This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft File: aVJaNi6HcFoewCLRZWDydtWc7h0.mft (raw, json) Hash identifier: JG3PeMAZBKh/DmX1g1VbZMxQZCwLUOw9oSuN8VPkOjU= Subject key identifier: 58:05:19:29:85:19:5A:A9:86:BA:3A:C4:14:0E:4B:D5:4E:6D:6C:0D Authority key identifier: 69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D Certificate issuer: /CN=69525a362e87705a1ec022d16560f276d59cee1d Certificate serial: 019B330D4ACBDD4F7517CC82A8AC3BE27CBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft Manifest number: 095C Signing time: Thu 18 Dec 2025 20:01:07 +0000 Manifest this update: Thu 18 Dec 2025 20:01:07 +0000 Manifest next update: Fri 19 Dec 2025 20:01:07 +0000 Files and hashes: 1: aHJU3TtGM9M9L2c33hiqaeAD6-M.roa (hash: Jnk6c3GJ5E4y6b+inckEyRoPVADxMl1TsyYlid/Y0Y0=) 2: aVJaNi6HcFoewCLRZWDydtWc7h0.crl (hash: epTLnfYx1gNiJIhRK3yJPSVo0rPU7SPP2Ja4vOWDo1Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:4a:cb:dd:4f:75:17:cc:82:a8:ac:3b:e2:7c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69525a362e87705a1ec022d16560f276d59cee1d Validity Not Before: Dec 18 20:01:07 2025 GMT Not After : Dec 19 20:01:07 2025 GMT Subject: CN=5805192985195aa986ba3ac4140e4bd54e6d6c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:aa:7b:35:cc:92:b9:81:70:42:0c:61:cb:e3: cd:e9:56:55:97:62:66:1b:c3:20:49:27:fe:6d:e9: 10:2c:77:bc:a1:60:66:2c:e6:e9:2d:87:3d:8b:14: 0c:25:28:e5:53:58:34:c8:e2:c4:28:78:4c:9c:e1: 17:a0:7e:c6:73:76:e5:ab:de:57:f9:5b:52:be:0f: e9:be:7e:17:49:83:30:95:d1:77:41:4f:42:70:82: 14:a7:2d:7c:b4:2b:ae:9f:36:c7:d8:27:60:c5:d0: 25:b3:c5:7c:9a:cb:e8:f3:96:99:08:23:67:86:a1: 79:63:4c:94:fc:89:68:95:1f:e3:57:56:eb:a1:ec: ac:b6:77:5f:1f:c4:5b:b6:3e:45:2d:93:3a:d8:5f: f4:5b:9f:5b:36:ab:cb:56:37:04:d2:d5:8f:15:7f: 09:12:d9:43:c0:8b:9b:51:f1:3a:6e:21:fc:52:80: c7:be:7e:d3:b0:94:d2:cd:aa:b1:55:5a:4d:41:f3: aa:5c:f9:dd:d1:f4:71:72:62:d6:3f:c1:ff:a2:ce: 5b:f5:23:77:37:c6:e8:6b:57:7a:71:23:da:99:dd: 22:07:ed:41:d4:18:d6:53:b9:4c:c6:c6:3f:94:4d: 89:30:13:0c:3a:de:57:79:2b:2a:3a:44:22:6a:a2: 80:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:05:19:29:85:19:5A:A9:86:BA:3A:C4:14:0E:4B:D5:4E:6D:6C:0D X509v3 Authority Key Identifier: keyid:69:52:5A:36:2E:87:70:5A:1E:C0:22:D1:65:60:F2:76:D5:9C:EE:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVJaNi6HcFoewCLRZWDydtWc7h0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/30cd87-f375-4b93-8d39-65d6ca3f49d8/1/aVJaNi6HcFoewCLRZWDydtWc7h0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c4:a5:fd:54:6e:81:e1:56:ef:72:73:7e:70:fa:61:52:9b: