This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft File: aMXwmzqQOVDz_NGyVQhu3kh26xE.mft (raw, json) Hash identifier: +rRBfhO9fcv1OETWtth9vWdQEplm8iZpAMVhfDbY038= Subject key identifier: 3F:E8:A6:31:F0:D7:AA:46:A5:04:81:0E:32:D6:68:C6:7B:AA:25:C9 Authority key identifier: 68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 Certificate issuer: /CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Certificate serial: 019B7034A9A9214A79B2C47581CC72F6241D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft Manifest number: 16F6 Signing time: Tue 30 Dec 2025 17:00:57 +0000 Manifest this update: Tue 30 Dec 2025 17:00:57 +0000 Manifest next update: Wed 31 Dec 2025 17:00:57 +0000 Files and hashes: 1: 5gxDURtK1rmOAdh1eWuh-NkY76k.roa (hash: QaQOgPlbLBzFETMJyWwYJQCd8vML1MyClKfr5uYQDoc=) 2: aMXwmzqQOVDz_NGyVQhu3kh26xE.crl (hash: FuIb17yNCS/Gwd3PdtMld6bVNw9vUkj4DpMn1yQt7KE=) 3: svZ0I0CIbPuXgkYBH_VdeOt4OII.roa (hash: qDnNSem+sBmAuaKOVojckKZEahJzHvEbGjkFY5x9Sqc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 17:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:70:34:a9:a9:21:4a:79:b2:c4:75:81:cc:72:f6:24:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c5f09b3a903950f3fcd1b255086ede4876eb11 Validity Not Before: Dec 30 17:00:57 2025 GMT Not After : Dec 31 17:00:57 2025 GMT Subject: CN=3fe8a631f0d7aa46a504810e32d668c67baa25c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8e:1a:e6:73:b1:8c:84:a9:5e:d3:22:76:6e: 3a:0a:e3:d4:75:2d:60:3b:ee:5e:63:4f:47:08:b9: f3:10:e1:f5:92:b6:dd:b5:13:28:fd:c2:10:05:44: 3b:43:8f:90:f2:f2:36:1c:8a:bb:22:bc:9d:b9:c8: 8e:47:d5:e6:b0:26:f0:9b:ca:a1:09:ce:01:d6:1a: 6a:8c:82:dd:bf:7b:15:0a:58:02:48:80:e9:2c:b4: 46:5d:73:18:ea:d2:a6:d6:ac:ff:6d:c8:87:4e:9f: f6:75:11:a1:18:ee:83:bf:f3:09:a2:33:40:24:7f: 60:e8:9c:3a:25:ca:fa:7e:8e:a5:5f:c8:f3:6b:e0: 46:3b:4e:89:1d:9a:ce:19:05:db:f4:d3:7e:b0:77: 98:9a:24:80:0e:c0:94:16:22:0b:ed:57:67:28:92: f7:0a:44:07:01:c6:14:1a:c8:7b:df:68:3b:bd:9c: 84:d3:3a:db:48:8f:86:f5:34:45:9e:8b:37:60:48: d3:05:4f:bf:cd:d3:16:ff:bc:17:99:49:cc:70:76: b7:cc:36:1c:3b:d7:68:73:0b:69:63:58:56:9d:d8: 17:1f:99:b8:48:e6:02:bf:5c:e6:71:56:93:e5:3f: 2b:58:f7:48:9c:c5:8b:de:45:4d:2d:be:f8:df:58: 31:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E8:A6:31:F0:D7:AA:46:A5:04:81:0E:32:D6:68:C6:7B:AA:25:C9 X509v3 Authority Key Identifier: