This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json) Hash identifier: Cm/+5Q51lOSFbYOFNHOCauL9ggS/CLoIgeutvVfYDY0= Subject key identifier: D8:3D:59:F1:C3:AF:F5:D3:FE:A9:51:B1:E4:DC:24:D5:5F:3E:6B:9F Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5 Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5 Certificate serial: 019AF240223E35F77C8659A2D536D36C4D37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 06:01:20 +0000 Manifest this update: Sat 06 Dec 2025 06:01:20 +0000 Manifest next update: Sun 07 Dec 2025 06:01:20 +0000 Files and hashes: 1: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: ZiqywrNjw9pFkfZrZrBpWuTxeZVbmtFtwRbDKsIIVXw=) 2: qen-QoIAAGwgpqx4OQAF6M4rR_M.roa (hash: Pfgs1o9qvVrkxz8on7jtYneDypFRD7JuU2XED3GEHk4=) 3: sJjIi8LxyBaapUPztypafiGazB4.roa (hash: snoS7xcNMuCgLXX7PRPXvmr0bu9uS7kTUSsVN0SedsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:22:3e:35:f7:7c:86:59:a2:d5:36:d3:6c:4d:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5 Validity Not Before: Dec 6 06:01:20 2025 GMT Not After : Dec 7 06:01:20 2025 GMT Subject: CN=d83d59f1c3aff5d3fea951b1e4dc24d55f3e6b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:72:0d:c9:f3:c7:66:21:6a:13:85:92:39:16: 22:43:a2:af:32:c4:99:6f:d2:e4:aa:67:d4:25:ef: 27:c0:dd:14:63:94:19:3c:49:a1:20:40:f9:c5:0d: 5d:dc:27:29:99:f9:f3:99:66:9e:ed:03:f5:fe:88: fe:36:b1:06:b6:ba:99:72:63:85:c2:40:e0:56:dd: 29:ab:27:bf:86:46:a8:19:10:2d:2e:0e:0e:30:9f: f7:0a:d6:8b:ca:7d:0e:06:7f:fa:91:d4:a2:d2:8c: 9d:f6:de:ad:af:43:e5:23:e7:95:35:fd:18:45:20: 76:7a:53:73:5f:f5:c7:3f:da:16:db:4b:49:42:38: 46:41:20:5c:52:2e:9f:6a:56:3d:ba:c4:b7:5f:d3: 2c:de:17:30:19:32:07:b2:5e:33:51:c7:5e:3a:12: e4:6d:51:88:e2:24:af:10:8c:2e:ee:ff:b3:09:a8: e6:8d:ff:e1:83:2d:25:f0:96:09:40:4b:74:39:f9: 58:14:f0:82:09:99:f5:04:bf:a1:95:9c:7f:9b:ec: 12:ff:29:ff:9c:f7:cc:87:8b:88:90:d8:76:bd:df: d5:05:e2:b9:95:e0:24:1f:ee:a7:05:06:36:42:dc: 0a:f2:06:54:76:2e:8a:7a:7f:32:10:ed:81:3e:04: f5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:3D:59:F1:C3:AF:F5:D3:FE:A9:51:B1:E4:DC:24:D5:5F:3E:6B:9F X509v3 Authority Key Identifier: keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:52:bc:50:71:67:73:b2:f4:84:63:cd:26:ea:3a:88:54:c3: ea:53:2e:b0:f5:89:49:58:8d:70:f8:ed:8f:32:5f:67:12:8b: e1:5a:1f:56:fd:0d:f2:1d:ff:ce:3e:74:26:08:e7:ea:7a:cf: f0:09:42:73:90:25:d9:88:2b:e2:7c:c1:37:ba:cb:b0:25:c7: da:6c:35:2e:33:41:b8:da:9f:10:d0:ac:6b:6e:56:87:9e:f6: ab:b6:2c:7e:41:d7:b2:a7:64:84:dd:a2:6e:8d:4f:02:a3:a1: 25:a8:d9:dc:ea:df:89:e8:fd:25:06:07:b8:13:a6:c3:97:ac: b3:d8:02:b3:54:0d:d5:4f:09:76:63:bc:b9:dc:b9:97:a4:68: f5:e1:7c:dd:44:07:4d:ca:bc:6d:88:f2:be:e8:7c:a9:8f:fa: e0:6d:8c:d5:a1:98:1e:94:33:27:df:9d:0c:90:18:dc:66:5e: 54:67:74:25:9b:18:5b:b0:6b:6a:5a:8f:61:c0:95:59:63:7b: 20:db:59:f2:87:30:20:66:de:55:1c:bc:af:66:1a:84:ba:82: 37:e1:1b:d8:10:e3:25:66:fa:b8:c3:7f:5d:d4:a9:16:9e:23: d1:49:bc:88:83:2e:25:ef:37:22:b6:93:8f:d2:20:92:53:6c: 05:8f:85:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQCI+Nfd8hlmi1TbTbE03MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNzJjMDhmNzRkMmE4NDJhNzFmMjNhYjYxNDk5YjUyNjk0 ZmM3YTUwHhcNMjUxMjA2MDYwMTIwWhcNMjUxMjA3MDYwMTIwWjAzMTEwLwYDVQQD EyhkODNkNTlmMWMzYWZmNWQzZmVhOTUxYjFlNGRjMjRkNTVmM2U2YjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9nINyfPHZiFqE4WSORYiQ6KvMsSZ b9LkqmfUJe8nwN0UY5QZPEmhIED5xQ1d3CcpmfnzmWae7QP1/oj+NrEGtrqZcmOF wkDgVt0pqye/hkaoGRAtLg4OMJ/3CtaLyn0OBn/6kdSi0oyd9t6tr0PlI+eVNf0Y RSB2elNzX/XHP9oW20tJQjhGQSBcUi6falY9usS3X9Ms3hcwGTIHsl4zUcdeOhLk bVGI4iSvEIwu7v+zCajmjf/hgy0l8JYJQEt0OflYFPCCCZn1BL+hlZx/m+wS/yn/ nPfMh4uIkNh2vd/VBeK5leAkH+6nBQY2QtwK8gZUdi6Ken8yEO2BPgT1GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNg9WfHDr/XT/qlRseTcJNVfPmufMB8GA1UdIwQY MBaAFABywI900qhCpx8jq2FJm1JpT8elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYt NjY3ZDY2NDY5Y2Q5LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hYzhlN2MtNDE3NC00ODBlLWJmYWYtNjY3ZDY2NDY5Y2Q5 LzEvQUhMQWozVFNxRUtuSHlPcllVbWJVbWxQeDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1K8UHFn c7L0hGPNJuo6iFTD6lMusPWJSViNcPjtjzJfZxKL4VofVv0N8h3/zj50Jgjn6nrP 8AlCc5Al2Ygr4nzBN7rLsCXH2mw1LjNBuNqfENCsa25Wh572q7YsfkHXsqdkhN2i bo1PAqOhJajZ3Orfiej9JQYHuBOmw5ess9gCs1QN1U8JdmO8udy5l6Ro9eF83UQH Tcq8bYjyvuh8qY/64G2M1aGYHpQzJ9+dDJAY3GZeVGd0JZsYW7BralqPYcCVWWN7 INtZ8ocwIGbeVRy8r2YahLqCN+Eb2BDjJWb6uMN/XdSpFp4j0Um8iIMuJe83IraT j9IgklNsBY+Feg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:18 2025 by rpki-client