This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft File: cHSIc9gyAihk-skAZdUdjie0Pl0.mft (raw, json) Hash identifier: MuZtb61ABVBnQ7K1a4/en/77sZx86KxY7oVmnrlLyPw= Subject key identifier: F9:F8:86:AB:07:CB:3A:C9:22:56:7E:E1:A4:A6:B6:C2:32:EF:86:E9 Authority key identifier: 70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D Certificate issuer: /CN=70748873d832022864fac90065d51d8e27b43e5d Certificate serial: 019AF50AAEEF05C81ADB06F5545F00B13021 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 19:01:49 +0000 Manifest this update: Sat 06 Dec 2025 19:01:49 +0000 Manifest next update: Sun 07 Dec 2025 19:01:49 +0000 Files and hashes: 1: cHSIc9gyAihk-skAZdUdjie0Pl0.crl (hash: XgMguY+UYQePpYYSvsTpOJF/ITR4FwgEcyvYQ7wLyTo=) 2: luaqw9G-VvVeUOUerH8hYnJDYmk.roa (hash: cGv6tVYRF/4yXJn3TxE1a8gXuaOG4Us7R7XWbyYOP1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:ae:ef:05:c8:1a:db:06:f5:54:5f:00:b1:30:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70748873d832022864fac90065d51d8e27b43e5d Validity Not Before: Dec 6 19:01:49 2025 GMT Not After : Dec 7 19:01:49 2025 GMT Subject: CN=f9f886ab07cb3ac922567ee1a4a6b6c232ef86e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:3c:1c:95:b2:d3:e1:94:12:a5:c4:a0:26: f8:2e:b3:fe:c6:17:d1:71:7a:65:99:e0:fb:ca:03: d0:74:15:3c:0e:12:b0:1b:87:b2:0f:ef:61:d2:d0: 88:61:c1:2a:f6:c4:71:a4:5b:7b:0e:7d:41:3c:42: 10:55:a4:79:11:ad:5a:80:6d:eb:25:a1:b0:0a:2a: f5:48:33:0c:90:a4:f9:75:66:33:fd:38:10:d4:56: 6d:9c:6b:03:a6:0b:ea:47:a3:2b:15:0e:55:54:62: fc:7f:36:99:79:c3:5f:e2:b3:e4:26:eb:5a:2a:f7: b1:3f:4e:62:87:63:cc:63:85:ae:3a:05:0f:78:ea: ac:2f:ef:2a:fa:30:83:e8:47:f7:fe:28:b0:22:a8: 91:0c:7f:e0:b1:d4:ae:25:2d:2a:93:99:a5:59:d3: 54:17:6f:88:31:94:d5:1b:6c:bf:f8:6d:e9:f8:b6: 5c:51:36:a9:49:7b:57:b4:53:c0:a6:e5:99:5f:11: 45:e7:19:bb:80:9d:56:df:6f:6e:c9:c6:5c:7a:dd: 63:96:bc:92:b9:5c:03:24:dd:43:c3:6d:67:b4:2a: 83:af:51:cb:3a:b3:af:1d:8b:32:11:4d:53:5b:87: d9:5c:a9:af:87:a7:ba:c7:38:21:54:f3:46:4c:7c: d1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F8:86:AB:07:CB:3A:C9:22:56:7E:E1:A4:A6:B6:C2:32:EF:86:E9 X509v3 Authority Key Identifier: keyid:70:74:88:73:D8:32:02:28:64:FA:C9:00:65:D5:1D:8E:27:B4:3E:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHSIc9gyAihk-skAZdUdjie0Pl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/aa3350-aa2a-4477-9fcd-a60b2cc8d080/1/cHSIc9gyAihk-skAZdUdjie0Pl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:eb:49:f9:d4:29:8e:ec:03:d4:1a:9a:49:52:f7:69:52:c5: 