This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json) Hash identifier: 2Ng9Ojk2Kl25lfXI5fe0uW5UlIBth6H3W2MjWbf0AB8= Subject key identifier: C9:0A:BF:83:3D:AF:DA:89:E4:2D:44:05:13:A0:67:D3:1F:4F:E8:B8 Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97 Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97 Certificate serial: 019B3BD94A4A5F038790ED6FB3FB9339804D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft Manifest number: 06F2 Signing time: Sat 20 Dec 2025 13:00:54 +0000 Manifest this update: Sat 20 Dec 2025 13:00:54 +0000 Manifest next update: Sun 21 Dec 2025 13:00:54 +0000 Files and hashes: 1: AJ5wMI6kFAAGgXfPHZAVtLCSnP8.roa (hash: O5F5OKdgmFhYvl6NemyAslo9muG5v3CdZb38avB1q8I=) 2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: cKD0qGQwRO0CQVjhZkWArDSbKRnBciFNlYkE5apvlVA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 13:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:4a:4a:5f:03:87:90:ed:6f:b3:fb:93:39:80:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97 Validity Not Before: Dec 20 13:00:54 2025 GMT Not After : Dec 21 13:00:54 2025 GMT Subject: CN=c90abf833dafda89e42d440513a067d31f4fe8b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6d:96:ce:13:a3:38:82:c4:2d:22:9e:ee:fd: 0a:29:43:e6:d4:92:6b:93:85:81:fc:1f:c8:d1:e0: 9c:a8:f2:67:af:fe:d2:96:67:7c:76:88:3b:e6:a6: d7:85:c7:45:d9:ca:10:ea:8c:27:95:f7:c0:28:eb: a2:44:ce:de:96:8f:55:83:10:e9:23:5c:0d:53:8c: 63:f9:16:e7:18:be:06:53:87:48:a8:93:04:8f:b3: 54:8d:06:46:b1:27:07:ad:5f:01:0a:ac:53:bc:b7: 83:f5:99:6e:9c:48:c6:46:9c:24:d0:05:eb:bd:83: 2b:dc:d8:f3:93:ec:71:34:c6:75:82:84:58:ab:88: 35:d2:a0:23:8d:77:6e:11:68:21:f0:f9:4a:dd:a5: a7:4d:1f:36:4d:02:c6:a4:04:29:10:cd:43:e9:bd: 36:ca:c3:18:d4:98:da:40:05:02:ec:d0:a9:7b:e4: a8:86:26:c9:1f:fa:37:ac:3c:7a:80:3c:24:8e:b4: cf:78:e7:ad:3b:86:7b:2c:b2:f9:a5:23:22:b3:da: dc:10:3d:35:42:bc:dd:33:1c:60:f6:83:36:90:e3: d3:5a:6c:6e:fa:1f:58:3e:63:c1:7a:03:bf:67:f4: 53:1f:4f:c4:58:52:64:50:07:7f:a4:cb:80:5d:bf: 80:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0A:BF:83:3D:AF:DA:89:E4:2D:44:05:13:A0:67:D3:1F:4F:E8:B8 X509v3 Authority Key Identifier: keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:d5:39:37:ff:01:67:13:9c:e8:3f:06:2b:12:fa:43:f5:13: ae:91:ca:76:a6:07:2d:18:6f:65:a3:76:c2:1c:4f:a2:a1:4c: 