This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json) Hash identifier: qXbAOgDNFgOWr3RLeBXHreni4o9k+kSek+nsjV0BdZ4= Subject key identifier: 97:95:DE:65:9F:2A:C9:B4:CE:7E:C8:E1:D1:C3:93:E4:40:03:1F:79 Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3 Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3 Certificate serial: 019AF164922B10C1465B715396C03091B018 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft Manifest number: 04DC Signing time: Sat 06 Dec 2025 02:01:31 +0000 Manifest this update: Sat 06 Dec 2025 02:01:31 +0000 Manifest next update: Sun 07 Dec 2025 02:01:31 +0000 Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: zenye1MotdBtsIOeY6Nfd6A2o8cNPOeUIonqrLOhsRU=) 2: eBrn60Df7uG_ub_L-IV105lzs58.roa (hash: O8+G2XvuPwR1yEXnK+zmEZeJLzoyxFForxI59j5WNAY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:92:2b:10:c1:46:5b:71:53:96:c0:30:91:b0:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3 Validity Not Before: Dec 6 02:01:31 2025 GMT Not After : Dec 7 02:01:31 2025 GMT Subject: CN=9795de659f2ac9b4ce7ec8e1d1c393e440031f79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:ce:98:60:98:f2:07:63:d7:d2:79:af:3e: 7c:25:10:a0:d4:e6:78:03:19:a4:ea:ca:10:ab:24: aa:38:1f:eb:cc:df:a3:82:b3:10:49:8d:c0:bb:4f: 75:d6:ea:72:5e:e8:15:a4:d7:82:75:c0:86:41:4a: 35:8a:a9:b7:d1:19:49:ea:55:e9:6f:07:7d:44:0f: ab:8a:4c:67:b0:8d:60:d6:ca:51:fd:c8:fb:df:69: 55:63:db:47:3a:dd:fc:64:5e:55:2a:82:2b:fd:e3: ef:58:24:f2:f3:b8:ed:73:e4:01:d3:22:83:3a:b4: 45:39:63:d2:65:4c:c8:1e:e3:5e:88:17:e2:8f:6a: c0:be:59:3b:b0:32:f0:e1:4b:6e:d4:f6:91:6f:87: f9:18:8c:2f:23:89:b3:62:fa:83:c9:f0:c2:e8:6c: bd:ac:da:4e:70:1d:45:2d:2d:85:8e:13:35:32:e7: 25:5f:19:87:c6:71:b1:03:cb:2d:fb:b9:1e:11:57: 87:2a:4c:a9:0d:21:db:71:c6:37:2d:5a:45:25:2c: 6b:89:f9:2c:24:be:da:39:51:83:17:38:3b:1c:b6: c9:72:64:71:a7:bc:d4:ca:06:38:66:68:3e:3a:f6: 8e:a6:8c:ce:dc:46:ee:3f:15:75:4f:af:cb:8c:31: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:95:DE:65:9F:2A:C9:B4:CE:7E:C8:E1:D1:C3:93:E4:40:03:1F:79 X509v3 Authority Key Identifier: keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:c5:a3:3c:92:88:e1:12:de:56:8a:c2:81:c2:27:cb:f5:f1: 72:d0:95:e8:26:e0:82:fc:c9:e9:b5:e9:2d:90:68:18:05:29: 88:cd:38:8b:1e:2a:f7:5f:64:d3:c9:b9:ee:80:71:10:ee:4f: 2b:db:6b:f6:36:ca:0b:ee:d9:01:5e:5d:c9:c8:9f:31:02:16: 92:bc:ad:8f:56:df:a2:98:d3:3b:8e:21:7e:88:75:34:d2:18: c4:68:62:af:9c:0a:a6:3a:96:9b:7e:9d:5f:87:95:49:37:3d: 16:0b:f1:2d:c7:43:36:bc:78:6e:ce:34:33:05:4d:a2:ed:2b: 09:ae:2d:ed:52:ca:25:a2:47:cb:96:3f:4b:f7:cb:ca:11:8f: b8:db:be:6a:e4:aa:9c:12:16:23:eb:ab:39:fb:d1:40:0c:02: 2a:ed:ae:55:97:73:4f:b0:93:11:8a:0e:0e:b1:d4:26:ec:62: 16:e0:7b:49:12:10:b0:22:ef:8e:3c:bc:a9:6e:da:51:60:39: 3f:1c:22:c0:e2:27:4c:b3:cd:c8:f8:9d:bb:29:6d:fe:14:c6: f5:d5:6d:33:dc:6a:6e:0e:5a:cd:e1:11:dd:47:d9:da:49:0c: 87:61:1e:f4:cb:83:80:81:f6:f6:1d:fa:d1:97:95:96:22:5e: 32:54:23:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZJIrEMFGW3FTlsAwkbAYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyOThhMDcxNGNjMWJmMjVhYzdjN2YxY2Y2YzI4ODZjOGM2 MTkyYTMwHhcNMjUxMjA2MDIwMTMxWhcNMjUxMjA3MDIwMTMxWjAzMTEwLwYDVQQD Eyg5Nzk1ZGU2NTlmMmFjOWI0Y2U3ZWM4ZTFkMWMzOTNlNDQwMDMxZjc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusPOmGCY8gdj19J5rz58JRCg1OZ4 Axmk6soQqySqOB/rzN+jgrMQSY3Au0911upyXugVpNeCdcCGQUo1iqm30RlJ6lXp bwd9RA+rikxnsI1g1spR/cj732lVY9tHOt38ZF5VKoIr/ePvWCTy87jtc+QB0yKD OrRFOWPSZUzIHuNeiBfij2rAvlk7sDLw4Utu1PaRb4f5GIwvI4mzYvqDyfDC6Gy9 rNpOcB1FLS2FjhM1MuclXxmHxnGxA8st+7keEVeHKkypDSHbccY3LVpFJSxrifks JL7aOVGDFzg7HLbJcmRxp7zUygY4Zmg+OvaOpozO3EbuPxV1T6/LjDFZgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJeV3mWfKsm0zn7I4dHDk+RAAx95MB8GA1UdIwQY MBaAFNKYoHFMwb8lrHx/HPbCiGyMYZKjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9kOTdhZWEtZmEzMi00NmRhLTg1MWUt NzVhNDcyNWFhNmZkLzEvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9kOTdhZWEtZmEzMi00NmRhLTg1MWUtNzVhNDcyNWFhNmZk LzEvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZcWjPJKI 4RLeVorCgcIny/XxctCV6CbggvzJ6bXpLZBoGAUpiM04ix4q919k08m57oBxEO5P K9tr9jbKC+7ZAV5dycifMQIWkrytj1bfopjTO44hfoh1NNIYxGhir5wKpjqWm36d X4eVSTc9FgvxLcdDNrx4bs40MwVNou0rCa4t7VLKJaJHy5Y/S/fLyhGPuNu+auSq nBIWI+urOfvRQAwCKu2uVZdzT7CTEYoODrHUJuxiFuB7SRIQsCLvjjy8qW7aUWA5 PxwiwOInTLPNyPiduylt/hTG9dVtM9xqbg5azeER3UfZ2kkMh2Ee9MuDgIH29h36 0ZeVliJeMlQjxQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:54 2025 by rpki-client