This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json) Hash identifier: vs1q9ydyiQl5f8l9On3HxpcnZ6Z2UuaebXel2l3AXiA= Subject key identifier: DB:66:ED:B9:8B:81:46:FA:CE:13:74:F5:F9:EE:C7:10:95:A6:B0:E1 Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d Certificate serial: 019B27E4A3128449E6253D0274EB444FD138 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft Manifest number: 16D2 Signing time: Tue 16 Dec 2025 16:00:53 +0000 Manifest this update: Tue 16 Dec 2025 16:00:53 +0000 Manifest next update: Wed 17 Dec 2025 16:00:53 +0000 Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: MUBbv8LYBY/qzoervtP4UDyv+OWT1H+fq9mQlxYWrP0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:e4:a3:12:84:49:e6:25:3d:02:74:eb:44:4f:d1:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d Validity Not Before: Dec 16 16:00:53 2025 GMT Not After : Dec 17 16:00:53 2025 GMT Subject: CN=db66edb98b8146face1374f5f9eec71095a6b0e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:88:e6:b4:6b:9b:ee:1c:07:9a:81:1e:51: a1:21:aa:b5:ba:75:9a:7f:2d:38:59:41:49:ff:5d: f5:6a:4d:0b:18:9b:72:6d:9b:00:cc:af:e4:cb:ab: 02:be:2f:d5:01:14:bb:f6:98:11:28:03:16:45:59: 26:3a:a4:6e:56:9e:f1:c3:e4:28:b9:4d:55:ce:52: 99:18:50:da:15:36:30:0b:e2:64:da:08:0a:08:6c: f6:54:6c:90:e9:70:35:ef:b8:1b:41:e5:37:26:74: 36:ad:d6:98:fb:c4:c9:9c:4e:79:96:5a:15:f1:63: ec:2a:53:81:1b:00:57:f5:92:77:9c:e6:eb:92:98: dc:54:78:0c:73:ad:43:63:8e:98:39:78:6d:71:fa: 81:fb:c1:61:de:a2:5b:34:04:83:18:d3:52:88:7a: 10:35:b1:e0:ad:7f:d4:f2:bd:d0:10:32:01:a0:41: f9:4d:a8:a5:3a:16:2d:6c:c5:7d:8f:7b:a3:8c:bd: 55:44:1c:2f:dd:67:1b:bc:ce:8b:54:d7:9e:a6:cb: 8f:32:5f:19:b9:80:80:47:7f:4a:95:05:ef:7d:de: e7:c7:9a:84:95:a5:cc:ca:4d:d5:84:29:0d:f7:71: 94:ee:a2:01:fc:ba:2a:3d:03:19:4a:67:8c:cd:fa: 08:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:66:ED:B9:8B:81:46:FA:CE:13:74:F5:F9:EE:C7:10:95:A6:B0:E1 X509v3 Authority Key Identifier: keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:50:f0:ba:71:ec:82:cd:99:49:52:b0:d3:04:37:b1:69:da: 67:fe:cd:e5:8f:2c:dd:51:e3:b4:8e:25:9c:ff:56:64:f6:ad: f5:4e:c6:41:d2:e6:41:9f:27:8e:bf:9b:5a:c6:3e:e7:f1:a9: cb:0c:20:14:a6:9f:70:f7:2d:50:3c:28:ee:49:d6:7c:83:b1: 8c:3a:10:f1:6f:2a:b4:34:93:2f:4e:58:d6:1a:93:5a:42:5e: 4c:79:94:1d:66:25:d8:30:03:d7:2e:d1:44:7a:20:09:c3:b9: 61:6d:bc:51:72:33:d4:7e:14:7a:cf:90:3a:e2:d7:a6:82:39: 78:8a:3c:de:24:5f:04:fa:4a:af:76:ab:35:58:5e:77:bf:1c: 5b:cd:a1:44:97:01:87:38:26:21:74:1a:22:2c:c7:22:bb:2b: 44:8b:68:f8:4e:77:ae:7a:5e:05:50:50:b8:ce:ff:66:f4:01: 1f:5b:48:17:7d:65:4a:15:fc:60:a8:1f:84:40:3b:30:4d:c5: 5c:88:77:b6:3e:39:78:13:a8:f1:99:ce:8b:9d:8b:db:b0:a8: 24:cf:3a:ad:e7:a2:84:bb:bf:22:fc:7d:83:b2:c9:ec:ef:62: b1:e7:08:d6:33:72:43:30:26:12:e1:aa:0a:77:cd:a4:70:31: 98:f8:2a:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsn5KMShEnmJT0CdOtET9E4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZjdkNTZjZDM3ZTMxZTBhNTI1ZjViYjFhNWJhZjVmNDk5 ZTQwNmQwHhcNMjUxMjE2MTYwMDUzWhcNMjUxMjE3MTYwMDUzWjAzMTEwLwYDVQQD EyhkYjY2ZWRiOThiODE0NmZhY2UxMzc0ZjVmOWVlYzcxMDk1YTZiMGUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrmI5rRrm+4cB5qBHlGhIaq1unWa fy04WUFJ/131ak0LGJtybZsAzK/ky6sCvi/VARS79pgRKAMWRVkmOqRuVp7xw+Qo uU1VzlKZGFDaFTYwC+Jk2ggKCGz2VGyQ6XA177gbQeU3JnQ2rdaY+8TJnE55lloV 8WPsKlOBGwBX9ZJ3nObrkpjcVHgMc61DY46YOXhtcfqB+8Fh3qJbNASDGNNSiHoQ NbHgrX/U8r3QEDIBoEH5TailOhYtbMV9j3ujjL1VRBwv3WcbvM6LVNeepsuPMl8Z uYCAR39KlQXvfd7nx5qElaXMyk3VhCkN93GU7qIB/LoqPQMZSmeMzfoIYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNtm7bmLgUb6zhN09fnuxxCVprDhMB8GA1UdIwQY MBaAFAD31WzTfjHgpSX1uxpbr19JnkBtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMt MTNiMjllYWUxOWIzLzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMtMTNiMjllYWUxOWIz LzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVDwunHs gs2ZSVKw0wQ3sWnaZ/7N5Y8s3VHjtI4lnP9WZPat9U7GQdLmQZ8njr+bWsY+5/Gp ywwgFKafcPctUDwo7knWfIOxjDoQ8W8qtDSTL05Y1hqTWkJeTHmUHWYl2DAD1y7R RHogCcO5YW28UXIz1H4Ues+QOuLXpoI5eIo83iRfBPpKr3arNVhed78cW82hRJcB hzgmIXQaIizHIrsrRIto+E53rnpeBVBQuM7/ZvQBH1tIF31lShX8YKgfhEA7ME3F XIh3tj45eBOo8ZnOi52L27CoJM86reeihLu/Ivx9g7LJ7O9isecI1jNyQzAmEuGq CnfNpHAxmPgqyA== -----END CERTIFICATE-----Generated at Tue Dec 16 19:14:44 2025 by rpki-client