This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft File: pnUQ3cUswCV-TCVS9b1XVURUxgs.mft (raw, json) Hash identifier: ldmgxvym3nFw4kFsHiTGYZIcYcsurdz5AUNeocbZkn8= Subject key identifier: 41:87:44:5B:78:8E:7A:9A:C7:49:B4:C7:4B:9A:C6:AB:7A:6A:19:8A Authority key identifier: A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B Certificate issuer: /CN=a67510ddc52cc0257e4c2552f5bd57554454c60b Certificate serial: 019AF5AED2418A203BFD98271FA692E7E1BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft Manifest number: 06E1 Signing time: Sat 06 Dec 2025 22:01:06 +0000 Manifest this update: Sat 06 Dec 2025 22:01:06 +0000 Manifest next update: Sun 07 Dec 2025 22:01:06 +0000 Files and hashes: 1: pnUQ3cUswCV-TCVS9b1XVURUxgs.crl (hash: NprmFlnAhVjEZE1C6GFXD2uD524wFn/ZfGixUk+Ecn0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:d2:41:8a:20:3b:fd:98:27:1f:a6:92:e7:e1:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a67510ddc52cc0257e4c2552f5bd57554454c60b Validity Not Before: Dec 6 22:01:06 2025 GMT Not After : Dec 7 22:01:06 2025 GMT Subject: CN=4187445b788e7a9ac749b4c74b9ac6ab7a6a198a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8e:ec:35:07:c2:97:7b:88:b9:22:b0:9c:d4: 5a:f0:88:06:65:8f:34:4d:ac:19:f0:c7:9e:1d:7d: 2c:dd:6e:32:89:59:88:f3:9b:7b:d4:c2:1f:fc:86: 8b:c7:59:35:1c:3a:c1:33:96:90:a8:e5:71:8d:d8: 60:81:ba:7c:e6:22:50:ef:7c:b6:29:8c:3e:68:aa: 7f:ce:68:28:56:1b:2f:43:9a:ce:94:a0:f8:65:a3: bf:ad:89:d2:4c:46:1c:eb:73:67:0c:b8:d6:81:9b: b2:00:00:49:1c:3b:93:81:14:2a:30:1d:f9:a3:17: a9:69:87:ee:a4:8a:4f:0d:07:75:56:e0:e1:dd:6f: 30:63:27:26:54:68:c9:83:e8:78:84:f8:87:72:2e: f1:a4:c8:75:42:45:ef:31:67:dc:7b:2c:b1:94:73: 41:1d:a0:94:66:12:0a:1d:a3:74:0d:e4:f4:41:95: 54:91:ee:17:11:ce:38:f1:30:60:ad:cd:4b:7b:98: 45:0c:3a:da:b5:9a:59:ca:ea:7d:8a:1b:fa:99:ba: 17:97:30:1e:65:25:6a:f6:55:27:89:30:49:42:40: 75:72:b8:ac:31:e0:f8:3e:d8:f6:5c:35:f2:1c:dd: fe:5a:65:9d:73:88:df:5f:85:96:ac:a1:30:3e:f2: e3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:87:44:5B:78:8E:7A:9A:C7:49:B4:C7:4B:9A:C6:AB:7A:6A:19:8A X509v3 Authority Key Identifier: keyid:A6:75:10:DD:C5:2C:C0:25:7E:4C:25:52:F5:BD:57:55:44:54:C6:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnUQ3cUswCV-TCVS9b1XVURUxgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e31f78-68bb-4729-bd65-60d255be0479/1/pnUQ3cUswCV-TCVS9b1XVURUxgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:be:d9:1d:b5:de:82:c9:40:a0:ae:34:d2:4f:8d:69:60:8b: 