This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json) Hash identifier: lWeWxuskOBaLHuH76XE0QZA2oEbQThFfJA7RqONa0aI= Subject key identifier: 07:9D:A3:4B:59:2B:06:C4:6A:73:2C:63:9D:A5:8D:F1:9D:06:0F:92 Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75 Certificate serial: 019B541905AA670EE92CAC6BE0A6017FCAD7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft Manifest number: 03F2 Signing time: Thu 25 Dec 2025 06:01:24 +0000 Manifest this update: Thu 25 Dec 2025 06:01:24 +0000 Manifest next update: Fri 26 Dec 2025 06:01:24 +0000 Files and hashes: 1: MyHgwE9JQ37sKu_CcRwNe642FMI.roa (hash: UWTUq6zuuwDHpYw/C8xNP37TF6tAxhLymuOUDHs6DJk=) 2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: QYgCtX/+LuqKvPUzwssc3GZINDpmwwKYlzJfPC3DNtU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:19:05:aa:67:0e:e9:2c:ac:6b:e0:a6:01:7f:ca:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75 Validity Not Before: Dec 25 06:01:24 2025 GMT Not After : Dec 26 06:01:24 2025 GMT Subject: CN=079da34b592b06c46a732c639da58df19d060f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:bc:93:e8:20:36:df:08:f8:21:6c:48:58:be: 68:e1:d8:c9:32:a2:0e:ce:08:4a:5c:a2:9d:a1:c2: 8c:4a:24:3c:a7:c8:12:0e:1d:99:ee:e4:9a:b5:85: 3d:73:8c:17:02:d5:34:21:38:26:73:0c:9d:69:41: f2:4a:67:29:a8:ae:4d:7e:16:e9:89:8f:51:4c:01: 96:bb:e6:51:76:ea:c5:c0:81:80:f2:83:78:c7:ed: 59:d9:1f:f2:78:6d:a3:a5:b9:c1:4d:67:2d:fa:d9: 49:46:eb:fe:f9:dd:e7:e5:84:55:42:9b:a0:ef:ab: 1f:b1:6e:40:90:69:15:c8:20:21:19:76:a3:60:86: 5b:d8:0b:65:1f:32:a6:1a:ac:b0:39:93:85:4d:11: 74:81:c7:82:e8:52:1f:4b:c2:47:83:8e:c9:a9:85: 0f:8c:d0:4c:5d:da:49:d4:7f:ab:0c:f1:cb:69:dc: 7c:d0:a3:06:44:06:3a:36:fe:4e:84:e5:ab:83:a8: 35:55:f0:c8:45:3f:56:9f:85:dc:07:87:59:78:db: d7:87:f3:92:ab:f2:eb:18:b8:26:12:29:8e:a6:2c: 39:27:47:b1:7b:92:80:b1:44:d2:87:81:8c:03:20: c5:47:60:b7:73:7f:ce:3a:38:e0:cf:8e:37:60:e1: 11:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:9D:A3:4B:59:2B:06:C4:6A:73:2C:63:9D:A5:8D:F1:9D:06:0F:92 X509v3 Authority Key Identifier: keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:0f:d6:56:a6:b3:d9:6a:76:fc:bb:37:3d:b1:96:06:d4:5e: 02:4e:6f:f4:82:e1:c2:16:11:19:bb:d7:a6:07:1c:92:db:55: 24:03:3e:c4:60:59:59:6a:7e:bd:70:70:36:93:14:24:2f:7d: 9b:12:a3:f4:3e:d9:ef:d0:88:86:2c:7e:2e:5b:72:c0:c0:bc: 4b:63:19:52:4e:3c:99:56:01:27:c0:d6:23:7a:d3:70:be:d5: 07:dd:fe:7d:2a:a6:b7:44:ef:0a:d2:1e:c9:b6:7d:16:b6:c6: 05:c3:ba:ea:d2:3e:85:2d:71:cc:1a:8e:f1:eb:15:b0:8c:dd: 3f:2b:23:6b:51:a1:8b:b9:57:e5:e5:af:72:b0:7a:91:0d:f6: 1a:3d:ac:5e:32:1b:3e:e1:5f:30:d8:c4:a6:ab:d6:15:38:e4: 9d:d2:a2:51:7b:9c:cf:a3:56:e3:91:3b:97:7a:a6:99:18:fc: 01:14:8d:3a:4c:e5:25:30:86:74:13:58:4f:7c:8e:b3:13:be: 51:b2:41:03:17:8b:0b:39:32:e6:6e:b9:1c:8a:6d:c5:04:32: 81:21:e3:26:5a:0f:3c:c8:78:96:5d:df:7e:b5:6b:e8:7c:ac: 26:29:37:4e:4a:57:d0:f5:13:04:19:10:d9:4b:c4:b4:97:0f: 3e:19:f9:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUGQWqZw7pLKxr4KYBf8rXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm NTVkNzUwHhcNMjUxMjI1MDYwMTI0WhcNMjUxMjI2MDYwMTI0WjAzMTEwLwYDVQQD EygwNzlkYTM0YjU5MmIwNmM0NmE3MzJjNjM5ZGE1OGRmMTlkMDYwZjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbyT6CA23wj4IWxIWL5o4djJMqIO zghKXKKdocKMSiQ8p8gSDh2Z7uSatYU9c4wXAtU0ITgmcwydaUHySmcpqK5Nfhbp iY9RTAGWu+ZRdurFwIGA8oN4x+1Z2R/yeG2jpbnBTWct+tlJRuv++d3n5YRVQpug 76sfsW5AkGkVyCAhGXajYIZb2AtlHzKmGqywOZOFTRF0gceC6FIfS8JHg47JqYUP jNBMXdpJ1H+rDPHLadx80KMGRAY6Nv5OhOWrg6g1VfDIRT9Wn4XcB4dZeNvXh/OS q/LrGLgmEimOpiw5J0exe5KAsUTSh4GMAyDFR2C3c3/OOjjgz443YOERqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAedo0tZKwbEanMsY52ljfGdBg+SMB8GA1UdIwQY MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQg/WVqaz 2Wp2/Ls3PbGWBtReAk5v9ILhwhYRGbvXpgcckttVJAM+xGBZWWp+vXBwNpMUJC99 mxKj9D7Z79CIhix+LltywMC8S2MZUk48mVYBJ8DWI3rTcL7VB93+fSqmt0TvCtIe ybZ9FrbGBcO66tI+hS1xzBqO8esVsIzdPysja1Ghi7lX5eWvcrB6kQ32Gj2sXjIb PuFfMNjEpqvWFTjkndKiUXucz6NW45E7l3qmmRj8ARSNOkzlJTCGdBNYT3yOsxO+ UbJBAxeLCzky5m65HIptxQQygSHjJloPPMh4ll3ffrVr6HysJik3TkpX0PUTBBkQ 2UvEtJcPPhn5xA== -----END CERTIFICATE-----Generated at Thu Dec 25 09:14:50 2025 by rpki-client