This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft File: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft (raw, json) Hash identifier: T3t8PoVLAlLaBVdLccdx2yX30dZmb/22Y7Dmn9zNeZ8= Subject key identifier: 55:E9:F4:F6:76:25:80:48:C1:46:E8:FB:7E:4C:57:9A:35:E2:ED:EB Authority key identifier: 01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F Certificate issuer: /CN=01538851167b4e3d6f64d53797b08cb41371870f Certificate serial: 019AF20908959F4718A752EEE7CB861775BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 05:01:09 +0000 Manifest this update: Sat 06 Dec 2025 05:01:09 +0000 Manifest next update: Sun 07 Dec 2025 05:01:09 +0000 Files and hashes: 1: AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl (hash: ufrJ40Do5iOx3eC1oScHJRQudpyIi8JgvGK2abI8e9Y=) 2: voTBQK08ae5dJLLPC_WLTf299J4.roa (hash: IJFytwQyok533gq1H2eNYMHcRnLoiQur1Z7mEoU5py4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:08:95:9f:47:18:a7:52:ee:e7:cb:86:17:75:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01538851167b4e3d6f64d53797b08cb41371870f Validity Not Before: Dec 6 05:01:09 2025 GMT Not After : Dec 7 05:01:09 2025 GMT Subject: CN=55e9f4f676258048c146e8fb7e4c579a35e2edeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:47:03:4c:c4:0e:47:41:83:f1:66:c1:67:7f: 10:6b:96:12:7d:1b:cd:5d:81:cd:55:9e:7d:d1:37: 74:46:92:ae:42:64:cb:01:3a:1c:d5:2d:ef:73:c9: 5a:d2:c2:97:31:92:0e:95:83:7f:03:4b:71:9b:92: a5:c2:60:6a:7a:d2:10:0b:8d:f6:56:8b:8a:12:a3: c2:8a:7e:ea:b9:50:c7:c7:fb:06:66:3a:d1:8d:ab: 8d:d4:11:12:ef:41:94:6d:db:bf:46:42:1b:43:5f: 56:c3:71:fe:c7:ca:e2:14:21:d3:15:19:d3:4c:f8: ea:f8:30:d7:8a:bb:47:98:1e:b5:a9:3e:16:a6:0c: 03:8f:00:70:39:f3:39:01:51:0f:0a:9f:0e:0d:db: d0:7c:75:45:f3:d3:d6:7a:46:2a:19:cc:b5:30:63: 2c:40:59:17:59:64:d4:11:29:48:3e:ce:eb:17:6e: d5:1f:90:b2:75:17:22:db:f0:10:8c:5c:8e:51:fb: d0:24:bc:ca:24:57:04:f4:74:41:07:14:37:e6:37: 38:b8:8e:3d:29:bf:7f:3c:33:fa:63:2c:d9:12:b9: f8:20:71:32:77:a9:57:a7:54:0a:44:d1:b9:e3:e5: 13:71:a1:06:07:a7:de:b5:c4:5f:26:ae:e5:79:15: c5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E9:F4:F6:76:25:80:48:C1:46:E8:FB:7E:4C:57:9A:35:E2:ED:EB X509v3 Authority Key Identifier: keyid:01:53:88:51:16:7B:4E:3D:6F:64:D5:37:97:B0:8C:B4:13:71:87:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/bf4263-ffae-42d7-be0f-6295b854df86/1/AVOIURZ7Tj1vZNU3l7CMtBNxhw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:8e:1b:29:cb:91:86:d5:6c:94:81:4c:cf:2a:1e:df:a2:6e: 