This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft File: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft (raw, json) Hash identifier: mraX5rfZ3smHhTrh1kle4tnL+yd2WsV9u5myLREHHMk= Subject key identifier: FC:77:BA:F9:35:4F:0E:5C:14:81:00:AB:F5:B1:69:8F:84:5E:54:F1 Authority key identifier: 03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09 Certificate issuer: /CN=032d39ce91be867cf5ce1b6009d5262c28b65209 Certificate serial: 019AF4651C9C9C48B87B66EEF0363C2E18D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 16:00:58 +0000 Manifest this update: Sat 06 Dec 2025 16:00:58 +0000 Manifest next update: Sun 07 Dec 2025 16:00:58 +0000 Files and hashes: 1: Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl (hash: BwPZ21j7VnPHyb/IQVtkHPcLyTSPpBePetUggs4zTMY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 16:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:1c:9c:9c:48:b8:7b:66:ee:f0:36:3c:2e:18:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032d39ce91be867cf5ce1b6009d5262c28b65209 Validity Not Before: Dec 6 16:00:58 2025 GMT Not After : Dec 7 16:00:58 2025 GMT Subject: CN=fc77baf9354f0e5c148100abf5b1698f845e54f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4c:a7:d5:47:4f:5e:c6:00:1c:87:4e:7e:3f: 40:67:4f:51:3a:65:94:29:2d:60:eb:86:4a:87:69: 6e:6a:ea:ac:19:ae:3f:a7:5a:98:62:0e:36:38:f1: c0:ea:c7:67:2f:9d:fb:ca:91:1e:e7:9e:8b:1b:25: a4:11:a8:d2:b3:35:51:da:ba:81:31:c6:57:cb:7f: 28:01:3a:e2:16:84:80:a3:9e:f1:e9:fb:3e:a1:fc: 86:fc:7d:8c:a4:fd:7f:1b:95:c0:57:42:1d:84:1c: 2e:f7:b2:27:89:c8:ee:ca:f2:ab:6e:8e:79:04:83: d6:91:b0:f3:04:eb:87:3d:d1:09:3b:70:6a:64:72: 19:fc:e5:b3:94:d4:d4:22:c8:d2:c3:75:a9:e5:72: 62:e9:2d:35:31:0d:40:f2:95:73:cc:6e:02:48:81: 8d:90:22:27:4a:b1:c0:b5:40:fe:a0:a0:50:c8:60: 4a:e7:69:09:27:2d:34:32:f5:80:5b:a5:8e:c5:91: 88:2e:89:6c:be:6b:a3:2c:99:34:ca:33:c1:98:9f: ee:f0:f6:88:1e:5a:1f:a3:ff:ed:5d:69:97:d7:6d: 83:93:a9:b7:72:57:46:11:cb:7b:11:e6:2c:c7:02: 65:7b:c9:28:97:2c:55:2a:9b:3f:e6:f1:d8:12:b7: 1c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:77:BA:F9:35:4F:0E:5C:14:81:00:AB:F5:B1:69:8F:84:5E:54:F1 X509v3 Authority Key Identifier: keyid:03:2D:39:CE:91:BE:86:7C:F5:CE:1B:60:09:D5:26:2C:28:B6:52:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/cbe8e7-5a78-4558-9951-84accecc51f0/1/Ay05zpG-hnz1zhtgCdUmLCi2Ugk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:b1:ba:3c:54:8c:63:30:12:13:72:4c:c3:ac:70:4e:93:53: b5:2b:87:c5:37:af:2d:78:d0:50:cb:39:03:02:a0:cb:22:65: 25:48:0e:a6:d6:ed:c9:3a:d9:e0:14:2c:80:e3:0a:05:d6:c6: bf:01:a0:a2:e3:7c:09:41:89:a0:4d:c2:5f:5c:52:80:70:5f: ae:4c:00:c5:2e:f0:cb:78:3e:dc:95:39:97:38:70:1d:af:f0: 6b:ff:88:3e:73:c2:b8:0b:3e:74:fe:8e:35:7d:18:1e:78:5d: 85:3f:64:af:ad:b1:8f:7e:88:03:0c:4e:cf:43:5d:c3:ee:f2: eb:e5:d7:97:8a:0e:e8:74:81:5b:8e:9a:c0:8e:40:00:0a:41: 4c:db:0a:64:0f:17:60:72:69:86:3e:7b:2a:34:7f:58:14:ce: a8:db:25:77:f2:c2:15:21:59:1a:fb:09:1e:b8:78:60:30:e4: ac:79:c4:fa:c8:52:b8:76:8a:bd:ae:52:69:43:25:72:1c:6f: 8d:91:15:9e:80:14:3d:06:fd:30:be:a3:8e:4e:63:8b:1c:93: e7:40:2b:4d:18:60:09:71:ef:60:af:fd:65:09:e4:ea:c3:45: 36:f1:b8:50:6f:57:3e:0c:27:63:23:29:85:a2:0d:fd:f9:74: d3:96:9e:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZRycnEi4e2bu8DY8LhjVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMmQzOWNlOTFiZTg2N2NmNWNlMWI2MDA5ZDUyNjJjMjhi NjUyMDkwHhcNMjUxMjA2MTYwMDU4WhcNMjUxMjA3MTYwMDU4WjAzMTEwLwYDVQQD EyhmYzc3YmFmOTM1NGYwZTVjMTQ4MTAwYWJmNWIxNjk4Zjg0NWU1NGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0yn1UdPXsYAHIdOfj9AZ09ROmWU KS1g64ZKh2luauqsGa4/p1qYYg42OPHA6sdnL537ypEe556LGyWkEajSszVR2rqB McZXy38oATriFoSAo57x6fs+ofyG/H2MpP1/G5XAV0IdhBwu97InicjuyvKrbo55 BIPWkbDzBOuHPdEJO3BqZHIZ/OWzlNTUIsjSw3Wp5XJi6S01MQ1A8pVzzG4CSIGN kCInSrHAtUD+oKBQyGBK52kJJy00MvWAW6WOxZGILolsvmujLJk0yjPBmJ/u8PaI Hlofo//tXWmX122Dk6m3cldGEct7EeYsxwJle8kolyxVKps/5vHYErccOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPx3uvk1Tw5cFIEAq/WxaY+EXlTxMB8GA1UdIwQY MBaAFAMtOc6RvoZ89c4bYAnVJiwotlIJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXkwNXpwRy1obnoxemh0Z0NkVW1MQ2kyVWdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9jYmU4ZTctNWE3OC00NTU4LTk5NTEt ODRhY2NlY2M1MWYwLzEvQXkwNXpwRy1obnoxemh0Z0NkVW1MQ2kyVWdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC9jYmU4ZTctNWE3OC00NTU4LTk5NTEtODRhY2NlY2M1MWYw LzEvQXkwNXpwRy1obnoxemh0Z0NkVW1MQ2kyVWdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyLG6PFSM YzASE3JMw6xwTpNTtSuHxTevLXjQUMs5AwKgyyJlJUgOptbtyTrZ4BQsgOMKBdbG vwGgouN8CUGJoE3CX1xSgHBfrkwAxS7wy3g+3JU5lzhwHa/wa/+IPnPCuAs+dP6O NX0YHnhdhT9kr62xj36IAwxOz0Ndw+7y6+XXl4oO6HSBW46awI5AAApBTNsKZA8X YHJphj57KjR/WBTOqNsld/LCFSFZGvsJHrh4YDDkrHnE+shSuHaKva5SaUMlchxv jZEVnoAUPQb9ML6jjk5jixyT50ArTRhgCXHvYK/9ZQnk6sNFNvG4UG9XPgwnYyMp haIN/fl005aeoQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:13 2025 by rpki-client