This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft File: pgkmXYlPp5_NZUL6zAujiXOMhFk.mft (raw, json) Hash identifier: GG9JSMcLJX9+JrqQXqW1tkxSjCKaHfe9I+KeC7XqQtE= Subject key identifier: 5B:29:A5:46:07:91:FC:03:82:DB:E9:7B:43:07:05:E3:B9:36:31:09 Authority key identifier: A6:09:26:5D:89:4F:A7:9F:CD:65:42:FA:CC:0B:A3:89:73:8C:84:59 Certificate issuer: /CN=a609265d894fa79fcd6542facc0ba389738c8459 Certificate serial: 019AF12ECFD858A7EBB8FC56C7973E813B68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgkmXYlPp5_NZUL6zAujiXOMhFk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft Manifest number: 0A79 Signing time: Sat 06 Dec 2025 01:02:48 +0000 Manifest this update: Sat 06 Dec 2025 01:02:48 +0000 Manifest next update: Sun 07 Dec 2025 01:02:48 +0000 Files and hashes: 1: pgkmXYlPp5_NZUL6zAujiXOMhFk.crl (hash: czWKRwPpHKvu4QdhlrJZg+wpHWrr8kZTAwFuo9f5ais=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.crl rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft rsync://rpki.ripe.net/repository/DEFAULT/pgkmXYlPp5_NZUL6zAujiXOMhFk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:cf:d8:58:a7:eb:b8:fc:56:c7:97:3e:81:3b:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a609265d894fa79fcd6542facc0ba389738c8459 Validity Not Before: Dec 6 01:02:48 2025 GMT Not After : Dec 7 01:02:48 2025 GMT Subject: CN=5b29a5460791fc0382dbe97b430705e3b9363109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:92:15:42:88:80:65:ec:84:43:fc:98:b3: a1:43:2c:56:e2:0a:f9:08:c7:83:93:9a:f1:d8:66: c9:64:f0:0c:45:fb:de:60:1f:2f:33:2c:a4:76:c1: 70:61:32:2d:4b:96:2a:7e:d3:b6:10:bf:ff:27:91: d1:9d:65:75:2b:bb:c7:12:6a:c0:cf:4d:7c:34:a0: d6:a4:49:85:08:ab:c5:c3:30:5d:74:0e:95:9e:fa: ab:bc:97:44:d4:ab:a1:7f:21:e8:a2:72:e4:a3:5e: 27:cd:c7:b9:53:28:a9:5c:fe:7e:ca:47:99:ac:3e: ee:ea:88:72:4e:73:cf:1b:4e:8e:00:e0:af:74:b8: 25:54:cf:52:af:0d:7c:03:36:00:90:58:b5:61:90: e3:de:e0:21:4f:bb:72:0a:c8:2b:ec:87:e3:e1:b5: 8b:f0:56:db:57:fb:3f:b2:f1:46:96:6c:94:bd:a0: 4d:d8:4e:5e:e0:4a:78:1a:d3:69:f2:15:0b:de:d8: d2:93:d1:92:ac:d6:7d:49:60:8d:7f:59:e8:d7:56: cf:fa:8d:f2:44:90:ef:84:1f:9d:4a:ee:a5:93:f2: 1a:08:05:44:24:35:82:f8:a4:40:80:b3:05:05:18: e6:2c:f6:e0:55:86:3b:13:bc:76:7d:c9:00:c0:b8: 37:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:29:A5:46:07:91:FC:03:82:DB:E9:7B:43:07:05:E3:B9:36:31:09 X509v3 Authority Key Identifier: keyid:A6:09:26:5D:89:4F:A7:9F:CD:65:42:FA:CC:0B:A3:89:73:8C:84:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgkmXYlPp5_NZUL6zAujiXOMhFk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/730d4d-d4ab-4279-b225-6dc0da1f5dee/1/pgkmXYlPp5_NZUL6zAujiXOMhFk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:a6:f3:d3:13:5c:11:70:56:f9:40:95:b4:ed:53:0d:ad:ea: 