This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft File: aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft (raw, json) Hash identifier: 8F3EpE0IV9u2cFFDMwU3Ty6sSLpR/DlHAoXFNvuqLMM= Subject key identifier: A3:C8:9F:DF:46:A3:FE:20:23:61:F4:C7:41:DA:44:EF:61:A4:F2:17 Authority key identifier: 68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80 Certificate issuer: /CN=6821c8ff0437f7edd829166fde03446f86109d80 Certificate serial: 019AF19B9481C5449E99098D1D6CC6458426 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 03:01:36 +0000 Manifest this update: Sat 06 Dec 2025 03:01:36 +0000 Manifest next update: Sun 07 Dec 2025 03:01:36 +0000 Files and hashes: 1: NmoeARNR5KlnZdBERWuM-iNzYM0.roa (hash: HgaWyfSju8BbiVq620WeDucyKoI/pqgp0CZAcN9HrcI=) 2: OxQUm2cc932_SbZHxUC7er0Sf-I.roa (hash: j3K3BKXe7Af0d19rliHQJv9FsfvecTZMNvSiBZonE64=) 3: ZH-i__Oj4SIwtAOHRRVv0u8J8eI.roa (hash: WEK6Mlk9pLflVadH6HQ/a95uE6G+8NUpMYALAx2797k=) 4: aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl (hash: B5AZKnvSKe6GO68gwExRp8XOmlloW97OnTAFnGvChCs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:94:81:c5:44:9e:99:09:8d:1d:6c:c6:45:84:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6821c8ff0437f7edd829166fde03446f86109d80 Validity Not Before: Dec 6 03:01:36 2025 GMT Not After : Dec 7 03:01:36 2025 GMT Subject: CN=a3c89fdf46a3fe202361f4c741da44ef61a4f217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a0:29:60:e9:0f:da:8e:e1:64:d3:40:48:30: c3:c4:65:70:be:93:95:0e:84:07:43:f6:36:88:3e: 0c:52:36:8a:e7:06:9f:a6:2d:2c:e0:60:ba:57:26: 54:86:df:2b:52:ee:9b:8a:35:8e:98:e2:6b:f2:1c: 3d:70:b2:a5:d7:e8:8f:57:47:84:70:58:1f:dc:53: 90:20:2f:0a:e6:cc:58:b1:0d:68:79:6a:61:1e:f7: 74:5e:a0:40:48:bd:2b:60:67:a9:45:01:79:06:48: ad:ee:17:93:79:07:1f:d1:90:3b:e7:95:9d:40:3a: 3d:68:6e:27:d7:c9:8d:f7:71:7b:64:b4:39:f4:6c: d4:08:5f:d4:ed:30:2d:bd:d9:ac:69:c7:39:a6:b3: c8:0f:52:8d:d2:1f:98:28:99:02:4f:85:60:2d:b8: fb:27:d0:a7:3d:fb:0c:8a:94:4b:7c:72:d5:2f:f7: f7:38:8e:d3:db:cb:27:e7:76:1b:24:bd:39:e6:c2: 95:79:1c:e5:fb:63:18:ad:1d:14:db:e8:dd:a2:ba: 79:4d:01:d2:55:89:25:b8:bf:9c:a0:cf:81:aa:82: 3b:7d:27:dd:01:df:17:d0:8d:7c:da:d0:29:03:d6: 9a:bb:66:3b:5e:e3:b2:a6:7e:e6:8b:37:17:d5:4a: cd:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C8:9F:DF:46:A3:FE:20:23:61:F4:C7:41:DA:44:EF:61:A4:F2:17 X509v3 Authority Key Identifier: keyid:68:21:C8:FF:04:37:F7:ED:D8:29:16:6F:DE:03:44:6F:86:10:9D:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCHI_wQ39-3YKRZv3gNEb4YQnYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/13b144-be16-4922-a983-25ae9293f6b4/1/aCHI_wQ39-3YKRZv3gNEb4YQnYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:5d:a1:13:f0:7b:da:f9:68:19:46:92:55:35:47:b0:91:df: 