This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft File: aOi66pXUBANI8KiexOS9FSdfbDk.mft (raw, json) Hash identifier: Z3OF4EsN3GeRO4tXMEUHItpFAGnumAhBRs7lzjg8HUs= Subject key identifier: D8:B6:76:85:F7:1B:B0:08:D3:D8:A1:3B:38:A3:B9:08:75:89:4F:C4 Authority key identifier: 68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39 Certificate issuer: /CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39 Certificate serial: 019B684452F6FE9A94625A4D36C620542BF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft Manifest number: 179E Signing time: Mon 29 Dec 2025 04:01:06 +0000 Manifest this update: Mon 29 Dec 2025 04:01:06 +0000 Manifest next update: Tue 30 Dec 2025 04:01:06 +0000 Files and hashes: 1: G3jkppDUZ7UShIbg3wj67wwITjQ.roa (hash: IM9aMDCOjn2pDhh5r2plZvteAbzhdwZ0L/lTf4RJayk=) 2: Tz1CIM1JoghruWTN6nGpazj8zTs.roa (hash: VV/wpFoAA0PEYjeaECSEYgoe19Q1uDYWZTbwDnhLY+0=) 3: aOi66pXUBANI8KiexOS9FSdfbDk.crl (hash: S0qmc0DdGGwaW+nThCiSYJ9/R0iYfbV+x7OSi9q977Y=) 4: qOyspdHf0vEJQuyvIz0XkgRHk_0.roa (hash: yR7LTFxNYmFcq/nxWYOH7mZupl2rRRW8SrPwUWcJB0k=) 5: uiGdfZv36ngdlEPtH0Dctu5_0kI.roa (hash: kwlBzu/ziaLKG7neS7FV84L3FCZ7YdUCR1fgHvPBMoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 04:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:68:44:52:f6:fe:9a:94:62:5a:4d:36:c6:20:54:2b:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68e8baea95d4040348f0a89ec4e4bd15275f6c39 Validity Not Before: Dec 29 04:01:06 2025 GMT Not After : Dec 30 04:01:06 2025 GMT Subject: CN=d8b67685f71bb008d3d8a13b38a3b90875894fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:89:83:bb:dd:c4:7b:c7:89:8b:a9:ca:bc:04: 74:41:27:9b:b2:c4:df:01:d1:04:4d:5f:49:14:62: aa:02:74:4d:dc:89:b4:b6:c2:67:97:85:de:3c:b7: 9f:a1:14:9e:13:85:3f:31:db:69:7d:54:f1:6a:48: 3f:64:cc:8e:d4:30:00:f0:3b:8a:a4:2f:16:f7:45: 5e:b2:bb:4f:65:e8:7e:ba:07:1d:81:33:f1:61:52: c7:5a:21:21:dc:c7:53:ff:2c:c9:e5:f6:03:1a:0c: 0d:14:03:2c:1c:20:39:00:de:ec:58:2c:85:24:1a: 84:91:88:97:85:2b:10:ba:8b:87:a1:79:93:5e:4f: c8:7f:bf:ba:bb:c5:eb:9b:be:2d:21:02:29:05:d8: 40:81:d9:be:2a:08:c7:4e:48:dd:e4:f6:75:49:34: 4f:de:2d:b0:3e:b8:51:ea:30:05:26:15:3a:a5:8a: 28:54:83:78:56:ab:d6:ea:be:72:e5:ec:55:ef:3f: 8b:1f:6c:4a:2c:8b:66:b3:da:a9:cd:2e:4a:ed:b3: 3a:07:0a:74:6f:35:19:22:12:5f:58:a7:45:a1:35: 94:db:33:53:1d:bc:39:70:cb:4e:5f:a9:42:c4:78: d1:07:82:05:a7:9d:fb:2b:ef:32:c8:a1:72:b2:9b: de:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B6:76:85:F7:1B:B0:08:D3:D8:A1:3B:38:A3:B9:08:75:89:4F:C4 X509v3 Authority Key Identifier: