This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json) Hash identifier: PgygL7nzxzx89ozp0/M+x/W8tbna9pHVBSRFMjbsLpg= Subject key identifier: 6D:CB:33:C6:54:5D:83:D3:AE:F8:43:04:DD:61:46:2C:1D:5E:B1:DF Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0 Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0 Certificate serial: 019B435C4DD0CBED3D6B02FAD2BE6CAD3E54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft Manifest number: 178E Signing time: Mon 22 Dec 2025 00:01:21 +0000 Manifest this update: Mon 22 Dec 2025 00:01:21 +0000 Manifest next update: Tue 23 Dec 2025 00:01:21 +0000 Files and hashes: 1: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: 2VZcZW4Q83AsSWjBughpSsks90McZpPLglK24KFJkHE=) 2: aUKOJrnyNsDVraosl-1-341781M.roa (hash: omnP8BEQZ4v0uR+9FGHR3kGU8+xYRsRiJd27fBInyzs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:5c:4d:d0:cb:ed:3d:6b:02:fa:d2:be:6c:ad:3e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68bd39d793125c684dff272f88622bac432180f0 Validity Not Before: Dec 22 00:01:21 2025 GMT Not After : Dec 23 00:01:21 2025 GMT Subject: CN=6dcb33c6545d83d3aef84304dd61462c1d5eb1df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:73:10:0a:bb:92:6b:59:77:30:e6:46:03:a6: 24:87:57:7f:11:20:e1:20:c9:3b:d2:18:b5:70:42: e8:f7:09:3c:fa:53:2a:d6:b2:44:30:34:9d:43:44: 40:73:8e:78:2c:04:6d:8c:ae:86:a4:33:27:65:e2: 9b:b2:cf:31:a9:25:c9:ac:f9:68:35:80:9a:c6:92: 27:06:28:9d:60:c8:df:86:ca:e2:49:29:0b:8a:98: ea:a0:03:83:bf:72:08:cb:1c:9e:62:df:f0:f0:aa: ed:c4:d6:95:a3:61:0c:3d:62:fa:7a:2f:fb:1c:76: d3:29:0d:76:4c:e0:f9:87:f9:a9:d7:ac:c7:8e:82: e8:08:16:82:c0:5a:2a:dc:0e:32:d3:17:31:e0:39: 41:6d:62:77:31:b5:f1:0d:42:81:d4:85:56:98:46: 82:31:c9:b9:2e:67:95:05:06:5d:6c:15:d2:41:9f: 17:3d:2d:42:f4:6e:c5:6a:ce:a7:08:e0:fe:ad:ea: a8:8c:e4:b7:5d:0e:ee:c8:30:87:1e:28:e8:9a:6e: a9:3e:89:7d:61:92:3d:0e:65:a6:39:4b:1f:4a:4f: d8:48:20:e4:5b:76:7b:0d:bf:3c:33:7f:21:b1:3f: 83:d6:de:ff:c9:15:81:35:52:7c:3c:f6:36:6e:cb: 6a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:CB:33:C6:54:5D:83:D3:AE:F8:43:04:DD:61:46:2C:1D:5E:B1:DF X509v3 Authority Key Identifier: keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:74:5f:e2:d8:b1:6e:4a:91:91:2a:bc:f0:3c:3e:38:c3:3a: 0f:d7:b5:10:5d:8c:eb:2b:40:8c:e5:7d:0f:11:7a:7a:96:70: cc:50:65:39:5b:c8:86:6b:0d:6f:51:14:d9:ea:15:89:b0:11: 4c:4d:41:86:69:9b:80:dc:c3:fa:a7:f0:79:07:c0:ab:2d:e4: c3:d8:cc:27:32:e2:72:18:c1:3c:40:fd:64:b1:7b:7a:4c:fb: 24:b3:f8:d5:1b:03:10:9a:51:c4:d5:ac:a1:fe:ed:65:83:6c: 74:61:1e:82:96:52:41:a2:6e:04:22:a1:76:a0:c1:06:0f:d3: ee:f6:d8:04:c3:d0:56:97:ef:89:47:68:6a:2c:4e:f6:7a:ec: 9a:8c:43:26:94:23:9f:0d:c4:bc:d5:9f:d2:36:4d:b9:7e:29: 7d:55:5d:5e:82:7d:7a:37:4f:7d:83:b6:d6:64:1f:4a:ec:b5: 9e:38:e0:e8:7f:72:81:d3:58:64:4c:17:d4:06:64:f1:9c:30: e8:2f:57:42:08:30:3a:03:62:6c:8f:65:f6:c3:68:27:95:c8: 82:31:80:1f:e7:5e:88:f6:8c:7b:f6:6f:61:7e:6e:84:81:14: 19:77:a6:a4:73:c6:1b:16:b4:e4:da:3c:2c:62:43:42:1a:69: e7:0f:bf:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDXE3Qy+09awL60r5srT5UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YmQzOWQ3OTMxMjVjNjg0ZGZmMjcyZjg4NjIyYmFjNDMy MTgwZjAwHhcNMjUxMjIyMDAwMTIxWhcNMjUxMjIzMDAwMTIxWjAzMTEwLwYDVQQD Eyg2ZGNiMzNjNjU0NWQ4M2QzYWVmODQzMDRkZDYxNDYyYzFkNWViMWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnMQCruSa1l3MOZGA6Ykh1d/ESDh IMk70hi1cELo9wk8+lMq1rJEMDSdQ0RAc454LARtjK6GpDMnZeKbss8xqSXJrPlo NYCaxpInBiidYMjfhsriSSkLipjqoAODv3IIyxyeYt/w8KrtxNaVo2EMPWL6ei/7 HHbTKQ12TOD5h/mp16zHjoLoCBaCwFoq3A4y0xcx4DlBbWJ3MbXxDUKB1IVWmEaC Mcm5LmeVBQZdbBXSQZ8XPS1C9G7Fas6nCOD+reqojOS3XQ7uyDCHHijomm6pPol9 YZI9DmWmOUsfSk/YSCDkW3Z7Db88M38hsT+D1t7/yRWBNVJ8PPY2bstqmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3LM8ZUXYPTrvhDBN1hRiwdXrHfMB8GA1UdIwQY MBaAFGi9OdeTElxoTf8nL4hiK6xDIYDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy80MjRiOTQtZTcwMi00YjIyLWFlMmUt MDg5MDUyMGI4ODQ2LzEvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy80MjRiOTQtZTcwMi00YjIyLWFlMmUtMDg5MDUyMGI4ODQ2 LzEvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAinRf4tix bkqRkSq88Dw+OMM6D9e1EF2M6ytAjOV9DxF6epZwzFBlOVvIhmsNb1EU2eoVibAR TE1BhmmbgNzD+qfweQfAqy3kw9jMJzLichjBPED9ZLF7ekz7JLP41RsDEJpRxNWs of7tZYNsdGEegpZSQaJuBCKhdqDBBg/T7vbYBMPQVpfviUdoaixO9nrsmoxDJpQj nw3EvNWf0jZNuX4pfVVdXoJ9ejdPfYO21mQfSuy1njjg6H9ygdNYZEwX1AZk8Zww 6C9XQggwOgNibI9l9sNoJ5XIgjGAH+deiPaMe/ZvYX5uhIEUGXempHPGGxa05No8 LGJDQhpp5w+/6g== -----END CERTIFICATE-----Generated at Mon Dec 22 04:43:53 2025 by rpki-client