a3:7a:25:d1:f9:c0:13:cf:06:b1:c9:a2:2d:45:4a:4f:71:cc: 6d:c5:35:fe:0c:fd:4d:0a:8d:cf:fa:1c:de:65:42:7c:2d:65: 4b:1b:5f:d1:56:40:14:2b:c6:8a:84:6f:9f:41:90:b3:fb:1b: 30:2a:de:6d:7d:47:d3:18:9e:03:5f:c2:df:e1:86:8d:28:63: 4c:de:e4:3b:63:24:eb:f5:62:d7:4e:14:9a:ad:f4:7e:62:13: 3f:0a:20:39:25:69:c2:a9:57:d5:5f:84:ca:1d:63:82:ce:08: d1:5a:86:5d:18:7c:5c:df:75:ef:95:a8:6c:ca:e0:76:05:e1: 9b:cc:f6:1a:87:cd:c3:7a:cf:86:1a:43:e5:8e:67:96:46:3a: 0b:b9:c9:b2:6e:f2:95:99:95:f8:c0:33:e1:bf:4f:a7:27:8b: d0:c5:3a:e8:6d:6b:53:e2:e2:4f:22:61:e3:3d:a4:5d:36:70: c8:e0:fd:87:31:39:e0:bc:73:46:a3:dc:b8:94:bb:4c:a0:b5: e5:7e:19:8b:45:fa:e1:6d:e7:38:7c:e4:f0:80:7b:06:21:3a: cf:47:03:54:66:d0:bd:47:b0:5c:46:79:24:a0:e1:e5:cd:81: 99:1f:df:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDUrL3U91F8yCqKw74ny/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NTI1YTM2MmU4NzcwNWExZWMwMjJkMTY1NjBmMjc2ZDU5 Y2VlMWQwHhcNMjUxMjE4MjAwMTA3WhcNMjUxMjE5MjAwMTA3WjAzMTEwLwYDVQQD Eyg1ODA1MTkyOTg1MTk1YWE5ODZiYTNhYzQxNDBlNGJkNTRlNmQ2YzBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Kp7NcySuYFwQgxhy+PN6VZVl2Jm G8MgSSf+bekQLHe8oWBmLObpLYc9ixQMJSjlU1g0yOLEKHhMnOEXoH7Gc3blq95X +VtSvg/pvn4XSYMwldF3QU9CcIIUpy18tCuunzbH2CdgxdAls8V8msvo85aZCCNn hqF5Y0yU/IlolR/jV1broeystndfH8Rbtj5FLZM62F/0W59bNqvLVjcE0tWPFX8J EtlDwIubUfE6biH8UoDHvn7TsJTSzaqxVVpNQfOqXPnd0fRxcmLWP8H/os5b9SN3 N8boa1d6cSPamd0iB+1B1BjWU7lMxsY/lE2JMBMMOt5XeSsqOkQiaqKAIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFgFGSmFGVqphro6xBQOS9VObWwNMB8GA1UdIwQY MBaAFGlSWjYuh3BaHsAi0WVg8nbVnO4dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzkt NjVkNmNhM2Y0OWQ4LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8zMGNkODctZjM3NS00YjkzLThkMzktNjVkNmNhM2Y0OWQ4 LzEvYVZKYU5pNkhjRm9ld0NMUlpXRHlkdFdjN2gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPcSl/VRu geFW73JzfnD6YVKbo3ol0fnAE88GscmiLUVKT3HMbcU1/gz9TQqNz/oc3mVCfC1l Sxtf0VZAFCvGioRvn0GQs/sbMCrebX1H0xieA1/C3+GGjShjTN7kO2Mk6/Vi104U mq30fmITPwogOSVpwqlX1V+Eyh1jgs4I0VqGXRh8XN9175WobMrgdgXhm8z2GofN w3rPhhpD5Y5nlkY6C7nJsm7ylZmV+MAz4b9PpyeL0MU66G1rU+LiTyJh4z2kXTZw yOD9hzE54LxzRqPcuJS7TKC15X4Zi0X64W3nOHzk8IB7BiE6z0cDVGbQvUewXEZ5 JKDh5c2BmR/fUg== -----END CERTIFICATE-----Generated at Thu Dec 18 22:49:49 2025 by rpki-client