This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft File: PsfSv8P6eOcQChuJNZBa_3pJa8k.mft (raw, json) Hash identifier: N4wTdhPRr8WJgO9tmfNSCCxhwTEJLt0sM5STeT922OU= Subject key identifier: 63:1C:5D:85:2F:63:9C:6B:9A:4E:76:39:A9:EE:3E:A0:8B:42:6A:D0 Authority key identifier: 3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9 Certificate issuer: /CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9 Certificate serial: 019AF12EA6D25CD8F9BE90A2C75DE42FBF85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft Manifest number: 0E0E Signing time: Sat 06 Dec 2025 01:02:37 +0000 Manifest this update: Sat 06 Dec 2025 01:02:37 +0000 Manifest next update: Sun 07 Dec 2025 01:02:37 +0000 Files and hashes: 1: PsfSv8P6eOcQChuJNZBa_3pJa8k.crl (hash: H4cDc/dXcwanerwyuKkdSS0L32Y+oUgKQieKE4QMe3A=) 2: RPdruY8oCYU-NG_cdmDTyaYXs9w.roa (hash: i9rNw7/5XltvLVBXot4AXkRNS8YKs+TQnC29q/66MR8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:a6:d2:5c:d8:f9:be:90:a2:c7:5d:e4:2f:bf:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ec7d2bfc3fa78e7100a1b8935905aff7a496bc9 Validity Not Before: Dec 6 01:02:37 2025 GMT Not After : Dec 7 01:02:37 2025 GMT Subject: CN=631c5d852f639c6b9a4e7639a9ee3ea08b426ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3b:80:aa:3d:a7:88:f8:4b:c6:8c:26:e5:3f: a1:14:58:13:eb:94:7a:7f:f2:ca:8f:5f:80:22:db: dd:a8:3f:14:11:66:aa:51:27:8e:4e:d8:2f:b9:af: 74:33:6e:ae:00:d3:bc:77:e3:35:4b:10:9e:c9:e4: 22:94:32:39:5b:2d:fe:2e:70:52:7d:ce:0c:6d:de: 78:67:03:96:a5:1a:1b:fe:73:58:73:81:cb:4e:b6: a1:4b:8d:f8:3a:de:3a:48:53:be:5d:17:2e:51:42: 6f:df:04:bb:98:54:2d:b8:f4:c3:e5:e8:1c:c4:d2: da:e8:49:e7:df:1b:d3:ba:de:cb:56:7d:37:c1:3a: 57:06:74:b0:df:b9:fb:15:49:a8:74:56:d6:2b:0b: c9:83:ce:42:6d:fe:d7:6f:3f:c6:e1:99:fb:8a:a9: 9a:d4:e6:ca:8a:c5:a7:c2:f6:ef:c4:30:e1:07:0c: 44:00:43:27:8b:1e:0f:d0:86:13:4c:6b:85:b3:04: 91:93:8f:b0:41:8b:e4:cb:3c:56:b1:84:62:f1:c4: ff:12:3e:44:f4:4d:37:91:fe:d6:d6:88:bd:d0:4b: a0:52:bd:5e:ad:3d:56:c4:ee:e6:ca:3e:ac:c9:cd: e4:90:0d:9f:be:cb:85:3b:94:ad:ac:17:f7:4b:12: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1C:5D:85:2F:63:9C:6B:9A:4E:76:39:A9:EE:3E:A0:8B:42:6A:D0 X509v3 Authority Key Identifier: keyid:3E:C7:D2:BF:C3:FA:78:E7:10:0A:1B:89:35:90:5A:FF:7A:49:6B:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PsfSv8P6eOcQChuJNZBa_3pJa8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/39bb72-f6af-4a67-9c44-ba881122ca63/1/PsfSv8P6eOcQChuJNZBa_3pJa8k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c2:74:b6:3d:a3:fb:a6:ba:1f:9d:40:e2:d2:ed:35:3f:28: 