This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft File: aNQlzHsbeICodfdr7agP4xCTGe0.mft (raw, json) Hash identifier: cWRQmxHAFFhQT7Jeb2l9b6cFOI8s/mEnE7vCaEQz8Co= Subject key identifier: 68:48:1B:71:65:E1:19:14:DF:FE:94:5C:9B:DA:E9:8C:D3:FD:0D:34 Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed Certificate serial: 019B42B6BC29A65EA5974B74409755512498 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 21:00:30 +0000 Manifest this update: Sun 21 Dec 2025 21:00:30 +0000 Manifest next update: Mon 22 Dec 2025 21:00:30 +0000 Files and hashes: 1: 1ikX92cBkm7W7rHfhLCtgqKM0d8.roa (hash: oY5BxXRyJZhAnRLwWm3V4CClsVP5JaJOwIydkhqNE80=) 2: 2KU1lG8tmW62eqBwxBBDds81m5A.roa (hash: DXWqInrCKLzcQadKZzuaDGdIbNbzO5YygQPkSyOtdqY=) 3: aNQlzHsbeICodfdr7agP4xCTGe0.crl (hash: 8sjvU6VFI5zbDgEAPv0ouUucW83OAwAk5z6ayGcjMr8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b6:bc:29:a6:5e:a5:97:4b:74:40:97:55:51:24:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed Validity Not Before: Dec 21 21:00:30 2025 GMT Not After : Dec 22 21:00:30 2025 GMT Subject: CN=68481b7165e11914dffe945c9bdae98cd3fd0d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:50:ae:34:d4:05:bd:08:22:b2:5b:95:1d:54: d3:66:b1:53:2b:d1:81:d3:84:c5:18:8f:c5:d4:80: 5d:41:20:fa:77:4d:81:87:d9:c4:b1:70:30:aa:44: b6:bb:a5:a9:4d:cc:bb:26:7b:db:6a:2f:ff:5c:b8: 45:1c:2e:55:06:cc:98:3a:53:aa:c5:a2:0c:57:30: 3d:ae:7d:13:ba:36:d2:de:db:cc:11:4a:65:d4:d1: 39:31:05:e6:52:16:2c:77:d4:38:6c:23:d6:67:1d: e1:5a:81:37:4e:1e:cc:f0:0b:9a:13:a6:8e:11:da: 99:b6:8b:62:c4:ca:10:df:14:56:09:53:d5:27:6e: d8:78:97:16:d5:b6:bc:3c:3d:d4:0b:6f:23:62:76: 20:43:e1:39:e5:cb:9a:80:7c:4e:54:35:83:8e:b6: c0:4a:7d:0a:14:77:7f:3b:e5:a4:6f:00:78:e1:2d: eb:05:1c:70:5d:a8:22:e1:5c:74:d8:b0:55:8f:72: 4a:7e:01:b8:46:44:21:a9:db:d0:5b:73:19:77:8d: f9:a8:06:20:ff:8d:e3:5e:cd:fe:13:b0:5f:65:34: e3:55:ce:1e:2a:9f:cf:22:a8:9e:1e:d2:60:91:dd: f2:52:20:b1:31:a4:3e:ed:14:d4:9c:78:72:4e:3e: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:48:1B:71:65:E1:19:14:DF:FE:94:5C:9B:DA:E9:8C:D3:FD:0D:34 X509v3 Authority Key Identifier: keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:87:3c:ac:b7:82:8f:29:47:2d:d0:78:4b:6c:f5:3c:79:9d: a2:17:08:1e:9d:77:53:4c:e6:ed:64:38:4c:c9:24:a4:21:69: e5:53:46:63:43:fe:23:3a:15:d1:9f:f7:05:b8:64:46:a1:5f: d1:d4:5d:43:8a:79:ba:99:e6:7c:ee:40:0f:92:b8:45:83:88: b7:98:e1:36:83:8c:a3:f5:72:2a:f6:0f:0d:7a:56:2d:eb:ee: d6:94:a1:f9:a5:e9:6c:bd:e6:69:b7:b9:21:a2:fa:b5:4c:48: c9:a9:72:75:4e:85:cc:4b:dc:d3:59:7a:fc:f0:4d:4a:f7:17: 08:d6:ac:fb:bf:00:9a:f4:59:4b:b2:23:e8:4c:b5:20:3b:b8: 75:44:65:d4:99:64:50:3b:51:c3:d3:f0:a6:30:96:e1:5f:1e: d4:be:37:92:e7:cd:08:b3:f0:f5:8f:db:8e:90:31:51:69:e8: 26:ab:34:88:fd:76:78:54:50:09:51:66:88:94:ae:00:e1:db: c0:06:39:16:ef:d2:75:4a:a0:33:10:93:60:21:41:7e:90:03: b9:ff:34:eb:b7:29:0a:a6:15:be:fd:a8:95:4d:7b:a8:0c:c4: 1c:7d:dd:6a:59:18:9b:9c:86:58:48:d9:cd:de:d9:c9:cf:48: a5:63:9f:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCtrwppl6ll0t0QJdVUSSYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4ZDQyNWNjN2IxYjc4ODBhODc1Zjc2YmVkYTgwZmUzMTA5 MzE5ZWQwHhcNMjUxMjIxMjEwMDMwWhcNMjUxMjIyMjEwMDMwWjAzMTEwLwYDVQQD Eyg2ODQ4MWI3MTY1ZTExOTE0ZGZmZTk0NWM5YmRhZTk4Y2QzZmQwZDM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1CuNNQFvQgisluVHVTTZrFTK9GB 04TFGI/F1IBdQSD6d02Bh9nEsXAwqkS2u6WpTcy7Jnvbai//XLhFHC5VBsyYOlOq xaIMVzA9rn0TujbS3tvMEUpl1NE5MQXmUhYsd9Q4bCPWZx3hWoE3Th7M8AuaE6aO EdqZtotixMoQ3xRWCVPVJ27YeJcW1ba8PD3UC28jYnYgQ+E55cuagHxOVDWDjrbA Sn0KFHd/O+WkbwB44S3rBRxwXagi4Vx02LBVj3JKfgG4RkQhqdvQW3MZd435qAYg /43jXs3+E7BfZTTjVc4eKp/PIqieHtJgkd3yUiCxMaQ+7RTUnHhyTj7IawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGhIG3Fl4RkU3/6UXJva6YzT/Q00MB8GA1UdIwQY MBaAFGjUJcx7G3iAqHX3a+2oD+MQkxntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2Et NWM0NWI2MThmOTkwLzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2EtNWM0NWI2MThmOTkw LzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIYc8rLeC jylHLdB4S2z1PHmdohcIHp13U0zm7WQ4TMkkpCFp5VNGY0P+IzoV0Z/3BbhkRqFf 0dRdQ4p5upnmfO5AD5K4RYOIt5jhNoOMo/VyKvYPDXpWLevu1pSh+aXpbL3mabe5 IaL6tUxIyalydU6FzEvc01l6/PBNSvcXCNas+78AmvRZS7Ij6Ey1IDu4dURl1Jlk UDtRw9PwpjCW4V8e1L43kufNCLPw9Y/bjpAxUWnoJqs0iP12eFRQCVFmiJSuAOHb wAY5Fu/SdUqgMxCTYCFBfpADuf8067cpCqYVvv2olU17qAzEHH3dalkYm5yGWEjZ zd7Zyc9IpWOfOg== -----END CERTIFICATE-----Generated at Mon Dec 22 02:36:58 2025 by rpki-client