This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json) Hash identifier: nXdVaBx3Qrcvkz2Zjw3SUo79sosmmzUpxKqLOZwxMHg= Subject key identifier: 12:39:51:41:5D:09:12:A3:49:A2:5F:87:41:DA:42:E1:E8:51:16:2F Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93 Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893 Certificate serial: 019B631E7316CC64E9A6EE5D43A7B3525EEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft Manifest number: 179C Signing time: Sun 28 Dec 2025 04:01:38 +0000 Manifest this update: Sun 28 Dec 2025 04:01:38 +0000 Manifest next update: Mon 29 Dec 2025 04:01:38 +0000 Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: 6TPoVyOJhzW/HoolXXwbMTc1D25ZQTj7Lxoitqtw6S8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:1e:73:16:cc:64:e9:a6:ee:5d:43:a7:b3:52:5e:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893 Validity Not Before: Dec 28 04:01:38 2025 GMT Not After : Dec 29 04:01:38 2025 GMT Subject: CN=123951415d0912a349a25f8741da42e1e851162f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:c9:3e:56:23:20:88:07:45:69:d8:da:d1: e5:dc:36:76:ed:96:cd:59:1e:6d:df:c1:29:af:ff: b8:21:a7:ea:15:5a:17:27:b6:2a:68:77:c3:4a:3c: 7c:93:27:62:62:3e:ef:37:ed:19:16:76:a4:66:10: 3a:71:14:60:5d:39:f8:8f:b1:d5:11:0c:f4:d9:9e: d3:21:46:86:99:48:17:1d:dc:38:4a:d8:15:8b:a5: 46:68:e9:54:80:a0:38:d3:40:d5:4c:01:bd:9f:19: 05:87:b2:af:67:62:ee:2d:1a:e9:80:65:5e:c1:dc: 87:19:63:6c:2e:50:5a:95:36:8c:25:44:b3:50:cf: ff:35:26:3c:26:2a:65:fd:96:d3:95:f4:89:b2:df: df:53:ae:e0:44:71:48:ac:70:fe:7a:81:6a:9c:4c: fe:9d:6f:8a:58:c9:4c:c2:16:6f:b7:4b:60:c5:19: 12:05:10:0a:63:0a:ea:33:28:99:c1:f7:20:2f:d2: 48:7b:b3:af:07:05:f0:a9:67:4e:7e:bc:a1:96:c7: 5f:6a:2f:dc:43:04:94:fe:fe:e9:27:42:c7:72:16: 9b:07:56:32:6b:9d:30:0f:c0:9c:41:33:ba:d1:53: 4d:2b:e5:27:49:d7:66:17:f6:6b:44:a8:ee:91:cb: 1d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:39:51:41:5D:09:12:A3:49:A2:5F:87:41:DA:42:E1:E8:51:16:2F X509v3 Authority Key Identifier: keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:78:55:de:6f:69:bf:f1:47:be:cb:e1:31:61:d1:5c:26:c7: 8a:a3:d3:12:dd:3c:6b:51:68:7a:bb:a3:a4:62:10:09:a3:ce: 57:8c:f7:14:7d:ea:3a:eb:cd:c1:1b:bf:9e:d7:87:f7:b6:87: f2:63:c4:c2:48:02:c9:8d:00:fe:8e:85:f5:45:f1:ab:c9:65: 37:ab:b1:5d:80:84:f9:81:20:81:17:f1:a7:43:4d:50:5f:ba: 43:13:9b:12:09:99:8b:52:4c:89:88:bd:fe:ee:4b:eb:61:d6: d7:09:dc:d2:46:4c:11:ee:4d:e7:e9:88:6e:cc:f0:66:c4:06: e4:f1:55:23:0f:96:ad:b8:3a:de:d3:b8:42:4b:e4:21:69:b8: e2:f6:d2:da:0e:d2:91:d7:03:7c:d0:93:87:c4:98:2d:02:4a: 9c:e1:82:3c:8a:93:4c:4e:e8:2a:fa:33:4c:52:ac:5b:d7:b3: b5:58:4f:8c:11:b5:74:af:7a:fc:8b:d3:bf:23:95:47:0e:a7: 8b:b4:0d:26:fd:5c:b4:e2:b4:f0:c0:a4:9d:88:a7:96:ee:f3: c9:ca:ea:1f:5b:db:67:6f:7e:0d:26:1c:df:23:04:a7:ec:db: 78:61:ff:4e:df:e2:c0:20:42:0a:7c:a2:c0:7e:4c:20:63:77: f7:ae:e0:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtjHnMWzGTppu5dQ6ezUl7rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MTFlMTI1Y2IzNTcwNzZmMmZhMzEzOGM5M2U5YTI2ODFi MTc4OTMwHhcNMjUxMjI4MDQwMTM4WhcNMjUxMjI5MDQwMTM4WjAzMTEwLwYDVQQD EygxMjM5NTE0MTVkMDkxMmEzNDlhMjVmODc0MWRhNDJlMWU4NTExNjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1drJPlYjIIgHRWnY2tHl3DZ27ZbN WR5t38Epr/+4IafqFVoXJ7YqaHfDSjx8kydiYj7vN+0ZFnakZhA6cRRgXTn4j7HV EQz02Z7TIUaGmUgXHdw4StgVi6VGaOlUgKA400DVTAG9nxkFh7KvZ2LuLRrpgGVe wdyHGWNsLlBalTaMJUSzUM//NSY8Jipl/ZbTlfSJst/fU67gRHFIrHD+eoFqnEz+ nW+KWMlMwhZvt0tgxRkSBRAKYwrqMyiZwfcgL9JIe7OvBwXwqWdOfryhlsdfai/c QwSU/v7pJ0LHchabB1Yya50wD8CcQTO60VNNK+UnSddmF/ZrRKjukcsd4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBI5UUFdCRKjSaJfh0HaQuHoURYvMB8GA1UdIwQY MBaAFGgR4SXLNXB28voxOMk+miaBsXiTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUJIaEpjczFjSGJ5LWpFNHlUNmFKb0d4ZUpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9lYmFjYmQtODE5MC00ZTVhLWEwM2Et Y2Q0Mzk0OTJiN2FlLzEvYUJIaEpjczFjSGJ5LWpFNHlUNmFKb0d4ZUpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9lYmFjYmQtODE5MC00ZTVhLWEwM2EtY2Q0Mzk0OTJiN2Fl LzEvYUJIaEpjczFjSGJ5LWpFNHlUNmFKb0d4ZUpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbnhV3m9p v/FHvsvhMWHRXCbHiqPTEt08a1FoerujpGIQCaPOV4z3FH3qOuvNwRu/nteH97aH 8mPEwkgCyY0A/o6F9UXxq8llN6uxXYCE+YEggRfxp0NNUF+6QxObEgmZi1JMiYi9 /u5L62HW1wnc0kZMEe5N5+mIbszwZsQG5PFVIw+Wrbg63tO4QkvkIWm44vbS2g7S kdcDfNCTh8SYLQJKnOGCPIqTTE7oKvozTFKsW9eztVhPjBG1dK96/IvTvyOVRw6n i7QNJv1ctOK08MCknYinlu7zycrqH1vbZ29+DSYc3yMEp+zbeGH/Tt/iwCBCCnyi wH5MIGN3967g1g== -----END CERTIFICATE-----Generated at Sun Dec 28 09:06:35 2025 by rpki-client