This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft File: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft (raw, json) Hash identifier: xlQ1fDqyCr9S5pxOrBtJuIA+qcr6bUX/nKo0gjTG810= Subject key identifier: F2:51:50:71:15:76:F5:AD:D2:0C:6E:D0:40:A0:8C:4C:16:9A:9D:F8 Authority key identifier: 69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49 Certificate issuer: /CN=690ae175fbe63b0e930469097c9492d42ed79249 Certificate serial: 019B446E43839769FB11CE18CCECDB2BD7E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft Manifest number: 0174 Signing time: Mon 22 Dec 2025 05:00:35 +0000 Manifest this update: Mon 22 Dec 2025 05:00:35 +0000 Manifest next update: Tue 23 Dec 2025 05:00:35 +0000 Files and hashes: 1: Ft7Frn9ocyQeuHjXMeEeGoh_tdk.roa (hash: +hbGdiT9EB+gQ7hEwq4X6SV+6RnEdb4t2Cal6rg6Zcw=) 2: aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl (hash: DxAIgpud5vPezvuXVpVaA1yrRo7NO4JbfB0nYAjw50k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 05:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:6e:43:83:97:69:fb:11:ce:18:cc:ec:db:2b:d7:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=690ae175fbe63b0e930469097c9492d42ed79249 Validity Not Before: Dec 22 05:00:35 2025 GMT Not After : Dec 23 05:00:35 2025 GMT Subject: CN=f25150711576f5add20c6ed040a08c4c169a9df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:11:8d:9c:72:74:79:21:f2:8f:e7:ce:1d:22: 94:27:60:0c:da:81:da:70:b4:aa:5a:f1:e9:ef:7d: 15:72:ba:99:25:4c:ad:ab:e3:70:bd:07:d8:c7:18: 16:4d:d9:3d:da:27:17:30:73:0a:0d:05:cb:55:bd: bd:f9:6d:05:92:8c:d6:94:c3:12:4e:2f:7f:5f:49: f2:3f:59:78:44:2d:86:0c:c4:df:65:bb:2f:d4:01: 0b:c7:21:9e:e5:23:19:4a:6b:6c:ad:80:bd:5e:68: c6:a1:e5:c0:db:a4:dd:80:bb:82:16:5a:65:48:e2: d3:b9:51:b2:00:c0:64:c2:2b:33:a1:fb:b4:c6:df: 6d:1f:d1:dc:ed:2f:eb:be:fd:c7:dc:e5:c0:a2:2e: 22:3e:c2:f5:1d:2a:77:4f:2b:6b:18:76:54:89:1a: a6:48:1e:6b:db:b5:c7:bc:57:37:cd:53:09:65:e1: a6:86:66:17:6a:8f:bd:d3:45:4c:21:38:e6:8a:94: 1a:6e:c3:d3:f8:7b:bf:46:b6:e7:42:d7:88:b3:21: b6:30:36:f3:73:b8:86:1b:6a:c2:37:cb:9a:74:2d: 14:2a:12:13:f2:00:68:f0:72:36:e5:83:39:1b:55: 17:9d:e8:de:fe:44:bf:49:f6:39:95:96:cb:07:58: 2a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:51:50:71:15:76:F5:AD:D2:0C:6E:D0:40:A0:8C:4C:16:9A:9D:F8 X509v3 Authority Key Identifier: