This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json) Hash identifier: hXs9ogmSoX/1QPGHqpMsWh2+9wv8mNqdELL0xMfjVZ4= Subject key identifier: 2E:C6:52:D6:6A:DD:1D:0E:82:36:09:5F:6A:A1:68:F6:35:AB:A1:DD Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c Certificate serial: 019B6CFC8D6CB0859FD2A95E88F69F4BA51D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft Manifest number: 0BB2 Signing time: Tue 30 Dec 2025 02:00:49 +0000 Manifest this update: Tue 30 Dec 2025 02:00:49 +0000 Manifest next update: Wed 31 Dec 2025 02:00:49 +0000 Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: bbm7dXH2hVbnUAdLUJieQvsAfcETsYwLmnlmhVwNNLE=) 2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:fc:8d:6c:b0:85:9f:d2:a9:5e:88:f6:9f:4b:a5:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c Validity Not Before: Dec 30 02:00:49 2025 GMT Not After : Dec 31 02:00:49 2025 GMT Subject: CN=2ec652d66add1d0e8236095f6aa168f635aba1dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:0b:5c:b2:b0:ce:69:19:e7:99:a3:63:e5: 48:63:70:4d:dd:fe:21:a7:2f:5e:1c:d9:7b:4a:33: 2d:0e:41:ba:b1:49:30:d4:75:fe:33:c7:ec:e8:be: bd:7a:e3:c5:40:3d:3b:92:2f:3b:b9:71:01:74:e1: 05:d9:f6:e7:5f:24:ed:74:ff:fd:52:00:6c:41:73: ac:30:42:cd:ff:12:9b:b0:53:05:ab:fe:78:f2:2c: a5:a2:c7:f6:39:8a:15:bd:eb:b3:2c:20:bc:8e:89: b2:fe:1f:ac:3f:0b:be:6f:07:e5:20:ad:82:94:29: ea:19:99:d2:86:4a:5d:10:50:ba:89:ad:ac:61:a4: 8d:7a:74:aa:b1:14:b9:3d:53:30:63:e0:22:09:3a: f3:a9:7e:2c:b0:17:16:b6:a8:0e:b0:8c:b2:9a:f7: df:8e:6b:c8:43:13:b5:02:13:eb:77:29:7a:02:6b: 0e:9c:c7:ad:29:5b:19:b4:9a:2a:00:10:87:89:a1: 72:41:e1:02:ee:65:6d:51:8d:20:1d:1d:b8:5a:d3: 09:96:72:cc:77:1a:d9:56:27:79:25:d0:28:b4:4e: 18:7e:88:da:9c:ab:59:ac:a2:e4:be:f5:dc:ec:bb: f7:f4:0e:a6:9a:d7:a3:21:4e:d2:3e:71:27:88:47: b9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C6:52:D6:6A:DD:1D:0E:82:36:09:5F:6A:A1:68:F6:35:AB:A1:DD X509v3 Authority Key Identifier: keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:39:2c:ba:49:67:3a:59:31:1a:a3:36:9d:19:43:76:ba:12: 5b:05:86:f0:94:d6:82:bd:b9:41:bd:eb:45:d6:35:3e:f4:b9: ff:b5:00:7a:43:5d:0b:1d:26:2c:91:d9:46:7c:1b:cd:b1:c2: 3f:37:11:43:94:d6:5f:8a:62:b5:ca:7d:05:8b:ab:64:3b:bf: 2e:1d:d0:1d:10:f6:15:6b:22:21:75:dc:13:2a:95:60:c1:ab: c8:2d:6e:55:ce:dc:22:6a:c5:b5:0e:60:30:20:89:7f:2d:bf: 1c:a4:58:84:38:c9:e2:92:ad:a0:0c:0e:8d:15:48:a7:02:74: ac:bb:c6:fa:b7:ea:7c:dc:aa:fe:4e:11:45:9c:f5:cd:b1:08: ca:60:cb:7a:f4:89:76:c8:7b:c9:60:19:50:b8:0b:04:51:ba: 12:93:7a:80:4c:00:6f:94:e2:cc:f5:23:35:87:85:b4:da:4c: 47:04:75:4d:dc:d8:19:2c:38:69:8d:a7:13:52:ae:36:7b:f0: 2f:71:fb:e7:71:ed:31:33:61:41:ea:0c:1c:f9:cb:92:c0:6c: 74:d7:d3:5a:f9:42:3a:0c:dc:43:fa:6c:0a:af:0b:cc:b0:b3: d5:14:20:27:a0:6c:fb:24:9f:cb:ce:66:87:6b:a8:8e:55:72: 03:f0:b0:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZts/I1ssIWf0qleiPafS6UdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ODEwZmZlNGY5MjAzYTEwMDY3N2Q2NTE5M2I0NDI2Nzg5 YWNmNWMwHhcNMjUxMjMwMDIwMDQ5WhcNMjUxMjMxMDIwMDQ5WjAzMTEwLwYDVQQD EygyZWM2NTJkNjZhZGQxZDBlODIzNjA5NWY2YWExNjhmNjM1YWJhMWRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv80LXLKwzmkZ55mjY+VIY3BN3f4h py9eHNl7SjMtDkG6sUkw1HX+M8fs6L69euPFQD07ki87uXEBdOEF2fbnXyTtdP/9 UgBsQXOsMELN/xKbsFMFq/548iylosf2OYoVveuzLCC8jomy/h+sPwu+bwflIK2C lCnqGZnShkpdEFC6ia2sYaSNenSqsRS5PVMwY+AiCTrzqX4ssBcWtqgOsIyymvff jmvIQxO1AhPrdyl6AmsOnMetKVsZtJoqABCHiaFyQeEC7mVtUY0gHR24WtMJlnLM dxrZVid5JdAotE4YfojanKtZrKLkvvXc7Lv39A6mmtejIU7SPnEniEe5XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7GUtZq3R0OgjYJX2qhaPY1q6HdMB8GA1UdIwQY MBaAFGiBD/5PkgOhAGd9ZRk7RCZ4ms9cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDct YmRmNDMxZWI5NGYwLzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDctYmRmNDMxZWI5NGYw LzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARTksukln OlkxGqM2nRlDdroSWwWG8JTWgr25Qb3rRdY1PvS5/7UAekNdCx0mLJHZRnwbzbHC PzcRQ5TWX4pitcp9BYurZDu/Lh3QHRD2FWsiIXXcEyqVYMGryC1uVc7cImrFtQ5g MCCJfy2/HKRYhDjJ4pKtoAwOjRVIpwJ0rLvG+rfqfNyq/k4RRZz1zbEIymDLevSJ dsh7yWAZULgLBFG6EpN6gEwAb5TizPUjNYeFtNpMRwR1TdzYGSw4aY2nE1KuNnvw L3H753HtMTNhQeoMHPnLksBsdNfTWvlCOgzcQ/psCq8LzLCz1RQgJ6Bs+ySfy85m h2uojlVyA/CwWA== -----END CERTIFICATE-----Generated at Tue Dec 30 09:08:22 2025 by rpki-client