This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft File: AvxcBk9RWcih-kBmyMuP9wFnHdI.mft (raw, json) Hash identifier: 40B7gUmNSrDXmPCYDM8ErhCJKSl3OdLfzBf7RJh0pfs= Subject key identifier: 7E:6C:30:9C:2C:09:BF:94:5B:76:C1:54:20:5C:FE:C4:6B:34:59:8A Authority key identifier: 02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2 Certificate issuer: /CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2 Certificate serial: 019AF23FAC1D1466090BECA3DE69CDC7D85F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft Manifest number: 0C82 Signing time: Sat 06 Dec 2025 06:00:50 +0000 Manifest this update: Sat 06 Dec 2025 06:00:50 +0000 Manifest next update: Sun 07 Dec 2025 06:00:50 +0000 Files and hashes: 1: 5d3BkT4g6BSm4A2tPk7SLnm-a2o.roa (hash: r7O0hom8hw87s+SCAknwxnQSAbbhz820jIMuUD9IwqI=) 2: AvxcBk9RWcih-kBmyMuP9wFnHdI.crl (hash: 1msCZerZ3IMRXXiHfaqeU1jfuCSHTR/4oSrMkej6gzk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:ac:1d:14:66:09:0b:ec:a3:de:69:cd:c7:d8:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02fc5c064f5159c8a1fa4066c8cb8ff701671dd2 Validity Not Before: Dec 6 06:00:50 2025 GMT Not After : Dec 7 06:00:50 2025 GMT Subject: CN=7e6c309c2c09bf945b76c154205cfec46b34598a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:df:90:5e:aa:7b:cb:94:25:35:52:43:69:ac: 87:b3:8f:ca:06:d7:82:90:9e:59:8d:21:cd:52:eb: eb:fc:10:f6:6d:a2:c2:64:92:9e:18:73:8f:79:df: e7:db:e8:d6:97:1a:13:3f:96:b8:c6:31:6a:46:3e: 22:40:73:0b:3f:71:18:9a:c3:49:78:16:db:d0:10: 43:9c:5d:90:b3:46:bc:c6:df:94:ef:80:c8:ef:54: 9f:54:f1:59:b7:34:b9:1c:7e:29:8f:03:97:24:85: 50:cc:4b:d1:5e:d4:88:39:98:10:02:97:70:04:40: 04:91:a0:18:7d:c3:91:1c:d0:b8:95:74:c8:54:99: 8f:f6:f6:f5:fc:d3:02:dd:9f:c5:a3:ff:06:e9:0e: 16:48:a1:08:0b:52:db:ef:f9:a3:88:84:12:33:2d: 93:cf:8e:20:7a:8c:83:e3:df:b8:a3:72:36:5b:ee: 45:12:d9:21:c6:34:de:36:57:2a:4f:c5:7a:a2:52: 55:4e:6e:bd:95:ea:71:6f:71:60:50:14:88:cd:d2: b3:f1:d3:e0:68:9d:73:f5:f5:17:af:1a:6b:e9:e8: 06:31:29:31:51:06:58:c9:f8:4a:84:8c:ff:0f:44: 81:da:d1:49:9b:65:ff:35:63:12:81:1c:5b:4c:62: 11:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6C:30:9C:2C:09:BF:94:5B:76:C1:54:20:5C:FE:C4:6B:34:59:8A X509v3 Authority Key Identifier: keyid:02:FC:5C:06:4F:51:59:C8:A1:FA:40:66:C8:CB:8F:F7:01:67:1D:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvxcBk9RWcih-kBmyMuP9wFnHdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b15a7d-5aee-4d40-be5a-792a91c5ca2b/1/AvxcBk9RWcih-kBmyMuP9wFnHdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:8f:4e:c6:f3:7e:72:42:d5:18:71:0a:8b:e0:18:cb:9f:80: 