This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft File: PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft (raw, json) Hash identifier: LnPOGHz2AIdIipnVXcxFuqwpLro1JX0gSdlAEbAgQPI= Subject key identifier: CA:6C:26:6B:7A:A5:AB:92:0A:08:59:E8:B2:EC:75:86:18:E5:54:72 Authority key identifier: 3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76 Certificate issuer: /CN=3d16072ca0252fab50658d736ff2c60c1629dc76 Certificate serial: 019AF164772445C184AD8DAFF19716E8461E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft Manifest number: 1027 Signing time: Sat 06 Dec 2025 02:01:24 +0000 Manifest this update: Sat 06 Dec 2025 02:01:24 +0000 Manifest next update: Sun 07 Dec 2025 02:01:24 +0000 Files and hashes: 1: 8e7eehP1l-DLf5STdKJWnoHYbKQ.roa (hash: K8SacJP+Z6piM83BegnBqW6J1m/glPf8EgTcnUYrotM=) 2: PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl (hash: OLvOuonM/N18MOPh0upm8lfSEeGO2H1FD9MW+M3I//E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:77:24:45:c1:84:ad:8d:af:f1:97:16:e8:46:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d16072ca0252fab50658d736ff2c60c1629dc76 Validity Not Before: Dec 6 02:01:24 2025 GMT Not After : Dec 7 02:01:24 2025 GMT Subject: CN=ca6c266b7aa5ab920a0859e8b2ec758618e55472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:50:40:20:49:bf:97:94:60:7b:8d:f1:b4: 89:68:a2:3d:0d:fa:8d:ed:6b:23:52:1f:30:54:5e: bf:c8:2b:3c:96:ff:b2:da:e6:5a:25:94:a4:6e:65: 6c:8b:c8:f0:92:87:75:d7:18:af:81:be:82:fd:9c: 19:ee:0d:41:b1:24:70:f1:49:9f:bc:52:a0:4f:d7: f8:f1:c4:b7:6d:66:69:d3:4b:93:23:7a:e5:81:97: dd:eb:bd:df:66:17:49:8d:92:de:77:71:10:55:b5: 8d:53:07:16:01:af:ac:78:76:98:19:b0:dc:df:3a: 8d:24:86:04:ce:c8:bd:e1:cd:8c:5c:e9:09:81:ad: 16:e2:0a:6a:66:51:f5:65:4c:48:69:ed:17:a2:2a: ce:67:4c:7f:2f:2d:60:90:26:b0:0c:99:d2:03:c0: f7:1e:63:cf:cf:50:f3:5b:4f:c6:2f:7f:3b:4f:ec: 84:b3:aa:b2:c1:b1:a5:fe:b2:62:7c:2b:73:7c:f5: 06:a2:a8:61:ef:14:df:45:31:30:14:23:c6:19:89: 09:70:2b:0f:4e:4d:4d:83:2d:2a:e1:e2:8a:55:ae: 6b:a2:be:6f:95:8c:b5:47:4e:90:67:a4:b6:34:36: 04:30:66:d8:e2:c0:69:2a:21:bc:da:42:c8:cb:bd: b5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:6C:26:6B:7A:A5:AB:92:0A:08:59:E8:B2:EC:75:86:18:E5:54:72 X509v3 Authority Key Identifier: keyid:3D:16:07:2C:A0:25:2F:AB:50:65:8D:73:6F:F2:C6:0C:16:29:DC:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRYHLKAlL6tQZY1zb_LGDBYp3HY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2fbf2c-542f-4c98-99db-a4e5de8ee716/1/PRYHLKAlL6tQZY1zb_LGDBYp3HY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c3:19:c6:5c:94:d4:a2:cd:ef:60:69:9c:80:06:0b:b3:1b: