This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft File: APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json) Hash identifier: 3+zwOODYTFjlL8cj2SYukev4eayEgdzYE1fncXtk2xA= Subject key identifier: 9E:08:9E:03:E5:D3:39:15:19:3B:C2:77:86:BE:63:49:A9:0B:1E:CB Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D Certificate issuer: /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d Certificate serial: 019AF1D23694B05182465C6A276D99AB2CD4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft Manifest number: 16B6 Signing time: Sat 06 Dec 2025 04:01:16 +0000 Manifest this update: Sat 06 Dec 2025 04:01:16 +0000 Manifest next update: Sun 07 Dec 2025 04:01:16 +0000 Files and hashes: 1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: SCwkR4lq0Xf9XdSfvX9VZVJ0GE7AT8r56zKz8AiwEHE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:36:94:b0:51:82:46:5c:6a:27:6d:99:ab:2c:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d Validity Not Before: Dec 6 04:01:16 2025 GMT Not After : Dec 7 04:01:16 2025 GMT Subject: CN=9e089e03e5d33915193bc27786be6349a90b1ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:15:33:47:e9:05:2e:0b:7c:fa:0d:f2:a4: 62:5b:87:91:3b:b9:8a:f1:eb:0a:2b:4d:38:30:9c: 11:7b:5a:81:1a:bf:41:c9:6f:6f:47:59:c4:91:b0: 4b:73:0a:38:17:44:ab:c3:8a:6d:9a:7a:5b:29:72: 1b:6c:4c:49:d0:f6:f5:ba:52:49:ec:dc:c6:f0:76: 76:24:76:2f:87:82:d1:5e:2e:5b:27:e4:e5:d0:b6: bb:ea:45:92:b8:27:1b:cf:ab:9c:c6:e8:f2:e9:c9: 9e:c5:f7:e4:85:73:7a:9c:80:19:ce:a9:7d:2f:8b: 00:d2:9a:00:c8:22:03:bc:5e:1e:d9:61:9a:95:38: 77:a3:9b:91:ef:6c:18:40:ff:ef:6b:d7:2f:2d:07: d3:7b:6c:e1:fc:a5:2e:e3:29:5e:ae:71:5b:9a:00: 79:31:b8:ca:23:b0:3d:9b:04:57:be:08:0b:49:33: cb:9f:b4:3f:f0:e2:01:95:b8:53:9a:71:d1:58:f6: d5:bd:59:bd:ab:d6:0a:47:bf:5b:4b:65:ee:dc:c0: f4:3f:f2:7d:a0:74:dc:f7:84:28:59:ba:57:f4:51: fb:9a:13:07:b5:be:f2:61:1a:ba:e1:8a:0e:2f:f6: 39:e8:d4:2e:82:79:96:5e:fd:3f:00:79:2b:63:68: 16:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:08:9E:03:E5:D3:39:15:19:3B:C2:77:86:BE:63:49:A9:0B:1E:CB X509v3 Authority Key Identifier: keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:f4:d3:d7:ff:fd:49:c0:7e:ad:81:9c:f5:b6:04:36:fa:71: e6:04:ab:7e:53:cc:cf:d3:c9:a5:0e:08:96:76:af:9d:9a:c6: da:ca:9e:42:3c:72:0b:4f:d2:32:6e:13:1c:a3:c6:0a:9f:5e: 46:0a:c4:86:c9:56:a8:af:6a:37:56:d9:c5:97:a9:d4:58:35: 2b:f1:b3:18:03:52:96:e8:47:ba:16:04:e2:77:0f:0b:e3:32: f1:d1:2e:3c:2f:5f:26:dd:2c:95:b9:ca:85:bd:18:97:99:01: 29:62:95:9f:7a:f7:78:ba:6b:5c:54:03:d7:c3:53:8d:46:9f: a2:30:b0:70:91:a1:f3:79:70:26:0f:a1:a2:94:05:9f:cc:f9: 22:9d:b9:31:c0:5f:1d:3b:c4:15:05:50:cf:5a:66:4c:77:e3: 2e:fb:6a:a2:da:78:63:10:dd:e4:93:9e:9b:5a:92:5b:fb:ae: 06:0d:75:06:e5:c9:74:ce:39:cb:82:14:97:e5:f1:11:46:0a: a2:e1:c6:19:46:2e:44:fe:ac:c7:94:19:bf:aa:58:67:5f:b4: e5:d9:74:29:ff:ab:fd:c7:60:e1:a8:5c:3b:de:9f:87:9c:2d: 0a:86:42:b4:96:08:74:fc:e3:04:33:7c:81:7d:dc:ed:f4:b9: 6d:d6:76:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0jaUsFGCRlxqJ22ZqyzUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZjdkNTZjZDM3ZTMxZTBhNTI1ZjViYjFhNWJhZjVmNDk5 ZTQwNmQwHhcNMjUxMjA2MDQwMTE2WhcNMjUxMjA3MDQwMTE2WjAzMTEwLwYDVQQD Eyg5ZTA4OWUwM2U1ZDMzOTE1MTkzYmMyNzc4NmJlNjM0OWE5MGIxZWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCgVM0fpBS4LfPoN8qRiW4eRO7mK 8esKK004MJwRe1qBGr9ByW9vR1nEkbBLcwo4F0Srw4ptmnpbKXIbbExJ0Pb1ulJJ 7NzG8HZ2JHYvh4LRXi5bJ+Tl0La76kWSuCcbz6ucxujy6cmexffkhXN6nIAZzql9 L4sA0poAyCIDvF4e2WGalTh3o5uR72wYQP/va9cvLQfTe2zh/KUu4ylernFbmgB5 MbjKI7A9mwRXvggLSTPLn7Q/8OIBlbhTmnHRWPbVvVm9q9YKR79bS2Xu3MD0P/J9 oHTc94QoWbpX9FH7mhMHtb7yYRq64YoOL/Y56NQugnmWXv0/AHkrY2gW9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ4IngPl0zkVGTvCd4a+Y0mpCx7LMB8GA1UdIwQY MBaAFAD31WzTfjHgpSX1uxpbr19JnkBtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMt MTNiMjllYWUxOWIzLzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMtMTNiMjllYWUxOWIz LzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/TT1//9 ScB+rYGc9bYENvpx5gSrflPMz9PJpQ4IlnavnZrG2sqeQjxyC0/SMm4THKPGCp9e RgrEhslWqK9qN1bZxZep1Fg1K/GzGANSluhHuhYE4ncPC+My8dEuPC9fJt0slbnK hb0Yl5kBKWKVn3r3eLprXFQD18NTjUafojCwcJGh83lwJg+hopQFn8z5Ip25McBf HTvEFQVQz1pmTHfjLvtqotp4YxDd5JOem1qSW/uuBg11BuXJdM45y4IUl+XxEUYK ouHGGUYuRP6sx5QZv6pYZ1+05dl0Kf+r/cdg4ahcO96fh5wtCoZCtJYIdPzjBDN8 gX3c7fS5bdZ2bQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:19:56 2025 by rpki-client