This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json) Hash identifier: BAzP06LB4jOKUX4fEO90cAvo7mGRk55uS9Fw+IMdGic= Subject key identifier: C7:F4:1B:17:0C:A6:18:B4:86:A3:6C:E6:86:7D:E1:D6:5E:9F:7F:25 Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69 Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69 Certificate serial: 019AF2ADEBDF23939ECD771058A72A6C292E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft Manifest number: 079F Signing time: Sat 06 Dec 2025 08:01:15 +0000 Manifest this update: Sat 06 Dec 2025 08:01:15 +0000 Manifest next update: Sun 07 Dec 2025 08:01:15 +0000 Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: rDOSKu/DvZw+q8CGWddNowUnOzV9K510b/aQMl15Wh4=) 2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:eb:df:23:93:9e:cd:77:10:58:a7:2a:6c:29:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69 Validity Not Before: Dec 6 08:01:15 2025 GMT Not After : Dec 7 08:01:15 2025 GMT Subject: CN=c7f41b170ca618b486a36ce6867de1d65e9f7f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:18:3e:52:40:99:ca:a8:6b:bf:da:52:f4:5b: 11:01:bf:de:0c:37:2e:a7:15:a9:f6:d0:6f:49:06: bc:44:f0:89:15:50:7b:80:77:6b:8d:fc:78:d1:ac: 7a:66:f2:cf:c1:bb:17:f4:7c:f5:9e:76:b7:b3:87: 92:47:67:3d:2b:1d:9a:44:85:e3:52:22:7f:fc:03: 9a:59:e5:68:d3:ba:10:63:23:a4:9e:68:80:d0:51: 43:37:0d:34:29:dc:26:41:3c:40:11:a4:42:4a:31: d0:d1:df:46:69:f5:29:35:01:4d:98:4c:1c:66:c0: 5d:5a:ed:b8:7b:e5:62:b3:57:fe:46:31:d9:d8:2a: 5c:9d:fa:41:aa:84:39:ac:35:dd:77:8b:3e:8e:04: 2e:29:3e:4a:5f:3c:46:54:c1:1c:d9:e5:3b:a5:eb: cc:7e:b8:95:14:60:20:e7:36:d2:c8:f3:2d:ba:ac: d8:8a:2b:62:02:c5:05:e9:29:dd:01:e2:77:d5:5a: d6:da:4d:00:fa:97:97:9f:32:a3:f0:60:46:2f:33: 9d:42:ce:a7:f2:09:9d:2b:03:a6:64:69:69:ed:be: e1:09:9d:00:5c:9c:5c:b8:e6:7f:01:37:9a:86:e4: 75:e4:47:9f:55:79:20:88:9d:23:ea:a2:69:de:b3: 8d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F4:1B:17:0C:A6:18:B4:86:A3:6C:E6:86:7D:E1:D6:5E:9F:7F:25 X509v3 Authority Key Identifier: keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:08:23:7e:28:2c:ee:ce:85:33:52:23:1e:db:20:3e:18:ca: b8:fb:be:bb:6e:3e:cf:a3:2f:71:30:01:65:39:fa:e3:ed:d5: be:0e:4a:9b:de:b1:d3:6e:f9:84:06:fe:d5:78:71:89:8d:37: 59:1f:e2:18:1e:42:f6:be:b5:13:30:66:e2:db:4d:e3:f2:9f: 33:4a:38:bb:62:fe:42:d5:f4:da:0d:f1:30:99:54:f9:86:73: 4b:76:7e:1a:0b:a5:06:f4:fd:30:b7:03:e5:ae:58:b4:b0:14: 7c:d0:0f:3a:cb:63:67:7f:9c:a1:7b:8e:53:25:0d:a3:38:d4: 2d:62:c6:fe:8a:96:e6:2b:86:64:72:c2:b9:53:8b:35:50:92: fb:92:69:fb:79:e4:70:69:47:ee:45:dd:ff:9c:47:38:69:65: b3:b1:b7:92:d2:e3:f6:e2:79:15:f9:ad:06:c1:8d:07:86:1a: 43:c6:07:b9:8b:f6:7a:e8:01:ad:57:8c:c8:b5:74:52:76:67: 9e:42:30:b3:9e:40:60:70:03:d7:4c:6e:ed:35:96:bd:52:d4: 91:7b:43:72:38:d2:0c:f7:4e:ec:15:02:62:2d:72:7b:53:e3: 99:d6:12:2b:71:88:2e:6d:f0:30:f4:6d:93:3b:41:f5:4e:93: 11:51:5b:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrevfI5OezXcQWKcqbCkuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj OTNiNjkwHhcNMjUxMjA2MDgwMTE1WhcNMjUxMjA3MDgwMTE1WjAzMTEwLwYDVQQD EyhjN2Y0MWIxNzBjYTYxOGI0ODZhMzZjZTY4NjdkZTFkNjVlOWY3ZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBg+UkCZyqhrv9pS9FsRAb/eDDcu pxWp9tBvSQa8RPCJFVB7gHdrjfx40ax6ZvLPwbsX9Hz1nna3s4eSR2c9Kx2aRIXj UiJ//AOaWeVo07oQYyOknmiA0FFDNw00KdwmQTxAEaRCSjHQ0d9GafUpNQFNmEwc ZsBdWu24e+Vis1f+RjHZ2CpcnfpBqoQ5rDXdd4s+jgQuKT5KXzxGVMEc2eU7pevM friVFGAg5zbSyPMtuqzYiitiAsUF6SndAeJ31VrW2k0A+peXnzKj8GBGLzOdQs6n 8gmdKwOmZGlp7b7hCZ0AXJxcuOZ/ATeahuR15EefVXkgiJ0j6qJp3rON9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMf0GxcMphi0hqNs5oZ94dZen38lMB8GA1UdIwQY MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0 LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhAgjfigs 7s6FM1IjHtsgPhjKuPu+u24+z6MvcTABZTn64+3Vvg5Km96x0275hAb+1XhxiY03 WR/iGB5C9r61EzBm4ttN4/KfM0o4u2L+QtX02g3xMJlU+YZzS3Z+GgulBvT9MLcD 5a5YtLAUfNAPOstjZ3+coXuOUyUNozjULWLG/oqW5iuGZHLCuVOLNVCS+5Jp+3nk cGlH7kXd/5xHOGlls7G3ktLj9uJ5FfmtBsGNB4YaQ8YHuYv2eugBrVeMyLV0UnZn nkIws55AYHAD10xu7TWWvVLUkXtDcjjSDPdO7BUCYi1ye1PjmdYSK3GILm3wMPRt kztB9U6TEVFbRw== -----END CERTIFICATE-----Generated at Sat Dec 6 16:55:30 2025 by rpki-client