keyid:69:0A:E1:75:FB:E6:3B:0E:93:04:69:09:7C:94:92:D4:2E:D7:92:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/b884c0-4d05-4401-9858-8a086ea94be5/1/aQrhdfvmOw6TBGkJfJSS1C7Xkkk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:5c:68:13:ce:4d:6d:91:5a:1b:1d:64:28:80:49:c6:09:88: f9:49:22:19:24:71:0e:80:95:2e:09:c2:fd:14:59:b7:22:ca: 45:f0:8a:ec:e9:51:18:08:3a:71:90:b6:58:9f:76:73:01:45: dd:e3:2f:d7:d1:db:88:7f:6a:87:c3:de:28:e8:40:f7:3c:72: 67:ae:4e:08:8b:e0:11:e6:40:12:9b:2c:ff:29:71:22:59:a6: b9:ea:df:c6:e7:8d:4a:5d:80:ee:ca:ef:07:61:dc:64:16:9a: f0:57:8a:24:d4:1d:ac:e9:6c:50:fd:17:07:31:51:0c:ba:72: cb:78:4f:35:0b:53:92:40:4b:89:21:97:27:85:fc:09:43:f5: 05:36:42:de:3b:ac:6c:9f:06:d8:43:c7:9d:ad:a7:2b:69:88: 74:1b:57:dd:35:6f:0a:96:f9:79:63:52:81:95:88:30:f5:a7: c0:fe:76:e2:f8:59:5a:c8:e5:fa:be:44:80:c4:91:00:47:18: db:da:a0:43:eb:b1:d5:11:e8:ac:4b:5c:4c:5b:f6:3e:f8:21: e3:76:51:63:9a:ab:ac:39:09:62:13:99:2f:35:df:1a:8d:4d: 7a:51:e7:dc:bb:db:02:20:61:ca:41:d8:99:10:19:27:e4:f4: ad:96:00:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEbkODl2n7Ec4YzOzbK9fnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5MGFlMTc1ZmJlNjNiMGU5MzA0NjkwOTdjOTQ5MmQ0MmVk NzkyNDkwHhcNMjUxMjIyMDUwMDM1WhcNMjUxMjIzMDUwMDM1WjAzMTEwLwYDVQQD EyhmMjUxNTA3MTE1NzZmNWFkZDIwYzZlZDA0MGEwOGM0YzE2OWE5ZGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6hGNnHJ0eSHyj+fOHSKUJ2AM2oHa cLSqWvHp730VcrqZJUytq+NwvQfYxxgWTdk92icXMHMKDQXLVb29+W0FkozWlMMS Ti9/X0nyP1l4RC2GDMTfZbsv1AELxyGe5SMZSmtsrYC9XmjGoeXA26TdgLuCFlpl SOLTuVGyAMBkwiszofu0xt9tH9Hc7S/rvv3H3OXAoi4iPsL1HSp3TytrGHZUiRqm SB5r27XHvFc3zVMJZeGmhmYXao+900VMITjmipQabsPT+Hu/RrbnQteIsyG2MDbz c7iGG2rCN8uadC0UKhIT8gBo8HI25YM5G1UXneje/kS/SfY5lZbLB1gqFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJRUHEVdvWt0gxu0ECgjEwWmp34MB8GA1UdIwQY MBaAFGkK4XX75jsOkwRpCXyUktQu15JJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgt OGEwODZlYTk0YmU1LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9iODg0YzAtNGQwNS00NDAxLTk4NTgtOGEwODZlYTk0YmU1 LzEvYVFyaGRmdm1PdzZUQkdrSmZKU1MxQzdYa2trLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANFxoE85N bZFaGx1kKIBJxgmI+UkiGSRxDoCVLgnC/RRZtyLKRfCK7OlRGAg6cZC2WJ92cwFF 3eMv19HbiH9qh8PeKOhA9zxyZ65OCIvgEeZAEpss/ylxIlmmuerfxueNSl2A7srv B2HcZBaa8FeKJNQdrOlsUP0XBzFRDLpyy3hPNQtTkkBLiSGXJ4X8CUP1BTZC3jus bJ8G2EPHna2nK2mIdBtX3TVvCpb5eWNSgZWIMPWnwP524vhZWsjl+r5EgMSRAEcY 29qgQ+ux1RHorEtcTFv2Pvgh43ZRY5qrrDkJYhOZLzXfGo1NelHn3LvbAiBhykHY mRAZJ+T0rZYAAQ== -----END CERTIFICATE-----Generated at Mon Dec 22 10:17:56 2025 by rpki-client