This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft File: avKqUEvzdkSAPC7vFgTThgsd74Y.mft (raw, json) Hash identifier: geErle50+kboPJtOAktCTjd7j+FK113r7LBaB3dWkQ0= Subject key identifier: 15:81:A5:4C:CD:66:E2:FB:FC:59:BD:EB:75:58:70:B7:32:2E:E9:2A Authority key identifier: 6A:F2:AA:50:4B:F3:76:44:80:3C:2E:EF:16:04:D3:86:0B:1D:EF:86 Certificate issuer: /CN=6af2aa504bf37644803c2eef1604d3860b1def86 Certificate serial: 019AF3C05BA7A65A298070AE38527101FD4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avKqUEvzdkSAPC7vFgTThgsd74Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft Manifest number: 06C1 Signing time: Sat 06 Dec 2025 13:01:00 +0000 Manifest this update: Sat 06 Dec 2025 13:01:00 +0000 Manifest next update: Sun 07 Dec 2025 13:01:00 +0000 Files and hashes: 1: avKqUEvzdkSAPC7vFgTThgsd74Y.crl (hash: KO7s9QLCc9Dq6MVV36coddKWDrb7Cbu9+bgmFhENNEw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.crl rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft rsync://rpki.ripe.net/repository/DEFAULT/avKqUEvzdkSAPC7vFgTThgsd74Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:5b:a7:a6:5a:29:80:70:ae:38:52:71:01:fd:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6af2aa504bf37644803c2eef1604d3860b1def86 Validity Not Before: Dec 6 13:01:00 2025 GMT Not After : Dec 7 13:01:00 2025 GMT Subject: CN=1581a54ccd66e2fbfc59bdeb755870b7322ee92a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:45:e9:c3:97:62:90:62:b2:61:31:59:91:99: ba:f6:89:6a:ff:4c:a6:7e:ac:22:02:06:a2:67:66: 12:51:0c:a4:60:e4:ef:5c:4a:0d:30:84:2e:64:9b: fc:5e:9e:f1:bc:6e:9e:91:f9:91:b8:66:e5:33:fb: 44:ad:37:7f:60:e1:e5:bd:56:a3:70:f2:fa:8c:a1: df:52:cd:a7:eb:0a:27:9b:19:5e:a1:b6:04:47:b3: ce:90:44:46:c7:49:9d:8f:4c:ce:7d:74:9d:d3:b1: b5:f1:58:1a:7b:6b:aa:00:91:f2:56:96:9e:70:43: 89:c5:f8:cd:31:88:1c:e3:5a:b4:c3:db:8a:92:18: 73:b1:61:c1:d1:1a:7c:b9:45:99:e2:79:04:13:23: 3a:18:f6:59:e2:72:6b:8a:c1:4c:de:14:87:72:ec: 75:18:02:fa:48:a1:17:41:1a:74:35:61:00:f1:79: 71:71:4b:ea:69:a7:4a:5d:c3:21:44:a3:ab:70:52: f5:ef:b4:80:eb:ff:2b:a1:7e:65:b3:35:2e:88:b6: f9:8b:6d:f6:88:c9:20:44:c8:62:5d:35:00:42:bd: 9e:6f:5f:f8:9a:3f:76:b1:d5:d3:44:16:d3:45:9e: c5:07:e3:3d:15:7c:8c:d9:93:95:39:dc:ec:0f:1b: 14:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:81:A5:4C:CD:66:E2:FB:FC:59:BD:EB:75:58:70:B7:32:2E:E9:2A X509v3 Authority Key Identifier: keyid:6A:F2:AA:50:4B:F3:76:44:80:3C:2E:EF:16:04:D3:86:0B:1D:EF:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avKqUEvzdkSAPC7vFgTThgsd74Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a01938-fabc-4362-9fd0-d4343d9e47bf/1/avKqUEvzdkSAPC7vFgTThgsd74Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:2a:fa:df:56:2d:9e:6c:6d:eb:08:05:d9:99:1b:73:e6:17: 