This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft File: pWT0IqqXs96coPZ5Gfv4LrH93dI.mft (raw, json) Hash identifier: 7AZBYK7vqvmcfI3xi1D7yh5wyd9jwIuEvbTAoIoo/uU= Subject key identifier: 0D:44:2E:95:3E:0E:47:E6:E6:EC:89:E9:21:7E:E5:7F:0D:F5:BE:D0 Authority key identifier: A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2 Certificate issuer: /CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2 Certificate serial: 019AF12E5BDF3602671F9EB45627A0712309 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft Manifest number: 078B Signing time: Sat 06 Dec 2025 01:02:18 +0000 Manifest this update: Sat 06 Dec 2025 01:02:18 +0000 Manifest next update: Sun 07 Dec 2025 01:02:18 +0000 Files and hashes: 1: pWT0IqqXs96coPZ5Gfv4LrH93dI.crl (hash: Sc7dEinCuYXGM+yFVfL3HkfPan3HFdjeIccLD+qBX70=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:5b:df:36:02:67:1f:9e:b4:56:27:a0:71:23:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2 Validity Not Before: Dec 6 01:02:18 2025 GMT Not After : Dec 7 01:02:18 2025 GMT Subject: CN=0d442e953e0e47e6e6ec89e9217ee57f0df5bed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:32:7c:9a:25:6e:66:79:88:7c:30:d3:68:7e: 0a:42:6b:e9:92:4a:cb:be:36:9c:c0:2a:1b:52:31: e9:64:11:8a:42:c5:80:ed:bb:5c:c9:b9:26:2c:7c: 81:66:0a:24:b8:b8:81:18:be:57:34:28:c9:f6:5c: 88:e2:74:a7:29:83:b2:ba:5f:9a:3c:ae:7e:7d:d5: ac:3b:a3:ee:87:fa:e0:f1:43:6c:58:32:42:a7:47: 21:3a:b2:72:60:8b:97:fd:fc:f1:ba:81:62:02:4d: 42:a0:0e:b2:c5:1c:64:bc:b5:2d:8b:71:03:36:48: 86:d2:e7:b4:99:72:bc:38:18:d3:06:fd:4b:b0:81: 69:ed:60:d5:ed:b2:20:26:96:0f:bf:75:db:8d:08: 51:ff:e2:de:14:70:f4:07:63:fb:db:ea:31:51:17: e5:28:2d:be:38:df:81:b6:24:8e:9f:29:b4:29:a8: eb:1e:df:64:80:0a:ce:be:68:4f:e0:0b:c7:f6:bb: 56:37:b5:35:f3:f6:29:58:22:07:37:41:a6:98:5a: c1:e8:c5:d2:85:7b:73:39:5a:2b:60:a2:6e:49:98: d0:25:ea:6b:e7:66:43:ff:0e:be:ce:54:bf:c1:06: 61:17:1c:6a:e0:e9:b5:db:20:06:3d:ac:c7:cb:6e: cb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:44:2E:95:3E:0E:47:E6:E6:EC:89:E9:21:7E:E5:7F:0D:F5:BE:D0 X509v3 Authority Key Identifier: keyid:A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:31:ef:ea:82:53:94:27:cd:c2:cc:e7:05:26:45:2e:75:64: 0d:13:51:cc:17:55:be:73:a8:34:bc:d0:a0:16:ab:a4:3d:1d: a2:f4:97:d5:2f:6c:95:a6:12:f7:09:ee:5c:74:ef:95:47:53: 1a:22:3b:ad:04:0b:0b:71:28:c3:95:ff:88:b5:5f:ec:54:a7: bd:ed:1f:9e:8b:27:7e:27:39:af:cf:12:c8:8f:6a:02:12:b8: cc:a0:bc:08:e1:53:af:b9:42:6a:46:62:2b:6e:30:48:26:85: d9:db:bb:27:ce:6c:0e:9e:55:72:3d:04:d3:13:0b:f6:77:8d: bd:0f:45:8c:6c:45:93:55:d5:83:ef:a5:fc:7f:37:22:5b:a0: 70:c9:64:38:3a:aa:b8:47:49:af:83:42:ae:2c:21:37:47:f1: a3:9e:18:01:6b:7c:51:f3:78:d3:bb:c2:e8:c0:86:1f:17:66: 34:e6:bb:9c:a4:c0:81:fa:58:2f:eb:7d:fe:7b:1b:07:87:e8: 6d:4b:81:0f:af:5e:40:82:bd:b6:5b:5e:ad:d1:6b:6f:a1:8e: 0e:92:f1:e7:52:f5:c8:4b:57:a7:3e:80:8e:a5:de:d2:b9:98: eb:10:d4:15:a4:4c:36:4e:8d:de:eb:4b:d7:51:01:4e:b4:eb: 4d:c6:62:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlvfNgJnH560ViegcSMJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NjRmNDIyYWE5N2IzZGU5Y2EwZjY3OTE5ZmJmODJlYjFm ZGRkZDIwHhcNMjUxMjA2MDEwMjE4WhcNMjUxMjA3MDEwMjE4WjAzMTEwLwYDVQQD EygwZDQ0MmU5NTNlMGU0N2U2ZTZlYzg5ZTkyMTdlZTU3ZjBkZjViZWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTJ8miVuZnmIfDDTaH4KQmvpkkrL vjacwCobUjHpZBGKQsWA7btcybkmLHyBZgokuLiBGL5XNCjJ9lyI4nSnKYOyul+a PK5+fdWsO6Puh/rg8UNsWDJCp0chOrJyYIuX/fzxuoFiAk1CoA6yxRxkvLUti3ED NkiG0ue0mXK8OBjTBv1LsIFp7WDV7bIgJpYPv3XbjQhR/+LeFHD0B2P72+oxURfl KC2+ON+BtiSOnym0KajrHt9kgArOvmhP4AvH9rtWN7U18/YpWCIHN0GmmFrB6MXS hXtzOVorYKJuSZjQJepr52ZD/w6+zlS/wQZhFxxq4Om12yAGPazHy27LvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA1ELpU+Dkfm5uyJ6SF+5X8N9b7QMB8GA1UdIwQY MBaAFKVk9CKql7PenKD2eRn7+C6x/d3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kNTllOTgtMjEwZi00YjU1LWFjNGEt MDI2ODM4MTEwN2FmLzEvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kNTllOTgtMjEwZi00YjU1LWFjNGEtMDI2ODM4MTEwN2Fm LzEvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFDHv6oJT lCfNwsznBSZFLnVkDRNRzBdVvnOoNLzQoBarpD0dovSX1S9slaYS9wnuXHTvlUdT GiI7rQQLC3Eow5X/iLVf7FSnve0fnosnfic5r88SyI9qAhK4zKC8COFTr7lCakZi K24wSCaF2du7J85sDp5Vcj0E0xML9neNvQ9FjGxFk1XVg++l/H83IlugcMlkODqq uEdJr4NCriwhN0fxo54YAWt8UfN407vC6MCGHxdmNOa7nKTAgfpYL+t9/nsbB4fo bUuBD69eQIK9tlterdFrb6GODpLx51L1yEtXpz6AjqXe0rmY6xDUFaRMNk6N3utL 11EBTrTrTcZiXA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:25:11 2025 by rpki-client