0e:15:cf:15:95:32:bb:04:5e:d6:ed:91:c7:a0:36:d3:21:f1: 9b:13:0e:25:60:ac:5d:89:52:7c:41:1c:d9:77:db:a0:67:dc: 9c:1d:76:0c:06:32:dc:f7:dd:05:1c:aa:a5:f5:91:b9:f0:ee: ef:c0:64:bd:30:38:48:0a:75:34:6f:98:5b:78:78:95:02:f4: 5d:ae:16:0b:38:ce:0d:97:13:02:21:a8:4c:ed:f0:31:bd:58: ab:da:52:7f:6c:d9:de:66:d8:5c:6d:f4:f2:ab:4b:ea:af:9d: 87:6e:3a:01:68:73:c5:a3:61:9d:ff:79:fa:52:f3:c5:ac:e9: db:88:70:d6:bb:46:11:4e:c9:74:42:c5:2b:ab:a5:bd:89:29: 95:8d:69:7e:df:84:a8:fb:94:2c:1d:1f:80:a9:25:2b:06:7a: 30:ae:30:93:52:01:57:bd:0c:3d:16:36:9c:df:d1:d2:f4:a7: 30:e1:d5:a3:d5:62:18:37:b5:55:b0:aa:63:91:67:be:69:0b: fa:b0:54:41:fc:08:f1:58:68:db:7b:fc:27:d6:0b:20:91:df: d1:d1:d6:1d:64:f8:1c:a7:e3:94:85:0d:80:5a:2a:eb:b4:c4: 09:11:2e:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLs/YWKfruPxWx5c+gTtoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MDkyNjVkODk0ZmE3OWZjZDY1NDJmYWNjMGJhMzg5NzM4 Yzg0NTkwHhcNMjUxMjA2MDEwMjQ4WhcNMjUxMjA3MDEwMjQ4WjAzMTEwLwYDVQQD Eyg1YjI5YTU0NjA3OTFmYzAzODJkYmU5N2I0MzA3MDVlM2I5MzYzMTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxiSFUKIgGXshEP8mLOhQyxW4gr5 CMeDk5rx2GbJZPAMRfveYB8vMyykdsFwYTItS5YqftO2EL//J5HRnWV1K7vHEmrA z018NKDWpEmFCKvFwzBddA6VnvqrvJdE1KuhfyHoonLko14nzce5UyipXP5+ykeZ rD7u6ohyTnPPG06OAOCvdLglVM9Srw18AzYAkFi1YZDj3uAhT7tyCsgr7Ifj4bWL 8FbbV/s/svFGlmyUvaBN2E5e4Ep4GtNp8hUL3tjSk9GSrNZ9SWCNf1no11bP+o3y RJDvhB+dSu6lk/IaCAVEJDWC+KRAgLMFBRjmLPbgVYY7E7x2fckAwLg33QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFsppUYHkfwDgtvpe0MHBeO5NjEJMB8GA1UdIwQY MBaAFKYJJl2JT6efzWVC+swLo4lzjIRZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGdrbVhZbFBwNV9OWlVMNnpBdWppWE9NaEZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS83MzBkNGQtZDRhYi00Mjc5LWIyMjUt NmRjMGRhMWY1ZGVlLzEvcGdrbVhZbFBwNV9OWlVMNnpBdWppWE9NaEZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS83MzBkNGQtZDRhYi00Mjc5LWIyMjUtNmRjMGRhMWY1ZGVl LzEvcGdrbVhZbFBwNV9OWlVMNnpBdWppWE9NaEZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsKbz0xNc EXBW+UCVtO1TDa3qDhXPFZUyuwRe1u2Rx6A20yHxmxMOJWCsXYlSfEEc2XfboGfc nB12DAYy3PfdBRyqpfWRufDu78BkvTA4SAp1NG+YW3h4lQL0Xa4WCzjODZcTAiGo TO3wMb1Yq9pSf2zZ3mbYXG308qtL6q+dh246AWhzxaNhnf95+lLzxazp24hw1rtG EU7JdELFK6ulvYkplY1pft+EqPuULB0fgKklKwZ6MK4wk1IBV70MPRY2nN/R0vSn MOHVo9ViGDe1VbCqY5FnvmkL+rBUQfwI8Vho23v8J9YLIJHf0dHWHWT4HKfjlIUN gFoq67TECREuJQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:41:25 2025 by rpki-client