This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft File: pgD8lkBCiaxYthBH3fhiGH9asn4.mft (raw, json) Hash identifier: lYvRzMRBFO0PiURxocciQVv5pB3Y3DclK8+R16I5r6c= Subject key identifier: A2:F7:DA:F3:87:B8:00:A0:DE:59:8B:A1:17:DA:E7:AA:27:D9:0C:6A Authority key identifier: A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E Certificate issuer: /CN=a600fc96404289ac58b61047ddf862187f5ab27e Certificate serial: 019AF1646726FA6F6510DC8B96B8136CE21A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 02:01:20 +0000 Manifest this update: Sat 06 Dec 2025 02:01:20 +0000 Manifest next update: Sun 07 Dec 2025 02:01:20 +0000 Files and hashes: 1: BFaJClF3p4qT7dCc22lWmwjl7l0.roa (hash: 8kW6E4fmgwFFVui51mNwFwgDzJW114zoN23nienu6x8=) 2: pgD8lkBCiaxYthBH3fhiGH9asn4.crl (hash: qwLBy9YDNGc//c1d/mhqZOQ08siUYT18OkS0TyOeUM4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:67:26:fa:6f:65:10:dc:8b:96:b8:13:6c:e2:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a600fc96404289ac58b61047ddf862187f5ab27e Validity Not Before: Dec 6 02:01:20 2025 GMT Not After : Dec 7 02:01:20 2025 GMT Subject: CN=a2f7daf387b800a0de598ba117dae7aa27d90c6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:10:09:49:b8:51:37:99:33:a4:04:b9:55:6e: 6e:f7:67:e5:5a:97:f5:5c:a3:63:cf:9a:d1:e6:49: 57:46:98:14:29:34:97:5d:52:87:d3:d2:56:2a:e0: 74:d9:21:8e:1e:04:05:05:ba:8b:55:52:6e:a3:1f: 0f:f3:a0:a4:d9:b2:0d:45:c8:ed:07:8d:73:80:44: ea:55:7e:8b:ec:e6:92:cf:8a:21:82:c6:65:7c:40: cf:73:a6:58:27:74:4f:fd:6b:47:54:e7:48:42:6c: 8d:fa:d8:39:3e:6f:7e:26:2c:80:fd:fe:e8:b6:21: 15:b2:9b:85:d4:09:c3:89:6b:52:3d:db:f7:a7:f9: 0c:46:49:91:97:41:57:cd:9e:2c:27:fb:7d:9a:b2: c7:cc:56:af:ab:b7:5b:f7:e1:01:65:80:1d:ff:62: 0d:24:06:dc:13:05:15:c4:3c:e2:f6:d6:ef:87:d5: 0b:de:83:e5:df:82:65:1e:96:f9:8f:b8:5b:e8:a4: 3f:2f:2a:2b:51:a9:93:a5:0c:28:c2:58:38:1a:7a: a7:e3:e8:83:57:3b:c1:df:78:05:b8:4b:5a:31:4a: fd:71:e9:82:b0:4c:14:62:e6:b1:34:d2:2f:9c:30: f1:f1:eb:a1:9e:df:af:9c:bb:6c:27:a9:21:c5:59: e6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F7:DA:F3:87:B8:00:A0:DE:59:8B:A1:17:DA:E7:AA:27:D9:0C:6A X509v3 Authority Key Identifier: keyid:A6:00:FC:96:40:42:89:AC:58:B6:10:47:DD:F8:62:18:7F:5A:B2:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgD8lkBCiaxYthBH3fhiGH9asn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3d7b8a-e074-4f16-a629-2128d840c429/1/pgD8lkBCiaxYthBH3fhiGH9asn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:73:5a:4b:31:9e:99:7e:96:79:e3:a8:b9:01:db:54:dc:7a: 