This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json) Hash identifier: vYFw85EDuitFgHhDQEMA20JjPvE/pFELQ4RpqtvyOiY= Subject key identifier: 5A:8F:96:85:F3:EB:AF:DB:5C:45:FE:DD:95:7F:70:FE:8D:9C:87:EA Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Certificate serial: 019B3FECF910114A862F00492FC6441954AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft Manifest number: 16DD Signing time: Sun 21 Dec 2025 08:00:53 +0000 Manifest this update: Sun 21 Dec 2025 08:00:53 +0000 Manifest next update: Mon 22 Dec 2025 08:00:53 +0000 Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=) 2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: Bnp7dZ5uPaZgvpje2zGT5k/tVSCr5RUCBBvC3ChqmmY=) 3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ec:f9:10:11:4a:86:2f:00:49:2f:c6:44:19:54:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Validity Not Before: Dec 21 08:00:53 2025 GMT Not After : Dec 22 08:00:53 2025 GMT Subject: CN=5a8f9685f3ebafdb5c45fedd957f70fe8d9c87ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:07:25:f0:63:7f:dc:ae:c4:11:f3:bc:d3:53: e1:54:bb:97:ed:07:5d:d2:b8:62:b4:36:2c:22:f3: ed:d9:5d:d0:f8:19:6d:bb:39:21:22:cb:96:f8:89: 07:99:2f:c2:43:3c:5a:16:95:02:4c:f6:f6:bb:af: 47:ee:b1:37:45:a5:c7:56:5c:fb:2f:e7:5d:bb:57: 1a:93:ed:50:9b:dd:32:01:51:94:78:3e:06:5e:c8: ac:a8:b3:c9:25:4b:45:7b:18:4c:ea:c2:5b:c9:b3: 12:eb:4e:7f:93:30:92:64:e4:b2:f6:51:9b:b9:36: 3b:c1:de:b3:f7:98:e1:0b:d2:a1:00:74:b7:37:a2: b3:53:38:b6:c1:e2:5f:9d:7a:8c:0e:4f:54:60:ab: 73:4a:dc:7e:46:3a:2c:3e:04:b3:0b:2f:d4:ab:4d: 22:16:de:07:c0:f3:ec:f2:cd:ed:e5:c7:ad:2e:8f: 6d:62:81:5d:4d:bb:c1:1b:2a:ca:49:92:f6:2e:a7: c7:e7:52:b7:51:3d:aa:c3:52:78:1a:cc:5a:65:9a: 62:4a:0c:db:e2:6d:68:68:4e:a0:90:12:75:ec:bc: 80:9e:9b:42:c0:75:fc:a3:64:04:5f:94:74:8f:72: 81:bc:cf:02:14:b5:21:ea:75:39:d0:5e:c7:57:4b: 2d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8F:96:85:F3:EB:AF:DB:5C:45:FE:DD:95:7F:70:FE:8D:9C:87:EA X509v3 Authority Key Identifier: keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:40:0a:b0:d5:33:72:fb:a8:4b:ac:37:4a:c3:e5:7a:f4:a1: fd:92:b3:2a:0b:dc:60:85:c5:e7:8e:14:5b:0d:57:ac:85:62: a3:91:cc:f3:22:8a:55:17:7a:e5:f7:37:be:c0:d7:69:00:e4: 5e:7e:84:f0:ba:1a:50:67:c4:29:fd:1f:87:9d:0a:e1:48:52: c0:37:2d:dd:f7:ae:eb:3d:66:99:a9:6d:ee:ea:6c:37:82:65: f4:bc:a7:97:4c:13:d4:d7:d0:43:3a:c4:a5:57:d3:49:1a:46: fe:35:67:10:a9:c7:ce:14:d6:8a:9b:1d:0c:56:fb:db:d0:4c: 20:4b:cf:68:d5:66:5c:63:d6:bc:e2:19:20:81:49:bd:02:a7: 65:70:ec:11:cd:be:b3:67:79:21:67:e5:72:27:ba:bb:10:83: f2:80:84:01:ad:0d:05:4c:b6:75:44:83:34:58:34:eb:df:56: dd:38:4f:49:1f:57:bf:f2:db:05:74:61:38:d8:82:a6:14:20: 84:89:54:db:5b:f9:a0:bd:91:d4:56:0e:a1:65:48:97:b4:bc: f6:eb:a8:8e:f3:2d:9c:3a:b1:61:c8:97:42:26:c8:0c:df:8f: ae:0e:9b:e8:52:00:31:96:ee:22:b0:58:fa:87:95:5c:94:29: b0:77:97:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7PkQEUqGLwBJL8ZEGVSuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzVmMDliM2E5MDM5NTBmM2ZjZDFiMjU1MDg2ZWRlNDg3 NmViMTEwHhcNMjUxMjIxMDgwMDUzWhcNMjUxMjIyMDgwMDUzWjAzMTEwLwYDVQQD Eyg1YThmOTY4NWYzZWJhZmRiNWM0NWZlZGQ5NTdmNzBmZThkOWM4N2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwcl8GN/3K7EEfO801PhVLuX7Qdd 0rhitDYsIvPt2V3Q+BltuzkhIsuW+IkHmS/CQzxaFpUCTPb2u69H7rE3RaXHVlz7 L+ddu1cak+1Qm90yAVGUeD4GXsisqLPJJUtFexhM6sJbybMS605/kzCSZOSy9lGb uTY7wd6z95jhC9KhAHS3N6KzUzi2weJfnXqMDk9UYKtzStx+RjosPgSzCy/Uq00i Ft4HwPPs8s3t5cetLo9tYoFdTbvBGyrKSZL2LqfH51K3UT2qw1J4GsxaZZpiSgzb 4m1oaE6gkBJ17LyAnptCwHX8o2QEX5R0j3KBvM8CFLUh6nU50F7HV0stswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFqPloXz66/bXEX+3ZV/cP6NnIfqMB8GA1UdIwQY MBaAFGjF8Js6kDlQ8/zRslUIbt5IdusRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgt OTQ4MDI2MzZiYWQ5LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgtOTQ4MDI2MzZiYWQ5 LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj0AKsNUz cvuoS6w3SsPlevSh/ZKzKgvcYIXF544UWw1XrIVio5HM8yKKVRd65fc3vsDXaQDk Xn6E8LoaUGfEKf0fh50K4UhSwDct3feu6z1mmalt7upsN4Jl9Lynl0wT1NfQQzrE pVfTSRpG/jVnEKnHzhTWipsdDFb729BMIEvPaNVmXGPWvOIZIIFJvQKnZXDsEc2+ s2d5IWflcie6uxCD8oCEAa0NBUy2dUSDNFg0699W3ThPSR9Xv/LbBXRhONiCphQg hIlU21v5oL2R1FYOoWVIl7S89uuojvMtnDqxYciXQibIDN+Prg6b6FIAMZbuIrBY +oeVXJQpsHeXYw== -----END CERTIFICATE-----Generated at Sun Dec 21 11:26:51 2025 by rpki-client