This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft File: aHcm04_PKn-7t7_CjWP-NXntIR0.mft (raw, json) Hash identifier: Vyo0Q/7r9E9AEMZU1qzQDZVvh53f3dv4VX8QyCRdT9Y= Subject key identifier: 53:A2:6F:98:D7:B5:34:D1:62:41:5E:B8:2E:85:95:FB:41:D6:A7:64 Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Certificate serial: 019B32D65FA84A84F068C901D263C0A3ED93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft Manifest number: 12B5 Signing time: Thu 18 Dec 2025 19:01:08 +0000 Manifest this update: Thu 18 Dec 2025 19:01:08 +0000 Manifest next update: Fri 19 Dec 2025 19:01:08 +0000 Files and hashes: 1: 4BPgPazxL-0_7TACTrAAB2vKcvM.roa (hash: ByHJvADYtVUpx6K/7n+qZ80ogn6pFEeZiZMcZkXwguI=) 2: DnTRig2ZHULz3p9wZNouYmsC9jo.roa (hash: t4VZBdK9Uss3nXT5qelMDtPowMN8UI5/vISGQexu/1w=) 3: FiGOQGJVQzUX0AI-kIcMSlyL5Jw.roa (hash: iNn6sg9mF+PuqzA3VDumFe63FkMkR+FoX25ZFTkc1KE=) 4: aHcm04_PKn-7t7_CjWP-NXntIR0.crl (hash: 8QN7mUwYSQo2ZPBoGOgOpCT0DLMyfVHdL+q8LaWLdGg=) 5: psb7_FoF9tBnDB6tY5GqWOvVJFk.roa (hash: VNe9Mli14Tvo817wNnFl35Vg2+YLvG6cgRRigjOYMS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:5f:a8:4a:84:f0:68:c9:01:d2:63:c0:a3:ed:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d Validity Not Before: Dec 18 19:01:08 2025 GMT Not After : Dec 19 19:01:08 2025 GMT Subject: CN=53a26f98d7b534d162415eb82e8595fb41d6a764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fe:ff:2c:f6:60:0e:0a:f8:6d:10:c0:52:41: f0:5c:66:e0:22:8d:b5:3c:90:69:76:7b:0a:18:25: 21:f8:64:df:cf:80:65:03:6b:fd:20:2d:e2:9f:f7: 43:0a:a8:59:05:a3:54:cd:87:f2:ca:da:79:c5:47: df:06:c6:6a:6c:e0:14:24:a3:1b:a8:59:22:72:7f: f3:e5:ac:99:86:2c:97:4f:07:72:df:3e:9f:ce:76: c6:a5:06:2c:fb:f2:aa:9c:f4:38:50:52:8c:3d:93: 8a:9c:86:a5:8a:0d:33:f9:83:92:36:8f:1a:09:89: 4c:ad:18:06:38:b2:ee:5d:2b:ce:89:3d:b4:5e:d2: 10:32:75:4d:d4:cc:49:b8:c7:87:90:7d:83:db:b6: 6e:9b:2e:92:70:71:75:73:b6:ff:75:27:51:6e:63: 2e:20:58:94:45:9f:ad:82:cc:07:09:ea:d3:21:ea: b4:72:ac:3e:b9:6c:a7:2c:23:22:bc:93:4f:09:1d: c7:ea:9a:72:21:1e:eb:ab:01:8e:cb:27:ea:22:27: 22:e1:18:ea:22:7b:54:68:f8:03:69:28:54:66:fc: fa:05:f5:77:ad:68:83:0a:cc:22:19:ba:42:30:96: e0:6b:5c:d5:e0:0c:d5:41:3a:e1:d7:9b:c4:0c:e6: 8e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A2:6F:98:D7:B5:34:D1:62:41:5E:B8:2E:85:95:FB:41:D6:A7:64 X509v3 Authority Key Identifier: keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:31:1a:b5:1b:55:a5:a9:9a:31:43:73:95:0b:9f:7a:a1:bc: 30:72:13:68:90:16:91:bf:00:dd:50:48:1c:9f:2d:c0:ee:4c: 7f:db:ac:4d:6b:15:62:d0:2f:fd:cf:3c:0a:61:38:a4:61:88: 4e:be:fc:5e:b7:95:bb:0d:37:1d:5e:36:c1:b8:ce:28:8f:11: 33:0b:0f:41:94:e1:f2:1d:eb:23:50:22:9f:44:5b:5e:3b:7b: 1e:5c:cc:31:4a:87:6a:79:d9:51:10:06:e2:90:cc:bf:78:a1: fc:4d:0a:a4:82:a4:f9:68:5d:da:24:16:7a:b7:a4:69:77:07: e9:d6:85:89:dc:2d:68:f3:c9:9b:f2:97:d5:f9:9f:67:98:de: 66:3d:8c:99:41:d2:9b:28:a6:3e:0d:2e:b6:22:12:03:75:ce: f7:16:8a:bb:2b:1f:c8:7e:19:35:fc:59:c3:0a:c7:5e:dc:1f: ef:75:36:48:b6:0b:10:fb:1f:e2:2a:1e:ef:2a:33:74:8a:df: da:cf:c5:5a:05:d9:26:bd:7d:79:15:ad:e4:89:5f:dc:48:6f: f9:5a:bd:28:7d:bf:05:38:38:fa:38:7f:81:0c:2c:75:f6:1a: dc:a3:12:f2:9a:6a:80:ea:7a:f9:63:05:33:85:ce:59:1f:57: e4:b8:1d:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1l+oSoTwaMkB0mPAo+2TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4NzcyNmQzOGZjZjJhN2ZiYmI3YmZjMjhkNjNmZTM1Nzll ZDIxMWQwHhcNMjUxMjE4MTkwMTA4WhcNMjUxMjE5MTkwMTA4WjAzMTEwLwYDVQQD Eyg1M2EyNmY5OGQ3YjUzNGQxNjI0MTVlYjgyZTg1OTVmYjQxZDZhNzY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtv7/LPZgDgr4bRDAUkHwXGbgIo21 PJBpdnsKGCUh+GTfz4BlA2v9IC3in/dDCqhZBaNUzYfyytp5xUffBsZqbOAUJKMb qFkicn/z5ayZhiyXTwdy3z6fznbGpQYs+/KqnPQ4UFKMPZOKnIalig0z+YOSNo8a CYlMrRgGOLLuXSvOiT20XtIQMnVN1MxJuMeHkH2D27Zumy6ScHF1c7b/dSdRbmMu IFiURZ+tgswHCerTIeq0cqw+uWynLCMivJNPCR3H6ppyIR7rqwGOyyfqIici4Rjq IntUaPgDaShUZvz6BfV3rWiDCswiGbpCMJbga1zV4AzVQTrh15vEDOaOOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFOib5jXtTTRYkFeuC6FlftB1qdkMB8GA1UdIwQY MBaAFGh3JtOPzyp/u7e/wo1j/jV57SEdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAt NGIyZGExOTdhN2U2LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lNzFlMjctYzY4Ny00ZmQ3LTgxODAtNGIyZGExOTdhN2U2 LzEvYUhjbTA0X1BLbi03dDdfQ2pXUC1OWG50SVIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARDEatRtV pamaMUNzlQufeqG8MHITaJAWkb8A3VBIHJ8twO5Mf9usTWsVYtAv/c88CmE4pGGI Tr78XreVuw03HV42wbjOKI8RMwsPQZTh8h3rI1Ain0RbXjt7HlzMMUqHannZURAG 4pDMv3ih/E0KpIKk+Whd2iQWerekaXcH6daFidwtaPPJm/KX1fmfZ5jeZj2MmUHS myimPg0utiISA3XO9xaKuysfyH4ZNfxZwwrHXtwf73U2SLYLEPsf4ioe7yozdIrf 2s/FWgXZJr19eRWt5Ilf3Ehv+Vq9KH2/BTg4+jh/gQwsdfYa3KMS8ppqgOp6+WMF M4XOWR9X5LgdDQ== -----END CERTIFICATE-----Generated at Thu Dec 18 23:35:13 2025 by rpki-client