This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft File: pavEOvztcvuSd4covuVxxnj1OFM.mft (raw, json) Hash identifier: rzFmFPF64Pgo02YUUWSCbnyl4x11Y6UKWwjqb5AmOTU= Subject key identifier: 6D:BE:63:FF:12:18:DF:86:5C:B9:63:4D:B6:B7:FA:C2:06:EB:34:D7 Authority key identifier: A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53 Certificate issuer: /CN=a5abc43afced72fb92778728bee571c678f53853 Certificate serial: 019B07EB8B45819B26DE323CEE0C2E0C4326 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft Manifest number: 176E Signing time: Wed 10 Dec 2025 11:00:35 +0000 Manifest this update: Wed 10 Dec 2025 11:00:35 +0000 Manifest next update: Thu 11 Dec 2025 11:00:35 +0000 Files and hashes: 1: XTYDavgtknOlnwhLwE8YM7gzGNo.roa (hash: PldFwC0OKAPE16YsYJiSJ7/6hQNZV4y5TLuWK0kyNJ0=) 2: pavEOvztcvuSd4covuVxxnj1OFM.crl (hash: koxaS3mvZnlq7in3eLnX3EIWQYK9gmGOahhYGz6amO4=) 3: sSPz7KsWNIMKyyRHlSkiZwosgKw.roa (hash: wjM7pq8MRvpOQBEJDje34R/IkWbdszEvqnHRsuBbId4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:eb:8b:45:81:9b:26:de:32:3c:ee:0c:2e:0c:43:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5abc43afced72fb92778728bee571c678f53853 Validity Not Before: Dec 10 11:00:35 2025 GMT Not After : Dec 11 11:00:35 2025 GMT Subject: CN=6dbe63ff1218df865cb9634db6b7fac206eb34d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:be:81:78:5a:ac:eb:7a:46:cf:a5:fc:f3: 46:97:31:31:8f:f4:d0:72:2d:74:ff:37:62:99:4f: ee:e3:a7:ae:e8:a1:22:23:ba:90:98:1a:20:ca:45: f0:4e:c3:4c:c6:20:dd:56:03:79:26:90:7f:26:16: ec:c4:9c:8e:87:88:45:ee:ba:85:39:36:b8:1f:bc: 4b:60:52:2d:2f:c3:9e:87:57:25:8c:bc:47:80:60: 7a:e3:2c:14:38:81:e8:82:17:b2:51:fc:77:7f:34: 03:28:ba:70:18:7a:e6:48:85:70:f1:d6:c4:ae:aa: d3:e1:09:31:e8:22:35:f7:f8:97:0b:fd:9f:da:d4: 9a:06:02:5b:72:36:87:5a:33:d0:5c:5f:2f:ae:a2: 46:bd:4a:e3:40:a6:e1:49:b0:af:0b:fc:27:40:ea: 91:d1:42:6e:7f:c2:d9:f4:76:a3:7a:81:92:5f:2a: 19:f5:55:98:d5:44:7a:d4:d7:31:32:de:07:d5:16: 4b:4d:52:43:5c:c7:90:75:02:67:a8:d8:60:60:cf: b9:e5:dd:a6:8e:35:86:9a:f0:f2:aa:6c:d0:ab:5d: 14:d5:83:05:52:d8:e8:1a:e6:5c:d3:6c:3e:98:f5: 12:34:4e:26:c4:3d:45:53:62:81:34:a1:de:ab:69: 90:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BE:63:FF:12:18:DF:86:5C:B9:63:4D:B6:B7:FA:C2:06:EB:34:D7 X509v3 Authority Key Identifier: keyid:A5:AB:C4:3A:FC:ED:72:FB:92:77:87:28:BE:E5:71:C6:78:F5:38:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pavEOvztcvuSd4covuVxxnj1OFM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/e9b76a-10b3-47c0-a517-b5e91fc65051/1/pavEOvztcvuSd4covuVxxnj1OFM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:94:5b:0f:d2:57:10:db:7d:c3:80:eb:91:1b:dc:8f:e9:05: