This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft File: aaEKEpVYyDgLwT2axFQB0h2rnfA.mft (raw, json) Hash identifier: GVzLkjy+0pBJaYSuUOG6JcsqPiwkgbSSg51y7GdJ8vo= Subject key identifier: 86:4D:60:5F:B7:52:61:A2:64:AA:AA:6C:FD:BB:65:33:5E:69:9E:4F Authority key identifier: 69:A1:0A:12:95:58:C8:38:0B:C1:3D:9A:C4:54:01:D2:1D:AB:9D:F0 Certificate issuer: /CN=69a10a129558c8380bc13d9ac45401d21dab9df0 Certificate serial: 019B6CC5A1E72420C6C5D7E4E26C1BEA3459 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaEKEpVYyDgLwT2axFQB0h2rnfA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft Manifest number: 179E Signing time: Tue 30 Dec 2025 01:00:49 +0000 Manifest this update: Tue 30 Dec 2025 01:00:49 +0000 Manifest next update: Wed 31 Dec 2025 01:00:49 +0000 Files and hashes: 1: aaEKEpVYyDgLwT2axFQB0h2rnfA.crl (hash: cJ8Rqr3qAyzd1z2wYoJRYQ4O5Rms0b6oSHoufDo1psM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft rsync://rpki.ripe.net/repository/DEFAULT/aaEKEpVYyDgLwT2axFQB0h2rnfA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c5:a1:e7:24:20:c6:c5:d7:e4:e2:6c:1b:ea:34:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69a10a129558c8380bc13d9ac45401d21dab9df0 Validity Not Before: Dec 30 01:00:49 2025 GMT Not After : Dec 31 01:00:49 2025 GMT Subject: CN=864d605fb75261a264aaaa6cfdbb65335e699e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e5:97:fc:ec:a1:f9:16:b3:61:11:31:77:03: 1a:66:cf:b8:c7:1d:8a:ec:48:36:20:a4:d3:34:18: 5e:6c:0f:1f:2e:3a:70:7b:cb:9b:30:b0:11:5d:a2: f0:55:16:6d:0b:bb:34:f5:aa:a3:90:21:05:5b:76: 37:4e:d8:6b:d3:35:25:a4:4a:d9:62:7d:3b:b4:c0: b8:87:75:e7:f2:89:f9:0a:d5:cc:f6:60:62:40:9a: 92:18:3c:2f:a9:83:20:e3:83:e7:a6:97:8d:06:00: c5:d3:fa:fd:55:4c:82:c3:b0:83:59:dd:72:cf:ba: e1:00:8c:c0:21:52:20:dd:d3:51:df:c8:4d:7b:14: 09:36:9b:2b:96:ec:55:a3:e7:73:a8:71:b9:cf:0b: 72:3c:bf:d2:82:89:01:15:cf:0d:36:a1:88:f5:51: 93:18:51:9b:5f:d7:34:ca:fd:55:12:33:f3:bd:cc: 6b:d9:50:62:2d:eb:08:d4:31:d5:25:cb:4c:92:b0: 62:f7:c8:ca:12:a3:1b:cf:56:ab:2b:ba:47:13:10: 56:79:35:f7:7b:5e:53:c7:9c:f7:ba:b3:11:e2:e5: 05:77:7f:7c:b2:59:fd:92:93:b8:27:e1:55:d0:83: 5b:1c:68:b1:08:ee:b2:4e:3d:51:f7:ad:23:4c:12: f7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4D:60:5F:B7:52:61:A2:64:AA:AA:6C:FD:BB:65:33:5E:69:9E:4F X509v3 Authority Key Identifier: keyid:69:A1:0A:12:95:58:C8:38:0B:C1:3D:9A:C4:54:01:D2:1D:AB:9D:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaEKEpVYyDgLwT2axFQB0h2rnfA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2a6fb0-48b2-4f93-855b-877c65b01456/1/aaEKEpVYyDgLwT2axFQB0h2rnfA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:0d:48:97:6d:c2:c8:b2:dd:78:92:51:47:3d:ef:69:61:3e: