This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json) Hash identifier: PrEdBvQUatQSqVlaIc+KZEle5t6KhsxeXNu6Bp0wG0Q= Subject key identifier: 5A:C9:20:FE:9E:6F:FD:33:D4:51:18:67:02:34:09:9B:3F:86:67:09 Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d Certificate serial: 019B32D65A2B105CBA055890034157139F15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft Manifest number: 177F Signing time: Thu 18 Dec 2025 19:01:07 +0000 Manifest this update: Thu 18 Dec 2025 19:01:07 +0000 Manifest next update: Fri 19 Dec 2025 19:01:07 +0000 Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: SBsCbQL26LFR03BblVSg+bqW0kvyAgplJr2U+IwZiq4=) 2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:5a:2b:10:5c:ba:05:58:90:03:41:57:13:9f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d Validity Not Before: Dec 18 19:01:07 2025 GMT Not After : Dec 19 19:01:07 2025 GMT Subject: CN=5ac920fe9e6ffd33d45118670234099b3f866709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b4:b6:78:8a:7e:82:15:3c:84:44:65:9f:df: 7e:53:0f:e4:c8:12:12:ae:f2:b3:35:9a:b2:1f:5d: c8:eb:e9:14:27:b2:8f:38:3e:1e:df:63:06:7f:8f: f0:d0:2f:f0:de:13:ee:6c:34:91:bb:e2:6f:67:e8: e7:38:19:c0:e3:d3:b2:c2:0f:e9:3c:9b:87:4b:e4: 75:3a:82:de:70:c9:cd:ad:c9:c9:05:3a:68:be:b1: 02:71:4a:7e:e2:1e:fd:6c:ed:57:0e:04:c7:8d:16: 87:07:0e:8d:07:86:d4:8f:ee:34:57:93:2a:12:aa: 3f:2f:84:3e:17:fc:8e:ff:90:01:8c:84:ad:6d:fb: 66:97:23:e8:d4:57:65:6c:96:97:9f:50:a6:63:77: 81:62:c2:8b:53:8d:49:82:04:f6:f3:d0:91:3e:09: 75:2a:b9:56:11:05:ff:12:56:90:8d:7d:37:56:f5: 17:23:a1:49:31:75:0f:ea:07:cf:be:57:f0:5a:7c: 95:df:49:ef:3e:61:55:0d:be:b9:1e:a0:e6:46:f8: 35:58:41:bc:55:86:bb:ae:e6:1d:10:96:95:46:70: a6:fa:0b:64:d7:0d:fa:3f:6c:ef:8a:a7:3c:0e:81: c9:f6:ce:17:0a:88:fa:05:66:7a:5e:12:65:47:c2: 93:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C9:20:FE:9E:6F:FD:33:D4:51:18:67:02:34:09:9B:3F:86:67:09 X509v3 Authority Key Identifier: keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:d2:20:b0:73:f7:34:6f:99:80:b2:fc:74:c5:59:9a:26:f3: 94:b6:ae:da:2b:ca:02:2d:86:a3:d8:91:bb:54:d5:99:ae:50: dd:f3:db:c4:81:b9:19:7f:ef:fe:f4:77:76:ec:06:c6:6f:42: 1c:cf:f5:52:9b:16:f9:2e:ec:b2:a8:7f:c5:21:da:de:7c:d2: bb:19:36:8d:d2:e1:db:3e:79:2a:23:16:fa:fb:80:6d:4a:73: 87:79:5d:f9:99:18:07:c3:bc:e6:4c:bf:07:fc:0d:a5:4c:8b: 2d:d3:ef:c2:d6:5b:64:31:64:59:1b:80:d4:bb:25:0a:d2:c0: 09:d8:11:33:28:d7:f1:1b:f9:0b:e5:21:8e:28:9a:b9:69:d9: 58:9d:b9:5b:d3:4e:75:ee:08:33:d9:5b:e3:21:d7:39:48:f3: 70:6d:ca:80:11:7b:0d:73:bd:de:8f:2f:ed:2d:f8:d1:1a:7d: b8:7c:02:b3:ed:ab:ee:64:d8:5f:1f:4c:e1:ab:02:fc:7b:e6: 4f:15:67:b9:53:f5:7d:78:04:06:95:de:42:fc:81:14:25:34: f2:3f:29:13:64:e5:0d:56:bb:61:a9:d0:0c:a1:46:ca:b6:f6: c1:b5:28:95:40:69:7a:d3:76:51:37:0d:9e:4c:a2:16:cb:67: 66:b2:ec:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1lorEFy6BViQA0FXE58VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNzQ4ODczZDgzMjAyMjg2NGZhYzkwMDY1ZDUxZDhlMjdi NDNlNWQwHhcNMjUxMjE4MTkwMTA3WhcNMjUxMjE5MTkwMTA3WjAzMTEwLwYDVQQD Eyg1YWM5MjBmZTllNmZmZDMzZDQ1MTE4NjcwMjM0MDk5YjNmODY2NzA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37S2eIp+ghU8hERln99+Uw/kyBIS rvKzNZqyH13I6+kUJ7KPOD4e32MGf4/w0C/w3hPubDSRu+JvZ+jnOBnA49Oywg/p PJuHS+R1OoLecMnNrcnJBTpovrECcUp+4h79bO1XDgTHjRaHBw6NB4bUj+40V5Mq Eqo/L4Q+F/yO/5ABjIStbftmlyPo1FdlbJaXn1CmY3eBYsKLU41JggT289CRPgl1 KrlWEQX/ElaQjX03VvUXI6FJMXUP6gfPvlfwWnyV30nvPmFVDb65HqDmRvg1WEG8 VYa7ruYdEJaVRnCm+gtk1w36P2zviqc8DoHJ9s4XCoj6BWZ6XhJlR8KTowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFrJIP6eb/0z1FEYZwI0CZs/hmcJMB8GA1UdIwQY MBaAFHB0iHPYMgIoZPrJAGXVHY4ntD5dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2Qt YTYwYjJjYzhkMDgwLzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2QtYTYwYjJjYzhkMDgw LzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYtIgsHP3 NG+ZgLL8dMVZmibzlLau2ivKAi2Go9iRu1TVma5Q3fPbxIG5GX/v/vR3duwGxm9C HM/1UpsW+S7ssqh/xSHa3nzSuxk2jdLh2z55KiMW+vuAbUpzh3ld+ZkYB8O85ky/ B/wNpUyLLdPvwtZbZDFkWRuA1LslCtLACdgRMyjX8Rv5C+UhjiiauWnZWJ25W9NO de4IM9lb4yHXOUjzcG3KgBF7DXO93o8v7S340Rp9uHwCs+2r7mTYXx9M4asC/Hvm TxVnuVP1fXgEBpXeQvyBFCU08j8pE2TlDVa7YanQDKFGyrb2wbUolUBpetN2UTcN nkyiFstnZrLsmw== -----END CERTIFICATE-----Generated at Fri Dec 19 01:28:03 2025 by rpki-client