38:0e:44:a2:da:e8:50:cb:c7:19:6b:02:0a:cb:07:e6:49:5e: ce:56:55:87:57:0c:96:59:cc:f4:75:df:99:77:4d:16:f1:79: c0:77:07:6f:0c:87:41:97:14:d6:0c:96:50:d6:f3:d4:7d:12: 9e:e0:ab:4a:c7:e6:9d:2a:1b:75:2a:29:e8:6a:ba:0f:af:fc: 0c:ab:be:1c:e9:80:0a:30:b6:c6:ed:62:0d:e2:60:2b:44:78: bc:04:57:52:19:9f:08:47:4e:7d:4b:48:d8:b1:02:71:09:68: ca:c3:3a:81:a9:e7:10:13:73:c9:9c:09:22:8e:5f:30:59:15: 00:d5:cd:63:94:2b:a2:bd:f6:0f:51:6f:7b:81:e4:c0:d2:8a: 6e:ca:e0:fc:2b:d7:42:6e:42:05:e8:68:56:ce:11:31:83:d9: 66:f8:ca:30:c3:d0:56:e6:24:b5:70:f8:1f:a6:c5:4f:72:d3: ba:f3:c9:4e:87:b2:29:73:84:eb:4e:7b:90:c4:bd:17:0e:69: 4d:01:42:68:e1:3e:b6:14:53:c6:2b:7e:c8:3c:96:bb:22:11: 9e:94:95:1f:fc:aa:d9:c0:6c:55:ac:78:a1:83:a6:ea:36:d2: 92:b6:bc:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQiVn0cYp1Lu58uGF3W8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxNTM4ODUxMTY3YjRlM2Q2ZjY0ZDUzNzk3YjA4Y2I0MTM3 MTg3MGYwHhcNMjUxMjA2MDUwMTA5WhcNMjUxMjA3MDUwMTA5WjAzMTEwLwYDVQQD Eyg1NWU5ZjRmNjc2MjU4MDQ4YzE0NmU4ZmI3ZTRjNTc5YTM1ZTJlZGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0cDTMQOR0GD8WbBZ38Qa5YSfRvN XYHNVZ590Td0RpKuQmTLAToc1S3vc8la0sKXMZIOlYN/A0txm5KlwmBqetIQC432 VouKEqPCin7quVDHx/sGZjrRjauN1BES70GUbdu/RkIbQ19Ww3H+x8riFCHTFRnT TPjq+DDXirtHmB61qT4WpgwDjwBwOfM5AVEPCp8ODdvQfHVF89PWekYqGcy1MGMs QFkXWWTUESlIPs7rF27VH5CydRci2/AQjFyOUfvQJLzKJFcE9HRBBxQ35jc4uI49 Kb9/PDP6YyzZErn4IHEyd6lXp1QKRNG54+UTcaEGB6fetcRfJq7leRXFgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFXp9PZ2JYBIwUbo+35MV5o14u3rMB8GA1UdIwQY MBaAFAFTiFEWe049b2TVN5ewjLQTcYcPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC9iZjQyNjMtZmZhZS00MmQ3LWJlMGYt NjI5NWI4NTRkZjg2LzEvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC9iZjQyNjMtZmZhZS00MmQ3LWJlMGYtNjI5NWI4NTRkZjg2 LzEvQVZPSVVSWjdUajF2Wk5VM2w3Q010Qk54aHc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVY4bKcuR htVslIFMzyoe36JuOA5EotroUMvHGWsCCssH5klezlZVh1cMllnM9HXfmXdNFvF5 wHcHbwyHQZcU1gyWUNbz1H0SnuCrSsfmnSobdSop6Gq6D6/8DKu+HOmACjC2xu1i DeJgK0R4vARXUhmfCEdOfUtI2LECcQloysM6gannEBNzyZwJIo5fMFkVANXNY5Qr or32D1Fve4HkwNKKbsrg/CvXQm5CBehoVs4RMYPZZvjKMMPQVuYktXD4H6bFT3LT uvPJToeyKXOE6057kMS9Fw5pTQFCaOE+thRTxit+yDyWuyIRnpSVH/yq2cBsVax4 oYOm6jbSkra8hw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:10 2025 by rpki-client