a2:3b:22:c9:74:a9:c0:88:af:a2:c9:67:51:6d:5c:dd:b3:9c: c3:4e:51:5a:5d:4e:b2:ed:b3:a1:95:a9:91:38:f1:c5:a3:5b: 1b:b4:6d:f8:f3:ed:11:a2:49:23:6d:ef:67:62:eb:e0:3c:cd: 4e:7c:3a:6f:b5:7f:1f:17:3f:5c:68:c5:84:2c:43:70:1d:39: 0b:9b:c4:3a:f8:6b:9f:84:e6:f7:ba:8a:60:44:bf:f5:9d:ac: a3:ed:7a:75:d0:10:45:3c:bc:17:33:bf:b4:a0:68:12:f3:75: 2a:56:d8:1c:3d:31:a4:aa:26:0b:5f:03:d8:fc:60:b5:d4:07: b8:a5:16:db:c2:8f:f6:4d:54:2d:a9:08:04:1a:5f:e6:ef:0d: e4:6f:be:06:ff:2b:06:40:18:ac:67:cb:4f:d9:5f:52:59:db: 7f:23:66:7a:52:2c:23:1e:c0:e0:cd:5c:15:0b:b4:5d:12:8e: bb:7d:d9:41:88:b3:e4:e5:bd:03:9b:36:d9:18:6b:4f:2b:46: c0:bd:c1:25:e9:78:68:82:21:b5:76:4c:2e:51:24:f7:80:5e: 5c:b9:da:ad:44:a4:24:50:69:2a:4e:5e:0b:7f:bc:20:c3:8b: 84:bf:3a:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZHckRcGErY2v8ZcW6EYeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMTYwNzJjYTAyNTJmYWI1MDY1OGQ3MzZmZjJjNjBjMTYy OWRjNzYwHhcNMjUxMjA2MDIwMTI0WhcNMjUxMjA3MDIwMTI0WjAzMTEwLwYDVQQD EyhjYTZjMjY2YjdhYTVhYjkyMGEwODU5ZThiMmVjNzU4NjE4ZTU1NDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtX5QQCBJv5eUYHuN8bSJaKI9DfqN 7WsjUh8wVF6/yCs8lv+y2uZaJZSkbmVsi8jwkod11xivgb6C/ZwZ7g1BsSRw8Umf vFKgT9f48cS3bWZp00uTI3rlgZfd673fZhdJjZLed3EQVbWNUwcWAa+seHaYGbDc 3zqNJIYEzsi94c2MXOkJga0W4gpqZlH1ZUxIae0XoirOZ0x/Ly1gkCawDJnSA8D3 HmPPz1DzW0/GL387T+yEs6qywbGl/rJifCtzfPUGoqhh7xTfRTEwFCPGGYkJcCsP Tk1Ngy0q4eKKVa5ror5vlYy1R06QZ6S2NDYEMGbY4sBpKiG82kLIy721awIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpsJmt6pauSCghZ6LLsdYYY5VRyMB8GA1UdIwQY MBaAFD0WByygJS+rUGWNc2/yxgwWKdx2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yZmJmMmMtNTQyZi00Yzk4LTk5ZGIt YTRlNWRlOGVlNzE2LzEvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yZmJmMmMtNTQyZi00Yzk4LTk5ZGItYTRlNWRlOGVlNzE2 LzEvUFJZSExLQWxMNnRRWlkxemJfTEdEQllwM0hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADMMZxlyU 1KLN72BpnIAGC7MbojsiyXSpwIivoslnUW1c3bOcw05RWl1Osu2zoZWpkTjxxaNb G7Rt+PPtEaJJI23vZ2Lr4DzNTnw6b7V/Hxc/XGjFhCxDcB05C5vEOvhrn4Tm97qK YES/9Z2so+16ddAQRTy8FzO/tKBoEvN1KlbYHD0xpKomC18D2PxgtdQHuKUW28KP 9k1ULakIBBpf5u8N5G++Bv8rBkAYrGfLT9lfUlnbfyNmelIsIx7A4M1cFQu0XRKO u33ZQYiz5OW9A5s22RhrTytGwL3BJel4aIIhtXZMLlEk94BeXLnarUSkJFBpKk5e C3+8IMOLhL86Nw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:01:20 2025 by rpki-client