This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft File: gAVnqlixEmbTjGRvpkc_VEk3fE0.mft (raw, json) Hash identifier: 0q+ClbTkGEggVpMYZ99kRCS2HkV66S7uGE9rLs6+Nmg= Subject key identifier: C0:F5:D1:85:AF:F4:B4:22:64:6E:B2:59:75:A7:03:7B:F8:8C:BD:87 Authority key identifier: 80:05:67:AA:58:B1:12:66:D3:8C:64:6F:A6:47:3F:54:49:37:7C:4D Certificate issuer: /CN=800567aa58b11266d38c646fa6473f5449377c4d Certificate serial: 019AF240321FBF00A2FCEA985C3EA26E0057 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft Manifest number: 0219 Signing time: Sat 06 Dec 2025 06:01:24 +0000 Manifest this update: Sat 06 Dec 2025 06:01:24 +0000 Manifest next update: Sun 07 Dec 2025 06:01:24 +0000 Files and hashes: 1: gAVnqlixEmbTjGRvpkc_VEk3fE0.crl (hash: IH8KlY9BjEK/Tz1xSxq4c8bwHN9O+9Dbp/hnRvCHzWw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:32:1f:bf:00:a2:fc:ea:98:5c:3e:a2:6e:00:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=800567aa58b11266d38c646fa6473f5449377c4d Validity Not Before: Dec 6 06:01:24 2025 GMT Not After : Dec 7 06:01:24 2025 GMT Subject: CN=c0f5d185aff4b422646eb25975a7037bf88cbd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:31:4d:a0:c7:10:6e:dc:ef:20:6c:ba:cf:44: 7e:1f:f0:da:65:e5:f8:e7:67:e7:3f:01:c6:27:9d: d6:05:4c:80:31:66:2c:f1:23:11:fc:6e:9a:e7:a6: 60:c8:d5:a8:69:3f:c5:38:61:61:f2:d3:28:6b:2c: ce:30:89:99:fa:d3:cc:d1:32:96:bc:c0:f5:b1:28: 80:d6:16:5f:18:45:e5:8a:ea:7b:8c:7f:0b:f6:56: 54:bb:77:8d:f7:54:17:c8:c2:bb:92:d3:3b:ac:7b: 06:18:07:83:35:be:ae:ce:8a:53:0a:e1:69:02:94: 70:8d:46:28:32:c5:1f:29:76:d4:d3:8e:5d:c3:fa: 78:b6:a9:e2:78:a7:8b:54:77:84:25:c7:b3:3b:8c: e6:76:af:9b:9b:a9:b9:20:11:e5:14:58:58:86:ec: 93:bc:d4:53:eb:9e:b2:e1:b7:05:d8:6f:f2:51:fd: f0:c0:0a:8a:36:4a:c7:1a:20:f6:e3:19:80:4e:6e: 26:b3:3b:8c:ff:71:f5:85:49:27:5b:c5:55:85:9c: 63:d1:02:53:3a:f0:75:3e:dd:b0:12:df:a4:2d:80: f7:1d:e1:6a:02:28:64:6c:49:2b:70:14:57:c3:e7: 78:9b:f7:0e:01:88:d9:bb:e0:84:6f:82:b2:4e:cf: f2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F5:D1:85:AF:F4:B4:22:64:6E:B2:59:75:A7:03:7B:F8:8C:BD:87 X509v3 Authority Key Identifier: keyid:80:05:67:AA:58:B1:12:66:D3:8C:64:6F:A6:47:3F:54:49:37:7C:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:1e:db:75:a3:70:b2:05:5e:09:d1:c4:cd:17:60:76:af:2d: 