This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json) Hash identifier: YFVN7ErvS6uepVsRYNihcosK94Xc2yh6t0qHN5sKrRo= Subject key identifier: 7F:F5:EE:2A:1E:B4:ED:06:E3:67:07:53:6C:60:CC:ED:FE:7D:46:E8 Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69 Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69 Certificate serial: 019B3C103500E0E5D9D10B3C27A3F1A5A970 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft Manifest number: 07C5 Signing time: Sat 20 Dec 2025 14:00:53 +0000 Manifest this update: Sat 20 Dec 2025 14:00:53 +0000 Manifest next update: Sun 21 Dec 2025 14:00:53 +0000 Files and hashes: 1: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: gn/Xg1wiYS187hQuoXTqZdV4UPwxskhgJtwjhfVJCf8=) 2: hnTM8e9DDp88O_jCAHz8InVW_vE.roa (hash: 8skhoEZiI2jfYQ4DDQgvqEaBRoMspiQzmuxF61YcMEA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:35:00:e0:e5:d9:d1:0b:3c:27:a3:f1:a5:a9:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69 Validity Not Before: Dec 20 14:00:53 2025 GMT Not After : Dec 21 14:00:53 2025 GMT Subject: CN=7ff5ee2a1eb4ed06e36707536c60ccedfe7d46e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ed:ea:ef:c2:05:0e:f9:b9:d1:9e:58:4f:78: a1:08:d5:35:38:8f:d8:fa:0b:3b:09:0e:df:b9:d0: 7d:93:26:b7:c6:c9:19:b6:f0:f7:4b:17:a5:20:0c: be:1d:18:9e:c1:18:1a:1b:25:16:09:99:a3:9d:8d: 3c:2a:0b:b8:b7:35:b7:a6:ac:e6:16:93:77:21:c5: 93:7f:b3:aa:2f:cc:68:44:88:bd:15:b3:dc:d2:69: b0:d3:c0:60:fe:30:a1:2b:ce:1c:26:f4:4f:bf:a9: 3f:a3:5a:ee:46:5d:a2:96:99:4f:27:0d:69:79:08: 93:50:0e:3b:fa:1e:0b:72:86:18:64:7d:f1:cb:3a: 06:ce:7b:4f:a1:41:58:f2:cc:61:99:73:8d:92:a1: 2e:9c:9d:14:22:13:a7:5e:ca:90:ba:7b:52:dc:a5: 95:69:e4:28:27:c6:06:d2:08:3b:60:22:89:1b:e5: 1f:95:e4:a7:9f:c1:07:9e:ad:25:12:e2:5b:70:dd: 7d:90:12:09:34:70:7b:b6:e2:f0:71:dc:b8:a5:16: a2:a1:f1:97:dc:60:af:dd:b8:fc:66:51:58:ed:ea: 6b:71:c8:96:c9:21:f1:60:c1:df:61:b1:d2:50:60: 08:d5:37:60:7a:df:b3:65:25:07:ac:31:7b:e6:13: a8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F5:EE:2A:1E:B4:ED:06:E3:67:07:53:6C:60:CC:ED:FE:7D:46:E8 X509v3 Authority Key Identifier: keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:07:62:30:76:e4:31:94:6a:38:db:c4:1e:a6:9a:1a:72:34: 85:6f:0e:cd:ca:6f:f9:f8:94:18:61:68:8e:ee:30:92:12:91: 94:a7:68:b7:fe:ed:e8:1d:74:6f:15:19:d0:1b:1f:dd:44:1c: 20:05:de:d4:73:cc:63:5a:9a:0c:f7:ea:18:2c:68:27:62:fb: 54:63:83:ef:9e:47:d0:ce:2a:ee:aa:00:4e:1d:82:24:a6:6e: e8:46:9a:a7:ce:7a:bf:97:7f:0d:bc:75:e6:e9:39:10:f0:04: f3:05:52:f4:51:49:8e:18:a6:26:26:41:ea:df:fd:4c:3e:60: d1:e4:94:ea:22:6b:bc:d5:79:96:7b:13:98:84:7f:92:cf:df: 9d:f9:37:fd:40:10:cf:dd:c4:a2:44:b8:46:41:31:79:3b:65: 5a:8d:e4:6a:c9:24:d6:e4:bf:63:22:28:98:d9:09:0b:07:e9: 10:80:67:35:73:ab:43:44:1d:f8:46:b2:4d:14:1e:3f:27:07: 4b:1a:3d:2e:2c:90:08:3d:16:92:ee:e1:74:ed:3a:07:ea:e3: a3:11:33:7d:04:2b:1b:32:a3:a2:1d:0e:a0:3e:ee:e6:11:cc: c8:b2:7e:b4:bc:7e:a1:f5:6f:17:16:d0:50:e3:68:bc:27:66: ec:7b:cc:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8EDUA4OXZ0Qs8J6PxpalwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5NWRjZTVlMzdhODYyNTM4YTBmNjY4ODNkZTIwNmZmYjdj OTNiNjkwHhcNMjUxMjIwMTQwMDUzWhcNMjUxMjIxMTQwMDUzWjAzMTEwLwYDVQQD Eyg3ZmY1ZWUyYTFlYjRlZDA2ZTM2NzA3NTM2YzYwY2NlZGZlN2Q0NmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxu3q78IFDvm50Z5YT3ihCNU1OI/Y +gs7CQ7fudB9kya3xskZtvD3SxelIAy+HRiewRgaGyUWCZmjnY08Kgu4tzW3pqzm FpN3IcWTf7OqL8xoRIi9FbPc0mmw08Bg/jChK84cJvRPv6k/o1ruRl2ilplPJw1p eQiTUA47+h4LcoYYZH3xyzoGzntPoUFY8sxhmXONkqEunJ0UIhOnXsqQuntS3KWV aeQoJ8YG0gg7YCKJG+UfleSnn8EHnq0lEuJbcN19kBIJNHB7tuLwcdy4pRaiofGX 3GCv3bj8ZlFY7eprcciWySHxYMHfYbHSUGAI1Tdget+zZSUHrDF75hOo/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH/17ioetO0G42cHU2xgzO3+fUboMB8GA1UdIwQY MBaAFGldzl43qGJTig9miD3iBv+3yTtpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWIt MDE3ZGVlNDUyZWM0LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83MTY5MTEtMzBkZS00Yjc0LTk1OWItMDE3ZGVlNDUyZWM0 LzEvYVYzT1hqZW9ZbE9LRDJhSVBlSUdfN2ZKTzJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQdiMHbk MZRqONvEHqaaGnI0hW8Ozcpv+fiUGGFoju4wkhKRlKdot/7t6B10bxUZ0Bsf3UQc IAXe1HPMY1qaDPfqGCxoJ2L7VGOD755H0M4q7qoATh2CJKZu6Eaap856v5d/Dbx1 5uk5EPAE8wVS9FFJjhimJiZB6t/9TD5g0eSU6iJrvNV5lnsTmIR/ks/fnfk3/UAQ z93EokS4RkExeTtlWo3kaskk1uS/YyIomNkJCwfpEIBnNXOrQ0Qd+EayTRQePycH Sxo9LiyQCD0Wku7hdO06B+rjoxEzfQQrGzKjoh0OoD7u5hHMyLJ+tLx+ofVvFxbQ UONovCdm7HvMxA== -----END CERTIFICATE-----Generated at Sat Dec 20 23:55:37 2025 by rpki-client