This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft File: AYzG9GaiQWV79exSpjDa6wEiL4U.mft (raw, json) Hash identifier: ReeToGyOWrG0iRHTp3KEVVk2s3bPq6fjUQ/CP1WrYn4= Subject key identifier: 79:23:60:67:5D:29:8E:20:13:27:EF:C6:CF:A1:BE:F7:61:CF:84:43 Authority key identifier: 01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85 Certificate issuer: /CN=018cc6f466a241657bf5ec52a630daeb01222f85 Certificate serial: 019AF276B809297CC6C3E8EC4001B806DF26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft Manifest number: 1765 Signing time: Sat 06 Dec 2025 07:00:57 +0000 Manifest this update: Sat 06 Dec 2025 07:00:57 +0000 Manifest next update: Sun 07 Dec 2025 07:00:57 +0000 Files and hashes: 1: AYzG9GaiQWV79exSpjDa6wEiL4U.crl (hash: mYGSELExrZwpW0U9dWpI9iK9aY9kABFt6uRd4qqE6Hw=) 2: dZX-Kvgl9o6BfgDGAkWUKr6z6So.roa (hash: pk+V195UpaNyzxBRisHlqyHLbz6AqZTl0n9ayxOtcCQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:b8:09:29:7c:c6:c3:e8:ec:40:01:b8:06:df:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=018cc6f466a241657bf5ec52a630daeb01222f85 Validity Not Before: Dec 6 07:00:57 2025 GMT Not After : Dec 7 07:00:57 2025 GMT Subject: CN=792360675d298e201327efc6cfa1bef761cf8443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6d:c6:08:a5:ad:49:52:83:fc:13:72:ed:a1: 20:ce:7c:f2:f8:ac:31:70:14:a8:5b:ce:3e:b7:6f: a9:1c:17:64:f0:73:28:1d:21:2e:60:33:b6:17:d2: 7e:ec:2f:02:41:17:88:2a:8d:67:56:db:c4:3f:1d: 82:ca:7d:d9:96:7b:ab:ed:39:65:46:27:36:33:ce: 51:7d:52:eb:04:f7:07:65:66:e7:4b:c5:c8:e9:92: ec:a4:77:9b:c2:43:ad:ac:50:41:e3:6f:c2:2c:d3: ce:7f:8a:0d:5e:4b:a7:99:19:42:df:87:d5:4c:41: d7:7c:0d:02:fd:60:4c:67:f8:34:c4:a9:25:df:54: 25:cc:68:8c:e4:76:74:87:aa:e2:62:4e:89:8c:f0: 75:df:bc:0a:b4:97:39:20:2a:cd:d5:81:dd:3d:6f: ae:f0:22:32:e4:1b:73:ab:24:8f:cc:aa:39:a8:48: 02:2e:0c:df:1b:18:ec:4a:ce:34:6f:d4:e9:9d:33: 46:a4:ac:6a:f6:4b:8e:8e:a6:58:12:59:6a:2b:41: 14:99:6e:ca:a2:69:8a:75:aa:66:cb:6b:56:7b:23: 80:a5:02:37:84:ae:46:ee:ef:2d:76:ce:4c:20:24: 01:7a:7e:ba:22:4b:47:db:e1:3d:36:18:32:b6:11: 22:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:23:60:67:5D:29:8E:20:13:27:EF:C6:CF:A1:BE:F7:61:CF:84:43 X509v3 Authority Key Identifier: keyid:01:8C:C6:F4:66:A2:41:65:7B:F5:EC:52:A6:30:DA:EB:01:22:2F:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYzG9GaiQWV79exSpjDa6wEiL4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/3cf2fb-cf43-4c52-a2a1-be8d8c67df95/1/AYzG9GaiQWV79exSpjDa6wEiL4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:5b:75:10:3d:7a:40:8a:59:72:8c:35:9b:91:71:12:e3:c2: 