89:65:cf:31:5b:3a:83:4d:c5:6c:24:94:40:d3:49:f7:96:28: c5:35:6e:07:f5:09:77:f4:b9:ca:0e:f8:97:a3:3f:01:8d:f9: 56:25:76:26:b3:d6:ab:ea:67:de:16:70:9a:e3:d9:38:11:96: 42:bc:9f:9e:e9:45:8b:4a:b4:ed:30:ee:d3:a2:6c:02:89:d3: 69:c4:8e:85:37:92:b1:47:7e:41:34:82:d8:85:df:f8:2f:f7: c0:89:cf:8c:70:de:e4:b0:0e:d1:5e:ce:1a:e4:3b:56:88:fc: 62:f2:52:fe:bd:b9:8f:55:83:16:8b:0d:6d:7d:b3:7d:24:91: 3a:0e:92:1c:e5:d2:a6:f8:d2:24:b2:a5:68:cd:df:e9:91:a4: b2:c7:f3:8c:9c:84:b6:54:93:cd:6c:eb:2b:18:21:3f:87:a8: bc:90:32:73:dd:c8:7f:2d:4c:4a:07:a0:6f:7a:40:19:71:f5: 0b:c0:97:a9:6d:ed:31:e6:ea:23:f9:3a:7c:f8:a0:bc:82:90: d8:b1:13:fb:7b:ff:b0:35:27:8c:98:fb:d2:f8:a5:56:13:b7: b9:f1:b6:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72UpKXwOHkO1vs/uTOYBNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4N2I5MWVkYTE2YjZmMWIxZmEwMTc1ZDY3Yzc5OTRmNjkx ZDhlOTcwHhcNMjUxMjIwMTMwMDU0WhcNMjUxMjIxMTMwMDU0WjAzMTEwLwYDVQQD EyhjOTBhYmY4MzNkYWZkYTg5ZTQyZDQ0MDUxM2EwNjdkMzFmNGZlOGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApG2WzhOjOILELSKe7v0KKUPm1JJr k4WB/B/I0eCcqPJnr/7Slmd8dog75qbXhcdF2coQ6ownlffAKOuiRM7elo9VgxDp I1wNU4xj+RbnGL4GU4dIqJMEj7NUjQZGsScHrV8BCqxTvLeD9ZlunEjGRpwk0AXr vYMr3Njzk+xxNMZ1goRYq4g10qAjjXduEWgh8PlK3aWnTR82TQLGpAQpEM1D6b02 ysMY1JjaQAUC7NCpe+SohibJH/o3rDx6gDwkjrTPeOetO4Z7LLL5pSMis9rcED01 QrzdMxxg9oM2kOPTWmxu+h9YPmPBegO/Z/RTH0/EWFJkUAd/pMuAXb+AKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMkKv4M9r9qJ5C1EBROgZ9MfT+i4MB8GA1UdIwQY MBaAFGh7ke2ha28bH6AXXWfHmU9pHY6XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUh1UjdhRnJieHNmb0JkZFo4ZVpUMmtkanBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS8yZmI4ZGYtMGU0OC00NjY1LWE5OWIt ZGZmZTU5MDIzZTg5LzEvYUh1UjdhRnJieHNmb0JkZFo4ZVpUMmtkanBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS8yZmI4ZGYtMGU0OC00NjY1LWE5OWItZGZmZTU5MDIzZTg5 LzEvYUh1UjdhRnJieHNmb0JkZFo4ZVpUMmtkanBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAotU5N/8B ZxOc6D8GKxL6Q/UTrpHKdqYHLRhvZaN2whxPoqFMiWXPMVs6g03FbCSUQNNJ95Yo xTVuB/UJd/S5yg74l6M/AY35ViV2JrPWq+pn3hZwmuPZOBGWQryfnulFi0q07TDu 06JsAonTacSOhTeSsUd+QTSC2IXf+C/3wInPjHDe5LAO0V7OGuQ7Voj8YvJS/r25 j1WDFosNbX2zfSSROg6SHOXSpvjSJLKlaM3f6ZGkssfzjJyEtlSTzWzrKxghP4eo vJAyc93Ify1MSgegb3pAGXH1C8CXqW3tMebqI/k6fPigvIKQ2LET+3v/sDUnjJj7 0vilVhO3ufG2PQ== -----END CERTIFICATE-----Generated at Sat Dec 20 21:28:27 2025 by rpki-client