This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft File: pnkWCgRJ6LUPwByF3PzlSyxim1E.mft (raw, json) Hash identifier: HST8nSXtr0UModf9BLveGxzR6lcq9NDcaiRkcy6S/rU= Subject key identifier: 2E:7D:9F:A5:3E:7E:50:FA:0E:41:F5:C6:85:F0:CB:89:6C:95:D3:B3 Authority key identifier: A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51 Certificate issuer: /CN=a679160a0449e8b50fc01c85dcfce54b2c629b51 Certificate serial: 019AF2ADEF3A46AE4BB82D8559E8B3AFF6AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft Manifest number: 1167 Signing time: Sat 06 Dec 2025 08:01:16 +0000 Manifest this update: Sat 06 Dec 2025 08:01:16 +0000 Manifest next update: Sun 07 Dec 2025 08:01:16 +0000 Files and hashes: 1: 6zgBCVzd-5kdX0sgGe0YDglrk04.roa (hash: mpYaeNHnIzoaHZnsNjSuZCAnd5S6WeK+VhnJsngc1QQ=) 2: pnkWCgRJ6LUPwByF3PzlSyxim1E.crl (hash: 9ohZk4CvHula0cM55nPC8GmTYRNv1oRBT7pR7VOq6Iw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:ef:3a:46:ae:4b:b8:2d:85:59:e8:b3:af:f6:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a679160a0449e8b50fc01c85dcfce54b2c629b51 Validity Not Before: Dec 6 08:01:16 2025 GMT Not After : Dec 7 08:01:16 2025 GMT Subject: CN=2e7d9fa53e7e50fa0e41f5c685f0cb896c95d3b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:71:b8:c4:b3:d9:17:ee:15:03:1e:a0:63:2b: df:3e:0f:45:a9:ee:0d:20:9c:15:fb:a5:45:72:be: 2f:f4:41:71:3f:d9:30:c3:d4:cb:7b:79:e9:27:fb: c4:79:de:89:cd:32:b7:93:e0:cb:73:54:ea:d3:a5: 31:35:15:2c:8d:fe:33:d8:b2:34:40:ba:9c:96:19: 77:37:59:b3:09:72:63:87:a0:9f:f6:82:d5:cb:45: 9f:07:b6:a1:6b:69:9c:f7:65:f8:17:cc:62:46:8e: d5:a8:a6:3b:05:d3:9b:d2:54:e7:43:00:65:41:24: 46:d5:45:da:87:aa:06:a9:e5:ef:2c:d0:b4:e3:94: 86:78:20:e0:b7:44:0d:74:15:82:d4:a4:36:8f:9a: 1b:0b:70:23:0c:2b:12:3b:c8:46:ea:fa:99:c9:88: 58:cf:f1:30:f2:51:48:ac:01:17:dc:7e:f1:a9:30: 8d:77:57:19:ad:c6:1f:80:59:64:7f:84:95:a5:1e: b5:b2:88:91:af:7f:02:88:a3:9f:7e:b9:ef:ca:54: 10:3b:b2:fd:3f:55:48:51:3e:a9:4f:74:11:db:af: d9:fe:d1:ae:cf:4f:5a:52:21:23:5f:62:37:44:b1: b8:d6:3d:57:f1:b6:ad:51:07:bf:6e:d4:75:0f:28: 47:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7D:9F:A5:3E:7E:50:FA:0E:41:F5:C6:85:F0:CB:89:6C:95:D3:B3 X509v3 Authority Key Identifier: keyid:A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:b6:52:42:96:66:ee:ff:58:54:8a:33:f0:c5:33:cb:1e:cc: d1:63:55:e3:6b:f3:fc:84:f8:fe:c7:ed:a9:4b:81:68:a5:fc: 