1d:a6:64:d2:de:a5:09:3d:1d:9c:d1:7e:26:91:58:37:d2:a2: 69:30:a7:84:b9:55:64:73:06:f1:a1:35:77:a0:bb:3f:f1:f8: 12:27:30:e1:20:cf:d0:23:ce:8a:b1:92:35:08:70:8c:8f:9d: 5e:0c:d8:84:02:e5:c1:b4:c4:f4:9e:08:17:6c:fb:7d:0a:8f: 31:39:5d:fa:1f:2b:52:a3:34:08:6f:d3:43:2e:0c:b5:bf:72: 3c:d0:5c:0d:5c:ba:d8:d6:99:10:36:0d:56:6b:75:7a:9d:51: b6:ee:42:ca:b6:b9:70:c3:7d:64:fb:06:43:a4:f2:5f:f2:34: b3:59:b6:3d:8f:53:6b:5c:5b:c9:72:fb:8d:81:4f:bd:b4:ce: 1c:a9:2c:77:38:96:48:e7:7b:ec:7e:93:c0:aa:be:bc:e9:e0: f8:36:eb:e4:15:a9:d1:2d:c0:d9:78:37:f5:4f:e5:a4:c2:a5: 13:25:f6:49:18:bc:88:e1:cf:ef:bd:7c:9d:4c:ec:c0:d6:ec: 88:77:65:49:27:b3:66:7c:20:e6:54:be:7e:05:7c:65:23:37: df:75:fe:ad:70:86:8b:26:c4:0d:f6:df:4a:1e:f8:fb:65:29: fd:ae:04:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cq7vBcga2wb1VF8AsTAhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNzQ4ODczZDgzMjAyMjg2NGZhYzkwMDY1ZDUxZDhlMjdi NDNlNWQwHhcNMjUxMjA2MTkwMTQ5WhcNMjUxMjA3MTkwMTQ5WjAzMTEwLwYDVQQD EyhmOWY4ODZhYjA3Y2IzYWM5MjI1NjdlZTFhNGE2YjZjMjMyZWY4NmU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL88HJWy0+GUEqXEoCb4LrP+xhfR cXplmeD7ygPQdBU8DhKwG4eyD+9h0tCIYcEq9sRxpFt7Dn1BPEIQVaR5Ea1agG3r JaGwCir1SDMMkKT5dWYz/TgQ1FZtnGsDpgvqR6MrFQ5VVGL8fzaZecNf4rPkJuta KvexP05ih2PMY4WuOgUPeOqsL+8q+jCD6Ef3/iiwIqiRDH/gsdSuJS0qk5mlWdNU F2+IMZTVG2y/+G3p+LZcUTapSXtXtFPApuWZXxFF5xm7gJ1W329uycZcet1jlryS uVwDJN1Dw21ntCqDr1HLOrOvHYsyEU1TW4fZXKmvh6e6xzghVPNGTHzR1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPn4hqsHyzrJIlZ+4aSmtsIy74bpMB8GA1UdIwQY MBaAFHB0iHPYMgIoZPrJAGXVHY4ntD5dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2Qt YTYwYjJjYzhkMDgwLzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hYTMzNTAtYWEyYS00NDc3LTlmY2QtYTYwYjJjYzhkMDgw LzEvY0hTSWM5Z3lBaWhrLXNrQVpkVWRqaWUwUGwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABOtJ+dQp juwD1BqaSVL3aVLFHaZk0t6lCT0dnNF+JpFYN9KiaTCnhLlVZHMG8aE1d6C7P/H4 Eicw4SDP0CPOirGSNQhwjI+dXgzYhALlwbTE9J4IF2z7fQqPMTld+h8rUqM0CG/T Qy4Mtb9yPNBcDVy62NaZEDYNVmt1ep1Rtu5Cyra5cMN9ZPsGQ6TyX/I0s1m2PY9T a1xbyXL7jYFPvbTOHKksdziWSOd77H6TwKq+vOng+Dbr5BWp0S3A2Xg39U/lpMKl EyX2SRi8iOHP7718nUzswNbsiHdlSSezZnwg5lS+fgV8ZSM333X+rXCGiybEDfbf Sh74+2Up/a4EYQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:22:41 2025 by rpki-client