This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft File: ap2Z4esn7Hq76TViechBGkEw_co.mft (raw, json) Hash identifier: 2vdAy+ixOxPrL50L6xYmOhXGW2FEPwNkgccgzcKhbh0= Subject key identifier: C4:15:22:01:7B:45:D4:9D:E9:2C:BB:BE:D7:4F:27:6D:0F:56:8A:20 Authority key identifier: 6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA Certificate issuer: /CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca Certificate serial: 019AF38917883E7D0B24A88149712E74BBE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft Manifest number: 0DD8 Signing time: Sat 06 Dec 2025 12:00:39 +0000 Manifest this update: Sat 06 Dec 2025 12:00:39 +0000 Manifest next update: Sun 07 Dec 2025 12:00:39 +0000 Files and hashes: 1: ap2Z4esn7Hq76TViechBGkEw_co.crl (hash: 4fec/x+enGeat0CefXPr5cG/sX0kcA7WmK3VW+aglY4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:17:88:3e:7d:0b:24:a8:81:49:71:2e:74:bb:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a9d99e1eb27ec7abbe9356279c8411a4130fdca Validity Not Before: Dec 6 12:00:39 2025 GMT Not After : Dec 7 12:00:39 2025 GMT Subject: CN=c41522017b45d49de92cbbbed74f276d0f568a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f5:1b:b6:18:a3:1f:44:83:98:71:e5:6f:26: 57:92:c1:d9:c6:ba:6f:4c:a7:00:52:4b:36:a1:3b: 12:3a:91:e4:a8:a1:a8:2a:2c:cf:d1:e3:62:67:6a: 15:d4:6f:3c:f9:5e:cd:c9:be:e7:c2:eb:7a:fa:0d: e9:86:69:1a:7f:3a:b5:f0:d0:b6:11:a4:d1:6f:56: 82:ae:4f:59:b2:c5:62:af:40:6c:df:06:2e:03:95: 34:bc:93:59:dd:da:1f:46:ed:9a:66:5c:e0:85:2f: 36:c3:35:b4:9c:12:b1:b8:95:50:35:d4:40:99:fb: 00:65:94:35:97:e0:c2:ee:a8:ff:c3:ff:7f:7b:2d: 00:67:30:29:58:47:12:dd:75:7a:ea:52:3e:f0:d6: 60:e7:22:33:f2:90:bd:cd:86:ca:ec:42:5c:dc:fb: a4:74:ff:2a:53:64:b7:70:eb:c3:04:eb:7f:5f:c9: 24:47:06:62:4d:99:34:86:7b:94:fb:c2:4c:d9:3f: 41:a2:18:85:56:9d:a3:db:da:ed:52:0c:9d:04:ca: 8a:94:59:da:85:e3:ca:82:41:9f:3c:c2:3b:e0:b2: 61:d6:1f:d4:c9:b4:65:f7:97:46:4b:2b:5e:61:c3: d5:bd:cc:92:60:86:ca:24:0a:ca:3c:c7:01:ec:77: 62:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:15:22:01:7B:45:D4:9D:E9:2C:BB:BE:D7:4F:27:6D:0F:56:8A:20 X509v3 Authority Key Identifier: keyid:6A:9D:99:E1:EB:27:EC:7A:BB:E9:35:62:79:C8:41:1A:41:30:FD:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ap2Z4esn7Hq76TViechBGkEw_co.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/73c8f0-7a5a-4adb-a12d-b7daf2e60f6f/1/ap2Z4esn7Hq76TViechBGkEw_co.