keyid:68:C5:F0:9B:3A:90:39:50:F3:FC:D1:B2:55:08:6E:DE:48:76:EB:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMXwmzqQOVDz_NGyVQhu3kh26xE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/efa18d-0907-4593-abb8-94802636bad9/1/aMXwmzqQOVDz_NGyVQhu3kh26xE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:f7:6c:d2:bc:a3:3a:dc:75:f2:c5:83:6d:07:a8:ef:94:c9: 5e:1b:f0:78:e1:d2:a0:aa:de:a6:af:3e:a4:f8:16:d1:1a:6d: f8:4c:cb:df:95:84:ff:5f:9f:24:80:d2:0d:bc:e5:28:2a:ca: 37:a3:94:96:36:c7:c1:17:bc:8f:20:14:6d:fa:fc:b3:ea:c4: 34:da:18:57:4f:83:42:54:50:34:57:c5:dc:fb:73:6a:a7:a3: c1:d7:11:56:84:fc:1a:8d:e5:ec:52:36:bd:ca:e6:75:32:68: db:fd:b9:c2:2a:15:3a:ac:66:70:53:7b:b0:e5:ca:27:d6:f2: 6b:5c:e6:79:5d:2b:90:22:0a:1b:75:93:8f:0b:fb:65:33:c9: 88:43:36:7f:01:1b:44:12:b7:85:6c:aa:60:f5:4c:cd:4f:1f: 79:27:3b:92:b2:24:3d:bd:00:3e:64:6e:bc:ee:59:95:5e:27: 17:75:7f:02:a1:36:7e:2b:f3:fe:f8:89:95:54:e7:32:1e:cf: 6c:38:ee:0e:33:3e:70:e9:fa:8b:83:08:e7:bf:b6:ac:79:e3: ac:be:54:8e:fd:a4:f0:92:b6:55:cc:96:4a:03:c9:67:a1:4e: 65:2f:67:cb:69:65:92:45:12:05:d4:01:c2:57:30:a2:ac:63: 47:1a:da:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtwNKmpIUp5ssR1gcxy9iQdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzVmMDliM2E5MDM5NTBmM2ZjZDFiMjU1MDg2ZWRlNDg3 NmViMTEwHhcNMjUxMjMwMTcwMDU3WhcNMjUxMjMxMTcwMDU3WjAzMTEwLwYDVQQD EygzZmU4YTYzMWYwZDdhYTQ2YTUwNDgxMGUzMmQ2NjhjNjdiYWEyNWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAto4a5nOxjISpXtMidm46CuPUdS1g O+5eY09HCLnzEOH1krbdtRMo/cIQBUQ7Q4+Q8vI2HIq7IryduciOR9XmsCbwm8qh Cc4B1hpqjILdv3sVClgCSIDpLLRGXXMY6tKm1qz/bciHTp/2dRGhGO6Dv/MJojNA JH9g6Jw6Jcr6fo6lX8jza+BGO06JHZrOGQXb9NN+sHeYmiSADsCUFiIL7VdnKJL3 CkQHAcYUGsh732g7vZyE0zrbSI+G9TRFnos3YEjTBU+/zdMW/7wXmUnMcHa3zDYc O9docwtpY1hWndgXH5m4SOYCv1zmcVaT5T8rWPdInMWL3kVNLb7431gxFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/opjHw16pGpQSBDjLWaMZ7qiXJMB8GA1UdIwQY MBaAFGjF8Js6kDlQ8/zRslUIbt5IdusRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgt OTQ4MDI2MzZiYWQ5LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9lZmExOGQtMDkwNy00NTkzLWFiYjgtOTQ4MDI2MzZiYWQ5 LzEvYU1Yd216cVFPVkR6X05HeVZRaHUza2gyNnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoPds0ryj Otx18sWDbQeo75TJXhvweOHSoKrepq8+pPgW0Rpt+EzL35WE/1+fJIDSDbzlKCrK N6OUljbHwRe8jyAUbfr8s+rENNoYV0+DQlRQNFfF3PtzaqejwdcRVoT8Go3l7FI2 vcrmdTJo2/25wioVOqxmcFN7sOXKJ9bya1zmeV0rkCIKG3WTjwv7ZTPJiEM2fwEb RBK3hWyqYPVMzU8feSc7krIkPb0APmRuvO5ZlV4nF3V/AqE2fivz/viJlVTnMh7P bDjuDjM+cOn6i4MI57+2rHnjrL5Ujv2k8JK2VcyWSgPJZ6FOZS9ny2llkkUSBdQB wlcwoqxjRxraGA== -----END CERTIFICATE-----Generated at Wed Dec 31 01:52:18 2025 by rpki-client