b7:25:4a:53:04:ea:03:5a:53:fa:b4:ed:bd:45:11:89:53:f9: 15:aa:3e:ff:5c:35:81:18:92:be:5d:b0:78:68:2c:57:bd:a1: 21:a2:fd:38:bb:38:31:d6:51:37:81:ee:e0:e3:53:9d:ad:75: 27:ca:cc:ea:9c:38:ff:97:bf:d1:07:06:2c:b0:1e:54:af:93: c5:7e:b1:b0:46:69:67:43:06:fc:b9:4b:17:58:fd:05:51:a1: cd:4d:2f:23:e2:73:97:bb:44:55:35:29:eb:94:bd:b1:75:ca: 37:99:4c:5f:01:66:cc:1e:db:35:23:4e:d7:ce:6c:4b:8a:d6: cd:3a:01:ce:78:65:31:e5:f3:b6:37:28:4e:f8:65:0d:e0:36: 0f:7a:26:55:4c:f5:c0:66:32:52:6e:7d:53:ea:b1:dd:50:2e: e9:bf:49:d6:2a:f0:90:a9:d3:2e:27:4f:08:a9:99:dc:fe:34: 91:22:66:0f:4b:1a:1c:a7:87:fd:5d:7a:4d:d9:e7:26:33:ba: 6d:47:63:ed:2e:b2:ad:53:a1:b2:97:cc:53:84:de:9e:a0:a8: c6:b4:a1:87:74:cc:28:29:b9:ad:fa:17:d4:6f:b4:e7:67:17: 74:76:f2:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsH64tFgZsm3jI87gwuDEMmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1YWJjNDNhZmNlZDcyZmI5Mjc3ODcyOGJlZTU3MWM2Nzhm NTM4NTMwHhcNMjUxMjEwMTEwMDM1WhcNMjUxMjExMTEwMDM1WjAzMTEwLwYDVQQD Eyg2ZGJlNjNmZjEyMThkZjg2NWNiOTYzNGRiNmI3ZmFjMjA2ZWIzNGQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmH6+gXharOt6Rs+l/PNGlzExj/TQ ci10/zdimU/u46eu6KEiI7qQmBogykXwTsNMxiDdVgN5JpB/JhbsxJyOh4hF7rqF OTa4H7xLYFItL8Oeh1cljLxHgGB64ywUOIHogheyUfx3fzQDKLpwGHrmSIVw8dbE rqrT4Qkx6CI19/iXC/2f2tSaBgJbcjaHWjPQXF8vrqJGvUrjQKbhSbCvC/wnQOqR 0UJuf8LZ9HajeoGSXyoZ9VWY1UR61NcxMt4H1RZLTVJDXMeQdQJnqNhgYM+55d2m jjWGmvDyqmzQq10U1YMFUtjoGuZc02w+mPUSNE4mxD1FU2KBNKHeq2mQSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG2+Y/8SGN+GXLljTba3+sIG6zTXMB8GA1UdIwQY MBaAFKWrxDr87XL7kneHKL7lccZ49ThTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGF2RU92enRjdnVTZDRjb3Z1Vnh4bmoxT0ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9lOWI3NmEtMTBiMy00N2MwLWE1MTct YjVlOTFmYzY1MDUxLzEvcGF2RU92enRjdnVTZDRjb3Z1Vnh4bmoxT0ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9lOWI3NmEtMTBiMy00N2MwLWE1MTctYjVlOTFmYzY1MDUx LzEvcGF2RU92enRjdnVTZDRjb3Z1Vnh4bmoxT0ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN5RbD9JX ENt9w4DrkRvcj+kFtyVKUwTqA1pT+rTtvUURiVP5Fao+/1w1gRiSvl2weGgsV72h IaL9OLs4MdZRN4Hu4ONTna11J8rM6pw4/5e/0QcGLLAeVK+TxX6xsEZpZ0MG/LlL F1j9BVGhzU0vI+Jzl7tEVTUp65S9sXXKN5lMXwFmzB7bNSNO185sS4rWzToBznhl MeXztjcoTvhlDeA2D3omVUz1wGYyUm59U+qx3VAu6b9J1irwkKnTLidPCKmZ3P40 kSJmD0saHKeH/V16TdnnJjO6bUdj7S6yrVOhspfMU4TenqCoxrShh3TMKCm5rfoX 1G+052cXdHbykg== -----END CERTIFICATE-----Generated at Wed Dec 10 18:39:48 2025 by rpki-client