This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft File: aVu9VCkSpm_uajQSijqM9wl9xps.mft (raw, json) Hash identifier: vqQ58KEaH9FAwCeHHW0B5axEDQ9hGLx5gM5IrKWg7nQ= Subject key identifier: E0:61:5B:85:E3:C9:E1:92:8E:65:A9:01:AE:9D:D4:27:42:CA:17:90 Authority key identifier: 69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B Certificate issuer: /CN=695bbd542912a66fee6a34128a3a8cf7097dc69b Certificate serial: 019B2DE742300DAC26224FB6730B701FF842 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft Manifest number: 079B Signing time: Wed 17 Dec 2025 20:01:29 +0000 Manifest this update: Wed 17 Dec 2025 20:01:29 +0000 Manifest next update: Thu 18 Dec 2025 20:01:29 +0000 Files and hashes: 1: aVu9VCkSpm_uajQSijqM9wl9xps.crl (hash: 6bGa9SiOYoxNUeVeqV81UA77I2H0mvtdj6ezGyuO1nU=) 2: qq8J_fEHI4G11qkKijWQISK00G0.roa (hash: RMB75Z9HEAqFVlcsv+x1Xsp/vs4KwqhHTjxwNb+JGOc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:e7:42:30:0d:ac:26:22:4f:b6:73:0b:70:1f:f8:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=695bbd542912a66fee6a34128a3a8cf7097dc69b Validity Not Before: Dec 17 20:01:29 2025 GMT Not After : Dec 18 20:01:29 2025 GMT Subject: CN=e0615b85e3c9e1928e65a901ae9dd42742ca1790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:da:8a:af:ee:5e:bd:99:d6:01:63:5d:87:fa: 28:d2:91:b0:f9:18:3d:27:4e:34:3e:49:e6:41:69: 49:2c:52:df:41:17:6b:a2:86:9a:86:1d:af:61:1d: 06:f4:fb:ca:1e:1b:dc:f3:93:8c:a3:0c:40:8e:76: 65:88:27:e1:dd:82:8e:2c:9c:34:df:f9:77:28:d3: a6:b5:b0:01:1a:2d:bc:d6:4b:97:c1:02:ee:ea:63: fe:c1:5e:f7:05:fe:4c:a5:3f:d3:94:23:64:20:2a: fc:fe:0a:12:df:ab:e0:79:28:13:1f:bb:33:e6:50: b2:95:f0:88:31:33:3a:72:7b:05:d6:d4:38:33:7b: 35:c8:98:53:21:98:d9:39:e4:e9:6d:8b:47:f7:1c: 84:0d:94:09:fd:b0:32:e2:74:7c:0e:4e:34:bf:5e: 0a:82:c5:3f:85:79:f9:c5:4d:2a:b7:a4:ec:ab:0b: 8a:ea:aa:15:4d:f0:2d:e9:da:1d:06:80:ec:38:65: 84:5d:d6:3a:80:3c:da:88:0c:77:c0:4c:49:ba:0a: d8:b4:ac:1a:14:e6:2b:c0:30:27:a6:16:e0:7f:62: 3c:09:35:c9:3d:f4:83:e2:d1:9b:f9:ce:81:91:d4: 52:63:e0:a4:1f:ca:00:04:f7:9f:70:17:80:93:e9: 41:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:61:5B:85:E3:C9:E1:92:8E:65:A9:01:AE:9D:D4:27:42:CA:17:90 X509v3 Authority Key Identifier: keyid:69:5B:BD:54:29:12:A6:6F:EE:6A:34:12:8A:3A:8C:F7:09:7D:C6:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aVu9VCkSpm_uajQSijqM9wl9xps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/cd9fd4-ccc5-43d6-9d58-9816c67a9262/1/aVu9VCkSpm_uajQSijqM9wl9xps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b7:52:0a:1e:0f:a1:25:10:a5:00:83:2a:9d:a7:29:53:42: fc:05:bd:d8:c7:e5:72:c6:5c:1f:90:9c:7c:8c:e9:63:5b:74: 47:6f:a3:c6:19:81:76:c6:60:ed:d9:7f:8a:d4:d5:b0:5c:bb: 9b:d5:fd:09:97:8f:fa:4b:c1:d5:7f:fc:68:aa:62:3b:74:49: 39:05:70:5e:2c:b8:6d:a0:dd:f1:de:99:25:12:5b:c1:53:87: 63:12:5a:d6:20:c5:b2:03:93:cb:35:8c:87:82:e5:f5:f6:cc: 30:d6:c6:b8:10:cc:44:b8:87:29:91:55:a8:42:e9:b5:13:c2: 3b:15:7b:0a:20:f5:93:29:6e:bc:52:08:0c:8e:b1:d6:d9:8a: 86:2b:de:3f:de:55:94:82:9a:1b:8c:a8:5d:ce:2f:82:b4:5e: 2d:80:37:f8:f5:b3:b7:67:5a:19:cf:ab:76:3b:f4:01:f5:36: bf:ab:c8:18:f6:59:b5:bc:86:a3:5e:55:56:ed:cb:d6:c6:d2: b8:80:92:f2:a5:91:00:e3:c4:88:cd:bc:62:6b:14:d7:ae:54: 94:ba:dc:95:97:2e:e3:6b:86:db:8c:c7:b4:cd:1a:20:ea:7a: 3c:05:91:e0:b5:02:65:87:32:1f:c9:53:fe:7b:6f:93:a6:79: 2d:ff:f1:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZst50IwDawmIk+2cwtwH/hCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NWJiZDU0MjkxMmE2NmZlZTZhMzQxMjhhM2E4Y2Y3MDk3 ZGM2OWIwHhcNMjUxMjE3MjAwMTI5WhcNMjUxMjE4MjAwMTI5WjAzMTEwLwYDVQQD EyhlMDYxNWI4NWUzYzllMTkyOGU2NWE5MDFhZTlkZDQyNzQyY2ExNzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtqKr+5evZnWAWNdh/oo0pGw+Rg9 J040PknmQWlJLFLfQRdrooaahh2vYR0G9PvKHhvc85OMowxAjnZliCfh3YKOLJw0 3/l3KNOmtbABGi281kuXwQLu6mP+wV73Bf5MpT/TlCNkICr8/goS36vgeSgTH7sz 5lCylfCIMTM6cnsF1tQ4M3s1yJhTIZjZOeTpbYtH9xyEDZQJ/bAy4nR8Dk40v14K gsU/hXn5xU0qt6TsqwuK6qoVTfAt6dodBoDsOGWEXdY6gDzaiAx3wExJugrYtKwa FOYrwDAnphbgf2I8CTXJPfSD4tGb+c6BkdRSY+CkH8oABPefcBeAk+lB1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOBhW4XjyeGSjmWpAa6d1CdCyheQMB8GA1UdIwQY MBaAFGlbvVQpEqZv7mo0Eoo6jPcJfcabMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVZ1OVZDa1NwbV91YWpRU2lqcU05d2w5eHBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9jZDlmZDQtY2NjNS00M2Q2LTlkNTgt OTgxNmM2N2E5MjYyLzEvYVZ1OVZDa1NwbV91YWpRU2lqcU05d2w5eHBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9jZDlmZDQtY2NjNS00M2Q2LTlkNTgtOTgxNmM2N2E5MjYy LzEvYVZ1OVZDa1NwbV91YWpRU2lqcU05d2w5eHBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn7dSCh4P oSUQpQCDKp2nKVNC/AW92MflcsZcH5CcfIzpY1t0R2+jxhmBdsZg7dl/itTVsFy7 m9X9CZeP+kvB1X/8aKpiO3RJOQVwXiy4baDd8d6ZJRJbwVOHYxJa1iDFsgOTyzWM h4Ll9fbMMNbGuBDMRLiHKZFVqELptRPCOxV7CiD1kyluvFIIDI6x1tmKhiveP95V lIKaG4yoXc4vgrReLYA3+PWzt2daGc+rdjv0AfU2v6vIGPZZtbyGo15VVu3L1sbS uICS8qWRAOPEiM28YmsU165UlLrclZcu42uG24zHtM0aIOp6PAWR4LUCZYcyH8lT /ntvk6Z5Lf/xcg== -----END CERTIFICATE-----Generated at Thu Dec 18 03:42:51 2025 by rpki-client