00:1a:60:01:4d:ff:d4:25:cf:56:cd:07:0f:87:f6:0b:38:ff: 26:fa:c5:4c:42:6d:6e:52:46:5f:70:7a:1b:e6:8b:d2:80:d7: 9c:13:93:ec:12:0b:0e:b6:00:57:3b:63:52:a7:79:77:0d:51: 44:77:15:92:4b:3e:29:6e:db:bc:62:07:94:53:1c:2d:28:74: 97:7f:4a:5d:36:29:1b:86:90:ea:fc:65:fb:3f:9c:4c:a7:0a: 7a:bc:70:47:17:c3:4d:be:9e:75:df:f2:03:08:6f:84:7c:f7: 2c:34:1d:9c:db:c1:fd:7e:18:fc:a0:d3:76:55:6c:dd:cf:6a: 74:43:52:15:73:16:3e:da:34:f4:df:0f:de:f5:0c:35:38:7e: 6f:99:0c:2a:d3:52:a0:5b:b7:db:87:c7:d1:6a:f9:96:ba:4c: 16:10:80:ec:ca:01:5f:df:fc:d7:73:0e:fa:ba:c4:a3:4f:c7: 9f:60:e9:28:cf:c1:73:10:0e:00:eb:7b:db:96:fa:e8:a8:d3: 62:82:79:60:2e:a5:53:12:94:32:0b:46:11:14:71:a6:2d:06: 1d:ec:32:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryre86Rq5LuC2FWeizr/atMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NzkxNjBhMDQ0OWU4YjUwZmMwMWM4NWRjZmNlNTRiMmM2 MjliNTEwHhcNMjUxMjA2MDgwMTE2WhcNMjUxMjA3MDgwMTE2WjAzMTEwLwYDVQQD EygyZTdkOWZhNTNlN2U1MGZhMGU0MWY1YzY4NWYwY2I4OTZjOTVkM2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XG4xLPZF+4VAx6gYyvfPg9Fqe4N IJwV+6VFcr4v9EFxP9kww9TLe3npJ/vEed6JzTK3k+DLc1Tq06UxNRUsjf4z2LI0 QLqclhl3N1mzCXJjh6Cf9oLVy0WfB7aha2mc92X4F8xiRo7VqKY7BdOb0lTnQwBl QSRG1UXah6oGqeXvLNC045SGeCDgt0QNdBWC1KQ2j5obC3AjDCsSO8hG6vqZyYhY z/Ew8lFIrAEX3H7xqTCNd1cZrcYfgFlkf4SVpR61soiRr38CiKOffrnvylQQO7L9 P1VIUT6pT3QR26/Z/tGuz09aUiEjX2I3RLG41j1X8batUQe/btR1DyhHKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC59n6U+flD6DkH1xoXwy4lsldOzMB8GA1UdIwQY MBaAFKZ5FgoESei1D8Achdz85UssYptRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5rV0NnUko2TFVQd0J5RjNQemxTeXhpbTFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83MmRlMzUtMzM4ZC00YTQzLWI3MTkt OGI0ZDA4ZDM3YzVmLzEvcG5rV0NnUko2TFVQd0J5RjNQemxTeXhpbTFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny83MmRlMzUtMzM4ZC00YTQzLWI3MTktOGI0ZDA4ZDM3YzVm LzEvcG5rV0NnUko2TFVQd0J5RjNQemxTeXhpbTFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQbZSQpZm 7v9YVIoz8MUzyx7M0WNV42vz/IT4/sftqUuBaKX8ABpgAU3/1CXPVs0HD4f2Czj/ JvrFTEJtblJGX3B6G+aL0oDXnBOT7BILDrYAVztjUqd5dw1RRHcVkks+KW7bvGIH lFMcLSh0l39KXTYpG4aQ6vxl+z+cTKcKerxwRxfDTb6edd/yAwhvhHz3LDQdnNvB /X4Y/KDTdlVs3c9qdENSFXMWPto09N8P3vUMNTh+b5kMKtNSoFu324fH0Wr5lrpM FhCA7MoBX9/813MO+rrEo0/Hn2DpKM/BcxAOAOt725b66KjTYoJ5YC6lUxKUMgtG ERRxpi0GHewyzg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:24:11 2025 by rpki-client