51:9e:22:7f:26:a2:3d:67:a8:21:c6:95:a9:0d:ba:94:5a:8a: 51:51:9c:c4:31:ee:fe:31:cf:b0:f5:80:d9:63:80:ab:61:85: 19:8f:50:d6:5f:ed:9d:2e:4f:87:3b:29:46:5a:2a:55:b4:4c: 54:ac:1c:69:37:8f:d0:19:d5:99:64:f6:a0:17:50:6f:d2:9a: 55:e2:c7:c4:32:90:86:92:14:7b:db:f4:48:66:d1:cb:90:59: 31:da:b1:1f:2d:55:42:96:6b:a7:6c:59:46:f1:e2:7d:68:aa: f0:7c:02:a3:57:47:78:0e:82:5e:19:e9:eb:1f:a5:45:2f:ae: 12:45:df:54:24:c2:18:44:96:88:7a:d1:7a:68:b5:21:98:6d: 3f:5e:fa:75:95:a6:04:b2:ac:40:91:ca:d2:f5:51:3f:b5:4d: aa:d9:46:52:f9:d6:42:f9:b3:55:51:4b:32:29:8b:20:84:f6: c7:f8:f1:66:11:41:6a:b3:ab:61:8a:3f:d5:58:09:7a:66:84: b8:c4:46:31:bc:36:24:87:eb:85:21:14:2a:df:a6:51:d0:3a: 31:8e:25:8f:84:aa:6a:74:67:3c:b8:b6:72:c4:17:22:f7:0e: 5f:d3:03:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZGcm+m9lENyLlrgTbOIaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MDBmYzk2NDA0Mjg5YWM1OGI2MTA0N2RkZjg2MjE4N2Y1 YWIyN2UwHhcNMjUxMjA2MDIwMTIwWhcNMjUxMjA3MDIwMTIwWjAzMTEwLwYDVQQD EyhhMmY3ZGFmMzg3YjgwMGEwZGU1OThiYTExN2RhZTdhYTI3ZDkwYzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RAJSbhRN5kzpAS5VW5u92flWpf1 XKNjz5rR5klXRpgUKTSXXVKH09JWKuB02SGOHgQFBbqLVVJuox8P86Ck2bINRcjt B41zgETqVX6L7OaSz4ohgsZlfEDPc6ZYJ3RP/WtHVOdIQmyN+tg5Pm9+JiyA/f7o tiEVspuF1AnDiWtSPdv3p/kMRkmRl0FXzZ4sJ/t9mrLHzFavq7db9+EBZYAd/2IN JAbcEwUVxDzi9tbvh9UL3oPl34JlHpb5j7hb6KQ/LyorUamTpQwowlg4Gnqn4+iD VzvB33gFuEtaMUr9cemCsEwUYuaxNNIvnDDx8euhnt+vnLtsJ6khxVnmHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKL32vOHuACg3lmLoRfa56on2QxqMB8GA1UdIwQY MBaAFKYA/JZAQomsWLYQR934Yhh/WrJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGdEOGxrQkNpYXhZdGhCSDNmaGlHSDlhc240LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zZDdiOGEtZTA3NC00ZjE2LWE2Mjkt MjEyOGQ4NDBjNDI5LzEvcGdEOGxrQkNpYXhZdGhCSDNmaGlHSDlhc240Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zZDdiOGEtZTA3NC00ZjE2LWE2MjktMjEyOGQ4NDBjNDI5 LzEvcGdEOGxrQkNpYXhZdGhCSDNmaGlHSDlhc240LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjnNaSzGe mX6WeeOouQHbVNx6UZ4ifyaiPWeoIcaVqQ26lFqKUVGcxDHu/jHPsPWA2WOAq2GF GY9Q1l/tnS5PhzspRloqVbRMVKwcaTeP0BnVmWT2oBdQb9KaVeLHxDKQhpIUe9v0 SGbRy5BZMdqxHy1VQpZrp2xZRvHifWiq8HwCo1dHeA6CXhnp6x+lRS+uEkXfVCTC GESWiHrRemi1IZhtP176dZWmBLKsQJHK0vVRP7VNqtlGUvnWQvmzVVFLMimLIIT2 x/jxZhFBarOrYYo/1VgJemaEuMRGMbw2JIfrhSEUKt+mUdA6MY4lj4SqanRnPLi2 csQXIvcOX9MDTg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:22 2025 by rpki-client