This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json) Hash identifier: s4JWmTEX1lo1F4ertfqMOl6YKFo5M7AHgkGb7SpMdVs= Subject key identifier: 65:22:EF:84:A7:C0:6F:79:C5:4A:4A:2D:A5:72:35:02:CE:67:A6:5B Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Certificate serial: 019B0E25314AE0CC7E89B45A9140B7E58867 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft Manifest number: 12A2 Signing time: Thu 11 Dec 2025 16:01:16 +0000 Manifest this update: Thu 11 Dec 2025 16:01:16 +0000 Manifest next update: Fri 12 Dec 2025 16:01:16 +0000 Files and hashes: 1: 4BPgPazxL-0_7TACTrAAB2vKcvM.roa (hash: ByHJvADYtVUpx6K/7n+qZ80ogn6pFEeZiZMcZkXwguI=) 2: DnTRig2ZHULz3p9wZNouYmsC9jo.roa (hash: t4VZBdK9Uss3nXT5qelMDtPowMN8UI5/vISGQexu/1w=) 3: FiGOQGJVQzUX0AI-kIcMSlyL5Jw.roa (hash: iNn6sg9mF+PuqzA3VDumFe63FkMkR+FoX25ZFTkc1KE=) 4: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: 6m+QMZo5ORg/tpCBlx3qE/+sunonlZDVQO/75j/N99g=) 5: psb7_FoF9tBnDB6tY5GqWOvVJFk.roa (hash: VNe9Mli14Tvo817wNnFl35Vg2+YLvG6cgRRigjOYMS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 16:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:31:4a:e0:cc:7e:89:b4:5a:91:40:b7:e5:88:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Validity Not Before: Dec 11 16:01:16 2025 GMT Not After : Dec 12 16:01:16 2025 GMT Subject: CN=6522ef84a7c06f79c54a4a2da5723502ce67a65b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6e:41:78:74:38:5f:81:a0:99:71:92:f6:6f: 13:9b:5d:90:8e:96:86:b1:94:d1:85:9b:31:b5:c5: d7:d6:f8:2a:7b:f8:8c:f5:6c:02:15:c8:2f:f8:a2: 70:01:69:db:23:c8:06:0e:17:a8:64:43:97:21:a4: c9:0b:e9:89:0a:4d:03:a5:4e:f6:3f:3f:79:d2:a9: 6b:f2:f1:04:ba:78:13:99:bf:6e:f8:09:a1:70:3d: b8:54:6d:5a:4a:92:9c:0b:70:d8:a7:f3:ec:e8:15: ab:95:65:d3:33:60:31:8d:fd:ba:c5:75:af:51:cd: 45:c6:2a:d3:b6:68:a8:c1:09:e7:7a:1f:e6:ad:b7: c4:a3:c5:be:b3:f9:e9:6e:1e:5d:5e:0d:c4:20:e5: 3e:71:55:4e:37:8a:2a:f9:72:af:bb:29:61:0e:13: d2:96:8f:b6:36:38:bd:d1:d0:05:5f:88:22:5f:c4: f9:5a:96:df:b4:71:ab:bc:df:78:f7:ef:ae:8c:10: 33:85:3b:84:e6:69:a0:6a:1a:e1:1e:fc:ba:f3:3b: c0:8d:75:6a:35:c3:4a:1f:6d:1c:2f:cc:27:f8:86: 58:6b:22:5b:65:4f:74:3b:a4:ae:c0:cf:9a:9d:38: a9:3b:5b:04:8e:b4:1c:89:1b:a8:0c:23:56:73:3e: 6a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:22:EF:84:A7:C0:6F:79:C5:4A:4A:2D:A5:72:35:02:CE:67:A6:5B X509v3 Authority Key Identifier: keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:75:8d:05:20:6c:38:14:15:d1:b3:72:89:21:08:c6:dc:0e: bd:a4:7c:0b:68:f1:e7:e7:3b:42:09:06:e0:92:6d:51:78:05: 96:68:36:a9:22:af:68:55:26:98:bc:9b:2b:68:87:fd:10:e4: 79:c4:58:10:1a:84:fe:cc:73:ae:86:1b:93:f3:8a:44:ba:1a: 9e:cb:36:67:7e:b3:41:56:fc:a1:ba:ac:1d:65:e4:e4:3e:36: 42:74:16:9c:38:16:b4:12:10:3f:77:5f:ff:b6:e0:a5:f3:a4: 44:c9:6d:5a:2a:b2:71:ae:d8:c6:8a:26:71:52:ca:da:00:af: b3:82:ec:7c:ce:8c:8b:70:03:97:0b:c7:26:79:10:c7:e1:95: df:c4:4e:e5:ba:3c:91:8d:82:97:22:ca:28:36:c0:12:9a:14: 9f:a5:58:fd:7a:88:37:26:af:2a:7c:55:ab:c6:18:2c:88:10: be:f7:9a:3e:5a:12:a6:74:fc:48:4d:d5:fd:87:ca:fd:7e:cb: ae:dd:d8:07:89:65:a8:75:64:92:58:39:5f:54:90:19:bc:98: 0c:1a:52:05:83:e0:b9:3f:94:aa:d0:8a:05:ef:25:b7:e3:5d: 64:f1:c5:cf:5e:22:17:05:ed:5c:c7:e9:0e:09:11:61:85:43: c4:90:b3:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJTFK4Mx+ibRakUC35YhnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll ZDIxMWQwHhcNMjUxMjExMTYwMTE2WhcNMjUxMjEyMTYwMTE2WjAzMTEwLwYDVQQD Eyg2NTIyZWY4NGE3YzA2Zjc5YzU0YTRhMmRhNTcyMzUwMmNlNjdhNjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyG5BeHQ4X4GgmXGS9m8Tm12QjpaG sZTRhZsxtcXX1vgqe/iM9WwCFcgv+KJwAWnbI8gGDheoZEOXIaTJC+mJCk0DpU72 Pz950qlr8vEEungTmb9u+AmhcD24VG1aSpKcC3DYp/Ps6BWrlWXTM2Axjf26xXWv Uc1FxirTtmiowQnneh/mrbfEo8W+s/npbh5dXg3EIOU+cVVON4oq+XKvuylhDhPS lo+2Nji90dAFX4giX8T5WpbftHGrvN949++ujBAzhTuE5mmgahrhHvy68zvAjXVq NcNKH20cL8wn+IZYayJbZU90O6SuwM+anTipO1sEjrQciRuoDCNWcz5qFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGUi74SnwG95xUpKLaVyNQLOZ6ZbMB8GA1UdIwQY MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2 LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV3WNBSBs OBQV0bNyiSEIxtwOvaR8C2jx5+c7QgkG4JJtUXgFlmg2qSKvaFUmmLybK2iH/RDk ecRYEBqE/sxzroYbk/OKRLoanss2Z36zQVb8obqsHWXk5D42QnQWnDgWtBIQP3df /7bgpfOkRMltWiqyca7YxoomcVLK2gCvs4LsfM6Mi3ADlwvHJnkQx+GV38RO5bo8 kY2ClyLKKDbAEpoUn6VY/XqINyavKnxVq8YYLIgQvveaPloSpnT8SE3V/YfK/X7L rt3YB4llqHVkklg5X1SQGbyYDBpSBYPguT+UqtCKBe8lt+NdZPHFz14iFwXtXMfp DgkRYYVDxJCz4A== -----END CERTIFICATE-----Generated at Fri Dec 12 01:23:33 2025 by rpki-client