This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft File: aDLDLSJZATmRJg1TDZEgAxqu_NA.mft (raw, json) Hash identifier: wkZrBE501ugoKIbABXltD/3eQLtVn2sdLvIjBSpJGKw= Subject key identifier: 7C:87:0B:3D:7D:BF:C7:F5:43:BA:7D:5E:EF:1A:1D:D7:F4:21:57:E9 Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0 Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0 Certificate serial: 019B3BD90369CFBA2D84C5980B8FB919F106 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft Manifest number: 0D27 Signing time: Sat 20 Dec 2025 13:00:36 +0000 Manifest this update: Sat 20 Dec 2025 13:00:36 +0000 Manifest next update: Sun 21 Dec 2025 13:00:36 +0000 Files and hashes: 1: 1-oXSUr0wwWM6bUdeuL56OFYZDI0.roa (hash: ncbwn+oJ9xxudk0G2RRlfn6p7YnDM2Topv72cCblM78=) 2: JmE2DotJFzee6ZEkJABlOvGfUi0.roa (hash: kTxgn5V7rU8GaSWrPY2IpRexVO3i36geJ6EK2nXDe04=) 3: aDLDLSJZATmRJg1TDZEgAxqu_NA.crl (hash: wmikIc6htpuNBk90eN9LSiKgKnF+vpFS0PxWpgl6SB8=) 4: cEY4_oxa006P5RDwnA1ZzqFve_U.roa (hash: aljeYfMZh5A8r1hZ1ho6VGSZLpMMc/WsIq8gaCshO9A=) 5: nTupOLnysHIU3jc5GcaguEHrGzQ.roa (hash: 7rA+K1p/TVuAVfQm4S6Vm6UJX0egR9dZCIKwnWvWs6k=) 6: nnxeUU87S1Fex4eT1VyslsBsqEs.roa (hash: reRLOJZlJItgnmYvk5ziSo/wJ6dbsJIWZ7vz95Z6+9Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:03:69:cf:ba:2d:84:c5:98:0b:8f:b9:19:f1:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0 Validity Not Before: Dec 20 13:00:36 2025 GMT Not After : Dec 21 13:00:36 2025 GMT Subject: CN=7c870b3d7dbfc7f543ba7d5eef1a1dd7f42157e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6a:5c:b6:23:96:bd:ee:dd:ea:67:3b:61:c0: 7f:a3:29:4d:d1:14:5d:f3:83:de:63:33:df:f7:04: 70:e3:95:9f:ea:e5:ea:3a:6a:55:3e:e2:6b:1f:b6: 18:99:ba:79:49:43:b9:12:b4:b8:dd:a5:c9:d2:50: 15:a2:86:fc:3d:47:94:1a:7b:f5:52:0b:93:e6:c4: 7a:26:f2:1f:80:71:78:54:fa:9b:23:d8:cf:6d:46: 24:f0:87:e5:19:d7:3e:52:e1:3b:da:55:ad:31:3b: fb:68:03:79:8f:02:88:0f:2a:8d:9f:45:cd:6a:57: 9f:97:68:6e:1f:21:c0:9c:54:57:6a:a2:30:47:86: fe:5b:90:a6:b0:32:bf:a8:30:d2:dc:aa:86:89:05: d9:12:cd:1b:be:ee:46:cb:04:85:ac:91:47:f4:32: fb:90:71:fd:f9:00:f4:58:57:89:4e:9a:18:f5:80: 61:ec:94:7a:f5:27:09:fb:d5:81:f2:7a:f2:9b:9c: e0:0c:93:e4:56:01:e4:e5:26:cf:7b:7a:be:3b:3e: 43:9d:ee:7f:e8:ae:3f:04:32:e7:b0:15:c8:85:7d: 44:db:e3:e4:28:67:17:51:40:ee:21:fc:00:7e:ce: 66:46:a7:3c:f1:46:28:ac:48:25:92:32:0f:c3:57: 5d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:87:0B:3D:7D:BF:C7:F5:43:BA:7D:5E:EF:1A:1D:D7:F4:21:57:E9 