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:3c:ff:35:10:e5:a9:f4:77:0b:6f:18:f0:c3:1e:1f:e1:e5: b8:b3:90:71:ea:9e:03:61:b2:5b:30:81:80:1d:3b:d4:d2:85: a4:5f:e3:8b:4b:98:cc:dd:b9:90:80:a0:d4:be:d1:b6:5f:b7: 4b:e3:da:6e:41:10:ba:c6:c0:1e:04:e4:b8:5f:cb:98:66:d3: 22:7b:d0:4b:74:11:ae:a9:a6:6d:8a:35:8a:f2:21:86:8b:17: 6b:ba:d5:83:e0:8f:91:2a:0f:61:8b:d6:01:c1:7b:8e:bf:15: 14:f0:a5:cb:c3:4c:5a:f3:06:cb:0e:0f:02:b6:71:60:f3:f2: de:b5:7e:b0:bf:d0:38:09:42:c4:e5:3a:e5:3a:1a:88:4f:5c: 8f:c2:6a:fa:c8:99:5c:eb:6f:a4:3c:67:32:00:ad:65:9c:1f: 45:f5:2f:03:9c:8b:e8:09:37:13:3b:d7:01:3c:14:de:b8:b0: d6:72:4d:34:96:3e:2e:98:31:a0:8e:95:13:d3:11:7e:cb:a7: f1:63:a3:0f:b5:dd:b9:e6:10:12:6b:7f:15:ae:8e:f6:91:f8: 87:c0:20:6e:d5:8e:58:f0:86:90:a5:28:bd:4a:96:0f:2c:40: 79:1c:e0:39:1b:32:c0:93:3a:f9:7a:53:f0:fe:41:59:3c:46: aa:d8:50:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziReIPn0LJKiBSXEudLvlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhOWQ5OWUxZWIyN2VjN2FiYmU5MzU2Mjc5Yzg0MTFhNDEz MGZkY2EwHhcNMjUxMjA2MTIwMDM5WhcNMjUxMjA3MTIwMDM5WjAzMTEwLwYDVQQD EyhjNDE1MjIwMTdiNDVkNDlkZTkyY2JiYmVkNzRmMjc2ZDBmNTY4YTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfUbthijH0SDmHHlbyZXksHZxrpv TKcAUks2oTsSOpHkqKGoKizP0eNiZ2oV1G88+V7Nyb7nwut6+g3phmkafzq18NC2 EaTRb1aCrk9ZssVir0Bs3wYuA5U0vJNZ3dofRu2aZlzghS82wzW0nBKxuJVQNdRA mfsAZZQ1l+DC7qj/w/9/ey0AZzApWEcS3XV66lI+8NZg5yIz8pC9zYbK7EJc3Puk dP8qU2S3cOvDBOt/X8kkRwZiTZk0hnuU+8JM2T9BohiFVp2j29rtUgydBMqKlFna hePKgkGfPMI74LJh1h/UybRl95dGSyteYcPVvcySYIbKJArKPMcB7HdirwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMQVIgF7RdSd6Sy7vtdPJ20PVoogMB8GA1UdIwQY MBaAFGqdmeHrJ+x6u+k1YnnIQRpBMP3KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS83M2M4ZjAtN2E1YS00YWRiLWExMmQt YjdkYWYyZTYwZjZmLzEvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS83M2M4ZjAtN2E1YS00YWRiLWExMmQtYjdkYWYyZTYwZjZm LzEvYXAyWjRlc243SHE3NlRWaWVjaEJHa0V3X2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAljz/NRDl qfR3C28Y8MMeH+HluLOQceqeA2GyWzCBgB071NKFpF/ji0uYzN25kICg1L7Rtl+3 S+PabkEQusbAHgTkuF/LmGbTInvQS3QRrqmmbYo1ivIhhosXa7rVg+CPkSoPYYvW AcF7jr8VFPCly8NMWvMGyw4PArZxYPPy3rV+sL/QOAlCxOU65ToaiE9cj8Jq+siZ XOtvpDxnMgCtZZwfRfUvA5yL6Ak3EzvXATwU3riw1nJNNJY+LpgxoI6VE9MRfsun 8WOjD7XdueYQEmt/Fa6O9pH4h8AgbtWOWPCGkKUovUqWDyxAeRzgORsywJM6+XpT 8P5BWTxGqthQZA== -----END CERTIFICATE-----Generated at Sat Dec 6 19:19:29 2025 by rpki-client