This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft File: aaTWkWuTFZqoCYSps3dGg7tVDr0.mft (raw, json) Hash identifier: oeUEmn/PI04Tb7mZaS6VL2lIoake5H7rX1dAf1hMg2c= Subject key identifier: A5:EB:A3:67:DC:91:06:31:73:1A:48:EB:09:F6:52:84:AA:D3:2B:15 Authority key identifier: 69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD Certificate issuer: /CN=69a4d6916b93159aa80984a9b3774683bb550ebd Certificate serial: 019B3C1074F9D76248DA46FDC596F7787704 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft Manifest number: 14CB Signing time: Sat 20 Dec 2025 14:01:09 +0000 Manifest this update: Sat 20 Dec 2025 14:01:09 +0000 Manifest next update: Sun 21 Dec 2025 14:01:09 +0000 Files and hashes: 1: Jqr-CXHYnZmzg_xVdImaXbMmVEI.roa (hash: XvpOhA/u1tpu0r7xTILje32qKTHGeywG7gPta8XZExU=) 2: aaTWkWuTFZqoCYSps3dGg7tVDr0.crl (hash: HWZuAImTa/l38SIhc9NUvA/Di1nu8lY5LxQYmMjRUbo=) 3: lqHZHTtSjRTsulRT9uODOQE8lxE.roa (hash: ps3jNh8IrB0LkmVcReSQZ1oXuY/U8lzEpr6J8ijs+08=) 4: xE9IyAhq0aHlL6_ym_xgvZ2_5uk.roa (hash: 1YgjglAtdi0WFBDpDXQ7veTTeatE49sPF4fCDK08QO0=) 5: z6mBzW6H29uI5KxETsJqR2soNbo.roa (hash: UhKW2I+drpoL0LurJwnMOqRysLzBC/O6KKhMC7EQlLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:74:f9:d7:62:48:da:46:fd:c5:96:f7:78:77:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a4d6916b93159aa80984a9b3774683bb550ebd Validity Not Before: Dec 20 14:01:09 2025 GMT Not After : Dec 21 14:01:09 2025 GMT Subject: CN=a5eba367dc910631731a48eb09f65284aad32b15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:23:e5:83:d8:1a:2a:1b:45:b8:a5:38:f1:a9: f7:d4:52:31:3d:a9:34:5e:bb:d7:e4:7b:3d:aa:c0: db:b5:06:8a:75:94:7b:27:b9:d1:04:30:de:47:00: 89:36:a4:79:d2:b1:10:38:f9:e1:b6:b0:ad:ea:65: 08:55:12:b7:97:e6:86:d9:fc:79:a3:12:ba:b5:23: 9b:d1:f9:59:cb:33:ce:5d:b5:1b:a6:d7:0a:7e:1f: 62:15:86:0e:82:3d:9b:27:d0:56:0e:19:1a:79:bb: 81:16:d1:b9:bb:e8:c8:b7:73:02:87:fa:b5:de:3f: 04:b3:96:aa:b2:f4:11:a6:18:6d:c2:94:aa:40:c5: 43:d6:84:c8:b9:11:37:c0:81:a7:8a:22:e2:2e:0c: 0c:53:7a:f5:07:3a:b7:78:74:c0:75:8a:e7:a1:17: c7:f4:10:db:29:b1:32:24:48:54:31:ab:b7:1f:da: 16:75:9d:8d:50:9f:f3:99:cd:63:0a:4d:5c:b3:33: 9c:be:40:6b:1c:23:01:a7:8d:71:77:4d:17:07:83: 47:c6:f2:d1:1b:66:e4:f0:6e:c2:56:e5:8d:8b:61: 5e:9b:53:3c:73:0f:9f:bb:1e:06:f0:3b:45:78:9f: 5a:45:ca:0d:d6:6d:5e:86:35:ac:97:84:9a:a6:b6: a5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:EB:A3:67:DC:91:06:31:73:1A:48:EB:09:F6:52:84:AA:D3:2B:15 X509v3 Authority Key Identifier: keyid:69:A4:D6:91:6B:93:15:9A:A8:09:84:A9:B3:77:46:83:BB:55:0E:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaTWkWuTFZqoCYSps3dGg7tVDr0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c031e5-fc67-41f5-8ebe-3197110097c9/1/aaTWkWuTFZqoCYSps3dGg7tVDr0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:7b:aa:5b:d6:c2:a3:51:61:12:c7:87:ad:c3:e2:35:8f:7e: c0:da:b6:4a:d7:9c:96:6c:34:00:6c:d0:23:3d:5e:57:ac:99: 9c:ae:21:44:67:5a:21:39:6a:9b:05:57:66:92:ad:18:39:3a: 0d:11:85:21:b2:f8:33:56:18:8c:67:fa:83:42:a1:b0:26:b3: c9:a7:cf:65:80:b7:70:f8:55:01:be:fe:9d:42:ac:cc:9c:66: 23:ea:84:48:12:65:de:32:5f:33:af:0c:21:8e:c0:5e:55:8a: d1:5e:0f:95:1a:f9:ab:a0:6a:a2:0b:8c:37:99:e8:ef:cc:99: be:30:e1:63:c1:01:f8:9a:38:fe:46:c4:22:6c:f5:fa:85:a6: d3:85:87:ac:a8:f0:52:76:ae:e2:79:da:12:87:e0:5e:cf:14: 7c:67:1f:57:db:d3:cb:f5:81:3d:99:53:46:5f:7a:79:6b:c4: 62:0a:21:4d:69:4f:02:83:c1:5b:ee:7a:91:1e:dd:58:1a:40: 37:93:5f:6a:2d:5d:10:74:71:85:67:26:75:41:b6:8e:c0:1f: 18:d1:93:76:b1:f9:a2:2f:ef:55:d6:06:22:4f:bf:b5:0e:cd: f5:71:b2:37:01:f4:89:6e:04:97:04:65:fb:ca:2a:67:7b:09: 17:db:63:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8EHT512JI2kb9xZb3eHcEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTRkNjkxNmI5MzE1OWFhODA5ODRhOWIzNzc0NjgzYmI1 NTBlYmQwHhcNMjUxMjIwMTQwMTA5WhcNMjUxMjIxMTQwMTA5WjAzMTEwLwYDVQQD EyhhNWViYTM2N2RjOTEwNjMxNzMxYTQ4ZWIwOWY2NTI4NGFhZDMyYjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiPlg9gaKhtFuKU48an31FIxPak0 XrvX5Hs9qsDbtQaKdZR7J7nRBDDeRwCJNqR50rEQOPnhtrCt6mUIVRK3l+aG2fx5 oxK6tSOb0flZyzPOXbUbptcKfh9iFYYOgj2bJ9BWDhkaebuBFtG5u+jIt3MCh/q1 3j8Es5aqsvQRphhtwpSqQMVD1oTIuRE3wIGniiLiLgwMU3r1Bzq3eHTAdYrnoRfH 9BDbKbEyJEhUMau3H9oWdZ2NUJ/zmc1jCk1cszOcvkBrHCMBp41xd00XB4NHxvLR G2bk8G7CVuWNi2Fem1M8cw+fux4G8DtFeJ9aRcoN1m1ehjWsl4SapralwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKXro2fckQYxcxpI6wn2UoSq0ysVMB8GA1UdIwQY MBaAFGmk1pFrkxWaqAmEqbN3RoO7VQ69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUt MzE5NzExMDA5N2M5LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9jMDMxZTUtZmM2Ny00MWY1LThlYmUtMzE5NzExMDA5N2M5 LzEvYWFUV2tXdVRGWnFvQ1lTcHMzZEdnN3RWRHIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIHuqW9bC o1FhEseHrcPiNY9+wNq2Steclmw0AGzQIz1eV6yZnK4hRGdaITlqmwVXZpKtGDk6 DRGFIbL4M1YYjGf6g0KhsCazyafPZYC3cPhVAb7+nUKszJxmI+qESBJl3jJfM68M IY7AXlWK0V4PlRr5q6BqoguMN5no78yZvjDhY8EB+Jo4/kbEImz1+oWm04WHrKjw Unau4nnaEofgXs8UfGcfV9vTy/WBPZlTRl96eWvEYgohTWlPAoPBW+56kR7dWBpA N5Nfai1dEHRxhWcmdUG2jsAfGNGTdrH5oi/vVdYGIk+/tQ7N9XGyNwH0iW4ElwRl +8oqZ3sJF9tjDw== -----END CERTIFICATE-----Generated at Sat Dec 20 20:06:54 2025 by rpki-client