This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: W7HCw5/9ihnab1oWNGBAx2UIb7A8aFpjomZHmLOgVHU= Subject key identifier: 2C:A2:C2:39:00:99:4C:21:39:BE:55:ED:1A:80:18:72:4A:A5:31:48 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019B2A0A5033654F2C248A81F4392EEC680D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 187C Signing time: Wed 17 Dec 2025 02:01:17 +0000 Manifest this update: Wed 17 Dec 2025 02:01:17 +0000 Manifest next update: Thu 18 Dec 2025 02:01:17 +0000 Files and hashes: 1: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: jEvAyo1twt44yANqmJ8tsCkK2OmB4/T3+1Gd488uUbo=) 2: BY6vuao8dzcdWvFAFv0TrK8gbcs.roa (hash: ZDN7wXgq4/TF65FlyVO+h6CqqGxfq850Jit0suO59Nc=) 3: Gy4BQkIL8-jo1JkeIH41QUjBDjM.roa (hash: GpUKXk0u0UsVOL/OxmPGoTdxb+oJOueuidELp/hZqyI=) 4: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 5: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 6: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 7: UwuhHIRc9qSfEX6XGunAr85dyEA.roa (hash: v6KOr1rmHDt+GxwNeTG+w6jxSzGnr+bSVua9Q4OO8C0=) 8: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 9: gUrUyKlaxz6aQIR9owp7HgtROdE.roa (hash: Sn2ZbhkGVUO1p5ik4KeZ3uzqjHGzkxr7fWeO48lFYvE=) 10: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 11: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 02:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:0a:50:33:65:4f:2c:24:8a:81:f4:39:2e:ec:68:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Dec 17 02:01:17 2025 GMT Not After : Dec 18 02:01:17 2025 GMT Subject: CN=2ca2c23900994c2139be55ed1a8018724aa53148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2b:f9:61:61:a7:a9:1b:7c:b8:b2:4f:7b:8e: 4b:6b:0e:4a:4e:76:49:f7:f7:77:32:96:41:10:e1: d6:95:8f:34:12:3a:dd:b3:ed:29:25:7e:d3:67:4a: 04:37:4f:33:3c:3d:90:52:b1:0e:b0:b2:1a:88:1f: ac:0f:e8:fa:e4:b3:fb:b8:78:a7:08:9f:5b:5a:c1: bd:fe:c4:f4:6e:3c:9a:35:3b:89:b7:79:bf:53:cd: 05:e3:62:f4:81:10:3c:6b:e7:ea:3e:cb:a7:17:bb: b2:1e:d8:f4:e9:0b:d7:de:8d:2a:e9:97:6d:ef:e5: 09:15:90:77:22:14:7e:d7:5a:3e:15:ce:af:33:17: 8e:c9:25:ca:80:b3:36:0a:f3:24:b9:8d:0b:2e:12: e5:18:41:47:7f:0e:6c:8a:6d:16:62:bb:99:3d:b0: 4f:d3:6d:0e:12:e5:13:c4:c9:d7:7d:c6:3d:07:4c: 82:44:26:9f:76:98:eb:89:1f:e9:d9:3d:8c:7f:7a: 89:84:c2:c7:60:16:22:c3:1a:97:98:06:76:d3:be: a4:c1:d1:c9:00:51:db:d0:61:b3:b9:c8:ae:16:d4: 21:94:d3:c8:41:11:b8:26:52:42:8a:77:08:09:c0: 4b:10:b0:79:fa:bb:46:47:19:67:85:27:3e:c6:6d: 10:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A2:C2:39:00:99:4C:21:39:BE:55:ED:1A:80:18:72:4A:A5:31:48 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:da:1d:cd:11:8d:dc:9b:8c:dc:41:61:5d:06:06:de:4e:7b: c8:57:79:46:f6:ce:a9:5e:bd:dc:ab:e0:b3:a8:3a:c8:2a:44: a3:46:80:24:58:b5:ce:e9:6f:d3:bb:88:8a:4d:c5:03:38:0c: 84:83:bf:e3:f1:73:1d:28:ad:cb:e3:fe:69:41:63:6d:c7:cb: ca:85:59:89:15:09:25:17:67:35:c3:66:fd:3a:79:d3:69:4e: b9:14:1e:d1:11:cc:f9:12:19:a2:03:a4:7d:43:44:bc:27:d9: ed:34:28:4e:b2:aa:36:2e:6b:18:26:5c:c6:c2:ea:64:98:05: 4d:e6:b7:c8:20:20:54:15:2a:94:d9:7c:92:38:77:a8:c6:ec: 43:7a:dc:e2:bf:72:39:a3:f9:3f:0c:11:31:bd:9c:2e:08:39: 7d:c6:2b:fc:58:34:e0:16:37:38:3c:13:f5:33:9e:79:5f:65: a8:c5:47:b6:4b:ae:63:c0:f1:a8:53:77:9a:a6:fd:18:e8:c7: 89:6c:45:ae:05:34:f2:81:82:11:fc:ca:01:ca:96:f9:4f:b6: a0:07:d2:fb:79:43:ac:c6:f2:7a:41:de:72:bb:96:f9:58:4c: c6:a3:f7:7e:42:b4:c8:2c:fa:f1:9f:76:57:5d:3f:e4:4e:ea: fc:3a:f2:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqClAzZU8sJIqB9Dku7GgNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUxMjE3MDIwMTE3WhcNMjUxMjE4MDIwMTE3WjAzMTEwLwYDVQQD EygyY2EyYzIzOTAwOTk0YzIxMzliZTU1ZWQxYTgwMTg3MjRhYTUzMTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiv5YWGnqRt8uLJPe45Law5KTnZJ 9/d3MpZBEOHWlY80Ejrds+0pJX7TZ0oEN08zPD2QUrEOsLIaiB+sD+j65LP7uHin CJ9bWsG9/sT0bjyaNTuJt3m/U80F42L0gRA8a+fqPsunF7uyHtj06QvX3o0q6Zdt 7+UJFZB3IhR+11o+Fc6vMxeOySXKgLM2CvMkuY0LLhLlGEFHfw5sim0WYruZPbBP 020OEuUTxMnXfcY9B0yCRCafdpjriR/p2T2Mf3qJhMLHYBYiwxqXmAZ2076kwdHJ AFHb0GGzuciuFtQhlNPIQRG4JlJCincICcBLELB5+rtGRxlnhSc+xm0Q1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCyiwjkAmUwhOb5V7RqAGHJKpTFIMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZNodzRGN 3JuM3EFhXQYG3k57yFd5RvbOqV693Kvgs6g6yCpEo0aAJFi1zulv07uIik3FAzgM hIO/4/FzHSity+P+aUFjbcfLyoVZiRUJJRdnNcNm/Tp502lOuRQe0RHM+RIZogOk fUNEvCfZ7TQoTrKqNi5rGCZcxsLqZJgFTea3yCAgVBUqlNl8kjh3qMbsQ3rc4r9y OaP5PwwRMb2cLgg5fcYr/Fg04BY3ODwT9TOeeV9lqMVHtkuuY8DxqFN3mqb9GOjH iWxFrgU08oGCEfzKAcqW+U+2oAfS+3lDrMbyekHecruW+VhMxqP3fkK0yCz68Z92 V10/5E7q/DryuQ== -----END CERTIFICATE-----Generated at Wed Dec 17 11:20:50 2025 by rpki-client