This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json) Hash identifier: KC4od1PE+afCKKqWFHXeGQbSQd9GMtjN+QK+qU0JCKg= Subject key identifier: 49:E1:15:51:7D:05:8D:FB:D2:86:06:CA:80:86:33:28:2B:2D:30:CC Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6 Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6 Certificate serial: 019AF3897E57EF22B5E5B8AAA04F9377205F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft Manifest number: 03B0 Signing time: Sat 06 Dec 2025 12:01:05 +0000 Manifest this update: Sat 06 Dec 2025 12:01:05 +0000 Manifest next update: Sun 07 Dec 2025 12:01:05 +0000 Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: enaDZ0pj3Tmps+x0bRv8JWlvwcIYeXDtYZ4YUYqkc7o=) 2: 5XHmlHMatoj7HuqzW-xKZFCBoCk.roa (hash: 2LwcEFXQBzd4wv+NbYjPLMlRT/J2wftX73OmJ3FhceM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:7e:57:ef:22:b5:e5:b8:aa:a0:4f:93:77:20:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6 Validity Not Before: Dec 6 12:01:05 2025 GMT Not After : Dec 7 12:01:05 2025 GMT Subject: CN=49e115517d058dfbd28606ca808633282b2d30cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a4:1e:fc:a8:5d:dd:1f:2d:16:1e:69:5f:f0: a8:06:b8:1e:a9:21:23:4f:a8:cb:7f:ff:df:d6:4e: 61:90:13:e7:5c:10:24:aa:3b:a7:27:ef:05:12:70: af:cb:f0:aa:b9:fa:85:7b:a3:c5:8c:c9:d4:04:a9: df:b3:b2:b3:c8:e2:09:ad:f7:36:bb:36:e9:48:c5: dd:1c:be:12:e3:d0:8c:3e:27:ec:41:73:f7:06:89: 50:07:bd:46:2f:84:ad:43:2f:b0:c2:97:76:36:58: 3e:45:91:cf:b5:93:be:ec:0c:77:30:9e:d6:e4:b0: d7:83:ae:1e:c7:a9:b7:bd:29:ad:ea:e7:c0:cd:3d: b5:d1:14:90:60:95:66:cd:e5:00:8e:50:39:25:2d: 52:53:22:b0:cf:f9:34:13:48:ea:cf:b5:bf:bb:bc: 71:57:5c:d2:3d:7b:23:17:24:11:d0:86:52:bc:50: 8b:42:13:9b:f0:9e:f5:5f:3c:14:e8:af:87:17:09: 56:30:8a:1f:30:cb:87:d6:b0:09:50:9e:5f:56:5e: dc:27:ea:21:27:f8:96:9e:b6:14:da:fe:82:dd:b0: 93:1d:27:69:62:d4:5b:a3:2e:0b:de:5d:d0:66:c4: 93:43:0c:e3:4c:b6:b4:98:11:f9:39:72:30:29:a5: 25:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E1:15:51:7D:05:8D:FB:D2:86:06:CA:80:86:33:28:2B:2D:30:CC X509v3 Authority Key Identifier: keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:7f:ab:8d:dd:7c:cf:b9:a5:84:a8:80:d6:b0:12:ff:b0:a6: f5:2a:cd:b2:e6:b6:24:45:5e:ec:0f:f4:ec:53:32:d3:7b:43: ca:77:b4:67:11:69:ef:76:98:79:ad:00:81:30:1e:96:8a:4e: 18:82:25:f6:9a:4d:ab:a9:2c:2a:48:4d:8f:eb:19:46:4b:f7: 1f:f6:60:82:99:90:f2:27:13:e8:a8:dc:c4:bf:fb:f8:00:99: bd:e8:2e:3f:03:9d:6c:d6:3c:92:14:03:48:10:1a:9f:f8:f4: f8:92:52:c0:f5:ce:2d:1a:91:05:3a:07:52:9e:66:81:59:e0: 29:21:8e:38:69:fc:c4:e0:52:42:1d:4f:f2:89:e4:bd:f3:22: e0:fa:85:93:18:fb:0c:49:ce:28:5b:72:39:2b:0f:62:b0:2a: ce:bf:cf:47:59:60:f9:a4:1d:46:4c:7e:13:96:e3:60:9c:d4: 19:95:3e:8a:27:59:6c:fc:3f:bd:36:48:27:db:d6:9c:c2:1f: 65:20:e4:c5:af:07:95:f2:e3:05:fe:8c:29:0c:e9:c1:78:b5: ee:7a:c8:b6:40:8e:c2:aa:8b:bf:c9:a9:01:36:75:ce:67:09: 4d:e6:66:43:d7:02:d5:85:bb:6c:ce:c5:6f:7d:b1:7b:dc:15: cd:28:ff:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziX5X7yK15biqoE+TdyBfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwZjE0YjhhMDhjYjVmODA1N2Q0OGIwM2U1M2Y0NThiOGUx ZmVlZDYwHhcNMjUxMjA2MTIwMTA1WhcNMjUxMjA3MTIwMTA1WjAzMTEwLwYDVQQD Eyg0OWUxMTU1MTdkMDU4ZGZiZDI4NjA2Y2E4MDg2MzMyODJiMmQzMGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3aQe/Khd3R8tFh5pX/CoBrgeqSEj T6jLf//f1k5hkBPnXBAkqjunJ+8FEnCvy/CqufqFe6PFjMnUBKnfs7KzyOIJrfc2 uzbpSMXdHL4S49CMPifsQXP3BolQB71GL4StQy+wwpd2Nlg+RZHPtZO+7Ax3MJ7W 5LDXg64ex6m3vSmt6ufAzT210RSQYJVmzeUAjlA5JS1SUyKwz/k0E0jqz7W/u7xx V1zSPXsjFyQR0IZSvFCLQhOb8J71XzwU6K+HFwlWMIofMMuH1rAJUJ5fVl7cJ+oh J/iWnrYU2v6C3bCTHSdpYtRboy4L3l3QZsSTQwzjTLa0mBH5OXIwKaUlFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEnhFVF9BY370oYGyoCGMygrLTDMMB8GA1UdIwQY MBaAFNDxS4oIy1+AV9SLA+U/RYuOH+7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFBGTGlnakxYNEJYMUlzRDVUOUZpNDRmN3RZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8yMWJkYmItODU2Zi00MWRkLWFhZDkt MDY2ZGRmMzJiZmNjLzEvMFBGTGlnakxYNEJYMUlzRDVUOUZpNDRmN3RZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8yMWJkYmItODU2Zi00MWRkLWFhZDktMDY2ZGRmMzJiZmNj LzEvMFBGTGlnakxYNEJYMUlzRDVUOUZpNDRmN3RZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEn+rjd18 z7mlhKiA1rAS/7Cm9SrNsua2JEVe7A/07FMy03tDyne0ZxFp73aYea0AgTAelopO GIIl9ppNq6ksKkhNj+sZRkv3H/ZggpmQ8icT6KjcxL/7+ACZveguPwOdbNY8khQD SBAan/j0+JJSwPXOLRqRBToHUp5mgVngKSGOOGn8xOBSQh1P8onkvfMi4PqFkxj7 DEnOKFtyOSsPYrAqzr/PR1lg+aQdRkx+E5bjYJzUGZU+iidZbPw/vTZIJ9vWnMIf ZSDkxa8HlfLjBf6MKQzpwXi17nrItkCOwqqLv8mpATZ1zmcJTeZmQ9cC1YW7bM7F b32xe9wVzSj/vg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:32:02 2025 by rpki-client