This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft File: chprP17V-3TQNRIhZRPEyB7-Hlw.mft (raw, json) Hash identifier: spAYxMItrcEXiEYVZ2KZfAxVi3yOyYJh6Xa/bhgImoo= Subject key identifier: 1B:8E:CF:92:CF:BE:34:35:49:CF:FA:14:2F:1D:98:03:17:24:30:C0 Authority key identifier: 72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C Certificate issuer: /CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c Certificate serial: 019AF0BF39C228DD36B4CD866FEF1F5F780F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft Manifest number: 0E44 Signing time: Fri 05 Dec 2025 23:00:55 +0000 Manifest this update: Fri 05 Dec 2025 23:00:55 +0000 Manifest next update: Sat 06 Dec 2025 23:00:55 +0000 Files and hashes: 1: chprP17V-3TQNRIhZRPEyB7-Hlw.crl (hash: 1gPyF5PDm1Hkq0ijsuQDqW0HnvBoip58oQmeocA+A9I=) 2: kXwe6i_ywP7BuQfaKeMIx8MSFQ8.roa (hash: /QfuO16P3y+Nn1KiVZoDEz0J7D7ghuw9uLlF/vWhXd4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:39:c2:28:dd:36:b4:cd:86:6f:ef:1f:5f:78:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=721a6b3f5ed5fb74d03512216513c4c81efe1e5c Validity Not Before: Dec 5 23:00:55 2025 GMT Not After : Dec 6 23:00:55 2025 GMT Subject: CN=1b8ecf92cfbe343549cffa142f1d9803172430c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:75:e8:b6:bc:a1:b4:7d:77:b3:cf:53:98: f1:78:52:f4:4d:b7:41:4e:41:39:96:85:e1:4f:d3: 43:76:43:b2:5a:fc:c4:ed:16:9c:52:f7:23:8c:73: ea:2a:02:d2:ca:29:02:09:09:cd:5e:09:6c:b2:26: df:ab:01:0e:0a:0f:a3:11:86:5f:20:e1:07:2c:f6: f2:ef:a9:42:c4:90:fc:14:94:c2:c6:f2:a2:a0:18: ab:70:4e:95:81:57:a0:99:41:b9:d0:c7:18:07:ed: e5:5a:52:51:eb:f0:f1:75:0d:1b:f8:90:9a:32:0b: 97:97:e0:44:89:47:5e:c7:20:38:79:a2:93:58:cc: af:f3:2c:05:ae:40:7a:fc:3a:3c:92:df:ca:7a:36: ec:22:ee:33:9e:1e:90:c8:0a:10:94:81:1e:66:8e: 99:43:f6:08:bf:4a:2b:b5:3c:98:5f:69:9f:28:2b: dc:93:07:4c:5e:66:c9:0c:87:59:68:8c:7b:ef:2a: a7:b6:22:b2:d1:0e:c5:88:80:19:28:8c:9c:27:8f: bb:0c:13:15:67:f2:c5:34:0a:45:b8:ce:ec:b2:84: 9b:35:42:f1:d7:36:99:4a:df:e1:e2:b7:43:94:ff: 41:3e:95:5b:e0:96:04:73:e7:e9:84:c2:ef:d9:07: d2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8E:CF:92:CF:BE:34:35:49:CF:FA:14:2F:1D:98:03:17:24:30:C0 X509v3 Authority Key Identifier: keyid:72:1A:6B:3F:5E:D5:FB:74:D0:35:12:21:65:13:C4:C8:1E:FE:1E:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chprP17V-3TQNRIhZRPEyB7-Hlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/af310c-2bd8-4efd-88e4-80c31db20ac5/1/chprP17V-3TQNRIhZRPEyB7-Hlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:3b:c6:d1:7e:ad:51:0d:47:71:fa:97:6d:10:7e:97:c5:b4: c1:79:2b:8c:72:d3:0a:63:a1:98:38:70:ae:a5:f0:1c:b0:64: 0f:68:88:a7:af:6f:99:93:94:6c:53:19:35:2d:33:96:1a:21: 42:de:8e:fe:83:e9:af:d1:e4:f3:15:83:04:d0:95:33:cf:20: 8e:2c:99:f8:3e:5b:14:ff:de:e5:23:fe:bd:5e:8c:39:90:c5: 40:2d:0e:e6:ce:a1:2c:01:b9:1d:d5:61:45:b5:d6:ed:6d:de: f0:e4:52:a6:04:ee:b2:e7:83:b1:34:45:57:af:34:bb:f5:d4: d1:a7:cb:a8:fd:1e:6d:0e:e6:05:64:c8:2e:b4:f8:b7:1a:4b: f7:f6:00:a4:13:9e:0d:1c:d4:5e:10:f0:21:49:84:be:5c:cc: 8c:14:a7:c6:c9:92:94:ab:c3:33:49:72:6c:b3:67:6a:92:65: 62:f0:d0:0c:c1:e1:0e:f5:62:f4:09:22:97:0c:46:14:02:81: 63:c2:5d:1d:99:f7:71:19:f4:2c:e1:5c:36:83:3f:f9:4e:93: c7:0f:ef:72:13:68:e3:fe:df:6b:60:4b:11:92:1e:07:97:1b: 97:50:2f:ce:46:84:5b:ea:d1:a6:75:84:54:9b:d5:0a:b1:af: e2:ce:fc:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvznCKN02tM2Gb+8fX3gPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMWE2YjNmNWVkNWZiNzRkMDM1MTIyMTY1MTNjNGM4MWVm ZTFlNWMwHhcNMjUxMjA1MjMwMDU1WhcNMjUxMjA2MjMwMDU1WjAzMTEwLwYDVQQD EygxYjhlY2Y5MmNmYmUzNDM1NDljZmZhMTQyZjFkOTgwMzE3MjQzMGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAssZ16La8obR9d7PPU5jxeFL0TbdB TkE5loXhT9NDdkOyWvzE7RacUvcjjHPqKgLSyikCCQnNXglssibfqwEOCg+jEYZf IOEHLPby76lCxJD8FJTCxvKioBircE6VgVegmUG50McYB+3lWlJR6/DxdQ0b+JCa MguXl+BEiUdexyA4eaKTWMyv8ywFrkB6/Do8kt/KejbsIu4znh6QyAoQlIEeZo6Z Q/YIv0ortTyYX2mfKCvckwdMXmbJDIdZaIx77yqntiKy0Q7FiIAZKIycJ4+7DBMV Z/LFNApFuM7ssoSbNULx1zaZSt/h4rdDlP9BPpVb4JYEc+fphMLv2QfSVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBuOz5LPvjQ1Sc/6FC8dmAMXJDDAMB8GA1UdIwQY MBaAFHIaaz9e1ft00DUSIWUTxMge/h5cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2hwclAxN1YtM1RRTlJJaFpSUEV5QjctSGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9hZjMxMGMtMmJkOC00ZWZkLTg4ZTQt ODBjMzFkYjIwYWM1LzEvY2hwclAxN1YtM1RRTlJJaFpSUEV5QjctSGx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9hZjMxMGMtMmJkOC00ZWZkLTg4ZTQtODBjMzFkYjIwYWM1 LzEvY2hwclAxN1YtM1RRTlJJaFpSUEV5QjctSGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaTvG0X6t UQ1HcfqXbRB+l8W0wXkrjHLTCmOhmDhwrqXwHLBkD2iIp69vmZOUbFMZNS0zlhoh Qt6O/oPpr9Hk8xWDBNCVM88gjiyZ+D5bFP/e5SP+vV6MOZDFQC0O5s6hLAG5HdVh RbXW7W3e8ORSpgTusueDsTRFV680u/XU0afLqP0ebQ7mBWTILrT4txpL9/YApBOe DRzUXhDwIUmEvlzMjBSnxsmSlKvDM0lybLNnapJlYvDQDMHhDvVi9AkilwxGFAKB Y8JdHZn3cRn0LOFcNoM/+U6Txw/vchNo4/7fa2BLEZIeB5cbl1AvzkaEW+rRpnWE VJvVCrGv4s78PA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:42 2025 by rpki-client