This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft File: avL7pFrWUxpj0XNQFPaZgH9H-9w.mft (raw, json) Hash identifier: r+fdZ1uzC7Rgt5t9qTS4ypXzYgMF7+LepX6pnKVQHXg= Subject key identifier: 77:86:5F:94:8B:67:35:E9:BB:81:EC:EC:38:4C:F8:FE:79:4A:AC:D6 Authority key identifier: 6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC Certificate issuer: /CN=6af2fba45ad6531a63d1735014f699807f47fbdc Certificate serial: 019B33B26C7A7472E0D583A491282A67529C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft Manifest number: 07AD Signing time: Thu 18 Dec 2025 23:01:29 +0000 Manifest this update: Thu 18 Dec 2025 23:01:29 +0000 Manifest next update: Fri 19 Dec 2025 23:01:29 +0000 Files and hashes: 1: avL7pFrWUxpj0XNQFPaZgH9H-9w.crl (hash: MtTpxUUvjHbI+TcAr4feS159qXT0hRv80tPNTnOT46M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:6c:7a:74:72:e0:d5:83:a4:91:28:2a:67:52:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6af2fba45ad6531a63d1735014f699807f47fbdc Validity Not Before: Dec 18 23:01:29 2025 GMT Not After : Dec 19 23:01:29 2025 GMT Subject: CN=77865f948b6735e9bb81ecec384cf8fe794aacd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:58:fd:66:d5:e0:14:8e:65:9b:6c:a6:63:17: b7:f4:51:b3:4d:a1:cb:bf:fd:80:32:79:6f:39:05: 6f:61:67:0d:aa:52:a6:7c:54:d0:dc:51:0b:04:d1: f9:24:b8:3f:5c:a0:6a:e6:4f:ed:9c:ff:2e:11:39: 4a:f6:4c:c3:4d:59:e4:80:87:85:f1:13:1c:9c:d8: 89:c3:c2:7e:0f:6d:97:10:18:4f:62:a2:c8:53:8e: 67:8d:c4:8b:2a:c2:18:4e:02:d1:b9:ec:99:be:17: a0:40:d3:07:b4:2f:71:db:2d:8f:05:c7:14:af:09: af:98:5b:31:9d:85:8d:7b:0b:c4:45:98:43:6f:dc: 53:87:b5:60:21:10:d1:02:5a:6c:91:64:57:ff:b8: d7:df:11:92:14:3e:c3:29:62:32:83:45:35:d3:4e: 58:c8:25:7f:ac:ef:9a:62:e4:19:45:db:2a:0a:d8: 60:e7:32:66:11:18:ea:00:89:84:39:19:dc:12:8c: ea:65:43:93:3f:1f:8c:85:ac:ad:18:85:40:c8:45: f7:22:f9:f4:a6:ea:64:12:f2:f8:39:cc:75:4e:f0: d9:00:77:d1:e7:0e:d3:db:e0:8a:7f:93:61:40:69: 14:9d:f9:07:4c:08:d5:08:c7:7f:bb:5d:79:a5:5b: 63:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:86:5F:94:8B:67:35:E9:BB:81:EC:EC:38:4C:F8:FE:79:4A:AC:D6 X509v3 Authority Key Identifier: keyid:6A:F2:FB:A4:5A:D6:53:1A:63:D1:73:50:14:F6:99:80:7F:47:FB:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/avL7pFrWUxpj0XNQFPaZgH9H-9w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/728a40-e0ee-436b-b1fb-197ec9a115aa/1/avL7pFrWUxpj0XNQFPaZgH9H-9w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:28:3c:14:14:7b:44:b9:e1:e4:ab:0e:b0:71:6b:27:fa:dc: 