This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json) Hash identifier: NEoy35PQINAGtClXVq80fRUdriaZM2nt9q9ysEfwuLQ= Subject key identifier: EB:66:DF:22:61:8E:7C:3D:45:00:EE:90:4E:2F:AA:7D:36:09:FB:A8 Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0 Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0 Certificate serial: 019B31FAC5A1FB1D6844DD8CC0EB203B8456 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft Manifest number: 1785 Signing time: Thu 18 Dec 2025 15:01:16 +0000 Manifest this update: Thu 18 Dec 2025 15:01:16 +0000 Manifest next update: Fri 19 Dec 2025 15:01:16 +0000 Files and hashes: 1: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: O35MdUq4DE8RxxmXwWbSJe4C71rJQCIZXSMHpxfOqHM=) 2: aUKOJrnyNsDVraosl-1-341781M.roa (hash: omnP8BEQZ4v0uR+9FGHR3kGU8+xYRsRiJd27fBInyzs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 15:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:fa:c5:a1:fb:1d:68:44:dd:8c:c0:eb:20:3b:84:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68bd39d793125c684dff272f88622bac432180f0 Validity Not Before: Dec 18 15:01:16 2025 GMT Not After : Dec 19 15:01:16 2025 GMT Subject: CN=eb66df22618e7c3d4500ee904e2faa7d3609fba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4f:ff:19:9e:7d:70:e1:9b:9b:50:a0:e9:40: 03:ce:19:af:91:6c:9a:dd:c9:c4:6b:47:3f:97:3e: 1a:5e:5a:35:4c:60:9b:1b:be:d3:c5:50:bc:2f:24: d3:5d:e8:1c:94:27:c0:cb:d6:36:ae:7a:ac:9d:34: d0:f7:c2:97:d1:cd:a4:f0:d0:52:1a:f7:21:9d:6a: 95:ba:f5:17:cf:7f:cd:b7:f9:35:16:f0:b6:dc:19: 7f:38:71:0e:b6:b0:1a:53:55:5e:6f:48:08:24:06: 85:a8:2e:dd:24:49:f5:48:d2:d9:71:b9:2d:0b:48: f5:d7:5b:46:b5:96:98:5a:a6:0f:d0:10:4d:d6:08: 6b:1f:e7:0a:e6:51:59:99:d6:18:72:01:37:4b:cf: eb:39:92:d8:2d:9d:b8:2a:77:73:f7:b5:a0:27:e7: 9e:00:f5:d5:1a:12:11:46:0b:f8:5e:f1:de:a1:67: 70:28:60:92:62:3d:83:fc:5d:60:41:91:e3:bc:e3: f8:58:3d:24:39:f6:f1:79:b6:5a:cc:07:4b:14:44: 4c:24:ec:0b:5d:af:dd:a2:e1:ba:d6:e4:42:25:53: 63:48:5d:ae:19:eb:31:4d:9b:ce:de:70:40:00:7e: 31:ec:c3:13:cc:55:58:3c:fc:de:0b:14:78:95:4f: 57:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:66:DF:22:61:8E:7C:3D:45:00:EE:90:4E:2F:AA:7D:36:09:FB:A8 X509v3 Authority Key Identifier: keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:20:73:ee:cd:47:b3:f3:4c:73:75:9a:e3:7a:70:86:1e:ae: e3:5d:17:a4:ba:60:39:95:46:4b:7c:68:92:46:d7:2c:ab:69: c5:8f:29:a9:0a:69:67:2f:ca:1b:83:57:16:a0:14:2e:ca:1b: 30:48:77:bb:88:27:dc:ab:dd:75:85:30:87:56:f5:8a:97:06: cc:35:ca:11:68:f7:ad:92:c6:34:7a:c6:63:14:c3:15:d5:f0: 4e:86:9e:b4:b8:16:cb:ad:31:61:b6:cb:5d:ad:db:57:1e:0b: 96:03:81:78:41:3d:70:62:01:f9:cf:a4:58:d6:1f:b3:23:bf: 4a:a4:21:5d:8b:f5:9a:f2:ed:4a:10:cb:e0:c8:7b:ed:45:9d: b9:4a:5e:a6:cd:3d:e4:3c:a4:1e:24:04:78:0f:dd:36:38:5d: b2:cb:c4:5d:80:54:6b:6c:d5:6d:54:a4:65:a5:54:72:21:aa: 6e:bc:d5:df:56:74:4e:5d:64:1a:fe:ee:33:06:0f:5b:76:91: ee:f2:37:fc:47:28:55:b9:6e:87:16:5e:ae:54:3d:ae:40:c6: ef:15:aa:fb:13:7c:1a:40:4b:f8:e2:1f:43:d8:8d:9c:0c:b7: 01:a2:b2:1e:b3:1e:f1:b4:62:76:e0:b3:73:c1:a0:3d:61:de: c2:cf:c7:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsx+sWh+x1oRN2MwOsgO4RWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YmQzOWQ3OTMxMjVjNjg0ZGZmMjcyZjg4NjIyYmFjNDMy MTgwZjAwHhcNMjUxMjE4MTUwMTE2WhcNMjUxMjE5MTUwMTE2WjAzMTEwLwYDVQQD EyhlYjY2ZGYyMjYxOGU3YzNkNDUwMGVlOTA0ZTJmYWE3ZDM2MDlmYmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzk//GZ59cOGbm1Cg6UADzhmvkWya 3cnEa0c/lz4aXlo1TGCbG77TxVC8LyTTXegclCfAy9Y2rnqsnTTQ98KX0c2k8NBS GvchnWqVuvUXz3/Nt/k1FvC23Bl/OHEOtrAaU1Veb0gIJAaFqC7dJEn1SNLZcbkt C0j111tGtZaYWqYP0BBN1ghrH+cK5lFZmdYYcgE3S8/rOZLYLZ24Kndz97WgJ+ee APXVGhIRRgv4XvHeoWdwKGCSYj2D/F1gQZHjvOP4WD0kOfbxebZazAdLFERMJOwL Xa/douG61uRCJVNjSF2uGesxTZvO3nBAAH4x7MMTzFVYPPzeCxR4lU9XpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOtm3yJhjnw9RQDukE4vqn02CfuoMB8GA1UdIwQY MBaAFGi9OdeTElxoTf8nL4hiK6xDIYDwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy80MjRiOTQtZTcwMi00YjIyLWFlMmUt MDg5MDUyMGI4ODQ2LzEvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy80MjRiOTQtZTcwMi00YjIyLWFlMmUtMDg5MDUyMGI4ODQ2 LzEvYUwwNTE1TVNYR2hOX3ljdmlHSXJyRU1oZ1BBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmCBz7s1H s/NMc3Wa43pwhh6u410XpLpgOZVGS3xokkbXLKtpxY8pqQppZy/KG4NXFqAULsob MEh3u4gn3KvddYUwh1b1ipcGzDXKEWj3rZLGNHrGYxTDFdXwToaetLgWy60xYbbL Xa3bVx4LlgOBeEE9cGIB+c+kWNYfsyO/SqQhXYv1mvLtShDL4Mh77UWduUpeps09 5DykHiQEeA/dNjhdssvEXYBUa2zVbVSkZaVUciGqbrzV31Z0Tl1kGv7uMwYPW3aR 7vI3/EcoVbluhxZerlQ9rkDG7xWq+xN8GkBL+OIfQ9iNnAy3AaKyHrMe8bRiduCz c8GgPWHews/HOA== -----END CERTIFICATE-----Generated at Fri Dec 19 00:54:29 2025 by rpki-client