5b:50:47:99:2c:38:99:b5:c7:d9:6f:af:ec:6a:91:de:fd:90: 7a:3e:b2:e9:b3:35:95:ae:3a:2c:7c:75:7e:00:92:d6:33:55: fc:18:e9:0e:2e:12:7d:e4:db:ec:fb:6b:37:c8:e4:61:b1:dc: f2:d7:42:4b:8d:58:ea:e7:f8:c6:75:81:f9:8a:50:77:1d:6d: 7e:26:c0:e3:c7:a6:4a:1e:b6:d6:53:b1:f9:f6:95:9f:43:1e: e3:38:a7:a2:c7:b8:88:03:b1:9e:8b:8c:1d:82:1b:a7:7f:6f: ae:15:b4:2c:3e:97:7f:57:0e:bc:47:9e:17:e9:00:c7:8a:50: ec:7a:9c:2f:8f:07:8f:ad:5c:6e:ff:bc:71:df:2c:2a:c1:97: bf:0e:63:78:8c:7f:77:ef:f5:bb:a1:a8:ee:24:60:88:df:6c: 1b:bf:79:ee:d8:41:18:29:30:d7:4a:ff:99:d6:34:50:fe:1f: bb:41:31:e7:38:97:11:96:ec:6f:26:90:72:35:2a:65:8d:73: 47:50:e7:d7:8c:55:87:ba:24:83:54:50:b8:04:84:fa:cb:6d: cb:74:5e:31:7c:c3:8f:54:85:b5:4b:27:c4:f0:4b:db:77:84: 87:f9:63:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQDIfvwCi/OqYXD6ibgBXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwMDU2N2FhNThiMTEyNjZkMzhjNjQ2ZmE2NDczZjU0NDkz NzdjNGQwHhcNMjUxMjA2MDYwMTI0WhcNMjUxMjA3MDYwMTI0WjAzMTEwLwYDVQQD EyhjMGY1ZDE4NWFmZjRiNDIyNjQ2ZWIyNTk3NWE3MDM3YmY4OGNiZDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7TFNoMcQbtzvIGy6z0R+H/DaZeX4 52fnPwHGJ53WBUyAMWYs8SMR/G6a56ZgyNWoaT/FOGFh8tMoayzOMImZ+tPM0TKW vMD1sSiA1hZfGEXliup7jH8L9lZUu3eN91QXyMK7ktM7rHsGGAeDNb6uzopTCuFp ApRwjUYoMsUfKXbU045dw/p4tqnieKeLVHeEJcezO4zmdq+bm6m5IBHlFFhYhuyT vNRT656y4bcF2G/yUf3wwAqKNkrHGiD24xmATm4mszuM/3H1hUknW8VVhZxj0QJT OvB1Pt2wEt+kLYD3HeFqAihkbEkrcBRXw+d4m/cOAYjZu+CEb4KyTs/ynwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMD10YWv9LQiZG6yWXWnA3v4jL2HMB8GA1UdIwQY MBaAFIAFZ6pYsRJm04xkb6ZHP1RJN3xNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yYzc0ZDktYzNlMC00OTZiLWE0YmUt OGRkNDVkMmJjYTdhLzEvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8yYzc0ZDktYzNlMC00OTZiLWE0YmUtOGRkNDVkMmJjYTdh LzEvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAox7bdaNw sgVeCdHEzRdgdq8tW1BHmSw4mbXH2W+v7GqR3v2Qej6y6bM1la46LHx1fgCS1jNV /BjpDi4SfeTb7PtrN8jkYbHc8tdCS41Y6uf4xnWB+YpQdx1tfibA48emSh621lOx +faVn0Me4zinose4iAOxnouMHYIbp39vrhW0LD6Xf1cOvEeeF+kAx4pQ7HqcL48H j61cbv+8cd8sKsGXvw5jeIx/d+/1u6Go7iRgiN9sG7957thBGCkw10r/mdY0UP4f u0Ex5ziXEZbsbyaQcjUqZY1zR1Dn14xVh7okg1RQuASE+stty3ReMXzDj1SFtUsn xPBL23eEh/ljgQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:42:21 2025 by rpki-client