This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json) Hash identifier: ISb3PATZ3pKmuLijSBOzUBfo9b4jEaxt0+NzXEwI25Y= Subject key identifier: 26:32:3B:F5:F5:C2:18:D4:6F:1D:87:52:44:1C:38:EC:6D:6B:60:88 Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc Certificate serial: 019AF5E56FA12E283450E17CD8EE9D40B406 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft Manifest number: 078D Signing time: Sat 06 Dec 2025 23:00:45 +0000 Manifest this update: Sat 06 Dec 2025 23:00:45 +0000 Manifest next update: Sun 07 Dec 2025 23:00:45 +0000 Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: 7/FGvSugPcVeNdbmUqrrdUb82k7cg9RxPDDL1zv6jks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:6f:a1:2e:28:34:50:e1:7c:d8:ee:9d:40:b4:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc Validity Not Before: Dec 6 23:00:45 2025 GMT Not After : Dec 7 23:00:45 2025 GMT Subject: CN=26323bf5f5c218d46f1d8752441c38ec6d6b6088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1d:d6:66:a3:78:fc:a7:f5:e5:46:e3:54:73: 6c:7d:d4:21:8c:1f:0f:ac:94:25:88:69:9c:1b:a6: 17:fc:62:f2:fc:bc:41:af:d0:31:4b:16:45:b0:7a: a8:c1:74:f1:00:55:a7:1e:fb:d6:e7:e1:5d:00:cb: fc:b4:9a:2c:16:a9:8f:d9:cf:e2:a9:59:0b:0d:72: 52:74:2b:36:5a:75:5d:94:d8:a5:f4:21:8a:a1:39: 93:24:95:f3:e8:e9:04:6a:8b:0e:92:38:66:04:d5: 7b:2a:f8:95:a6:9b:37:66:75:e7:9a:07:b8:2d:f4: 14:3e:a7:72:ff:45:a3:29:80:aa:36:a5:e4:77:18: 0f:3c:69:05:26:e9:a9:45:be:3d:e2:71:9c:7f:2c: c9:f0:90:e9:70:ac:00:cf:a2:7c:f8:ea:6f:c2:cb: a7:82:d8:f8:b4:34:ec:e3:1c:4c:ee:e4:0e:9e:3c: 43:88:d8:41:4a:3a:ee:98:4c:29:d2:90:16:2c:0b: 20:30:cb:8a:63:2e:f5:45:ff:fe:a0:ab:06:ec:ab: 49:4f:34:28:95:3c:9d:6f:f7:86:dd:24:6d:4e:3a: 70:8e:71:4d:f7:21:bb:74:b6:3c:8d:a1:8a:42:6b: 5e:95:ac:59:7e:35:05:dc:c8:38:5b:3d:c2:56:9c: 3d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:32:3B:F5:F5:C2:18:D4:6F:1D:87:52:44:1C:38:EC:6D:6B:60:88 X509v3 Authority Key Identifier: keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:b8:8a:bf:47:d8:4d:a3:7b:82:40:77:40:21:21:6d:bc:9a: 0d:bc:f9:8e:06:c2:85:cf:28:ca:3b:df:a3:79:1c:be:46:44: c7:4f:90:a8:71:5c:c6:c7:4a:86:28:55:0e:eb:25:83:2d:f5: 56:73:b3:95:5a:19:87:34:da:a9:1b:06:82:d6:17:8d:72:42: ab:b4:52:66:0d:1e:d6:2e:ab:4d:1f:27:bc:a4:0b:d3:89:f0: 26:b7:71:89:53:43:30:88:bc:ca:67:ca:0a:9b:76:be:a7:96: 81:15:a2:2d:25:fb:ec:45:a3:e0:9e:88:45:f7:e5:d2:c9:91: 24:d5:64:35:f8:6c:e4:aa:14:91:23:26:45:f4:38:c2:9a:f0: 51:6c:89:8c:a4:2a:57:2b:99:0f:19:0e:a7:fa:d5:d9:a6:f7: 49:dd:fd:1c:38:fe:fb:44:76:a3:ea:f3:93:65:72:47:27:35: f9:a8:9e:49:33:93:a0:ec:1d:ec:60:63:5b:f8:eb:e6:29:cf: 2c:12:b5:6a:7d:4f:8f:08:d8:c5:c1:91:46:7d:a0:e2:01:a7: 79:e1:59:4e:cf:07:bf:9c:31:db:66:3a:10:f6:68:c0:02:73: 83:b8:b7:52:79:9a:1c:da:98:70:36:6c:6d:1a:0b:b9:7b:68: 67:8c:65:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15W+hLig0UOF82O6dQLQGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhZjJmYmE0NWFkNjUzMWE2M2QxNzM1MDE0ZjY5OTgwN2Y0 N2ZiZGMwHhcNMjUxMjA2MjMwMDQ1WhcNMjUxMjA3MjMwMDQ1WjAzMTEwLwYDVQQD EygyNjMyM2JmNWY1YzIxOGQ0NmYxZDg3NTI0NDFjMzhlYzZkNmI2MDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsR3WZqN4/Kf15UbjVHNsfdQhjB8P rJQliGmcG6YX/GLy/LxBr9AxSxZFsHqowXTxAFWnHvvW5+FdAMv8tJosFqmP2c/i qVkLDXJSdCs2WnVdlNil9CGKoTmTJJXz6OkEaosOkjhmBNV7KviVpps3ZnXnmge4 LfQUPqdy/0WjKYCqNqXkdxgPPGkFJumpRb494nGcfyzJ8JDpcKwAz6J8+Opvwsun gtj4tDTs4xxM7uQOnjxDiNhBSjrumEwp0pAWLAsgMMuKYy71Rf/+oKsG7KtJTzQo lTydb/eG3SRtTjpwjnFN9yG7dLY8jaGKQmtelaxZfjUF3Mg4Wz3CVpw9HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCYyO/X1whjUbx2HUkQcOOxta2CIMB8GA1UdIwQY MBaAFGry+6Ra1lMaY9FzUBT2mYB/R/vcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXZMN3BGcldVeHBqMFhOUUZQYVpnSDlILTl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83MjhhNDAtZTBlZS00MzZiLWIxZmIt MTk3ZWM5YTExNWFhLzEvYXZMN3BGcldVeHBqMFhOUUZQYVpnSDlILTl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83MjhhNDAtZTBlZS00MzZiLWIxZmItMTk3ZWM5YTExNWFh LzEvYXZMN3BGcldVeHBqMFhOUUZQYVpnSDlILTl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAELiKv0fY TaN7gkB3QCEhbbyaDbz5jgbChc8oyjvfo3kcvkZEx0+QqHFcxsdKhihVDuslgy31 VnOzlVoZhzTaqRsGgtYXjXJCq7RSZg0e1i6rTR8nvKQL04nwJrdxiVNDMIi8ymfK Cpt2vqeWgRWiLSX77EWj4J6IRffl0smRJNVkNfhs5KoUkSMmRfQ4wprwUWyJjKQq VyuZDxkOp/rV2ab3Sd39HDj++0R2o+rzk2VyRyc1+aieSTOToOwd7GBjW/jr5inP LBK1an1PjwjYxcGRRn2g4gGneeFZTs8Hv5wx22Y6EPZowAJzg7i3UnmaHNqYcDZs bRoLuXtoZ4xljQ== -----END CERTIFICATE-----Generated at Sun Dec 7 07:25:24 2025 by rpki-client