This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json) Hash identifier: tE+VZxSvlC7liVOv/sIzgFF8kIIEW0WNzBRCUL0BsYw= Subject key identifier: BA:A0:34:D0:9C:70:0F:EF:90:79:DF:2A:CD:8B:AC:F3:20:63:BD:EE Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf Certificate serial: 019B4815C986B5958437D86726D1C34DDBD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft Manifest number: 178D Signing time: Mon 22 Dec 2025 22:02:25 +0000 Manifest this update: Mon 22 Dec 2025 22:02:25 +0000 Manifest next update: Tue 23 Dec 2025 22:02:25 +0000 Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: sSD2IsaaI3AAKMzXT7Clz7xkFpQknwnmPKgDnhSu6hA=) 2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:15:c9:86:b5:95:84:37:d8:67:26:d1:c3:4d:db:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf Validity Not Before: Dec 22 22:02:25 2025 GMT Not After : Dec 23 22:02:25 2025 GMT Subject: CN=baa034d09c700fef9079df2acd8bacf32063bdee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:c6:99:2a:9a:4a:f8:30:da:d5:6e:bb:b8: 32:00:61:82:c8:51:f2:ad:79:9a:ad:74:89:c5:4e: f8:c5:0d:0e:63:f9:1e:f7:8f:a1:d0:6b:7b:32:ec: 8b:36:35:a6:99:1a:d8:7a:41:74:da:60:fe:31:52: fa:91:93:6e:c3:01:1a:6d:a7:6c:19:31:fd:bc:0d: 71:9e:d6:e3:22:17:be:a3:cd:67:26:da:84:25:5d: 15:c0:a8:ff:15:95:85:bf:d1:f9:ba:00:15:dc:da: ac:ba:e8:21:56:31:f9:65:af:d5:9c:99:29:c9:84: ec:e1:be:d6:35:9b:6c:3a:da:90:b7:65:f3:d0:f2: 9e:5b:ac:67:3e:5f:3a:ea:5f:e2:14:69:db:e8:79: 87:68:89:10:61:13:d9:d5:ca:49:c4:13:bd:e0:50: ef:6d:21:c5:b2:93:17:74:bb:6c:8a:7f:80:9e:76: d6:8b:dc:88:3c:31:30:51:33:92:7c:5f:02:70:80: 78:83:07:fe:5d:36:57:60:d3:c8:2b:0a:eb:05:e4: 8d:89:f3:aa:ee:b9:d3:90:02:fd:5b:e0:7d:6b:31: cd:e8:ac:26:d2:66:39:63:3c:bd:e2:d0:6b:db:ea: 71:20:a9:d2:e7:83:2c:91:59:72:e2:e5:57:8b:70: f6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A0:34:D0:9C:70:0F:EF:90:79:DF:2A:CD:8B:AC:F3:20:63:BD:EE X509v3 Authority Key Identifier: keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e0:04:67:dd:15:2d:04:03:a7:f0:8d:af:cf:50:b6:26:e3: 20:df:ac:bc:ce:61:93:99:11:53:72:f0:df:1e:c4:41:79:ea: f8:fc:33:56:2f:31:5d:35:9e:64:00:c3:11:27:b9:5d:0a:c2: 2e:6b:9e:0c:52:b1:e1:c4:69:89:b0:4b:25:94:53:7c:25:e9: c1:3c:07:08:8e:13:c4:82:70:c8:4a:af:a0:ee:7e:03:f4:45: c5:86:5a:14:3b:cd:ed:d8:aa:ca:cf:8f:06:00:ec:09:04:56: 30:61:e0:3e:b2:cf:d5:42:56:89:39:d2:3c:b2:24:85:c4:80: a7:50:c6:49:2e:fd:d0:44:19:92:88:0f:7d:cc:73:3f:f6:c8: 1a:9b:91:d8:3f:34:7a:ae:10:ec:95:2a:a9:9f:f4:78:94:76: 2d:e8:51:81:84:5c:31:fa:84:c3:97:11:c5:3a:ff:51:70:2f: a5:9d:0c:f3:e7:2e:53:cf:5a:19:d2:61:4a:1b:c6:43:f0:06: 92:c2:16:02:2d:45:bb:6f:c5:2f:56:73:e0:51:98:0a:33:0e: 04:88:a4:0e:21:10:63:bd:df:63:38:fa:04:18:a8:a2:9e:ac: 38:79:50:ab:4d:27:b3:42:c1:22:36:b5:96:33:c0:a0:2f:d8: c4:7c:d9:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFcmGtZWEN9hnJtHDTdvVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3 ZTBiY2YwHhcNMjUxMjIyMjIwMjI1WhcNMjUxMjIzMjIwMjI1WjAzMTEwLwYDVQQD EyhiYWEwMzRkMDljNzAwZmVmOTA3OWRmMmFjZDhiYWNmMzIwNjNiZGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGfGmSqaSvgw2tVuu7gyAGGCyFHy rXmarXSJxU74xQ0OY/ke94+h0Gt7MuyLNjWmmRrYekF02mD+MVL6kZNuwwEabads GTH9vA1xntbjIhe+o81nJtqEJV0VwKj/FZWFv9H5ugAV3NqsuughVjH5Za/VnJkp yYTs4b7WNZtsOtqQt2Xz0PKeW6xnPl866l/iFGnb6HmHaIkQYRPZ1cpJxBO94FDv bSHFspMXdLtsin+AnnbWi9yIPDEwUTOSfF8CcIB4gwf+XTZXYNPIKwrrBeSNifOq 7rnTkAL9W+B9azHN6Kwm0mY5Yzy94tBr2+pxIKnS54MskVly4uVXi3D2+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLqgNNCccA/vkHnfKs2LrPMgY73uMB8GA1UdIwQY MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3 LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT+AEZ90V LQQDp/CNr89QtibjIN+svM5hk5kRU3Lw3x7EQXnq+PwzVi8xXTWeZADDESe5XQrC LmueDFKx4cRpibBLJZRTfCXpwTwHCI4TxIJwyEqvoO5+A/RFxYZaFDvN7diqys+P BgDsCQRWMGHgPrLP1UJWiTnSPLIkhcSAp1DGSS790EQZkogPfcxzP/bIGpuR2D80 eq4Q7JUqqZ/0eJR2LehRgYRcMfqEw5cRxTr/UXAvpZ0M8+cuU89aGdJhShvGQ/AG ksIWAi1Fu2/FL1Zz4FGYCjMOBIikDiEQY73fYzj6BBioop6sOHlQq00ns0LBIja1 ljPAoC/YxHzZXw== -----END CERTIFICATE-----Generated at Tue Dec 23 01:56:11 2025 by rpki-client