70:6b:73:d1:18:99:19:8e:bc:99:94:59:1b:c2:eb:55:48:c5: 04:a0:50:34:a9:c9:a5:54:d4:8e:9f:b5:1c:5b:f0:67:c1:27: c0:ad:45:cd:8b:6e:7e:1e:4d:cd:58:b5:3a:ae:b5:1f:fc:f9: cd:ac:3b:ef:29:02:57:e3:88:22:a2:d8:98:d8:3d:1c:12:97: 05:e8:b2:42:52:f2:96:2e:04:6e:cd:ef:2d:f7:eb:54:20:ad: 73:6c:4f:8e:b0:40:50:52:30:70:1d:22:ed:61:96:5e:69:d2: ec:7a:1c:fb:cb:cc:d7:32:fc:77:2b:d6:39:7f:1d:bd:6a:92: 42:10:b5:47:2f:74:43:7a:ba:1b:e0:93:94:f3:44:76:1f:a5: 1e:30:0c:8b:58:50:6c:d2:1b:e9:43:fd:6a:e0:c0:5a:99:59: 0f:89:34:72:ad:8f:65:aa:28:71:8c:ce:b3:c1:8e:42:3d:d1: 48:67:e0:02:4d:01:02:f4:ec:4a:a9:00:e7:1c:f3:5a:14:3f: 24:af:e6:4e:9f:e9:5c:ed:90:fe:08:c6:9c:0b:9d:ef:a7:64: 1f:1a:d0:c2:e6:23:e8:fb:e8:2c:1c:b8:00:a7:bc:4a:73:4a: 36:fa:8e:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP6wdFGYJC+yj3mnNx9hfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyZmM1YzA2NGY1MTU5YzhhMWZhNDA2NmM4Y2I4ZmY3MDE2 NzFkZDIwHhcNMjUxMjA2MDYwMDUwWhcNMjUxMjA3MDYwMDUwWjAzMTEwLwYDVQQD Eyg3ZTZjMzA5YzJjMDliZjk0NWI3NmMxNTQyMDVjZmVjNDZiMzQ1OThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz9+QXqp7y5QlNVJDaayHs4/KBteC kJ5ZjSHNUuvr/BD2baLCZJKeGHOPed/n2+jWlxoTP5a4xjFqRj4iQHMLP3EYmsNJ eBbb0BBDnF2Qs0a8xt+U74DI71SfVPFZtzS5HH4pjwOXJIVQzEvRXtSIOZgQApdw BEAEkaAYfcORHNC4lXTIVJmP9vb1/NMC3Z/Fo/8G6Q4WSKEIC1Lb7/mjiIQSMy2T z44geoyD49+4o3I2W+5FEtkhxjTeNlcqT8V6olJVTm69lepxb3FgUBSIzdKz8dPg aJ1z9fUXrxpr6egGMSkxUQZYyfhKhIz/D0SB2tFJm2X/NWMSgRxbTGIRIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH5sMJwsCb+UW3bBVCBc/sRrNFmKMB8GA1UdIwQY MBaAFAL8XAZPUVnIofpAZsjLj/cBZx3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXZ4Y0JrOVJXY2loLWtCbXlNdVA5d0ZuSGRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iMTVhN2QtNWFlZS00ZDQwLWJlNWEt NzkyYTkxYzVjYTJiLzEvQXZ4Y0JrOVJXY2loLWtCbXlNdVA5d0ZuSGRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9iMTVhN2QtNWFlZS00ZDQwLWJlNWEtNzkyYTkxYzVjYTJi LzEvQXZ4Y0JrOVJXY2loLWtCbXlNdVA5d0ZuSGRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGY9OxvN+ ckLVGHEKi+AYy5+AcGtz0RiZGY68mZRZG8LrVUjFBKBQNKnJpVTUjp+1HFvwZ8En wK1FzYtufh5NzVi1Oq61H/z5zaw77ykCV+OIIqLYmNg9HBKXBeiyQlLyli4Ebs3v LffrVCCtc2xPjrBAUFIwcB0i7WGWXmnS7Hoc+8vM1zL8dyvWOX8dvWqSQhC1Ry90 Q3q6G+CTlPNEdh+lHjAMi1hQbNIb6UP9auDAWplZD4k0cq2PZaoocYzOs8GOQj3R SGfgAk0BAvTsSqkA5xzzWhQ/JK/mTp/pXO2Q/gjGnAud76dkHxrQwuYj6PvoLBy4 AKe8SnNKNvqOyw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:49:47 2025 by rpki-client