keyid:68:E8:BA:EA:95:D4:04:03:48:F0:A8:9E:C4:E4:BD:15:27:5F:6C:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOi66pXUBANI8KiexOS9FSdfbDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/7653e0-8a72-4351-bfce-3711fae8ca77/1/aOi66pXUBANI8KiexOS9FSdfbDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:c5:f8:2b:cd:b0:2a:6f:06:af:82:b7:e4:77:76:94:66:53: 53:2f:91:9d:88:5f:71:bf:c6:61:43:59:73:6b:16:28:47:50: 55:98:73:86:1f:e2:c7:f3:74:9e:67:f9:02:3e:cf:7a:c1:db: 65:31:69:ec:7e:b0:b1:7a:7c:48:2c:51:8c:aa:a4:83:83:00: a2:ec:7e:b4:73:f2:62:1e:fd:45:ff:56:b4:98:d4:79:af:82: c8:45:79:96:f3:10:da:ea:d6:0c:ea:f4:cf:f7:d6:a4:11:17: 10:9c:ae:50:8e:53:58:27:61:2e:58:70:2d:4e:2e:ed:dd:ed: 1f:db:20:35:94:2a:3d:0f:74:17:4d:78:cc:fd:eb:ce:20:fd: bc:57:98:ae:c8:c1:0b:32:1a:72:29:ba:6f:3b:6c:5f:28:27: a9:6a:4d:27:41:e4:ef:34:45:7c:2e:e6:fa:25:e5:f5:99:3b: bb:6d:c8:aa:e3:c3:a2:86:0c:30:1d:55:87:ab:0f:f1:39:3b: b9:83:df:27:89:58:c3:5b:a5:85:1a:1f:a8:56:17:80:dd:08: 88:f7:70:ea:d8:91:bf:69:dd:c7:bd:5f:f7:78:fa:ca:f8:de: 54:b2:e0:3f:58:5f:14:ec:3b:1e:c7:43:97:30:c4:1e:e2:44: 9a:36:a5:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtoRFL2/pqUYlpNNsYgVCvwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZThiYWVhOTVkNDA0MDM0OGYwYTg5ZWM0ZTRiZDE1Mjc1 ZjZjMzkwHhcNMjUxMjI5MDQwMTA2WhcNMjUxMjMwMDQwMTA2WjAzMTEwLwYDVQQD EyhkOGI2NzY4NWY3MWJiMDA4ZDNkOGExM2IzOGEzYjkwODc1ODk0ZmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArImDu93Ee8eJi6nKvAR0QSebssTf AdEETV9JFGKqAnRN3Im0tsJnl4XePLefoRSeE4U/MdtpfVTxakg/ZMyO1DAA8DuK pC8W90VesrtPZeh+ugcdgTPxYVLHWiEh3MdT/yzJ5fYDGgwNFAMsHCA5AN7sWCyF JBqEkYiXhSsQuouHoXmTXk/If7+6u8Xrm74tIQIpBdhAgdm+KgjHTkjd5PZ1STRP 3i2wPrhR6jAFJhU6pYooVIN4VqvW6r5y5exV7z+LH2xKLItms9qpzS5K7bM6Bwp0 bzUZIhJfWKdFoTWU2zNTHbw5cMtOX6lCxHjRB4IFp537K+8yyKFyspverwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNi2doX3G7AI09ihOzijuQh1iU/EMB8GA1UdIwQY MBaAFGjouuqV1AQDSPConsTkvRUnX2w5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2Ut MzcxMWZhZThjYTc3LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83NjUzZTAtOGE3Mi00MzUxLWJmY2UtMzcxMWZhZThjYTc3 LzEvYU9pNjZwWFVCQU5JOEtpZXhPUzlGU2RmYkRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnsX4K82w Km8Gr4K35Hd2lGZTUy+RnYhfcb/GYUNZc2sWKEdQVZhzhh/ix/N0nmf5Aj7PesHb ZTFp7H6wsXp8SCxRjKqkg4MAoux+tHPyYh79Rf9WtJjUea+CyEV5lvMQ2urWDOr0 z/fWpBEXEJyuUI5TWCdhLlhwLU4u7d3tH9sgNZQqPQ90F014zP3rziD9vFeYrsjB CzIacim6bztsXygnqWpNJ0Hk7zRFfC7m+iXl9Zk7u23IquPDooYMMB1Vh6sP8Tk7 uYPfJ4lYw1ulhRofqFYXgN0IiPdw6tiRv2ndx71f93j6yvjeVLLgP1hfFOw7HsdD lzDEHuJEmjalFA== -----END CERTIFICATE-----Generated at Mon Dec 29 12:01:01 2025 by rpki-client