This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft File: AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft (raw, json) Hash identifier: hvIzNy9nELKty0e4c4Rbs21LAopOYBmft+Z+dlBrMms= Subject key identifier: 61:59:3D:08:6F:9D:C7:C6:DD:79:1F:D0:AB:D1:1F:B9:EE:41:2D:71 Authority key identifier: 03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2 Certificate issuer: /CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2 Certificate serial: 019B32D7030B8017CBF286FDABBBB72F22C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft Manifest number: 0702 Signing time: Thu 18 Dec 2025 19:01:50 +0000 Manifest this update: Thu 18 Dec 2025 19:01:50 +0000 Manifest next update: Fri 19 Dec 2025 19:01:50 +0000 Files and hashes: 1: AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl (hash: 2GfDID16ix7dN2Xua5uFITNg1wmuHRknJL9OLHinPQw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:03:0b:80:17:cb:f2:86:fd:ab:bb:b7:2f:22:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2 Validity Not Before: Dec 18 19:01:50 2025 GMT Not After : Dec 19 19:01:50 2025 GMT Subject: CN=61593d086f9dc7c6dd791fd0abd11fb9ee412d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:51:7d:36:fd:47:cf:be:45:f4:69:3e:d8:53: aa:9c:51:4b:21:f5:e0:fd:2c:b7:47:13:4f:03:21: d7:ca:4d:04:e8:8b:dc:2f:e8:37:49:8d:e7:62:31: 0b:e2:b5:bf:57:cf:69:a6:8f:e6:32:9f:df:c0:9c: d8:de:e5:d8:41:30:f4:89:17:47:1b:49:5a:b2:56: c1:0c:0e:c3:00:dc:83:23:b6:ae:2f:ea:3d:27:11: 41:81:fa:77:62:95:0b:b8:b9:97:9f:3c:4b:5a:ca: 73:81:07:e9:76:5f:1b:6f:9b:b2:50:65:3c:ab:0d: f1:5f:7c:2d:9a:e4:87:de:c5:12:6d:59:17:57:11: 13:17:72:0d:39:da:f2:2a:ae:f1:06:64:80:62:f8: 57:02:da:4c:7b:54:7f:dc:59:d0:a1:a6:e2:a2:f9: 8f:39:b1:66:c1:73:e2:81:1a:63:c1:4f:90:b5:e9: 39:a7:1e:c1:bb:42:3b:77:00:17:14:42:22:11:3b: b5:a1:4c:b0:29:0c:65:1b:66:25:2c:0c:52:dc:0a: 78:d2:fa:98:9e:16:a3:4f:c7:30:18:de:fb:80:08: d4:0c:89:7c:fe:fc:ba:1b:51:a1:02:58:f2:82:cf: 15:5a:a2:67:6d:25:dc:36:42:b7:71:07:8e:00:59: 94:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:59:3D:08:6F:9D:C7:C6:DD:79:1F:D0:AB:D1:1F:B9:EE:41:2D:71 X509v3 Authority Key Identifier: keyid:03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:8b:5d:7d:f8:31:a7:92:02:4b:24:61:6e:80:ec:d2:2a:8c: 79:bc:01:2d:6c:60:f5:6e:ff:e8:eb:3f:07:93:66:aa:8c:6f: cd:11:a6:88:64:4d:fe:20:f9:20:05:36:f9:1a:d3:7d:81:26: aa:9d:a8:5f:ea:c0:ba:bb:c4:85:b1:7d:2e:e0:03:1e:a2:b3: 03:02:41:c9:ae:a8:c3:4f:39:91:ca:1c:19:61:92:4a:73:78: cb:b1:21:a3:29:ea:ac:db:62:a5:65:94:47:e6:92:37:aa:30: a2:f1:4d:31:c9:4f:3f:f7:25:43:8b:5f:3e:05:b4:68:94:32: 02:a3:8c:bb:a7:a8:d9:95:f7:fc:22:0b:69:ff:0f:f9:4c:c7: 33:a2:59:03:e6:6b:2c:75:b7:3d:73:6b:61:7b:55:24:15:12: 66:90:8c:a6:bd:8a:4c:81:37:e4:dd:31:4e:7c:a8:5a:a5:d3: 42:76:dd:ae:c8:40:dc:9d:22:e4:c4:61:8f:76:78:8b:6d:d6: cc:cb:35:46:d9:75:28:1c:98:5a:6f:03:06:a4:33:f9:82:f4: 01:87:11:c7:05:91:60:af:b6:0d:55:a9:ab:42:01:4b:33:90: 0b:b6:be:74:db:35:40:34:2c:43:55:b7:ce:95:38:5c:94:7a: dc:d6:a4:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1wMLgBfL8ob9q7u3LyLBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMWM4ZThjYzA3NWMyZDA0MzEzYjkxMWQ5M2Q2MWZlMmE5 YWRlYTIwHhcNMjUxMjE4MTkwMTUwWhcNMjUxMjE5MTkwMTUwWjAzMTEwLwYDVQQD Eyg2MTU5M2QwODZmOWRjN2M2ZGQ3OTFmZDBhYmQxMWZiOWVlNDEyZDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1F9Nv1Hz75F9Gk+2FOqnFFLIfXg /Sy3RxNPAyHXyk0E6IvcL+g3SY3nYjEL4rW/V89ppo/mMp/fwJzY3uXYQTD0iRdH G0laslbBDA7DANyDI7auL+o9JxFBgfp3YpULuLmXnzxLWspzgQfpdl8bb5uyUGU8 qw3xX3wtmuSH3sUSbVkXVxETF3INOdryKq7xBmSAYvhXAtpMe1R/3FnQoabiovmP ObFmwXPigRpjwU+Qtek5px7Bu0I7dwAXFEIiETu1oUywKQxlG2YlLAxS3Ap40vqY nhajT8cwGN77gAjUDIl8/vy6G1GhAljygs8VWqJnbSXcNkK3cQeOAFmUpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGFZPQhvncfG3Xkf0KvRH7nuQS1xMB8GA1UdIwQY MBaAFAMcjozAdcLQQxO5Edk9Yf4qmt6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXh5T2pNQjF3dEJERTdrUjJUMWhfaXFhM3FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy83NTIxM2QtMDFhNC00YjYxLWI1OTQt NjI2OGNlZGFiZDg0LzEvQXh5T2pNQjF3dEJERTdrUjJUMWhfaXFhM3FJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy83NTIxM2QtMDFhNC00YjYxLWI1OTQtNjI2OGNlZGFiZDg0 LzEvQXh5T2pNQjF3dEJERTdrUjJUMWhfaXFhM3FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHItdffgx p5ICSyRhboDs0iqMebwBLWxg9W7/6Os/B5NmqoxvzRGmiGRN/iD5IAU2+RrTfYEm qp2oX+rAurvEhbF9LuADHqKzAwJBya6ow085kcocGWGSSnN4y7EhoynqrNtipWWU R+aSN6owovFNMclPP/clQ4tfPgW0aJQyAqOMu6eo2ZX3/CILaf8P+UzHM6JZA+Zr LHW3PXNrYXtVJBUSZpCMpr2KTIE35N0xTnyoWqXTQnbdrshA3J0i5MRhj3Z4i23W zMs1Rtl1KByYWm8DBqQz+YL0AYcRxwWRYK+2DVWpq0IBSzOQC7a+dNs1QDQsQ1W3 zpU4XJR63NakfQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:15:58 2025 by rpki-client