This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json) Hash identifier: 0aRSlC64eI54nzrycukJNBcqCFfPKYS4ulu0AaPW/0Q= Subject key identifier: 63:98:06:86:28:C5:60:02:03:A2:AA:56:57:1A:47:F3:DF:C3:AA:DE Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e Certificate serial: 019B318C99DE859E441F3595F16C66F937D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft Manifest number: 041D Signing time: Thu 18 Dec 2025 13:00:56 +0000 Manifest this update: Thu 18 Dec 2025 13:00:56 +0000 Manifest next update: Fri 19 Dec 2025 13:00:56 +0000 Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=) 2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: uSOlDTb6C0taWbhqTnbFtd4A0B0PD/jUu8v1jZg1bXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:8c:99:de:85:9e:44:1f:35:95:f1:6c:66:f9:37:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e Validity Not Before: Dec 18 13:00:56 2025 GMT Not After : Dec 19 13:00:56 2025 GMT Subject: CN=6398068628c5600203a2aa56571a47f3dfc3aade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:04:5d:1f:97:11:2d:a0:d5:26:54:1c:99:23: ab:d9:5d:30:b5:4a:8c:c0:43:9a:e4:fa:2b:a1:43: 3a:58:f1:57:93:03:1b:47:e8:e0:f5:a3:5c:1b:82: 66:ec:2e:3e:da:49:86:40:f7:45:f3:a6:bb:9f:08: df:e7:e9:4d:ae:a7:18:55:48:9a:99:81:21:22:40: 56:27:f8:83:8b:e3:5a:08:c0:c4:a5:3e:b3:ff:7d: b1:c3:f9:8b:10:f4:e6:c1:a7:d4:ce:81:11:14:fd: 66:22:f3:4a:92:e1:35:44:1f:3a:99:bc:fd:3d:87: ac:20:0a:06:bc:9c:47:5c:1a:7f:d8:d7:36:1a:82: 80:04:33:a2:6b:69:a8:c0:1d:e8:15:d9:94:7d:ab: 14:2e:59:d5:a3:67:6a:b8:78:19:77:d2:25:b1:62: 17:0a:9e:8e:7d:03:57:39:b4:90:92:35:dd:56:03: f3:b5:3f:a7:e4:3d:a3:bf:5c:43:b9:ae:25:38:9e: 2b:0e:8e:b1:f2:aa:ad:12:35:97:bf:32:de:55:f6: 9d:25:c3:67:0a:56:ce:31:6e:62:89:81:dc:a2:3c: c5:7f:bb:05:4e:4e:f1:04:cc:03:61:3e:fe:76:02: 46:a7:ed:9a:da:1a:40:bb:42:ca:0e:5b:a4:fc:6a: b3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:98:06:86:28:C5:60:02:03:A2:AA:56:57:1A:47:F3:DF:C3:AA:DE X509v3 Authority Key Identifier: keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:47:92:38:e2:ff:25:e4:50:fd:8a:95:cb:2f:ec:c3:3b:a6: 5f:a1:a4:f6:62:77:3e:de:d6:39:c4:a1:cb:96:51:a3:99:94: 04:a3:72:e0:a8:fb:33:dd:e6:72:2d:f6:f2:d7:f0:ae:59:a0: 0f:67:b6:9b:3e:3e:c8:87:58:fb:05:97:e2:76:64:1d:e0:1e: b9:43:f2:db:10:d5:dc:4b:65:ec:1e:3f:25:27:a6:66:ec:f2: b1:93:26:43:71:8a:77:5f:1b:32:25:5c:21:1c:3a:45:95:ad: ec:1f:e5:bc:8f:24:16:93:52:fb:67:52:ed:b7:8b:19:c1:bd: 14:12:a7:11:0f:a4:62:96:11:8c:d6:58:4f:7c:64:e8:cc:16: d2:bd:be:11:aa:82:f8:c0:e7:fb:66:c1:3d:26:be:48:6a:0c: 6f:92:d4:2e:6f:7f:b0:4c:e4:19:4c:7e:f7:82:a1:f6:58:d8: 5b:2a:ad:1d:6a:b1:5f:2d:01:b0:60:bf:5a:8c:60:67:08:ed: e6:9a:bb:4c:e9:a0:e4:c4:fc:b4:74:5f:d4:1d:1b:e3:77:8b: 62:45:d2:35:dc:f4:6b:f4:24:eb:00:53:f6:a2:80:3d:54:0e: 63:b5:d1:71:af:7c:3a:60:9b:be:9e:9a:1d:45:07:be:73:03: 1c:be:db:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxjJnehZ5EHzWV8Wxm+TfYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NTA3NWI4ZTQyZTQ1MTRlZjQ5ZDNmZWEyZjE4NzI2NGU3 NGZiMmUwHhcNMjUxMjE4MTMwMDU2WhcNMjUxMjE5MTMwMDU2WjAzMTEwLwYDVQQD Eyg2Mzk4MDY4NjI4YzU2MDAyMDNhMmFhNTY1NzFhNDdmM2RmYzNhYWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ARdH5cRLaDVJlQcmSOr2V0wtUqM wEOa5PoroUM6WPFXkwMbR+jg9aNcG4Jm7C4+2kmGQPdF86a7nwjf5+lNrqcYVUia mYEhIkBWJ/iDi+NaCMDEpT6z/32xw/mLEPTmwafUzoERFP1mIvNKkuE1RB86mbz9 PYesIAoGvJxHXBp/2Nc2GoKABDOia2mowB3oFdmUfasULlnVo2dquHgZd9IlsWIX Cp6OfQNXObSQkjXdVgPztT+n5D2jv1xDua4lOJ4rDo6x8qqtEjWXvzLeVfadJcNn ClbOMW5iiYHcojzFf7sFTk7xBMwDYT7+dgJGp+2a2hpAu0LKDluk/GqzTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGOYBoYoxWACA6KqVlcaR/Pfw6reMB8GA1UdIwQY MBaAFKVQdbjkLkUU70nT/qLxhyZOdPsuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS85YjFmOTUtM2IxOC00ODEyLTkyNGUt N2JmZGE2MjU0NGNlLzEvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS85YjFmOTUtM2IxOC00ODEyLTkyNGUtN2JmZGE2MjU0NGNl LzEvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMUeSOOL/ JeRQ/YqVyy/swzumX6Gk9mJ3Pt7WOcShy5ZRo5mUBKNy4Kj7M93mci328tfwrlmg D2e2mz4+yIdY+wWX4nZkHeAeuUPy2xDV3Etl7B4/JSemZuzysZMmQ3GKd18bMiVc IRw6RZWt7B/lvI8kFpNS+2dS7beLGcG9FBKnEQ+kYpYRjNZYT3xk6MwW0r2+EaqC +MDn+2bBPSa+SGoMb5LULm9/sEzkGUx+94Kh9ljYWyqtHWqxXy0BsGC/WoxgZwjt 5pq7TOmg5MT8tHRf1B0b43eLYkXSNdz0a/Qk6wBT9qKAPVQOY7XRca98OmCbvp6a HUUHvnMDHL7bdw== -----END CERTIFICATE-----Generated at Thu Dec 18 19:06:23 2025 by rpki-client