77:68:37:76:35:fa:15:09:08:5e:a1:5f:e6:ed:26:b2:e4:7d: 05:e3:82:cf:e1:7d:05:3a:7e:a3:64:d3:f5:31:5a:45:94:5a: 0a:b3:e1:09:01:db:cc:81:c5:af:84:6d:fd:2a:1c:3e:f4:74: d8:70:ca:76:3e:b2:cc:df:22:21:c5:4e:e4:17:be:7c:44:70: df:b7:41:19:4d:c1:8c:e8:4d:a0:7f:0c:88:b5:31:45:5e:45: aa:22:eb:d1:fe:34:9a:f1:84:28:6a:ba:28:5f:dd:a9:4f:72: 85:3d:9a:be:57:ab:c0:4c:e7:fb:d3:5e:87:8b:6d:90:8e:93: ad:49:c5:c0:30:04:47:ca:63:f5:68:68:bc:c3:5a:57:57:75: c0:4f:5e:28:53:36:a8:fb:76:60:5e:1d:2c:49:e2:8b:f0:78: d5:5c:7c:11:c7:ec:5c:78:5e:de:b8:d2:91:9b:8e:f8:3e:db: d8:13:46:f3:94:89:01:0e:0e:5a:2d:17:bb:90:dc:ed:71:82: 15:dc:e7:9c:d4:72:0e:5f:b3:74:2c:f8:a0:0e:47:b9:38:6a: bd:3f:35:1b:44:fb:d6:76:98:1c:09:66:36:64:89:d4:64:0a: 92:d2:4f:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydrgJKXzGw+jsQAG4Bt8mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxOGNjNmY0NjZhMjQxNjU3YmY1ZWM1MmE2MzBkYWViMDEy MjJmODUwHhcNMjUxMjA2MDcwMDU3WhcNMjUxMjA3MDcwMDU3WjAzMTEwLwYDVQQD Eyg3OTIzNjA2NzVkMjk4ZTIwMTMyN2VmYzZjZmExYmVmNzYxY2Y4NDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtG3GCKWtSVKD/BNy7aEgznzy+Kwx cBSoW84+t2+pHBdk8HMoHSEuYDO2F9J+7C8CQReIKo1nVtvEPx2Cyn3Zlnur7Tll Ric2M85RfVLrBPcHZWbnS8XI6ZLspHebwkOtrFBB42/CLNPOf4oNXkunmRlC34fV TEHXfA0C/WBMZ/g0xKkl31QlzGiM5HZ0h6riYk6JjPB137wKtJc5ICrN1YHdPW+u 8CIy5BtzqySPzKo5qEgCLgzfGxjsSs40b9TpnTNGpKxq9kuOjqZYEllqK0EUmW7K ommKdapmy2tWeyOApQI3hK5G7u8tds5MICQBen66IktH2+E9NhgythEiXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkjYGddKY4gEyfvxs+hvvdhz4RDMB8GA1UdIwQY MBaAFAGMxvRmokFle/XsUqYw2usBIi+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8zY2YyZmItY2Y0My00YzUyLWEyYTEt YmU4ZDhjNjdkZjk1LzEvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS8zY2YyZmItY2Y0My00YzUyLWEyYTEtYmU4ZDhjNjdkZjk1 LzEvQVl6RzlHYWlRV1Y3OWV4U3BqRGE2d0VpTDRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOlt1ED16 QIpZcow1m5FxEuPCd2g3djX6FQkIXqFf5u0msuR9BeOCz+F9BTp+o2TT9TFaRZRa CrPhCQHbzIHFr4Rt/SocPvR02HDKdj6yzN8iIcVO5Be+fERw37dBGU3BjOhNoH8M iLUxRV5FqiLr0f40mvGEKGq6KF/dqU9yhT2avlerwEzn+9Neh4ttkI6TrUnFwDAE R8pj9WhovMNaV1d1wE9eKFM2qPt2YF4dLEnii/B41Vx8EcfsXHhe3rjSkZuO+D7b 2BNG85SJAQ4OWi0Xu5Dc7XGCFdznnNRyDl+zdCz4oA5HuThqvT81G0T71naYHAlm NmSJ1GQKktJPfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:01:31 2025 by rpki-client