This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft File: aHyL8iKia_HJxmOMw1bSg1UC8tY.mft (raw, json) Hash identifier: LLUdE5BVc6FDe+TPPNU9r+NYTUJo49qwXmMeQXUmJz4= Subject key identifier: AD:02:CD:EE:7B:FB:11:58:4E:44:FB:A5:A8:24:2E:E3:9D:00:C3:D9 Authority key identifier: 68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6 Certificate issuer: /CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6 Certificate serial: 019B72923FD67333188C9FA3F5CAFB40985B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft Manifest number: 08E4 Signing time: Wed 31 Dec 2025 04:02:25 +0000 Manifest this update: Wed 31 Dec 2025 04:02:25 +0000 Manifest next update: Thu 01 Jan 2026 04:02:25 +0000 Files and hashes: 1: aHyL8iKia_HJxmOMw1bSg1UC8tY.crl (hash: wekXSBgIaAqdxoF3vQ9ZIvKj1pcza5obqUqqXPvtoDY=) 2: szxe0DPYsGTMI_tgKM1yaWgLDtI.roa (hash: fjZgmmGMINi/iYDucRgC4NEVBx45QTUkAnBaw6M5XK4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 23:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:72:92:3f:d6:73:33:18:8c:9f:a3:f5:ca:fb:40:98:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687c8bf222a26bf1c9c6638cc356d2835502f2d6 Validity Not Before: Dec 31 04:02:25 2025 GMT Not After : Jan 1 04:02:25 2026 GMT Subject: CN=ad02cdee7bfb11584e44fba5a8242ee39d00c3d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3d:0c:a2:83:50:87:18:a7:6a:0c:33:c5:db: 23:2f:36:a0:73:20:3c:5b:ad:ae:b6:48:0d:e1:90: 5e:4b:cc:43:15:ee:ea:e5:78:94:8b:cd:16:b3:d0: 9c:0f:e3:33:0d:c6:52:53:af:b5:ec:6a:6f:0c:a2: ea:c2:17:9f:6c:d2:42:f7:80:2e:95:96:40:69:7a: 6a:0e:b6:ae:c9:e5:02:ea:04:5d:1c:85:4d:8e:78: e2:85:0e:88:79:15:ea:c9:05:2c:56:68:79:40:94: 3b:e6:fc:5e:de:8c:02:75:d0:b7:2c:d2:2d:4d:9d: 88:42:6e:4f:ef:f5:3f:69:56:3e:0f:6b:01:de:db: 43:46:e8:c8:bd:36:d4:d4:c4:64:89:1d:32:6b:7b: 32:9d:6d:21:1d:1f:74:a7:8b:56:df:d1:9e:2e:9e: 69:78:54:87:1b:83:0a:c7:94:5d:c1:10:11:c3:2a: f1:16:b9:13:d3:b3:03:23:0d:5a:1d:6e:42:69:6a: 6e:3d:b6:11:f0:9f:74:17:11:09:2b:a4:db:97:11: a9:df:b1:d7:01:e2:fd:8f:45:61:50:f6:5d:7a:c5: 66:7f:80:7e:0e:67:1f:52:6f:97:f6:a1:e5:14:66: 76:26:95:bf:3c:eb:4a:1b:c7:e8:cb:b0:53:d5:47: df:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:02:CD:EE:7B:FB:11:58:4E:44:FB:A5:A8:24:2E:E3:9D:00:C3:D9 X509v3 Authority Key Identifier: keyid:68:7C:8B:F2:22:A2:6B:F1:C9:C6:63:8C:C3:56:D2:83:55:02:F2:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHyL8iKia_HJxmOMw1bSg1UC8tY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/61ae21-8f63-4fd0-a6b5-d57255e25fee/1/aHyL8iKia_HJxmOMw1bSg1UC8tY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:96:13:1d:8b:d0:5c:d3:03:2a:12:79:29:87:ce:22:26:36: 