This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft File: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft (raw, json) Hash identifier: 3KI58qmytEgxTeXbFLc2QfrtnUny/IMTWvBQKWnjaUw= Subject key identifier: C8:41:C0:CC:B0:0E:08:BB:5A:E3:3C:06:B3:69:2C:B3:13:43:5E:BF Authority key identifier: 01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F Certificate issuer: /CN=01538851167b4e3d6f64d53797b08cb41371870f Certificate serial: 019B2BF8A5B9889DD29AD03B3B695073ADF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft Manifest number: 177F Signing time: Wed 17 Dec 2025 11:01:14 +0000 Manifest this update: Wed 17 Dec 2025 11:01:14 +0000 Manifest next update: Thu 18 Dec 2025 11:01:14 +0000 Files and hashes: 1: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl (hash: 1gpeGWCAiD/AyTkFgqg2yjXOXtbuQMq6Mu4AuCo7774=) 2: voTBQK08ae5dJLLPC_WLTf299J4.roa (hash: IJFytwQyok533gq1H2eNYMHcRnLoiQur1Z7mEoU5py4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f8:a5:b9:88:9d:d2:9a:d0:3b:3b:69:50:73:ad:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01538851167b4e3d6f64d53797b08cb41371870f Validity Not Before: Dec 17 11:01:14 2025 GMT Not After : Dec 18 11:01:14 2025 GMT Subject: CN=c841c0ccb00e08bb5ae33c06b3692cb313435ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:7f:81:3a:7c:8d:be:09:6b:34:31:9e:e5:15: f9:b9:e0:37:98:9a:04:3b:1d:8a:16:ae:b6:6b:71: 11:19:fa:27:ec:dc:47:9c:3c:21:55:76:f0:ac:0a: 25:3a:1f:7e:1e:c4:9e:7e:5f:42:0f:d5:33:5f:5f: d5:16:2c:cf:42:18:dc:d1:eb:b9:15:88:c7:ff:fe: 51:b5:d5:9a:d9:64:44:31:0f:b2:3b:66:91:55:7b: 8f:e5:79:89:ec:8a:46:3a:a3:4f:6e:fa:d3:29:84: 51:49:85:be:84:b2:01:41:2d:ad:bb:89:52:21:1e: 16:21:2d:66:34:47:5d:1d:ef:b2:f3:77:1f:79:81: 58:82:89:1f:9e:f4:69:5b:62:7a:48:de:be:ca:ca: bc:91:40:07:75:c0:ab:ec:4a:86:1e:4f:1d:e4:1d: 61:28:86:90:24:dc:52:5a:ca:5f:5e:a4:cb:8f:04: 12:ec:1b:db:03:b6:ce:f9:b4:c9:2b:7e:74:a1:57: 77:a4:d3:1f:53:68:6f:4a:b0:ca:57:20:f9:15:0e: b6:b2:53:3e:4a:2c:e4:98:46:eb:e6:d2:d1:15:ff: 95:05:00:62:1f:02:60:b6:21:8c:9a:69:99:db:33: 47:5c:10:17:a2:02:da:4f:47:5f:4c:e0:b0:80:37: de:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:41:C0:CC:B0:0E:08:BB:5A:E3:3C:06:B3:69:2C:B3:13:43:5E:BF X509v3 Authority Key Identifier: keyid:01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:15:dd:52:7c:e2:c9:46:de:ed:42:1e:d1:78:56:e2:d7:ca: 1c:d5:11:01:83:ac:9e:61:ae:0d:2f:66:8a:34:65:35:0e:45: 34:af:87:d4:d5:71:8a:ac:d9:da:0b:4c:61:2d:fb:2f:02:55: 2b:3c:23:f6:28:08:ef:18:e3:fe:e3:aa:64:03:19:4a:df:8b: 48:ca:ab:9f:8e:b6:8a:e6:0b:e7:49:cd:57:db:66:ef:3a:72: 62:0c:a7:38:b1:c5:88:c0:ff:65:82:dd:0c:75:27:11:50:d2: 25:74:4f:be:bf:74:2c:5d:51:ad:64:3d:b1:4c:57:66:4c:d5: 2a:4a:10:aa:6b:5b:06:4c:35:97:5a:3e:16:ec:b5:91:1c:eb: 1f:66:aa:a8:d8:b3:94:74:41:6c:2a:f2:c4:82:e2:fa:01:ff: 53:4f:07:b0:57:e0:12:bf:8f:6d:ed:a1:5f:e5:ae:43:3b:18: ec:58:57:44:c6:b4:ad:49:71:0d:28:87:63:4a:fa:47:ce:33: a9:06:47:92:39:92:26:f8:bc:c1:ff:4b:d0:ae:21:56:5f:58: b2:05:06:3e:9d:a0:e2:52:15:0d:91:c1:b0:56:89:a4:5c:13: 19:a3:0f:d1:49:dd:8b:59:0e:5a:c3:9d:f7:bf:67:2d:67:67: cc:f7:3d:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+KW5iJ3SmtA7O2lQc630MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNTM4ODUxMTY3YjRlM2Q2ZjY0ZDUzNzk3YjA4Y2I0MTM3 MTg3MGYwHhcNMjUxMjE3MTEwMTE0WhcNMjUxMjE4MTEwMTE0WjAzMTEwLwYDVQQD EyhjODQxYzBjY2IwMGUwOGJiNWFlMzNjMDZiMzY5MmNiMzEzNDM1ZWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8X+BOnyNvglrNDGe5RX5ueA3mJoE Ox2KFq62a3ERGfon7NxHnDwhVXbwrAolOh9+HsSefl9CD9UzX1/VFizPQhjc0eu5 FYjH//5RtdWa2WREMQ+yO2aRVXuP5XmJ7IpGOqNPbvrTKYRRSYW+hLIBQS2tu4lS IR4WIS1mNEddHe+y83cfeYFYgokfnvRpW2J6SN6+ysq8kUAHdcCr7EqGHk8d5B1h KIaQJNxSWspfXqTLjwQS7BvbA7bO+bTJK350oVd3pNMfU2hvSrDKVyD5FQ62slM+ SizkmEbr5tLRFf+VBQBiHwJgtiGMmmmZ2zNHXBAXogLaT0dfTOCwgDfedQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMhBwMywDgi7WuM8BrNpLLMTQ16/MB8GA1UdIwQY MBaAFAFTiFEWe049b2TVN5ewjLQTcYcPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9iZjQyNjMtZmZhZS00MmQ3LWJlMGYt NjI5NWI4NTRkZjg2LzEvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9iZjQyNjMtZmZhZS00MmQ3LWJlMGYtNjI5NWI4NTRkZjg2 LzEvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoBXdUnzi yUbe7UIe0XhW4tfKHNURAYOsnmGuDS9mijRlNQ5FNK+H1NVxiqzZ2gtMYS37LwJV Kzwj9igI7xjj/uOqZAMZSt+LSMqrn462iuYL50nNV9tm7zpyYgynOLHFiMD/ZYLd DHUnEVDSJXRPvr90LF1RrWQ9sUxXZkzVKkoQqmtbBkw1l1o+Fuy1kRzrH2aqqNiz lHRBbCryxILi+gH/U08HsFfgEr+Pbe2hX+WuQzsY7FhXRMa0rUlxDSiHY0r6R84z qQZHkjmSJvi8wf9L0K4hVl9YsgUGPp2g4lIVDZHBsFaJpFwTGaMP0Undi1kOWsOd 979nLWdnzPc9EA== -----END CERTIFICATE-----Generated at Wed Dec 17 18:35:03 2025 by rpki-client