This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft File: AAtPqsebsZaQw69aB4xssUqRrUI.mft (raw, json) Hash identifier: v7M1gqv74CiAX7r1Dfx3bjcXdpREMKl2BdAFZryuvVU= Subject key identifier: 52:1C:7B:70:48:C3:20:25:EC:A2:A3:5D:F0:26:1E:EA:07:AD:F4:F5 Authority key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 Certificate issuer: /CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Certificate serial: 019B4136EE8CD6C977945CADCBBD902DD439 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft Manifest number: 1205 Signing time: Sun 21 Dec 2025 14:01:17 +0000 Manifest this update: Sun 21 Dec 2025 14:01:17 +0000 Manifest next update: Mon 22 Dec 2025 14:01:17 +0000 Files and hashes: 1: 6zOYtzjXBD-DYg3_-ZbwFYlxy-U.roa (hash: bndS1Tzx6VzHh/lOs3pK1BLzPGIXQ0EzQwN4Ak3MXSs=) 2: AAtPqsebsZaQw69aB4xssUqRrUI.crl (hash: 3zJDc7g0yr7ugNfGw79GV4Ls1eaNtUXk3+bmagJUR1M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:36:ee:8c:d6:c9:77:94:5c:ad:cb:bd:90:2d:d4:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Validity Not Before: Dec 21 14:01:17 2025 GMT Not After : Dec 22 14:01:17 2025 GMT Subject: CN=521c7b7048c32025eca2a35df0261eea07adf4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e5:db:63:58:6c:32:93:4d:e4:4b:cd:d8:0e: e6:67:44:e5:25:5d:ae:aa:98:09:18:bd:5c:7f:6e: e0:be:bf:49:0a:2e:3a:53:99:39:a2:0b:d3:a5:95: 6d:30:3f:d4:c8:35:aa:7c:d7:01:35:53:de:75:71: e2:6c:b5:38:8d:ff:91:6b:27:11:96:5a:ed:ce:8f: 13:0f:90:aa:53:01:ca:76:b4:d5:4c:f3:78:0a:d4: 2f:17:c4:b7:f3:76:0c:8f:a6:aa:de:41:d8:63:38: 0b:f2:50:10:75:6a:3e:51:32:3f:1c:69:31:84:5d: d5:86:43:40:e2:9e:4c:de:f0:ae:5d:2d:47:91:fc: ed:80:72:54:c3:53:1f:0b:11:7d:86:f0:e0:37:5c: 7e:85:9a:b6:2e:c2:3f:30:26:82:4b:68:87:88:45: 00:85:3e:dc:35:e4:02:6a:e5:e8:37:3d:40:97:f9: 01:ee:f8:b2:85:bb:cd:ae:a3:f8:fb:d5:ff:4e:cc: b8:00:bf:c9:f5:a3:ff:59:c3:d1:6a:bf:25:18:89: d7:cd:17:05:b5:0a:44:ab:20:4a:fe:a1:f7:bd:1e: 24:a7:63:e8:70:1c:f9:7d:14:af:69:63:fc:8f:0e: b5:75:fd:ec:5e:b0:35:29:31:e1:25:66:02:45:7f: ec:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1C:7B:70:48:C3:20:25:EC:A2:A3:5D:F0:26:1E:EA:07:AD:F4:F5 X509v3 Authority Key Identifier: keyid:00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:50:e1:b0:51:1f:c6:0c:8e:11:ad:b9:ec:db:08:b0:a1:56: 6f:17:33:fb:65:f6:c7:54:c6:2d:76:9c:c9:fb:e2:b1:42:63: 3e:aa:c1:8f:53:fe:39:b2:0a:80:1e:75:bc:96:ac:5c:06:c2: 6c:6e:32:83:fd:a3:45:e3:54:a3:f5:80:15:5f:6d:96:5d:e5: a9:c4:bb:8d:09:e1:41:05:e2:41:28:a0:e4:4a:54:3b:c5:42: ef:fd:c7:27:8d:e7:af:85:cd:e4:6a:3a:fe:8c:fd:06:b8:f8: bf:62:dc:58:78:7e:d3:e9:68:cc:74:5a:b2:16:95:05:cd:e9: 7b:df:33:5e:91:5d:9d:a9:a7:7c:6d:80:d7:c8:7c:a0:de:70: 0b:b2:d2:33:f3:45:3b:c8:5c:ed:b2:0f:6e:e4:d9:1c:38:8f: 7f:71:63:7e:d5:80:9d:db:b6:09:b5:d9:34:1d:d0:7e:49:c2: e9:39:db:d7:83:46:7d:9c:e8:83:9a:da:8c:06:a3:91:0c:de: 4a:24:75:ae:26:24:a7:ca:a5:6e:f2:af:d0:bd:43:ee:41:fa: 25:d5:46:91:ab:9d:fa:ed:93:aa:f2:98:87:de:90:bc:24:6b: 40:40:c2:d6:53:21:73:f2:46:61:f0:33:81:b4:c0:97:4f:53: 1c:84:99:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBNu6M1sl3lFyty72QLdQ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwMGI0ZmFhYzc5YmIxOTY5MGMzYWY1YTA3OGM2Y2IxNGE5 MWFkNDIwHhcNMjUxMjIxMTQwMTE3WhcNMjUxMjIyMTQwMTE3WjAzMTEwLwYDVQQD Eyg1MjFjN2I3MDQ4YzMyMDI1ZWNhMmEzNWRmMDI2MWVlYTA3YWRmNGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+XbY1hsMpNN5EvN2A7mZ0TlJV2u qpgJGL1cf27gvr9JCi46U5k5ogvTpZVtMD/UyDWqfNcBNVPedXHibLU4jf+RaycR llrtzo8TD5CqUwHKdrTVTPN4CtQvF8S383YMj6aq3kHYYzgL8lAQdWo+UTI/HGkx hF3VhkNA4p5M3vCuXS1HkfztgHJUw1MfCxF9hvDgN1x+hZq2LsI/MCaCS2iHiEUA hT7cNeQCauXoNz1Al/kB7viyhbvNrqP4+9X/Tsy4AL/J9aP/WcPRar8lGInXzRcF tQpEqyBK/qH3vR4kp2PocBz5fRSvaWP8jw61df3sXrA1KTHhJWYCRX/skQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIce3BIwyAl7KKjXfAmHuoHrfT1MB8GA1UdIwQY MBaAFAALT6rHm7GWkMOvWgeMbLFKka1CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYt YTA5NmVlY2RhNzkzLzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS85OTBiYjUtZmU0Mi00OTg1LTljYWYtYTA5NmVlY2RhNzkz LzEvQUF0UHFzZWJzWmFRdzY5YUI0eHNzVXFSclVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHFDhsFEf xgyOEa257NsIsKFWbxcz+2X2x1TGLXacyfvisUJjPqrBj1P+ObIKgB51vJasXAbC bG4yg/2jReNUo/WAFV9tll3lqcS7jQnhQQXiQSig5EpUO8VC7/3HJ43nr4XN5Go6 /oz9Brj4v2LcWHh+0+lozHRashaVBc3pe98zXpFdnamnfG2A18h8oN5wC7LSM/NF O8hc7bIPbuTZHDiPf3FjftWAndu2CbXZNB3QfknC6Tnb14NGfZzog5rajAajkQze SiR1riYkp8qlbvKv0L1D7kH6JdVGkaud+u2TqvKYh96QvCRrQEDC1lMhc/JGYfAz gbTAl09THISZMw== -----END CERTIFICATE-----Generated at Sun Dec 21 22:38:52 2025 by rpki-client