15:2d:f2:62:27:62:a3:17:b0:a4:24:b5:ec:10:0b:e1:00:10: 93:23:3b:70:97:92:d1:3e:2c:dd:0b:80:fa:4e:a7:4e:8b:68: 83:b5:ff:a4:da:37:8a:ba:98:95:a9:7a:9b:b5:fb:4d:f7:e7: 11:2f:06:66:f3:0a:67:4f:b9:ae:96:dc:e7:1b:78:2b:96:4c: fb:74:66:77:43:64:da:a3:b8:e3:e7:f6:82:bb:a3:c5:b5:24: 44:f5:8c:f4:ad:9f:cf:e7:c2:fa:ac:34:0e:99:e1:e3:4e:d4: a6:7b:14:38:7a:db:d1:5a:8c:c2:cb:53:26:1e:66:8a:6b:89: ed:d4:d4:72:c2:60:0e:f9:29:17:93:e6:fb:32:f6:2e:7d:8c: 69:6e:a4:cf:15:f2:c8:39:d0:8e:cc:96:51:35:f3:72:7b:5f: af:1f:9e:8f:46:e6:19:6f:b2:0a:2c:90:be:9e:90:80:a7:a3: 03:5b:4e:ba:e9:81:61:a2:bc:36:fc:53:25:09:9b:79:76:01: 0b:99:d9:a0:d6:54:36:5b:c2:d8:46:57:ef:5a:d8:58:0c:cc: 0a:fe:62:3e:4d:c2:aa:e2:b2:53:dd:e2:2e:75:70:93:ad:da: 84:4c:17:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLqbSXNj5vpCix13kL7+FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYzdkMmJmYzNmYTc4ZTcxMDBhMWI4OTM1OTA1YWZmN2E0 OTZiYzkwHhcNMjUxMjA2MDEwMjM3WhcNMjUxMjA3MDEwMjM3WjAzMTEwLwYDVQQD Eyg2MzFjNWQ4NTJmNjM5YzZiOWE0ZTc2MzlhOWVlM2VhMDhiNDI2YWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzuAqj2niPhLxowm5T+hFFgT65R6 f/LKj1+AItvdqD8UEWaqUSeOTtgvua90M26uANO8d+M1SxCeyeQilDI5Wy3+LnBS fc4Mbd54ZwOWpRob/nNYc4HLTrahS434Ot46SFO+XRcuUUJv3wS7mFQtuPTD5egc xNLa6Enn3xvTut7LVn03wTpXBnSw37n7FUmodFbWKwvJg85Cbf7Xbz/G4Zn7iqma 1ObKisWnwvbvxDDhBwxEAEMnix4P0IYTTGuFswSRk4+wQYvkyzxWsYRi8cT/Ej5E 9E03kf7W1oi90EugUr1erT1WxO7myj6syc3kkA2fvsuFO5StrBf3SxIyRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGMcXYUvY5xrmk52OanuPqCLQmrQMB8GA1UdIwQY MBaAFD7H0r/D+njnEAobiTWQWv96SWvJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQt YmE4ODExMjJjYTYzLzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8zOWJiNzItZjZhZi00YTY3LTljNDQtYmE4ODExMjJjYTYz LzEvUHNmU3Y4UDZlT2NRQ2h1Sk5aQmFfM3BKYThrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjMJ0tj2j +6a6H51A4tLtNT8oFS3yYidioxewpCS17BAL4QAQkyM7cJeS0T4s3QuA+k6nToto g7X/pNo3irqYlal6m7X7TffnES8GZvMKZ0+5rpbc5xt4K5ZM+3Rmd0Nk2qO44+f2 grujxbUkRPWM9K2fz+fC+qw0Dpnh407UpnsUOHrb0VqMwstTJh5mimuJ7dTUcsJg DvkpF5Pm+zL2Ln2MaW6kzxXyyDnQjsyWUTXzcntfrx+ej0bmGW+yCiyQvp6QgKej A1tOuumBYaK8NvxTJQmbeXYBC5nZoNZUNlvC2EZX71rYWAzMCv5iPk3CquKyU93i LnVwk63ahEwXpQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:38:55 2025 by rpki-client