This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json) Hash identifier: 2hm6lvZeOOuclP/SQssXFeigeO/NaMZJCrJgiM4BuHc= Subject key identifier: 54:49:B2:60:2C:41:88:3B:1F:17:1A:D1:6F:B3:2D:7A:E5:8F:FE:A7 Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5 Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5 Certificate serial: 019B3F7F5FB82F9E95C14707336738074461 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 06:01:10 +0000 Manifest this update: Sun 21 Dec 2025 06:01:10 +0000 Manifest next update: Mon 22 Dec 2025 06:01:10 +0000 Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: evPo+q/Sv0AyjNm8e81f4HwpGiSmbv5sCsbjT2FXtl0=) 2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=) 3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 06:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:5f:b8:2f:9e:95:c1:47:07:33:67:38:07:44:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5 Validity Not Before: Dec 21 06:01:10 2025 GMT Not After : Dec 22 06:01:10 2025 GMT Subject: CN=5449b2602c41883b1f171ad16fb32d7ae58ffea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:63:52:03:32:f5:7d:31:a7:33:05:ff:c9:b4: a3:d7:bf:92:91:e2:ee:6c:46:e4:74:4a:47:82:68: df:6d:46:2e:bd:c4:eb:85:17:e1:87:32:e7:04:09: c1:88:33:ad:57:0c:e2:46:b7:f6:3d:09:94:e7:c5: d6:08:ed:dd:62:ef:9f:63:e6:b5:3a:76:a4:33:bb: 27:70:8e:f2:b9:59:8b:c2:a4:cc:68:a0:13:2a:54: fa:22:d3:5a:90:d3:4e:e2:37:44:b1:89:bb:4c:3b: 24:00:64:3e:93:6a:f8:fc:aa:13:ee:4f:d1:89:9c: b4:b7:4f:0d:95:49:22:d9:78:7c:8a:4a:9c:af:55: 47:94:4d:c9:f6:ea:cc:9c:c7:02:77:71:f0:59:80: e2:90:eb:ea:45:d5:e3:52:4f:8b:bd:0d:fa:91:3c: 63:0e:eb:8b:ab:86:98:e9:d9:e4:a8:a7:24:81:a7: 00:a9:ba:89:04:bf:29:5f:3c:be:a9:b7:2c:48:06: de:ed:b8:d7:67:89:31:a2:ae:e4:6b:d3:47:33:30: eb:ba:23:4f:5b:5f:de:08:a2:20:ab:11:60:28:85: c6:db:2f:92:9b:9d:a3:c7:f9:fe:3c:3d:6e:f2:42: fe:62:ac:f6:c8:60:5a:05:ec:d5:77:90:68:be:de: 09:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:49:B2:60:2C:41:88:3B:1F:17:1A:D1:6F:B3:2D:7A:E5:8F:FE:A7 X509v3 Authority Key Identifier: keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:3e:ef:14:14:d7:7f:f4:60:03:18:f9:7f:af:27:67:99:2f: 59:37:71:13:28:d8:44:96:de:0f:25:32:78:07:64:31:04:1b: 17:e5:73:f7:69:32:ce:e5:18:ac:01:4c:80:a8:58:ae:e6:5e: ef:d6:1d:5f:23:c1:fd:7e:88:6a:bc:28:28:37:b1:a8:9a:7b: 99:95:00:c7:08:a0:2c:a1:a0:df:38:88:6f:8e:30:3c:f1:8c: 9e:57:da:04:c9:85:35:67:1c:5d:30:a7:4f:ad:21:f9:c3:16: 94:4c:a8:1f:da:d2:55:13:88:7e:78:cb:bb:be:45:24:b3:fd: e4:38:7a:36:e9:90:4a:20:14:ad:a6:49:58:9a:75:a8:66:57: 5c:4d:f1:3e:6d:11:e8:7e:fd:d7:fb:6a:9d:36:d6:04:fe:b0: fe:6d:12:f7:d6:7b:c3:94:90:c5:a6:6a:0f:60:4d:09:34:88: eb:7d:29:33:64:15:bc:b9:f3:4c:88:ba:af:f6:65:36:ad:2e: 2e:0d:3c:fd:16:0c:ed:0c:9c:4a:a6:31:76:34:52:4a:78:f7: fe:2b:3a:7a:1b:c5:cd:4f:69:59:a8:27:13:4f:d7:d9:3e:4e: 91:a8:42:3f:5d:c3:77:4c:60:85:b7:c1:7c:47:47:7e:ea:f6: d7:6e:60:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/f1+4L56VwUcHM2c4B0RhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNzJjMDhmNzRkMmE4NDJhNzFmMjNhYjYxNDk5YjUyNjk0 ZmM3YTUwHhcNMjUxMjIxMDYwMTEwWhcNMjUxMjIyMDYwMTEwWjAzMTEwLwYDVQQD Eyg1NDQ5YjI2MDJjNDE4ODNiMWYxNzFhZDE2ZmIzMmQ3YWU1OGZmZWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3mNSAzL1fTGnMwX/ybSj17+SkeLu bEbkdEpHgmjfbUYuvcTrhRfhhzLnBAnBiDOtVwziRrf2PQmU58XWCO3dYu+fY+a1 OnakM7sncI7yuVmLwqTMaKATKlT6ItNakNNO4jdEsYm7TDskAGQ+k2r4/KoT7k/R iZy0t08NlUki2Xh8ikqcr1VHlE3J9urMnMcCd3HwWYDikOvqRdXjUk+LvQ36kTxj DuuLq4aY6dnkqKckgacAqbqJBL8pXzy+qbcsSAbe7bjXZ4kxoq7ka9NHMzDruiNP W1/eCKIgqxFgKIXG2y+Sm52jx/n+PD1u8kL+Yqz2yGBaBezVd5Bovt4JuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFRJsmAsQYg7Hxca0W+zLXrlj/6nMB8GA1UdIwQY MBaAFABywI900qhCpx8jq2FJm1JpT8elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYt NjY3ZDY2NDY5Y2Q5LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYtNjY3ZDY2NDY5Y2Q5 LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjj7vFBTX f/RgAxj5f68nZ5kvWTdxEyjYRJbeDyUyeAdkMQQbF+Vz92kyzuUYrAFMgKhYruZe 79YdXyPB/X6IarwoKDexqJp7mZUAxwigLKGg3ziIb44wPPGMnlfaBMmFNWccXTCn T60h+cMWlEyoH9rSVROIfnjLu75FJLP95Dh6NumQSiAUraZJWJp1qGZXXE3xPm0R 6H791/tqnTbWBP6w/m0S99Z7w5SQxaZqD2BNCTSI630pM2QVvLnzTIi6r/ZlNq0u Lg08/RYM7QycSqYxdjRSSnj3/is6ehvFzU9pWagnE0/X2T5OkahCP13Dd0xghbfB fEdHfur2125gYQ== -----END CERTIFICATE-----Generated at Sun Dec 21 16:00:41 2025 by rpki-client