This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json) Hash identifier: wrfR2xgX2ASFU4m2tT9RX+EqWfShj6ipRhjPlsBcdwk= Subject key identifier: 36:D8:8F:25:87:16:12:AB:2D:1C:B6:07:1A:8B:FD:9B:08:14:49:4E Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d Certificate serial: 019AF352CD1C396CDFA85E41718F1C737FE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft Manifest number: 093B Signing time: Sat 06 Dec 2025 11:01:21 +0000 Manifest this update: Sat 06 Dec 2025 11:01:21 +0000 Manifest next update: Sun 07 Dec 2025 11:01:21 +0000 Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=) 2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: E+B9Imi7y2RaiN6uZNKjAwWAC7OrusYiht4een2k9Q0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:cd:1c:39:6c:df:a8:5e:41:71:8f:1c:73:7f:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d Validity Not Before: Dec 6 11:01:21 2025 GMT Not After : Dec 7 11:01:21 2025 GMT Subject: CN=36d88f25871612ab2d1cb6071a8bfd9b0814494e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:86:fc:5a:b8:9b:3d:8c:c2:1e:be:7c:0d:8d: 8d:ec:48:9b:20:e6:56:e6:8d:93:b3:ab:51:9f:02: 34:94:97:bf:39:7f:87:f3:ca:b0:19:ed:fb:16:34: 99:b5:9c:e6:00:9c:b0:dd:45:0b:1d:7c:41:c6:15: f4:7e:06:54:93:46:69:92:9b:a1:38:6c:58:7b:eb: 91:8b:d2:d7:73:b5:ae:fc:4a:a2:99:da:08:15:fe: 12:fa:81:6a:f7:f4:42:f3:15:29:a9:47:30:d1:dc: 70:b9:31:9d:01:3d:a2:84:df:94:21:e2:31:36:20: 8b:95:32:1d:16:dd:9d:db:99:3c:db:2c:42:20:32: 29:a6:e7:5b:a2:b3:9f:a3:a8:8b:55:fe:fa:ef:87: 50:92:4c:7e:ef:eb:8c:5c:2b:5c:60:ea:cd:51:25: a1:21:06:02:0a:96:06:92:e8:62:f0:92:a2:4e:8a: d6:4f:60:e8:1f:b6:e3:ab:05:58:0c:52:7e:5a:59: ba:24:45:49:cb:de:ad:d4:3f:1d:e7:fd:21:ab:42: 24:58:cb:cf:43:77:de:9e:21:b5:8e:a3:d7:70:2e: 6f:52:6e:9c:f5:6c:7c:90:dc:01:93:3e:80:bb:25: ab:03:0b:a6:0e:08:f4:a4:d4:13:97:03:c7:ff:ba: 58:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D8:8F:25:87:16:12:AB:2D:1C:B6:07:1A:8B:FD:9B:08:14:49:4E X509v3 Authority Key Identifier: keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:bc:42:95:af:2f:4f:3c:f3:fd:e1:ba:b9:31:36:7c:23:4f: b5:81:23:9b:72:70:37:00:42:fb:18:1d:d5:ec:02:04:d4:c7: c5:34:6c:86:30:e9:df:90:5e:15:14:1a:a3:a1:43:fa:b0:61: 3f:49:60:c8:65:3c:f9:fd:f2:6a:58:78:11:b8:e6:f5:dd:1a: 6b:e4:0d:ba:d8:87:5a:82:60:0b:d9:af:11:4a:cd:cb:a9:98: da:45:5e:d5:91:0b:2e:b4:de:74:7c:81:a2:2f:67:fa:df:b3: 6d:40:b3:f6:8d:c8:16:65:f7:1c:17:85:a9:f2:a4:30:ec:2c: fc:46:cd:df:c0:d1:6e:b8:79:ee:4c:41:94:06:7c:e0:9a:d3: f3:25:d2:0c:52:36:4f:c0:42:01:b9:47:54:26:18:47:97:34: 62:68:e6:c3:aa:44:76:53:51:6b:22:ea:cf:e6:18:fe:90:98: 42:be:28:b8:44:5e:3e:df:5c:09:f6:d2:3f:14:df:a6:3d:0a: dd:79:75:02:e1:1f:94:56:44:45:c7:02:f3:c5:74:17:fd:20: 78:21:a5:53:02:79:2f:ea:e3:13:0d:63:c1:c2:27:8d:f3:dd: 98:c4:53:de:62:74:63:4e:2f:fd:a5:7b:09:f4:b1:0a:56:aa: a3:70:a9:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUs0cOWzfqF5BcY8cc3/gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5 Y2VlMWQwHhcNMjUxMjA2MTEwMTIxWhcNMjUxMjA3MTEwMTIxWjAzMTEwLwYDVQQD EygzNmQ4OGYyNTg3MTYxMmFiMmQxY2I2MDcxYThiZmQ5YjA4MTQ0OTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArob8WribPYzCHr58DY2N7EibIOZW 5o2Ts6tRnwI0lJe/OX+H88qwGe37FjSZtZzmAJyw3UULHXxBxhX0fgZUk0Zpkpuh OGxYe+uRi9LXc7Wu/EqimdoIFf4S+oFq9/RC8xUpqUcw0dxwuTGdAT2ihN+UIeIx NiCLlTIdFt2d25k82yxCIDIppudborOfo6iLVf7674dQkkx+7+uMXCtcYOrNUSWh IQYCCpYGkuhi8JKiTorWT2DoH7bjqwVYDFJ+Wlm6JEVJy96t1D8d5/0hq0IkWMvP Q3feniG1jqPXcC5vUm6c9Wx8kNwBkz6AuyWrAwumDgj0pNQTlwPH/7pYQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDbYjyWHFhKrLRy2BxqL/ZsIFElOMB8GA1UdIwQY MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4 LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAubxCla8v Tzzz/eG6uTE2fCNPtYEjm3JwNwBC+xgd1ewCBNTHxTRshjDp35BeFRQao6FD+rBh P0lgyGU8+f3yalh4Ebjm9d0aa+QNutiHWoJgC9mvEUrNy6mY2kVe1ZELLrTedHyB oi9n+t+zbUCz9o3IFmX3HBeFqfKkMOws/EbN38DRbrh57kxBlAZ84JrT8yXSDFI2 T8BCAblHVCYYR5c0Ymjmw6pEdlNRayLqz+YY/pCYQr4ouERePt9cCfbSPxTfpj0K 3Xl1AuEflFZERccC88V0F/0geCGlUwJ5L+rjEw1jwcInjfPdmMRT3mJ0Y04v/aV7 CfSxClaqo3Cpmw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:43 2025 by rpki-client