89:80:69:6e:c5:e8:9e:58:b3:e4:90:21:00:6d:de:d3:72:d3: de:0f:0a:2a:8c:13:3b:d7:b5:3a:d6:87:d1:c7:d5:de:1c:19: c4:0e:df:bd:e9:16:3c:75:16:e4:65:26:55:7d:13:db:9a:d4: 12:cb:1d:c9:d3:53:a1:05:e2:45:a5:4c:28:7f:9e:75:e8:ed: 2e:b5:46:49:44:37:27:8b:69:cc:79:4f:e8:f1:48:27:0e:3f: 7e:49:0f:4c:ed:32:7a:3a:93:f7:98:3a:9d:7b:43:b7:9b:0c: 5b:66:ab:f1:bf:83:fa:a0:c8:b6:ed:33:a4:fd:eb:0e:6a:94: 77:20:62:7c:13:d6:62:7c:13:33:dc:84:d4:c9:2f:0f:4e:a9: 9d:2c:fd:c3:a3:ba:0c:c4:52:68:ed:55:d6:53:5a:8f:62:15: b8:65:b5:5c:ce:3e:84:d5:bf:64:3d:83:4e:cd:7d:25:73:49: 93:04:df:ca:9a:c5:a6:5c:15:d1:0d:e6:c0:48:fc:a0:24:47: ec:5d:53:e9:e9:12:e1:c6:64:6c:57:69:1a:4f:6b:75:77:e7: ff:16:18:35:c7:d8:8f:b7:c4:e1:4e:e1:b9:4d:8a:68:88:bf: f0:dd:f2:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rtJBiiA7/ZgnH6aS5+G7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NzUxMGRkYzUyY2MwMjU3ZTRjMjU1MmY1YmQ1NzU1NDQ1 NGM2MGIwHhcNMjUxMjA2MjIwMTA2WhcNMjUxMjA3MjIwMTA2WjAzMTEwLwYDVQQD Eyg0MTg3NDQ1Yjc4OGU3YTlhYzc0OWI0Yzc0YjlhYzZhYjdhNmExOThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnI7sNQfCl3uIuSKwnNRa8IgGZY80 TawZ8MeeHX0s3W4yiVmI85t71MIf/IaLx1k1HDrBM5aQqOVxjdhggbp85iJQ73y2 KYw+aKp/zmgoVhsvQ5rOlKD4ZaO/rYnSTEYc63NnDLjWgZuyAABJHDuTgRQqMB35 oxepaYfupIpPDQd1VuDh3W8wYycmVGjJg+h4hPiHci7xpMh1QkXvMWfceyyxlHNB HaCUZhIKHaN0DeT0QZVUke4XEc448TBgrc1Le5hFDDratZpZyup9ihv6mboXlzAe ZSVq9lUniTBJQkB1crisMeD4Ptj2XDXyHN3+WmWdc4jfX4WWrKEwPvLjuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEGHRFt4jnqax0m0x0uaxqt6ahmKMB8GA1UdIwQY MBaAFKZ1EN3FLMAlfkwlUvW9V1VEVMYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5VUTNjVXN3Q1YtVENWUzliMVhWVVJVeGdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9lMzFmNzgtNjhiYi00NzI5LWJkNjUt NjBkMjU1YmUwNDc5LzEvcG5VUTNjVXN3Q1YtVENWUzliMVhWVVJVeGdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9lMzFmNzgtNjhiYi00NzI5LWJkNjUtNjBkMjU1YmUwNDc5 LzEvcG5VUTNjVXN3Q1YtVENWUzliMVhWVVJVeGdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR77ZHbXe gslAoK400k+NaWCLiYBpbsXonliz5JAhAG3e03LT3g8KKowTO9e1OtaH0cfV3hwZ xA7fvekWPHUW5GUmVX0T25rUEssdydNToQXiRaVMKH+edejtLrVGSUQ3J4tpzHlP 6PFIJw4/fkkPTO0yejqT95g6nXtDt5sMW2ar8b+D+qDItu0zpP3rDmqUdyBifBPW YnwTM9yE1MkvD06pnSz9w6O6DMRSaO1V1lNaj2IVuGW1XM4+hNW/ZD2DTs19JXNJ kwTfyprFplwV0Q3mwEj8oCRH7F1T6ekS4cZkbFdpGk9rdXfn/xYYNcfYj7fE4U7h uU2KaIi/8N3yRw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:33:43 2025 by rpki-client