3a:b5:76:42:46:4e:a7:ef:29:81:e1:c9:15:18:44:37:65:03: 40:d4:3c:34:99:7a:21:c9:27:84:cd:36:3a:5b:fa:4e:ba:02: 5f:f2:8e:1d:87:0c:b0:b7:76:56:af:fd:ec:46:94:47:41:6e: 35:70:d6:8e:8b:2a:ea:39:60:a0:f6:a2:d5:1d:3e:8b:b2:d1: 93:39:05:a5:ec:d6:99:4a:60:e8:40:ac:25:d5:60:20:21:47: 88:a9:cd:0d:e5:67:b9:0d:50:37:78:12:40:11:4d:dd:31:31: 91:ec:72:83:e4:0f:91:2e:8b:25:da:c2:13:14:20:84:b7:7b: 27:1c:1b:32:63:84:9f:42:9b:2c:1a:bd:e2:4d:be:43:9f:87: 0d:cc:2c:21:07:2a:ad:be:53:2b:05:06:f0:4c:74:da:59:37: 33:e0:46:6a:04:35:eb:97:4e:76:ee:76:a9:ed:2a:bb:b0:14: 12:3d:4b:d0:2a:09:c6:ba:f4:64:34:bb:24:76:cd:c0:81:bd: 3b:9f:cf:67:a1:d9:0e:77:09:8d:a3:2e:cc:f8:70:30:9c:c0: 6b:ac:2c:bb:85:2d:c4:f0:b0:e7:de:ac:60:ed:7c:72:1d:51: 19:c9:9e:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtykj/WczMYjJ+j9cr7QJhbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4N2M4YmYyMjJhMjZiZjFjOWM2NjM4Y2MzNTZkMjgzNTUw MmYyZDYwHhcNMjUxMjMxMDQwMjI1WhcNMjYwMTAxMDQwMjI1WjAzMTEwLwYDVQQD EyhhZDAyY2RlZTdiZmIxMTU4NGU0NGZiYTVhODI0MmVlMzlkMDBjM2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuT0MooNQhxinagwzxdsjLzagcyA8 W62utkgN4ZBeS8xDFe7q5XiUi80Ws9CcD+MzDcZSU6+17GpvDKLqwhefbNJC94Au lZZAaXpqDrauyeUC6gRdHIVNjnjihQ6IeRXqyQUsVmh5QJQ75vxe3owCddC3LNIt TZ2IQm5P7/U/aVY+D2sB3ttDRujIvTbU1MRkiR0ya3synW0hHR90p4tW39GeLp5p eFSHG4MKx5RdwRARwyrxFrkT07MDIw1aHW5CaWpuPbYR8J90FxEJK6TblxGp37HX AeL9j0VhUPZdesVmf4B+DmcfUm+X9qHlFGZ2JpW/POtKG8foy7BT1UffrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK0Cze57+xFYTkT7pagkLuOdAMPZMB8GA1UdIwQY MBaAFGh8i/IiomvxycZjjMNW0oNVAvLWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUh5TDhpS2lhX0hKeG1PTXcxYlNnMVVDOHRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC82MWFlMjEtOGY2My00ZmQwLWE2YjUt ZDU3MjU1ZTI1ZmVlLzEvYUh5TDhpS2lhX0hKeG1PTXcxYlNnMVVDOHRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC82MWFlMjEtOGY2My00ZmQwLWE2YjUtZDU3MjU1ZTI1ZmVl LzEvYUh5TDhpS2lhX0hKeG1PTXcxYlNnMVVDOHRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkZYTHYvQ XNMDKhJ5KYfOIiY2OrV2QkZOp+8pgeHJFRhEN2UDQNQ8NJl6IcknhM02Olv6TroC X/KOHYcMsLd2Vq/97EaUR0FuNXDWjosq6jlgoPai1R0+i7LRkzkFpezWmUpg6ECs JdVgICFHiKnNDeVnuQ1QN3gSQBFN3TExkexyg+QPkS6LJdrCExQghLd7JxwbMmOE n0KbLBq94k2+Q5+HDcwsIQcqrb5TKwUG8Ex02lk3M+BGagQ165dOdu52qe0qu7AU Ej1L0CoJxrr0ZDS7JHbNwIG9O5/PZ6HZDncJjaMuzPhwMJzAa6wsu4UtxPCw596s YO18ch1RGcmelw== -----END CERTIFICATE-----Generated at Wed Dec 31 05:21:48 2025 by rpki-client