23:ab:2d:fe:5b:8c:d3:30:9d:df:87:0c:6e:ca:f4:3a:cc:01: 2e:d0:b9:d9:ba:8e:18:32:e2:cb:85:52:b4:18:0a:bd:57:1c: c3:e0:d7:aa:eb:44:be:b0:03:d7:e6:d5:9a:d6:e6:18:cd:2f: 09:19:7c:df:56:b5:c5:fe:db:d2:80:7e:e3:b4:93:5e:cf:8c: 4c:1b:0b:e9:b7:76:64:17:58:07:82:4c:de:20:78:c9:27:ef: ad:58:dd:9a:dc:c1:1e:57:75:4b:d1:24:53:12:17:e1:73:22: 40:ff:f7:02:9c:bc:df:f7:e7:13:7b:a8:13:4a:9e:b2:37:9e: 00:7f:d4:ef:c1:c9:ef:09:25:84:b3:6c:8f:b3:8a:99:b7:17: 07:af:9c:1e:ec:bd:4f:01:e7:d5:85:54:43:7b:ad:15:9a:67: 9c:0a:b9:4d:3d:da:33:d4:4e:6a:d1:4c:01:f6:01:5f:8d:84: 55:40:fc:19:b2:f8:10:3b:79:8a:48:d6:52:a7:94:ca:83:18: 5c:63:c9:a3:db:95:ac:1c:69:96:fa:35:3e:62:59:19:75:fd: 4f:f8:99:8b:00:ef:35:6c:3b:a9:f3:5e:37:ed:03:ce:a5:68: aa:e4:9f:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszsmx6dHLg1YOkkSgqZ1KcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhZjJmYmE0NWFkNjUzMWE2M2QxNzM1MDE0ZjY5OTgwN2Y0 N2ZiZGMwHhcNMjUxMjE4MjMwMTI5WhcNMjUxMjE5MjMwMTI5WjAzMTEwLwYDVQQD Eyg3Nzg2NWY5NDhiNjczNWU5YmI4MWVjZWMzODRjZjhmZTc5NGFhY2Q2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVj9ZtXgFI5lm2ymYxe39FGzTaHL v/2AMnlvOQVvYWcNqlKmfFTQ3FELBNH5JLg/XKBq5k/tnP8uETlK9kzDTVnkgIeF 8RMcnNiJw8J+D22XEBhPYqLIU45njcSLKsIYTgLRueyZvhegQNMHtC9x2y2PBccU rwmvmFsxnYWNewvERZhDb9xTh7VgIRDRAlpskWRX/7jX3xGSFD7DKWIyg0U1005Y yCV/rO+aYuQZRdsqCthg5zJmERjqAImEORncEozqZUOTPx+MhaytGIVAyEX3Ivn0 pupkEvL4Ocx1TvDZAHfR5w7T2+CKf5NhQGkUnfkHTAjVCMd/u115pVtjKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHeGX5SLZzXpu4Hs7DhM+P55SqzWMB8GA1UdIwQY MBaAFGry+6Ra1lMaY9FzUBT2mYB/R/vcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYXZMN3BGcldVeHBqMFhOUUZQYVpnSDlILTl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83MjhhNDAtZTBlZS00MzZiLWIxZmIt MTk3ZWM5YTExNWFhLzEvYXZMN3BGcldVeHBqMFhOUUZQYVpnSDlILTl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83MjhhNDAtZTBlZS00MzZiLWIxZmItMTk3ZWM5YTExNWFh LzEvYXZMN3BGcldVeHBqMFhOUUZQYVpnSDlILTl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOCg8FBR7 RLnh5KsOsHFrJ/rcI6st/luM0zCd34cMbsr0OswBLtC52bqOGDLiy4VStBgKvVcc w+DXqutEvrAD1+bVmtbmGM0vCRl831a1xf7b0oB+47STXs+MTBsL6bd2ZBdYB4JM 3iB4ySfvrVjdmtzBHld1S9EkUxIX4XMiQP/3Apy83/fnE3uoE0qesjeeAH/U78HJ 7wklhLNsj7OKmbcXB6+cHuy9TwHn1YVUQ3utFZpnnAq5TT3aM9ROatFMAfYBX42E VUD8GbL4EDt5ikjWUqeUyoMYXGPJo9uVrBxplvo1PmJZGXX9T/iZiwDvNWw7qfNe N+0DzqVoquSfoQ== -----END CERTIFICATE-----Generated at Fri Dec 19 03:09:04 2025 by rpki-client