This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft File: aIEP_k-SA6EAZ31lGTtEJniaz1w.mft (raw, json) Hash identifier: SDzWJ7q6AMtPWG1UOdPQNIqqNFMLC4OAcCtJdFS227M= Subject key identifier: AD:D4:AE:A6:1F:D2:9E:93:20:88:6F:58:1E:A6:69:03:B8:95:AF:10 Authority key identifier: 68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C Certificate issuer: /CN=68810ffe4f9203a100677d65193b4426789acf5c Certificate serial: 019B3CB518EFA3B21D07608FF98C1C86E00D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft Manifest number: 0B99 Signing time: Sat 20 Dec 2025 17:00:59 +0000 Manifest this update: Sat 20 Dec 2025 17:00:59 +0000 Manifest next update: Sun 21 Dec 2025 17:00:59 +0000 Files and hashes: 1: aIEP_k-SA6EAZ31lGTtEJniaz1w.crl (hash: U6Cdthv4siI4KsW4IVn764H9vTdqZvlRi0itGqKhpZw=) 2: vq_lB1n1a8tSkpEaBYJenT9A5i0.roa (hash: TQs2bRUGUy5hOg6esXq8436QciZ59nHTgLwMPf5bhwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b5:18:ef:a3:b2:1d:07:60:8f:f9:8c:1c:86:e0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68810ffe4f9203a100677d65193b4426789acf5c Validity Not Before: Dec 20 17:00:59 2025 GMT Not After : Dec 21 17:00:59 2025 GMT Subject: CN=add4aea61fd29e9320886f581ea66903b895af10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d2:b7:61:6a:e3:ab:b7:0e:59:d8:32:c4:6f: cc:46:17:c8:45:df:bd:d2:bb:85:6b:8f:91:bb:fc: 7a:ce:70:fc:0e:89:07:20:35:ae:06:38:9c:37:58: 52:f2:31:35:7d:af:9a:67:6e:41:01:16:7f:67:7b: ff:84:ca:7a:a9:99:d6:d0:c7:55:67:05:d7:22:cd: 5d:79:96:0e:24:58:25:20:db:9c:26:0d:42:61:ed: 44:bf:84:df:34:ae:51:1b:0a:a5:17:46:59:82:d4: d4:f8:58:38:1b:7d:13:09:39:71:0e:93:e4:d9:1e: b3:af:4b:67:58:48:41:a3:b5:9f:ef:69:88:a1:98: 06:a5:40:5b:ff:58:10:9f:d5:4c:2c:b3:d8:c6:0b: 0c:f5:73:30:1b:77:4c:57:61:54:a6:75:ad:20:2d: a2:2c:c5:6c:6a:ca:47:e5:01:b5:db:8d:27:e2:a9: a9:8d:8f:24:bb:29:51:aa:17:32:4a:9d:cb:05:fb: e1:fa:ef:9d:2e:b7:4d:ac:08:45:c0:51:ae:dc:73: 40:d4:34:8e:ae:bb:6c:51:6b:32:74:03:b8:59:df: d1:2e:da:75:c8:56:64:56:98:0c:cd:c2:ae:95:d3: 85:2e:10:eb:5d:ac:89:f3:e8:f0:f3:94:4b:0e:53: f1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D4:AE:A6:1F:D2:9E:93:20:88:6F:58:1E:A6:69:03:B8:95:AF:10 X509v3 Authority Key Identifier: keyid:68:81:0F:FE:4F:92:03:A1:00:67:7D:65:19:3B:44:26:78:9A:CF:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aIEP_k-SA6EAZ31lGTtEJniaz1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/141203-813f-4712-9bd7-bdf431eb94f0/1/aIEP_k-SA6EAZ31lGTtEJniaz1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:78:59:ea:eb:b9:83:49:2f:4b:c9:55:46:77:0e:c5:42:a0: 