This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json) Hash identifier: lVXwU7bdBQoaklk65iv4FhVMw9dF/T/1RdKaHyWmiXw= Subject key identifier: DE:16:5C:53:E9:59:2A:9B:6F:15:53:F4:BF:E1:6D:15:F7:35:43:0C Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Certificate serial: 019B3A8FD7A51C39C5A1A2D1B69E17C1D690 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft Manifest number: 12B9 Signing time: Sat 20 Dec 2025 07:01:03 +0000 Manifest this update: Sat 20 Dec 2025 07:01:03 +0000 Manifest next update: Sun 21 Dec 2025 07:01:03 +0000 Files and hashes: 1: 4BPgPazxL-0_7TACTrAAB2vKcvM.roa (hash: ByHJvADYtVUpx6K/7n+qZ80ogn6pFEeZiZMcZkXwguI=) 2: DnTRig2ZHULz3p9wZNouYmsC9jo.roa (hash: t4VZBdK9Uss3nXT5qelMDtPowMN8UI5/vISGQexu/1w=) 3: FiGOQGJVQzUX0AI-kIcMSlyL5Jw.roa (hash: iNn6sg9mF+PuqzA3VDumFe63FkMkR+FoX25ZFTkc1KE=) 4: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: 2OimeU6PH/SEtgaU4hkaj3bHPJG4FYzZTXEZwCzZnAA=) 5: psb7_FoF9tBnDB6tY5GqWOvVJFk.roa (hash: VNe9Mli14Tvo817wNnFl35Vg2+YLvG6cgRRigjOYMS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:8f:d7:a5:1c:39:c5:a1:a2:d1:b6:9e:17:c1:d6:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Validity Not Before: Dec 20 07:01:03 2025 GMT Not After : Dec 21 07:01:03 2025 GMT Subject: CN=de165c53e9592a9b6f1553f4bfe16d15f735430c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:89:d3:45:1a:a4:f7:67:ee:86:71:da:ad: 93:77:ed:7e:fb:0e:51:30:ea:a4:9c:33:11:37:b0: 91:f4:52:12:bb:26:88:3e:89:7c:48:03:09:1a:ab: 39:e0:62:3f:b5:57:b3:73:d4:b9:98:10:c2:47:c6: e7:4d:c8:cf:97:17:9c:80:1a:f7:0c:7a:a2:20:4b: 03:96:75:9f:8e:04:c6:03:5e:68:10:e2:a3:75:21: ba:83:01:18:16:ae:b1:bc:79:04:86:15:8d:6e:2f: 72:46:d4:85:c3:c0:0e:00:af:5d:d4:31:a0:5b:3f: 18:cb:0d:3b:d4:3f:72:f6:e4:e0:ab:ea:c2:d3:a6: fd:8c:ed:f1:65:31:df:e4:bd:e3:92:8d:08:21:f3: bb:02:fd:65:c5:b3:40:6f:ed:30:c4:b8:80:fb:f1: 2f:56:12:86:01:dd:17:f0:06:74:ba:cf:8c:fa:88: bf:0e:d9:08:2f:9b:50:22:de:67:fb:9b:a5:30:ff: 6f:21:87:58:6d:67:2b:84:a9:3e:ff:dc:eb:01:16: c8:3e:a4:ab:a3:a0:1e:bc:83:fc:92:cd:a7:d4:d7: 1a:2f:f6:97:49:d3:bf:df:c1:87:bb:3d:c4:97:11: f0:28:72:ee:74:c5:c1:fc:23:60:9a:4c:5b:75:3f: 31:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:16:5C:53:E9:59:2A:9B:6F:15:53:F4:BF:E1:6D:15:F7:35:43:0C X509v3 Authority Key Identifier: keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:75:b1:63:81:ec:ce:35:56:7a:ed:d2:02:1e:46:2d:a1:d2: 05:80:68:f8:99:e9:21:74:19:02:73:23:dd:b2:8c:6f:3e:be: 0d:34:bf:85:b6:85:94:fc:30:7d:d2:bb:e5:ea:a6:63:52:47: 1c:41:19:4c:af:c9:0f:cc:ce:95:35:9b:30:87:37:1a:58:b2: 7d:f1:c5:89:b1:b4:2d:d9:30:58:e7:20:5d:e9:3f:82:b0:91: 7e:de:b9:1c:2e:08:1a:3d:b6:6d:3a:9a:16:e4:45:d1:1a:ed: bb:bb:bd:d6:78:5d:df:21:cc:4c:61:f0:03:88:5f:0e:60:2c: bc:84:69:f2:95:b4:9c:18:3b:8c:42:ad:86:df:49:23:0a:95: d1:e6:fa:86:c5:dd:6c:c7:54:1b:6b:19:1c:bf:1b:4e:50:d7: aa:da:54:fa:f6:d4:07:91:da:77:7e:86:53:01:39:5b:d3:9c: 8a:cd:4a:fc:53:1c:eb:f2:a9:ca:8b:71:1b:6b:b8:f3:b6:d0: 4d:11:05:38:30:6a:23:c6:0f:d0:e9:ae:57:c6:f9:b8:18:98: 00:f9:49:c4:8f:c9:31:dd:68:2d:4b:1a:41:08:0a:20:8f:84: 3f:43:76:b6:1d:1e:82:3b:a0:71:d7:f6:f9:42:05:09:5c:c5: 9e:6e:e3:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6j9elHDnFoaLRtp4XwdaQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll ZDIxMWQwHhcNMjUxMjIwMDcwMTAzWhcNMjUxMjIxMDcwMTAzWjAzMTEwLwYDVQQD EyhkZTE2NWM1M2U5NTkyYTliNmYxNTUzZjRiZmUxNmQxNWY3MzU0MzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhGJ00UapPdn7oZx2q2Td+1++w5R MOqknDMRN7CR9FISuyaIPol8SAMJGqs54GI/tVezc9S5mBDCR8bnTcjPlxecgBr3 DHqiIEsDlnWfjgTGA15oEOKjdSG6gwEYFq6xvHkEhhWNbi9yRtSFw8AOAK9d1DGg Wz8Yyw071D9y9uTgq+rC06b9jO3xZTHf5L3jko0IIfO7Av1lxbNAb+0wxLiA+/Ev VhKGAd0X8AZ0us+M+oi/DtkIL5tQIt5n+5ulMP9vIYdYbWcrhKk+/9zrARbIPqSr o6AevIP8ks2n1NcaL/aXSdO/38GHuz3ElxHwKHLudMXB/CNgmkxbdT8xAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN4WXFPpWSqbbxVT9L/hbRX3NUMMMB8GA1UdIwQY MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2 LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArHWxY4Hs zjVWeu3SAh5GLaHSBYBo+JnpIXQZAnMj3bKMbz6+DTS/hbaFlPwwfdK75eqmY1JH HEEZTK/JD8zOlTWbMIc3GliyffHFibG0LdkwWOcgXek/grCRft65HC4IGj22bTqa FuRF0Rrtu7u91nhd3yHMTGHwA4hfDmAsvIRp8pW0nBg7jEKtht9JIwqV0eb6hsXd bMdUG2sZHL8bTlDXqtpU+vbUB5Had36GUwE5W9Ocis1K/FMc6/KpyotxG2u487bQ TREFODBqI8YP0OmuV8b5uBiYAPlJxI/JMd1oLUsaQQgKII+EP0N2th0egjugcdf2 +UIFCVzFnm7jzA== -----END CERTIFICATE-----Generated at Sat Dec 20 11:42:33 2025 by rpki-client