X509v3 Authority Key Identifier: keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:e2:51:11:a5:8f:72:06:07:0e:c5:3c:0f:7c:db:ca:81:eb: 3d:65:a7:de:ce:49:53:eb:91:18:31:4e:0d:53:55:7d:07:82: 09:1b:5e:af:99:ca:14:47:78:ab:33:22:6e:2c:b1:a8:83:1c: d6:f4:1f:82:8d:b6:c1:2d:a7:a4:a5:14:ef:00:04:e0:19:eb: d1:ca:a7:c4:10:b1:4b:c5:5f:2c:c4:a2:ec:45:e4:fa:ea:d6: 7e:af:b8:fd:91:58:16:44:3a:8f:e8:51:c9:42:d2:51:01:73: 75:d3:a0:19:19:97:1e:c8:29:e2:55:7b:4d:1d:b2:0a:32:0b: 81:c9:ea:37:c9:e6:d0:1c:f2:88:9c:a8:13:42:f9:0b:fd:6a: b6:58:8b:07:9c:d1:94:65:6f:a6:76:eb:7b:ca:41:c3:a4:26: 7e:3b:ca:ba:80:7d:30:a0:72:f6:dc:49:cc:20:79:2c:b7:e1: 43:11:0f:65:9b:a0:05:a1:04:a7:b1:cd:24:c9:b4:bf:7e:7a: fb:5e:cd:12:68:f7:19:32:f7:ae:37:49:83:f5:a0:b5:0d:f8: f1:2c:30:4d:de:4a:75:c3:9a:42:f0:b4:22:d9:73:b6:4a:93: 48:81:6f:c5:e5:c5:a1:fd:d8:fe:79:02:ee:12:24:2b:bc:e0: d5:e9:f7:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72QNpz7othMWYC4+5GfEGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzJjMzJkMjI1OTAxMzk5MTI2MGQ1MzBkOTEyMDAzMWFh ZWZjZDAwHhcNMjUxMjIwMTMwMDM2WhcNMjUxMjIxMTMwMDM2WjAzMTEwLwYDVQQD Eyg3Yzg3MGIzZDdkYmZjN2Y1NDNiYTdkNWVlZjFhMWRkN2Y0MjE1N2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWpctiOWve7d6mc7YcB/oylN0RRd 84PeYzPf9wRw45Wf6uXqOmpVPuJrH7YYmbp5SUO5ErS43aXJ0lAVoob8PUeUGnv1 UguT5sR6JvIfgHF4VPqbI9jPbUYk8IflGdc+UuE72lWtMTv7aAN5jwKIDyqNn0XN alefl2huHyHAnFRXaqIwR4b+W5CmsDK/qDDS3KqGiQXZEs0bvu5GywSFrJFH9DL7 kHH9+QD0WFeJTpoY9YBh7JR69ScJ+9WB8nrym5zgDJPkVgHk5SbPe3q+Oz5Dne5/ 6K4/BDLnsBXIhX1E2+PkKGcXUUDuIfwAfs5mRqc88UYorEglkjIPw1ddLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHyHCz19v8f1Q7p9Xu8aHdf0IVfpMB8GA1UdIwQY MBaAFGgywy0iWQE5kSYNUw2RIAMarvzQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85NGI2NmUtM2UwZC00MzMyLWFiNGYt NzcwZjhlYWIyYWU3LzEvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85NGI2NmUtM2UwZC00MzMyLWFiNGYtNzcwZjhlYWIyYWU3 LzEvYURMRExTSlpBVG1SSmcxVERaRWdBeHF1X05BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApeJREaWP cgYHDsU8D3zbyoHrPWWn3s5JU+uRGDFODVNVfQeCCRter5nKFEd4qzMibiyxqIMc 1vQfgo22wS2npKUU7wAE4Bnr0cqnxBCxS8VfLMSi7EXk+urWfq+4/ZFYFkQ6j+hR yULSUQFzddOgGRmXHsgp4lV7TR2yCjILgcnqN8nm0BzyiJyoE0L5C/1qtliLB5zR lGVvpnbre8pBw6QmfjvKuoB9MKBy9txJzCB5LLfhQxEPZZugBaEEp7HNJMm0v356 +17NEmj3GTL3rjdJg/WgtQ348SwwTd5KdcOaQvC0ItlztkqTSIFvxeXFof3Y/nkC 7hIkK7zg1en3hA== -----END CERTIFICATE-----Generated at Sat Dec 20 19:46:05 2025 by rpki-client