This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft File: ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft (raw, json) Hash identifier: d+cZhCh7uhicL2t5UUbWmxdghP2NjmKoS+u7tFy4ov0= Subject key identifier: 6F:27:7C:44:E3:65:CC:7F:7A:88:A5:C1:AC:01:A2:06:BC:62:6A:4B Authority key identifier: 02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF Certificate issuer: /CN=0291d4de130da6aace22ed99650be182497e0bcf Certificate serial: 019AF50B0A9C9715570F466E0520A7D4C92E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 19:02:12 +0000 Manifest this update: Sat 06 Dec 2025 19:02:12 +0000 Manifest next update: Sun 07 Dec 2025 19:02:12 +0000 Files and hashes: 1: ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl (hash: 0BsQSNmYq3AzMbc1ygS6Up1GmmEEi/KkGOB8yK6huO0=) 2: Bbv2QAFPf4Szau3NTd0aayAiypc.roa (hash: cRocTgGmyLRnpI3qcdUdz3Vd6OE/CS3oghy6+UyVfVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:0a:9c:97:15:57:0f:46:6e:05:20:a7:d4:c9:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291d4de130da6aace22ed99650be182497e0bcf Validity Not Before: Dec 6 19:02:12 2025 GMT Not After : Dec 7 19:02:12 2025 GMT Subject: CN=6f277c44e365cc7f7a88a5c1ac01a206bc626a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3e:c5:f4:3c:fc:b1:1c:83:88:65:f3:a9:1c: 31:12:35:56:64:47:98:43:ae:94:d3:b2:79:1f:76: b3:11:4b:f6:b9:dc:0e:d2:f1:b0:ae:63:f6:bb:d2: 1d:3c:af:12:70:16:09:98:b6:3a:c1:a5:00:d9:2c: 94:66:ca:05:e1:83:c0:8b:4f:ad:6a:1a:17:20:98: 81:46:b5:ea:ff:29:53:76:0a:45:8c:eb:b6:e8:26: 0d:45:fa:3a:13:d1:d7:85:67:b3:0b:db:fb:ea:2e: 57:51:3d:1d:d1:c0:14:93:85:6e:35:79:fa:eb:27: 1a:b3:2d:ad:c7:cc:82:4f:34:f7:d7:fa:81:dd:63: 5c:b2:e0:d5:56:30:e2:ca:6b:7f:a0:95:7f:6f:43: 20:32:ed:53:b7:bc:68:76:a8:24:dc:91:3b:2f:66: b9:3f:a6:51:46:25:2a:d6:24:f6:78:23:be:86:ff: 46:7f:3f:c5:88:03:70:1f:6f:5e:61:1e:37:ee:b1: 03:40:71:2c:40:ee:cc:04:ad:20:f6:36:22:df:1f: a9:72:52:cc:a9:7e:ae:16:9f:11:6b:5e:74:3c:ec: fd:1b:ad:c4:0a:61:c7:69:b3:87:55:9e:66:d5:1b: c5:3d:a5:41:67:25:99:a4:70:9a:9e:6a:1b:de:91: af:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:27:7C:44:E3:65:CC:7F:7A:88:A5:C1:AC:01:A2:06:BC:62:6A:4B X509v3 Authority Key Identifier: keyid:02:91:D4:DE:13:0D:A6:AA:CE:22:ED:99:65:0B:E1:82:49:7E:0B:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ApHU3hMNpqrOIu2ZZQvhgkl-C88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a9a479-9e2f-4cb0-8ded-7781681077f7/1/ApHU3hMNpqrOIu2ZZQvhgkl-C88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:43:d9:4c:98:f8:b3:9e:8d:36:4f:5b:73:7f:b9:61:a1:d7: c8:f2:69:9e:07:d7:84:03:7c:58:30:1b:8c:c8:c6:84:15:19: c3:33:43:93:15:10:da:7d:44:ec:64:20:21:90:d1:d3:05:8a: d1:3d:30:96:f1:d6:72:fe:3d:86:b9:49:2c:88:a2:86:7f:ad: aa:ff:73:18:3a:1a:65:5a:ec:30:51:84:0d:b7:f1:fd:c8:8f: 9f:ec:6a:b9:18:bf:8e:cb:b7:2a:a8:4b:51:44:03:7b:53:f6: 71:c5:ca:94:41:42:6c:a3:5d:da:c3:71:3b:e1:7b:cf:7e:1e: 0c:19:31:1f:ca:24:d8:0a:60:b1:0c:22:6b:97:78:e4:08:a7: d8:17:fb:0f:3b:f0:15:85:b2:2c:02:ce:4e:2f:96:d6:6a:b5: 22:8a:b2:14:b2:3f:dc:48:97:19:d8:fd:0a:f6:db:7b:cb:de: 1a:e8:2b:e6:53:be:14:f7:e1:03:72:7a:f9:f4:3a:f2:cb:81: aa:97:98:49:24:16:8d:f4:06:4e:16:c1:58:66:7a:43:22:40: 81:a4:e5:2a:93:65:39:05:b6:22:ad:51:c4:aa:51:4a:e9:d2: a7:71:2f:42:2e:2a:33:39:41:be:2d:81:9d:48:f9:17:29:0b: 01:8e:d9:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CwqclxVXD0ZuBSCn1MkuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyOTFkNGRlMTMwZGE2YWFjZTIyZWQ5OTY1MGJlMTgyNDk3 ZTBiY2YwHhcNMjUxMjA2MTkwMjEyWhcNMjUxMjA3MTkwMjEyWjAzMTEwLwYDVQQD Eyg2ZjI3N2M0NGUzNjVjYzdmN2E4OGE1YzFhYzAxYTIwNmJjNjI2YTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApj7F9Dz8sRyDiGXzqRwxEjVWZEeY Q66U07J5H3azEUv2udwO0vGwrmP2u9IdPK8ScBYJmLY6waUA2SyUZsoF4YPAi0+t ahoXIJiBRrXq/ylTdgpFjOu26CYNRfo6E9HXhWezC9v76i5XUT0d0cAUk4VuNXn6 6ycasy2tx8yCTzT31/qB3WNcsuDVVjDiymt/oJV/b0MgMu1Tt7xodqgk3JE7L2a5 P6ZRRiUq1iT2eCO+hv9Gfz/FiANwH29eYR437rEDQHEsQO7MBK0g9jYi3x+pclLM qX6uFp8Ra150POz9G63ECmHHabOHVZ5m1RvFPaVBZyWZpHCanmob3pGvVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG8nfETjZcx/eoilwawBoga8YmpLMB8GA1UdIwQY MBaAFAKR1N4TDaaqziLtmWUL4YJJfgvPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQt Nzc4MTY4MTA3N2Y3LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9hOWE0NzktOWUyZi00Y2IwLThkZWQtNzc4MTY4MTA3N2Y3 LzEvQXBIVTNoTU5wcXJPSXUyWlpRdmhna2wtQzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABUPZTJj4 s56NNk9bc3+5YaHXyPJpngfXhAN8WDAbjMjGhBUZwzNDkxUQ2n1E7GQgIZDR0wWK 0T0wlvHWcv49hrlJLIiihn+tqv9zGDoaZVrsMFGEDbfx/ciPn+xquRi/jsu3KqhL UUQDe1P2ccXKlEFCbKNd2sNxO+F7z34eDBkxH8ok2ApgsQwia5d45Ain2Bf7Dzvw FYWyLALOTi+W1mq1IoqyFLI/3EiXGdj9Cvbbe8veGugr5lO+FPfhA3J6+fQ68suB qpeYSSQWjfQGThbBWGZ6QyJAgaTlKpNlOQW2Iq1RxKpRSunSp3EvQi4qMzlBvi2B nUj5FykLAY7ZDw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:44:42 2025 by rpki-client