This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft File: AKTVv_pzY0hD6QPjexj97g2sWFs.mft (raw, json) Hash identifier: /eaSiCAmVUms/xyzwONHy9B6U0fbkRWTHpr8SAeYriA= Subject key identifier: 73:DD:9F:3B:91:7A:64:AA:D8:9B:46:8B:DB:15:D0:7B:5F:40:EF:6A Authority key identifier: 00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B Certificate issuer: /CN=00a4d5bffa73634843e903e37b18fdee0dac585b Certificate serial: 019AF12DEE57906FB4FF04E59E985DCBD4DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft Manifest number: 0285 Signing time: Sat 06 Dec 2025 01:01:50 +0000 Manifest this update: Sat 06 Dec 2025 01:01:50 +0000 Manifest next update: Sun 07 Dec 2025 01:01:50 +0000 Files and hashes: 1: AKTVv_pzY0hD6QPjexj97g2sWFs.crl (hash: tUfHWVDWTEf2xja86OBWe9kqZK5fUNpqWIuSgS14Vy0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:ee:57:90:6f:b4:ff:04:e5:9e:98:5d:cb:d4:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00a4d5bffa73634843e903e37b18fdee0dac585b Validity Not Before: Dec 6 01:01:50 2025 GMT Not After : Dec 7 01:01:50 2025 GMT Subject: CN=73dd9f3b917a64aad89b468bdb15d07b5f40ef6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1e:11:30:97:8b:c9:6f:2f:51:7f:54:49:30: 99:0e:79:4e:dc:4a:fc:7c:89:1c:db:6b:c2:fc:b0: e8:45:e3:f3:d3:fc:0e:3f:9c:c3:89:44:6b:58:86: 88:92:55:0d:91:e3:83:ae:31:ca:ea:a8:7b:82:8c: 23:69:02:b4:58:0e:96:99:5c:d2:de:5e:43:49:45: c3:36:2b:45:62:f9:16:7f:5f:7c:cc:85:79:b6:cc: e0:23:1c:60:0e:80:86:7a:03:44:3e:29:9f:93:81: 76:6b:c5:95:58:ac:83:a4:19:5f:d1:92:97:3d:5e: 63:d3:32:f5:3d:19:36:dc:f7:7b:e6:d0:50:25:a9: 2f:40:85:a8:8f:c4:ec:d2:c9:4c:7d:c6:78:cb:b9: 85:bf:8c:43:20:92:40:36:d8:77:d1:6c:5b:18:4c: 6a:2f:35:51:85:4a:f8:bd:96:55:fd:92:66:58:b5: 3f:97:c9:77:0a:28:db:a8:d3:85:90:c7:6d:17:db: 90:ec:e8:9f:0c:ec:e3:93:71:50:e9:6c:f6:ee:2b: 73:dc:90:f4:0a:26:2e:99:30:2a:97:64:a2:2f:4b: 07:2a:4d:51:d0:7e:cc:7b:f2:5b:c3:f0:12:08:ec: 2a:22:54:40:bf:c1:bc:95:9c:7a:f3:a4:02:03:18: a5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:DD:9F:3B:91:7A:64:AA:D8:9B:46:8B:DB:15:D0:7B:5F:40:EF:6A X509v3 Authority Key Identifier: keyid:00:A4:D5:BF:FA:73:63:48:43:E9:03:E3:7B:18:FD:EE:0D:AC:58:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AKTVv_pzY0hD6QPjexj97g2sWFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/96e640-85a5-475b-94cb-84ee69ed93a4/1/AKTVv_pzY0hD6QPjexj97g2sWFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:17:7b:cc:50:36:8f:cc:80:54:61:42:96:cc:bd:4f:a0:da: 