83:2a:ae:dd:89:0c:a4:e4:61:88:97:43:52:3f:c3:96:98:1a: 9e:1c:f4:c3:a8:10:7f:da:7a:5e:af:d2:12:ea:75:2c:3f:1a: 74:5b:47:4b:48:ec:c9:57:61:bd:82:58:76:08:19:ad:a8:a0: 37:31:1f:1e:c5:73:be:49:95:ad:d4:92:75:63:f9:bf:e3:6e: c0:65:1c:fb:55:bc:08:7e:8f:0a:8d:67:b1:df:c3:bf:ad:36: 43:6d:86:ae:d8:bd:58:e0:e5:68:4d:23:2f:74:83:3d:2a:11: ee:af:cf:bb:c8:3c:62:da:19:b6:d7:9a:9e:ab:66:26:d4:0f: 81:7d:df:12:b9:61:2f:63:29:6d:df:92:a4:6e:ee:4d:76:a6: c1:8a:ce:66:b4:35:94:84:ff:e4:97:bd:b3:a1:05:46:1a:a6: dc:52:6b:d7:9f:22:8d:b5:86:90:db:ec:89:33:10:46:c5:4e: 13:fc:84:30:67:01:74:d4:b1:3a:27:c3:2d:fe:22:d5:a5:f3: ca:58:fd:77:7e:84:2c:b7:c4:39:93:49:08:50:13:d9:35:2a: c4:cd:fb:6a:d0:00:ae:dd:fe:f7:2b:a0:1e:61:1b:42:bf:9a: 1d:8b:60:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tRjvo7IdB2CP+YwchuANMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ODEwZmZlNGY5MjAzYTEwMDY3N2Q2NTE5M2I0NDI2Nzg5 YWNmNWMwHhcNMjUxMjIwMTcwMDU5WhcNMjUxMjIxMTcwMDU5WjAzMTEwLwYDVQQD EyhhZGQ0YWVhNjFmZDI5ZTkzMjA4ODZmNTgxZWE2NjkwM2I4OTVhZjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNK3YWrjq7cOWdgyxG/MRhfIRd+9 0ruFa4+Ru/x6znD8DokHIDWuBjicN1hS8jE1fa+aZ25BARZ/Z3v/hMp6qZnW0MdV ZwXXIs1deZYOJFglINucJg1CYe1Ev4TfNK5RGwqlF0ZZgtTU+Fg4G30TCTlxDpPk 2R6zr0tnWEhBo7Wf72mIoZgGpUBb/1gQn9VMLLPYxgsM9XMwG3dMV2FUpnWtIC2i LMVsaspH5QG1240n4qmpjY8kuylRqhcySp3LBfvh+u+dLrdNrAhFwFGu3HNA1DSO rrtsUWsydAO4Wd/RLtp1yFZkVpgMzcKuldOFLhDrXayJ8+jw85RLDlPxeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK3UrqYf0p6TIIhvWB6maQO4la8QMB8GA1UdIwQY MBaAFGiBD/5PkgOhAGd9ZRk7RCZ4ms9cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDct YmRmNDMxZWI5NGYwLzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8xNDEyMDMtODEzZi00NzEyLTliZDctYmRmNDMxZWI5NGYw LzEvYUlFUF9rLVNBNkVBWjMxbEdUdEVKbmlhejF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlHhZ6uu5 g0kvS8lVRncOxUKggyqu3YkMpORhiJdDUj/Dlpganhz0w6gQf9p6Xq/SEup1LD8a dFtHS0jsyVdhvYJYdggZraigNzEfHsVzvkmVrdSSdWP5v+NuwGUc+1W8CH6PCo1n sd/Dv602Q22Grti9WODlaE0jL3SDPSoR7q/Pu8g8YtoZtteanqtmJtQPgX3fErlh L2Mpbd+SpG7uTXamwYrOZrQ1lIT/5Je9s6EFRhqm3FJr158ijbWGkNvsiTMQRsVO E/yEMGcBdNSxOifDLf4i1aXzylj9d36ELLfEOZNJCFAT2TUqxM37atAArt3+9yug HmEbQr+aHYtgRw== -----END CERTIFICATE-----Generated at Sat Dec 20 19:04:42 2025 by rpki-client