqjOTwAc1TlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEt MTQ3OTdlYWM1MjJlLzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9hZDk3NTYtODRkMS00YWI5LTk2ZTEtMTQ3OTdlYWM1MjJl LzEvYU5MQ1hRVTBwQUo4YVZWaXFNNVBBQnpWT1c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAErm3oW5u XXTtjrDYO2uPhDevM+Ya4AMA+zOF8CjWRdy7uydlIXIJL2We7egC9hk263oqc1+s lYNtY4Hw7uN31DfE2zE8ungoePEWYH6pZ0C6kGDx2yKMoMnak5cUqLK+MIBAKy01 dgKm+WDuC7+j9dUzNzzZUqVrbGKTXxORDsg8qwMrSTl6XWo7TUAXJzqJxA+0jsIO BNRBONzS1vLLcH8qAqrDypAyYFe3YFlppUh0fm+XnWtAQ+kMeDHFSsz4hf0jGk+a W9mf3qRJnGAIqpsey7enSTcotGari1ftfzEDuIK6TTG94k0z3Cz9BnCPiwmHTAEv dkH53e/MovEN+w== -----END CERTIFICATE-----Generated at Wed Dec 31 03:31:53 2025 by rpki-client