d4:d9:59:d9:bb:e1:c4:82:41:74:84:f4:10:e2:19:f5:74:1b: 54:66:e3:b2:44:52:8c:17:51:59:d1:39:fb:a3:e0:9b:5a:53: fb:dd:48:33:ea:71:86:84:dc:49:7b:49:31:c0:43:c4:99:83: 2c:2d:6c:93:b9:3e:36:43:1d:58:c3:8d:d0:f7:a9:65:ba:1c: 5c:58:52:be:f4:29:bd:5c:72:7b:fd:5a:bc:d1:42:ef:f6:4b: 64:8a:e9:ff:b0:72:e2:c1:e3:71:c4:de:53:b6:07:45:59:0e: dd:78:69:b8:39:a8:01:bd:31:c4:2f:ad:43:9f:c7:b1:e3:2d: d0:e3:32:35:74:2c:40:58:b8:ec:b1:0a:92:79:4b:c4:05:0f: 20:69:0d:31:e0:d0:cc:bb:1d:fc:40:98:49:29:8b:30:b3:25: 83:68:81:e6:3f:0e:a1:87:0a:e2:cd:c4:f6:00:97:b7:46:b1: a8:66:b7:09:1a:cc:5f:ae:17:50:05:fe:ff:a3:a5:10:36:0f: 20:bf:8a:3b:73:99:b2:74:26:c4:8c:65:6c:92:0b:7b:54:81: bd:f5:8c:22:21:d5:2e:bb:bd:4a:e0:5d:cc:d6:ee:e4:4a:14: 31:03:7a:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxaHnJCDGxdfk4mwb6jRZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5YTEwYTEyOTU1OGM4MzgwYmMxM2Q5YWM0NTQwMWQyMWRh YjlkZjAwHhcNMjUxMjMwMDEwMDQ5WhcNMjUxMjMxMDEwMDQ5WjAzMTEwLwYDVQQD Eyg4NjRkNjA1ZmI3NTI2MWEyNjRhYWFhNmNmZGJiNjUzMzVlNjk5ZTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7uWX/Oyh+RazYRExdwMaZs+4xx2K 7Eg2IKTTNBhebA8fLjpwe8ubMLARXaLwVRZtC7s09aqjkCEFW3Y3Tthr0zUlpErZ Yn07tMC4h3Xn8on5CtXM9mBiQJqSGDwvqYMg44PnppeNBgDF0/r9VUyCw7CDWd1y z7rhAIzAIVIg3dNR38hNexQJNpsrluxVo+dzqHG5zwtyPL/SgokBFc8NNqGI9VGT GFGbX9c0yv1VEjPzvcxr2VBiLesI1DHVJctMkrBi98jKEqMbz1arK7pHExBWeTX3 e15Tx5z3urMR4uUFd398sln9kpO4J+FV0INbHGixCO6yTj1R960jTBL3AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZNYF+3UmGiZKqqbP27ZTNeaZ5PMB8GA1UdIwQY MBaAFGmhChKVWMg4C8E9msRUAdIdq53wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWFFS0VwVll5RGdMd1QyYXhGUUIwaDJybmZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yYTZmYjAtNDhiMi00ZjkzLTg1NWIt ODc3YzY1YjAxNDU2LzEvYWFFS0VwVll5RGdMd1QyYXhGUUIwaDJybmZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8yYTZmYjAtNDhiMi00ZjkzLTg1NWItODc3YzY1YjAxNDU2 LzEvYWFFS0VwVll5RGdMd1QyYXhGUUIwaDJybmZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqA1Il23C yLLdeJJRRz3vaWE+1NlZ2bvhxIJBdIT0EOIZ9XQbVGbjskRSjBdRWdE5+6Pgm1pT +91IM+pxhoTcSXtJMcBDxJmDLC1sk7k+NkMdWMON0PepZbocXFhSvvQpvVxye/1a vNFC7/ZLZIrp/7By4sHjccTeU7YHRVkO3XhpuDmoAb0xxC+tQ5/HseMt0OMyNXQs QFi47LEKknlLxAUPIGkNMeDQzLsd/ECYSSmLMLMlg2iB5j8OoYcK4s3E9gCXt0ax qGa3CRrMX64XUAX+/6OlEDYPIL+KO3OZsnQmxIxlbJILe1SBvfWMIiHVLru9SuBd zNbu5EoUMQN6dA== -----END CERTIFICATE-----Generated at Tue Dec 30 08:50:16 2025 by rpki-client