3d:85:10:18:c4:16:11:d8:00:55:bc:3d:e4:92:a1:21:67:49: 75:8e:21:77:89:ac:80:b1:ae:ba:04:e2:20:79:0f:e8:37:af: d8:09:27:63:46:11:e8:a5:e2:88:14:d1:65:3b:61:65:7f:c3: b4:77:e8:3a:f6:57:d8:49:ce:7a:58:fb:a3:ae:58:88:7e:90: d9:3d:2c:f2:d8:67:43:79:2d:dd:bc:25:cf:8b:ff:12:bc:d4: 26:db:43:d9:55:cf:fa:a8:78:fe:91:ab:f1:45:d0:14:9b:58: be:32:2c:59:6a:55:5f:c2:12:27:1a:fd:70:8b:fa:78:b3:dc: 6a:7c:c9:10:1a:c6:51:bc:ef:f5:65:46:9e:9c:08:40:cd:6e: 4e:9a:27:4a:62:00:d8:60:a2:c2:ea:42:54:77:d3:36:12:b1: d6:4b:37:ed:d7:00:48:e5:88:1e:47:cb:e0:ba:52:fd:44:5e: 2c:44:69:29:e9:58:6c:df:c6:07:9a:ef:11:02:34:f3:80:f6: ad:52:c7:65:f7:f6:88:44:63:13:3a:e5:7b:f2:11:74:fb:ed: a0:da:b7:53:05:f6:e0:aa:02:f4:6a:bb:aa:b1:1f:08:14:fb: e7:c6:f6:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLe5XkG+0/wTlnphdy9TcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYTRkNWJmZmE3MzYzNDg0M2U5MDNlMzdiMThmZGVlMGRh YzU4NWIwHhcNMjUxMjA2MDEwMTUwWhcNMjUxMjA3MDEwMTUwWjAzMTEwLwYDVQQD Eyg3M2RkOWYzYjkxN2E2NGFhZDg5YjQ2OGJkYjE1ZDA3YjVmNDBlZjZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArx4RMJeLyW8vUX9USTCZDnlO3Er8 fIkc22vC/LDoRePz0/wOP5zDiURrWIaIklUNkeODrjHK6qh7gowjaQK0WA6WmVzS 3l5DSUXDNitFYvkWf198zIV5tszgIxxgDoCGegNEPimfk4F2a8WVWKyDpBlf0ZKX PV5j0zL1PRk23Pd75tBQJakvQIWoj8Ts0slMfcZ4y7mFv4xDIJJANth30WxbGExq LzVRhUr4vZZV/ZJmWLU/l8l3CijbqNOFkMdtF9uQ7OifDOzjk3FQ6Wz27itz3JD0 CiYumTAql2SiL0sHKk1R0H7Me/Jbw/ASCOwqIlRAv8G8lZx686QCAxilxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPdnzuRemSq2JtGi9sV0HtfQO9qMB8GA1UdIwQY MBaAFACk1b/6c2NIQ+kD43sY/e4NrFhbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUtUVnZfcHpZMGhENlFQamV4ajk3ZzJzV0ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC85NmU2NDAtODVhNS00NzViLTk0Y2It ODRlZTY5ZWQ5M2E0LzEvQUtUVnZfcHpZMGhENlFQamV4ajk3ZzJzV0ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC85NmU2NDAtODVhNS00NzViLTk0Y2ItODRlZTY5ZWQ5M2E0 LzEvQUtUVnZfcHpZMGhENlFQamV4ajk3ZzJzV0ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiRd7zFA2 j8yAVGFClsy9T6DaPYUQGMQWEdgAVbw95JKhIWdJdY4hd4msgLGuugTiIHkP6Dev 2AknY0YR6KXiiBTRZTthZX/DtHfoOvZX2EnOelj7o65YiH6Q2T0s8thnQ3kt3bwl z4v/ErzUJttD2VXP+qh4/pGr8UXQFJtYvjIsWWpVX8ISJxr9cIv6eLPcanzJEBrG Ubzv9WVGnpwIQM1uTponSmIA2GCiwupCVHfTNhKx1ks37dcASOWIHkfL4LpS/URe LERpKelYbN/GB5rvEQI084D2rVLHZff2iERjEzrle/IRdPvtoNq3UwX24KoC9Gq7 qrEfCBT758b2rw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:05:40 2025 by rpki-client