8b:96:8e:46:b5:00:60:84:a0:ec:26:a3:c0:65:e2:d6:55:fd: 0b:ef:4f:7a:a5:f8:01:f9:9b:ab:32:4e:00:dc:e7:16:29:c1: 31:75:e4:9b:0d:77:d6:cc:7c:8f:e7:47:14:15:19:75:05:b3: 41:b7:9b:20:c5:4d:af:1f:16:4f:6c:b4:41:cf:1a:e6:55:a1: 01:3b:80:88:e8:31:e2:5f:2f:ba:48:24:d2:59:fe:6f:22:bf: b9:fb:cc:9c:f0:61:cc:58:18:33:0f:df:85:a0:3d:a7:2d:9d: 30:5e:8d:a4:98:c9:a3:69:30:c4:3d:9e:02:87:2b:1a:61:fb: 79:02:2e:5f:85:f1:63:d1:96:48:8b:cf:c0:25:42:6c:8c:96: 96:21:f1:37:47:6f:8e:dc:59:21:ce:25:27:d0:01:1b:d9:50: b9:84:34:31:06:b4:52:5a:6c:4f:c7:a7:3b:42:17:54:bd:ad: 2f:e3:64:fa:eb:23:b5:dc:e0:e1:bb:c3:71:5c:4b:6c:f6:3d: 14:18:bf:da:f9:15:46:c9:00:2e:53:80:ce:ce:1a:b0:51:d1: 87:18:2d:db:5d:c4:df:32:b5:7c:86:e1:fb:ee:bf:25:bc:9b: bf:a2:62:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5SBxUSemQmNHWzGRYQmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MjFjOGZmMDQzN2Y3ZWRkODI5MTY2ZmRlMDM0NDZmODYx MDlkODAwHhcNMjUxMjA2MDMwMTM2WhcNMjUxMjA3MDMwMTM2WjAzMTEwLwYDVQQD EyhhM2M4OWZkZjQ2YTNmZTIwMjM2MWY0Yzc0MWRhNDRlZjYxYTRmMjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAraApYOkP2o7hZNNASDDDxGVwvpOV DoQHQ/Y2iD4MUjaK5wafpi0s4GC6VyZUht8rUu6bijWOmOJr8hw9cLKl1+iPV0eE cFgf3FOQIC8K5sxYsQ1oeWphHvd0XqBASL0rYGepRQF5Bkit7heTeQcf0ZA755Wd QDo9aG4n18mN93F7ZLQ59GzUCF/U7TAtvdmsacc5prPID1KN0h+YKJkCT4VgLbj7 J9CnPfsMipRLfHLVL/f3OI7T28sn53YbJL055sKVeRzl+2MYrR0U2+jdorp5TQHS VYkluL+coM+BqoI7fSfdAd8X0I182tApA9aau2Y7XuOypn7mizcX1UrNcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKPIn99Go/4gI2H0x0HaRO9hpPIXMB8GA1UdIwQY MBaAFGghyP8EN/ft2CkWb94DRG+GEJ2AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUNISV93UTM5LTNZS1JadjNnTkViNFlRbllBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8xM2IxNDQtYmUxNi00OTIyLWE5ODMt MjVhZTkyOTNmNmI0LzEvYUNISV93UTM5LTNZS1JadjNnTkViNFlRbllBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy8xM2IxNDQtYmUxNi00OTIyLWE5ODMtMjVhZTkyOTNmNmI0 LzEvYUNISV93UTM5LTNZS1JadjNnTkViNFlRbllBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEF2hE/B7 2vloGUaSVTVHsJHfi5aORrUAYISg7CajwGXi1lX9C+9PeqX4AfmbqzJOANznFinB MXXkmw131sx8j+dHFBUZdQWzQbebIMVNrx8WT2y0Qc8a5lWhATuAiOgx4l8vukgk 0ln+byK/ufvMnPBhzFgYMw/fhaA9py2dMF6NpJjJo2kwxD2eAocrGmH7eQIuX4Xx Y9GWSIvPwCVCbIyWliHxN0dvjtxZIc4lJ9ABG9lQuYQ0MQa0UlpsT8enO0IXVL2t L+Nk+usjtdzg4bvDcVxLbPY9FBi/2vkVRskALlOAzs4asFHRhxgt213E3zK1fIbh ++6/Jbybv6JiGA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:47:45 2025 by rpki-client