39:a3:25:27:ff:26:8a:e5:c0:5d:b9:ba:2c:e3:4a:1c:d7:06: cc:bb:f7:b5:6b:a8:2c:a3:ef:e1:d1:0c:65:1a:88:1a:2e:79: 52:e1:df:ec:0d:7c:54:ef:16:0f:f8:83:2e:27:99:6e:e8:a5: f7:5f:ca:30:cc:f0:13:7a:a7:d2:a7:d0:5d:2f:af:b7:55:71: 0d:07:57:21:12:29:ce:7d:2f:8d:84:bb:c0:9f:69:00:c5:5f: d7:64:80:60:47:80:2f:52:b9:ec:93:5a:7f:af:bb:da:f8:f3: 97:66:68:1c:c4:26:c9:d4:1b:9b:de:ad:20:8f:3f:9c:a8:9a: 1d:33:d3:67:03:9e:68:59:cd:fd:d3:52:f1:ca:8a:f7:4a:f1: 86:50:75:98:4d:c7:a9:87:4d:e1:5f:a1:81:ff:68:04:b9:19: d8:d6:14:08:b7:a2:e3:a3:d3:dd:db:a6:5f:be:7f:c5:f5:c6: 14:75:28:9c:09:e4:50:76:22:4b:74:c4:be:72:47:9c:eb:fe: 15:80:17:a3:6c:ed:fc:b9:c1:b9:3a:03:e8:61:fe:ed:25:fb: ee:b9:6d:94:ee:91:71:c3:b7:5e:72:40:a0:9a:a2:c6:2f:3a: e9:a3:91:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwFunplopgHCuOFJxAf1PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhZjJhYTUwNGJmMzc2NDQ4MDNjMmVlZjE2MDRkMzg2MGIx ZGVmODYwHhcNMjUxMjA2MTMwMTAwWhcNMjUxMjA3MTMwMTAwWjAzMTEwLwYDVQQD EygxNTgxYTU0Y2NkNjZlMmZiZmM1OWJkZWI3NTU4NzBiNzMyMmVlOTJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEXpw5dikGKyYTFZkZm69olq/0ym fqwiAgaiZ2YSUQykYOTvXEoNMIQuZJv8Xp7xvG6ekfmRuGblM/tErTd/YOHlvVaj cPL6jKHfUs2n6wonmxleobYER7POkERGx0mdj0zOfXSd07G18Vgae2uqAJHyVpae cEOJxfjNMYgc41q0w9uKkhhzsWHB0Rp8uUWZ4nkEEyM6GPZZ4nJrisFM3hSHcux1 GAL6SKEXQRp0NWEA8XlxcUvqaadKXcMhRKOrcFL177SA6/8roX5lszUuiLb5i232 iMkgRMhiXTUAQr2eb1/4mj92sdXTRBbTRZ7FB+M9FXyM2ZOVOdzsDxsUhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBWBpUzNZuL7/Fm963VYcLcyLukqMB8GA1UdIwQY MBaAFGryqlBL83ZEgDwu7xYE04YLHe+GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXZLcVVFdnpka1NBUEM3dkZnVFRoZ3NkNzRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hMDE5MzgtZmFiYy00MzYyLTlmZDAt ZDQzNDNkOWU0N2JmLzEvYXZLcVVFdnpka1NBUEM3dkZnVFRoZ3NkNzRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9hMDE5MzgtZmFiYy00MzYyLTlmZDAtZDQzNDNkOWU0N2Jm LzEvYXZLcVVFdnpka1NBUEM3dkZnVFRoZ3NkNzRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSr631Yt nmxt6wgF2Zkbc+YXOaMlJ/8miuXAXbm6LONKHNcGzLv3tWuoLKPv4dEMZRqIGi55 UuHf7A18VO8WD/iDLieZbuil91/KMMzwE3qn0qfQXS+vt1VxDQdXIRIpzn0vjYS7 wJ9pAMVf12SAYEeAL1K57JNaf6+72vjzl2ZoHMQmydQbm96tII8/nKiaHTPTZwOe aFnN/dNS8cqK90rxhlB1mE3HqYdN4V+hgf9oBLkZ2NYUCLei46PT3dumX75/xfXG FHUonAnkUHYiS3TEvnJHnOv+FYAXo2zt/LnBuToD6GH+7SX77rltlO6RccO3XnJA oJqixi866aORZA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:20:55 2025 by rpki-client