This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft File: AaVsQu18uWPyhVA87AYG1g0Ks4c.mft (raw, json) Hash identifier: ilzrjLH5XOl4sI90DucGs6Q8hKLRrWH/Ju/2Eujp0j8= Subject key identifier: 11:FA:BF:79:65:76:5F:2C:CC:27:E2:8F:37:EB:1C:A6:4C:8F:C0:C1 Authority key identifier: 01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87 Certificate issuer: /CN=01a56c42ed7cb963f285503cec0606d60d0ab387 Certificate serial: 019B3AC65E1E0F19DFEA7297A1D77F57E602 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft Manifest number: 104C Signing time: Sat 20 Dec 2025 08:00:37 +0000 Manifest this update: Sat 20 Dec 2025 08:00:37 +0000 Manifest next update: Sun 21 Dec 2025 08:00:37 +0000 Files and hashes: 1: 8fGGuqV_pcqjv64pfQiKXOnA89E.roa (hash: VFpEm/CggmIw860nuw3P1+S3S7tI6esO+Ze0E21DRy8=) 2: AaVsQu18uWPyhVA87AYG1g0Ks4c.crl (hash: rIff7Mk7uOSHB/DQtMSNlDlL70bX2szjNS4FvtTYl8s=) 3: vtKzvBvjetkU5WA6Y25cAJBYCOI.roa (hash: Vkh0B0/3gyxmhDaxonoanwkQPVqR6BgCPbSb6ryc6sI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:c6:5e:1e:0f:19:df:ea:72:97:a1:d7:7f:57:e6:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01a56c42ed7cb963f285503cec0606d60d0ab387 Validity Not Before: Dec 20 08:00:37 2025 GMT Not After : Dec 21 08:00:37 2025 GMT Subject: CN=11fabf7965765f2ccc27e28f37eb1ca64c8fc0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b3:27:05:bf:7a:ce:0a:2c:fe:3d:b6:f0:72: 1a:31:fd:2f:28:d2:36:eb:e5:56:5e:60:fa:84:e7: e4:f5:4f:71:ce:1b:a2:cf:2b:2c:b7:10:ca:12:a0: df:b5:ff:86:65:1b:53:40:9f:24:59:3c:78:99:09: 3f:a1:cc:b8:9a:07:2e:14:3e:83:d1:8f:85:25:45: b8:3b:3c:e2:32:19:95:f7:49:88:85:0a:78:a5:86: f6:1e:58:c3:6a:4e:68:b0:66:76:f6:6b:9b:49:b8: 6b:1f:59:4c:32:c3:bb:8e:5c:12:8a:36:49:91:ac: 78:40:85:a5:99:39:0f:f3:27:3d:a6:fb:c5:4d:ce: 3e:e8:6b:3a:c6:52:41:8c:97:18:57:38:94:4e:d4: 73:c2:1a:3f:cc:87:2e:6b:17:e8:21:7d:83:b9:e2: 31:a9:e8:f3:89:84:28:d7:57:ae:f3:2c:23:1c:6e: c9:1f:93:d5:0d:c1:46:db:4a:31:66:fe:19:6f:1d: 28:4d:f4:1f:2c:09:3d:53:61:a4:03:7a:10:bb:67: fb:f1:e1:95:e3:bb:b8:d4:55:bf:e8:b5:f7:e3:fa: 79:53:74:a6:96:cf:92:db:7b:a2:90:77:ee:a4:75: b3:75:0d:bf:0f:09:14:e7:f8:6f:33:9a:97:e2:48: 11:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FA:BF:79:65:76:5F:2C:CC:27:E2:8F:37:EB:1C:A6:4C:8F:C0:C1 X509v3 Authority Key Identifier: