This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json) Hash identifier: QXetyY3Lj7V8V57KXagpnV5TyGFSE6FjSQJBXcvMURk= Subject key identifier: E7:B6:E3:DA:0F:3E:86:E2:18:AD:B7:F0:36:EE:12:2E:44:54:37:7F Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf Certificate serial: 019B53AAEFF9575ACD4930648A9E6FBF489B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft Manifest number: 1793 Signing time: Thu 25 Dec 2025 04:01:10 +0000 Manifest this update: Thu 25 Dec 2025 04:01:10 +0000 Manifest next update: Fri 26 Dec 2025 04:01:10 +0000 Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: v4fN6pIsW12M5RON0vbaud8iEVuSOQ363v/kbdWJfGE=) 2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 01:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:aa:ef:f9:57:5a:cd:49:30:64:8a:9e:6f:bf:48:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf Validity Not Before: Dec 25 04:01:10 2025 GMT Not After : Dec 26 04:01:10 2025 GMT Subject: CN=e7b6e3da0f3e86e218adb7f036ee122e4454377f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:53:6d:a7:83:0f:03:a7:8b:31:7d:e6:83:f6: 40:c9:c6:e0:3f:d2:da:d7:10:2b:27:ad:51:c7:55: 37:57:b3:c3:9f:d8:5a:3d:48:a9:d2:b7:ed:04:78: 55:6c:26:b7:9b:15:46:cc:18:02:b0:d5:2d:a9:41: 5a:f5:f0:2d:a4:d7:5e:29:53:00:6f:bc:3f:51:68: 8f:af:27:fa:e9:a8:1e:24:1f:9b:2b:b8:74:67:e2: ba:87:bc:40:91:d1:18:11:4e:0c:4f:8c:05:c8:9b: c2:e5:17:5a:08:4f:b6:fe:f6:54:80:c5:d4:98:ef: ab:03:7c:54:8f:21:b8:eb:90:dd:b8:d4:59:0f:84: 3f:42:c5:a0:fa:c3:31:28:f5:9e:0f:c7:bc:ff:ff: ab:66:32:9a:f9:5b:f4:ca:e2:5e:7a:01:7d:a7:72: 78:8a:80:e7:0a:f3:a2:db:c3:08:d4:b8:d1:b9:8a: 74:92:58:60:db:e4:77:2c:01:d6:0c:51:80:31:0e: 45:95:f2:39:bf:fd:30:44:b7:58:8e:71:97:22:38: 4f:6a:bb:77:7d:c9:ec:6a:15:c3:0e:d4:08:2f:8c: 2f:f7:bf:93:dd:c3:81:78:90:d1:4d:a1:be:c3:ab: f1:6c:0f:8a:55:5e:ab:1c:41:68:64:53:3b:10:d1: e4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B6:E3:DA:0F:3E:86:E2:18:AD:B7:F0:36:EE:12:2E:44:54:37:7F X509v3 Authority Key Identifier: keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:1d:d1:df:df:e3:68:55:10:4e:52:42:a6:02:1c:fb:b8:8b: 91:e0:14:8e:c5:d5:ff:13:06:1a:87:b3:10:db:0d:c3:0f:43: 28:4f:e3:39:df:4c:ae:62:0d:ee:82:7d:da:3a:48:4a:09:b4: 84:5c:7c:e5:fd:84:0b:a7:ee:d4:1f:72:50:e4:79:66:b8:02: b5:de:f4:4d:3e:cc:41:c6:d6:a3:cd:49:aa:bf:e8:a9:6f:2c: 5d:a6:a8:9e:20:2b:b6:14:f9:29:ad:f4:44:c3:d7:0d:96:2e: 7e:e5:61:af:5e:50:9c:85:06:c8:ef:99:70:69:fc:9c:64:df: 0c:f8:10:73:51:9d:9b:7b:39:ba:8a:96:38:a6:4d:31:73:68: 68:07:2f:fc:d4:50:53:24:54:7f:37:16:38:cd:9c:5e:1d:22: 8c:8d:52:c0:37:5d:52:e5:2b:2b:b8:ca:2c:0b:e6:9c:42:aa: b6:96:76:f0:f1:09:91:2c:8c:4c:01:4e:95:d7:6b:42:e8:e5: df:66:b3:51:fd:64:97:50:f4:9a:11:fe:f3:55:f6:45:6e:72: 8a:ff:b6:7e:14:75:f2:5d:26:0a:2c:97:53:7c:9e:87:1e:19: 27:a8:09:7c:ef:9c:bd:17:d8:f0:98:50:12:3d:5d:1c:a8:03: e7:54:eb:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTqu/5V1rNSTBkip5vv0ibMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3 ZTBiY2YwHhcNMjUxMjI1MDQwMTEwWhcNMjUxMjI2MDQwMTEwWjAzMTEwLwYDVQQD EyhlN2I2ZTNkYTBmM2U4NmUyMThhZGI3ZjAzNmVlMTIyZTQ0NTQzNzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklNtp4MPA6eLMX3mg/ZAycbgP9La 1xArJ61Rx1U3V7PDn9haPUip0rftBHhVbCa3mxVGzBgCsNUtqUFa9fAtpNdeKVMA b7w/UWiPryf66ageJB+bK7h0Z+K6h7xAkdEYEU4MT4wFyJvC5RdaCE+2/vZUgMXU mO+rA3xUjyG465DduNRZD4Q/QsWg+sMxKPWeD8e8//+rZjKa+Vv0yuJeegF9p3J4 ioDnCvOi28MI1LjRuYp0klhg2+R3LAHWDFGAMQ5FlfI5v/0wRLdYjnGXIjhPart3 fcnsahXDDtQIL4wv97+T3cOBeJDRTaG+w6vxbA+KVV6rHEFoZFM7ENHkZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOe249oPPobiGK238DbuEi5EVDd/MB8GA1UdIwQY MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3 LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZR3R39/j aFUQTlJCpgIc+7iLkeAUjsXV/xMGGoezENsNww9DKE/jOd9MrmIN7oJ92jpISgm0 hFx85f2EC6fu1B9yUOR5ZrgCtd70TT7MQcbWo81Jqr/oqW8sXaaoniArthT5Ka30 RMPXDZYufuVhr15QnIUGyO+ZcGn8nGTfDPgQc1Gdm3s5uoqWOKZNMXNoaAcv/NRQ UyRUfzcWOM2cXh0ijI1SwDddUuUrK7jKLAvmnEKqtpZ28PEJkSyMTAFOlddrQujl 32azUf1kl1D0mhH+81X2RW5yiv+2fhR18l0mCiyXU3yehx4ZJ6gJfO+cvRfY8JhQ Ej1dHKgD51TrSg== -----END CERTIFICATE-----Generated at Thu Dec 25 06:24:50 2025 by rpki-client