This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json) Hash identifier: b1huOl6oOCZvpKOXPtbk449GpkttkhkLZHNVyPccAZo= Subject key identifier: 3D:C8:F6:8E:9C:E0:A2:3C:49:72:68:30:92:C2:E8:C5:D9:1A:FB:08 Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5 Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5 Certificate serial: 019B0F37CDB87E38D69B51028F503E65162E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft Manifest number: 1773 Signing time: Thu 11 Dec 2025 21:01:13 +0000 Manifest this update: Thu 11 Dec 2025 21:01:13 +0000 Manifest next update: Fri 12 Dec 2025 21:01:13 +0000 Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: FD0deMNzHEyJWvMp2WrJ1wpwXi2tIJJLdYcjOdDVHkQ=) 2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=) 3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:cd:b8:7e:38:d6:9b:51:02:8f:50:3e:65:16:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5 Validity Not Before: Dec 11 21:01:13 2025 GMT Not After : Dec 12 21:01:13 2025 GMT Subject: CN=3dc8f68e9ce0a23c4972683092c2e8c5d91afb08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:11:2c:4b:ef:14:5c:7f:3a:cd:e0:fa:72:83: 1d:78:7d:3f:80:1f:d4:fa:80:91:7f:b4:af:02:18: 4b:90:dc:81:d2:9c:a2:f5:ff:a8:b0:46:66:cd:bb: 3d:a8:36:a9:d5:33:c9:4a:6a:32:6c:62:07:b2:2c: 85:77:e8:70:9d:c1:a0:74:02:4f:4d:58:44:b6:96: 7b:e8:57:4c:72:d5:04:ca:cb:45:b3:bd:a4:9c:45: 6d:ae:9d:c1:4e:18:c7:a9:7b:be:80:c7:ef:c9:1c: c8:f3:59:6d:6f:55:6f:fc:27:e2:bb:60:d0:32:b1: 08:b1:50:60:7e:92:59:2c:40:f5:ff:f2:c8:ed:da: 80:54:96:67:8d:2c:da:e6:25:e2:f8:45:a7:05:9b: c1:37:4c:a0:f2:48:03:69:ff:21:b5:5c:14:07:e6: a2:0a:88:f9:d0:42:a7:e1:2d:e1:50:8f:f7:69:e4: d5:c6:7e:9e:46:84:02:da:8c:ca:fa:8e:b5:72:5d: 80:cd:0f:77:fa:80:37:72:4d:18:98:41:87:54:f1: f4:82:a7:73:a8:90:bb:09:e0:3b:ff:2c:11:58:d8: f8:48:ea:4e:88:6e:f3:1d:7d:df:9f:d4:55:1c:aa: eb:ab:cb:e6:47:56:ea:37:5c:e3:a2:95:4b:de:41: bd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:C8:F6:8E:9C:E0:A2:3C:49:72:68:30:92:C2:E8:C5:D9:1A:FB:08 X509v3 Authority Key Identifier: keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:59:eb:01:4d:6d:90:df:6e:e3:17:9e:e3:95:e8:36:8d:13: 73:c4:b2:5d:06:87:42:cf:75:12:95:34:ef:17:69:e0:e9:71: 0c:33:b3:24:d4:d8:10:5e:12:9f:57:89:50:33:9e:0b:5a:bd: 0e:6f:da:ea:eb:90:3d:46:ee:04:b4:93:1b:81:9d:40:63:b5: bc:6e:6f:a4:a7:ee:c8:b7:62:fc:4b:22:1d:d1:72:52:08:3c: bb:d1:18:a4:cf:04:e3:5f:93:8a:e8:50:de:b4:ae:be:28:9b: 88:bf:87:a6:3c:5e:2f:5b:15:ea:6a:de:c6:a3:9e:b3:56:db: 45:da:38:96:f4:50:d8:81:04:a0:b8:87:f6:52:ef:54:a7:74: f0:69:78:d6:65:34:6d:e7:0a:2f:45:8e:cc:47:dc:b4:9c:bb: fe:91:fa:c5:2d:09:e5:d1:c6:2d:c5:03:c8:46:50:c8:2c:96: eb:fe:0d:93:12:76:d7:c2:3c:77:6a:2e:3a:ab:dc:09:d1:3d: 47:88:10:76:9a:66:78:fa:6f:0e:0d:bc:11:74:42:ed:22:15: 07:6d:c7:1a:d7:b4:a8:92:01:cc:34:8a:4d:26:ce:8a:ef:7b: 94:b1:be:4a:a9:ab:5a:70:74:70:52:3f:69:fb:27:0f:ab:04: bb:33:37:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN824fjjWm1ECj1A+ZRYuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNzJjMDhmNzRkMmE4NDJhNzFmMjNhYjYxNDk5YjUyNjk0 ZmM3YTUwHhcNMjUxMjExMjEwMTEzWhcNMjUxMjEyMjEwMTEzWjAzMTEwLwYDVQQD EygzZGM4ZjY4ZTljZTBhMjNjNDk3MjY4MzA5MmMyZThjNWQ5MWFmYjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhEsS+8UXH86zeD6coMdeH0/gB/U +oCRf7SvAhhLkNyB0pyi9f+osEZmzbs9qDap1TPJSmoybGIHsiyFd+hwncGgdAJP TVhEtpZ76FdMctUEystFs72knEVtrp3BThjHqXu+gMfvyRzI81ltb1Vv/Cfiu2DQ MrEIsVBgfpJZLED1//LI7dqAVJZnjSza5iXi+EWnBZvBN0yg8kgDaf8htVwUB+ai Coj50EKn4S3hUI/3aeTVxn6eRoQC2ozK+o61cl2AzQ93+oA3ck0YmEGHVPH0gqdz qJC7CeA7/ywRWNj4SOpOiG7zHX3fn9RVHKrrq8vmR1bqN1zjopVL3kG99wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD3I9o6c4KI8SXJoMJLC6MXZGvsIMB8GA1UdIwQY MBaAFABywI900qhCpx8jq2FJm1JpT8elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYt NjY3ZDY2NDY5Y2Q5LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYtNjY3ZDY2NDY5Y2Q5 LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADFnrAU1t kN9u4xee45XoNo0Tc8SyXQaHQs91EpU07xdp4OlxDDOzJNTYEF4Sn1eJUDOeC1q9 Dm/a6uuQPUbuBLSTG4GdQGO1vG5vpKfuyLdi/EsiHdFyUgg8u9EYpM8E41+TiuhQ 3rSuviibiL+HpjxeL1sV6mrexqOes1bbRdo4lvRQ2IEEoLiH9lLvVKd08Gl41mU0 becKL0WOzEfctJy7/pH6xS0J5dHGLcUDyEZQyCyW6/4NkxJ218I8d2ouOqvcCdE9 R4gQdppmePpvDg28EXRC7SIVB23HGte0qJIBzDSKTSbOiu97lLG+SqmrWnB0cFI/ afsnD6sEuzM3JA== -----END CERTIFICATE-----Generated at Thu Dec 11 23:19:17 2025 by rpki-client