keyid:01:A5:6C:42:ED:7C:B9:63:F2:85:50:3C:EC:06:06:D6:0D:0A:B3:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AaVsQu18uWPyhVA87AYG1g0Ks4c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/99cfe5-4b35-49c7-9a73-ed07f5cad6d7/1/AaVsQu18uWPyhVA87AYG1g0Ks4c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:8c:e2:a5:7b:95:a8:92:9d:bf:a9:2b:0a:f6:8d:f2:65:aa: 6a:6e:7b:c9:29:b7:ef:ef:b9:b9:07:c1:bf:51:27:6b:71:47: c7:46:eb:a5:6f:59:2b:3a:98:87:96:fe:86:7b:51:ec:47:30: 5c:3b:be:88:d8:c5:07:90:8e:a5:a1:95:d4:7b:bd:f6:a5:0b: a8:e3:d7:b8:6b:49:b8:1f:3d:d9:9e:cd:dd:84:17:b3:47:5e: 2b:36:6d:96:25:b5:92:64:ed:90:99:0a:38:73:fc:14:70:60: e3:b5:2e:e5:99:45:fb:f6:85:57:69:1e:66:8b:4b:c6:61:36: 78:fd:31:04:b4:90:f9:7c:d2:dc:73:09:7a:27:6c:92:94:f6: 32:37:20:34:95:4e:74:78:f7:5a:a0:d5:09:4d:18:46:c3:00: 90:44:c1:5a:14:a7:eb:46:95:a6:28:91:c4:a6:40:16:b1:55: a6:ce:a0:0b:dc:74:2e:4a:26:37:59:e8:18:43:b2:db:6b:ad: ef:31:4c:ce:9e:a4:15:77:4b:0b:92:ff:d3:e4:30:5e:8d:02: 8e:04:0a:75:1a:1e:c3:58:a8:d4:35:a5:86:0a:8c:76:1d:51: c9:bc:45:a7:ff:56:26:48:ae:14:97:a1:1b:18:82:1f:0a:f9: 93:95:95:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6xl4eDxnf6nKXodd/V+YCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxYTU2YzQyZWQ3Y2I5NjNmMjg1NTAzY2VjMDYwNmQ2MGQw YWIzODcwHhcNMjUxMjIwMDgwMDM3WhcNMjUxMjIxMDgwMDM3WjAzMTEwLwYDVQQD EygxMWZhYmY3OTY1NzY1ZjJjY2MyN2UyOGYzN2ViMWNhNjRjOGZjMGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7MnBb96zgos/j228HIaMf0vKNI2 6+VWXmD6hOfk9U9xzhuizysstxDKEqDftf+GZRtTQJ8kWTx4mQk/ocy4mgcuFD6D 0Y+FJUW4OzziMhmV90mIhQp4pYb2HljDak5osGZ29mubSbhrH1lMMsO7jlwSijZJ kax4QIWlmTkP8yc9pvvFTc4+6Gs6xlJBjJcYVziUTtRzwho/zIcuaxfoIX2DueIx qejziYQo11eu8ywjHG7JH5PVDcFG20oxZv4Zbx0oTfQfLAk9U2GkA3oQu2f78eGV 47u41FW/6LX34/p5U3Smls+S23uikHfupHWzdQ2/DwkU5/hvM5qX4kgR3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBH6v3lldl8szCfijzfrHKZMj8DBMB8GA1UdIwQY MBaAFAGlbELtfLlj8oVQPOwGBtYNCrOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMt ZWQwN2Y1Y2FkNmQ3LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC85OWNmZTUtNGIzNS00OWM3LTlhNzMtZWQwN2Y1Y2FkNmQ3 LzEvQWFWc1F1MTh1V1B5aFZBODdBWUcxZzBLczRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsIzipXuV qJKdv6krCvaN8mWqam57ySm37++5uQfBv1Ena3FHx0brpW9ZKzqYh5b+hntR7Ecw XDu+iNjFB5COpaGV1Hu99qULqOPXuGtJuB892Z7N3YQXs0deKzZtliW1kmTtkJkK OHP8FHBg47Uu5ZlF+/aFV2keZotLxmE2eP0xBLSQ+XzS3HMJeidskpT2MjcgNJVO dHj3WqDVCU0YRsMAkETBWhSn60aVpiiRxKZAFrFVps6gC9x0LkomN1noGEOy22ut 7zFMzp6kFXdLC5L/0+QwXo0CjgQKdRoew1io1DWlhgqMdh1RybxFp/9WJkiuFJeh GxiCHwr5k5WVnQ== -----END CERTIFICATE-----Generated at Sat Dec 20 13:30:57 2025 by rpki-client