This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft File: PflufaVJi3Djuxe24YoxE3EtMrY.mft (raw, json) Hash identifier: oKZ07W3LfITXQi8kC79NYvPhUIuxeM/CVzMP8fxzPFY= Subject key identifier: B0:64:48:E8:A0:44:09:05:58:0E:AE:50:23:51:BE:2A:52:F9:3F:7B Authority key identifier: 3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6 Certificate issuer: /CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6 Certificate serial: 019AF23FFE5C0A7CAC3CF1FC2ABADCBE1891 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft Manifest number: 1148 Signing time: Sat 06 Dec 2025 06:01:11 +0000 Manifest this update: Sat 06 Dec 2025 06:01:11 +0000 Manifest next update: Sun 07 Dec 2025 06:01:11 +0000 Files and hashes: 1: PflufaVJi3Djuxe24YoxE3EtMrY.crl (hash: IYw9x8tC/Kz+4M757TFAqWbPylzK0zfFEqHaHeCpc4E=) 2: jH9C8p9nitrfAItNyA_YLJEP6ds.roa (hash: qAfQVpQ0k0QfJ2KTETvmr94XZk/rf+3SC4Qevdx1ZDY=) 3: tah1yfASreRchTqTj8AtcpkBGXY.roa (hash: 3mvJQGarrUT5b42icY1PPyWBBa9VfBbfud+/MFWuiN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:fe:5c:0a:7c:ac:3c:f1:fc:2a:ba:dc:be:18:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df96e7da5498b70e3bb17b6e18a3113712d32b6 Validity Not Before: Dec 6 06:01:11 2025 GMT Not After : Dec 7 06:01:11 2025 GMT Subject: CN=b06448e8a0440905580eae502351be2a52f93f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:1f:c4:83:28:b7:ed:ff:35:59:c4:c6:c7:61: 91:81:72:c6:c4:38:c2:f7:02:1b:f6:dc:57:c1:49: 79:16:37:55:9a:b8:e1:8c:8d:2c:bf:66:f8:a2:85: 68:be:93:f0:7c:ec:d8:dc:2d:51:a9:4a:93:78:0e: d2:42:42:10:ed:12:26:d9:41:99:3f:78:3f:c8:61: fa:de:93:46:63:dd:fd:30:9c:57:7f:3f:0d:35:fc: b9:ce:8b:26:46:a9:bd:2d:5e:01:ce:13:f6:49:dc: cf:af:26:72:3b:7c:10:1e:d5:a3:01:64:b0:a3:ad: e2:e3:7b:28:14:b2:2d:f0:53:7c:b3:80:98:ad:ab: cc:23:45:8c:c7:cc:22:f0:cf:aa:b1:07:85:ee:e0: 44:c2:53:ab:ea:85:6f:ca:1e:56:01:12:12:15:0f: 45:b4:76:83:fb:97:49:70:27:9a:23:fd:63:04:f8: 46:39:db:95:52:da:b3:53:8c:67:8b:e6:b1:11:44: 16:01:9b:92:d6:d4:ae:52:4d:4d:d2:a1:99:e2:14: 51:22:ad:af:be:c9:91:5c:d7:62:97:f1:05:7a:7b: da:56:ec:33:aa:e0:0b:2d:05:f6:73:85:da:b7:0a: 72:09:c4:d8:b7:11:54:a8:73:b4:ed:8e:d8:af:04: bc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:64:48:E8:A0:44:09:05:58:0E:AE:50:23:51:BE:2A:52:F9:3F:7B X509v3 Authority Key Identifier: keyid:3D:F9:6E:7D:A5:49:8B:70:E3:BB:17:B6:E1:8A:31:13:71:2D:32:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PflufaVJi3Djuxe24YoxE3EtMrY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/8831d9-3933-483a-b9af-36e88506680e/1/PflufaVJi3Djuxe24YoxE3EtMrY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:55:9b:db:4a:ad:ae:97:e8:aa:0a:bc:f5:96:31:33:36:7f: 11:88:4f:b3:10:28:e3:15:3c:7a:61:54:f8:36:7a:95:0c:0b: 9f:c7:70:2e:0b:ff:73:e5:23:21:40:8c:00:47:0c:ec:26:61: b4:8e:be:b2:01:2e:33:b2:5b:30:0f:e9:01:9d:9c:de:75:00: 87:2c:b5:f6:08:1c:4d:6d:c2:f5:93:97:7a:03:e9:c7:8c:ea: ee:dd:2b:e9:85:71:8a:1a:c4:dd:02:38:b7:fb:13:41:22:2f: 28:e1:02:52:07:18:43:c6:b0:d1:01:2e:5d:36:b3:5e:63:62: d8:a7:07:4d:60:0e:35:6a:40:e6:24:58:e9:64:73:cb:cb:39: 3e:63:75:12:f1:55:0e:ac:3b:54:92:0f:b6:1e:95:53:f9:20: 0c:f6:c9:fb:f5:1c:72:9d:b3:a0:ef:4a:59:c8:2a:ee:d1:48: 16:9e:07:f7:41:ef:21:5c:8b:d9:59:16:12:d9:2c:49:af:95: 81:d7:89:7f:23:9a:a4:7c:9d:c8:73:ab:f3:38:5a:c8:89:19: 0d:f6:bd:95:b5:fd:fc:5a:ed:c7:e0:08:97:cd:e1:82:62:eb: 75:56:12:5c:32:c6:a0:a2:d7:f1:14:8d:0c:e4:a7:a7:d3:93: 85:9d:9a:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP/5cCnysPPH8KrrcvhiRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjk2ZTdkYTU0OThiNzBlM2JiMTdiNmUxOGEzMTEzNzEy ZDMyYjYwHhcNMjUxMjA2MDYwMTExWhcNMjUxMjA3MDYwMTExWjAzMTEwLwYDVQQD EyhiMDY0NDhlOGEwNDQwOTA1NTgwZWFlNTAyMzUxYmUyYTUyZjkzZjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAix/Egyi37f81WcTGx2GRgXLGxDjC 9wIb9txXwUl5FjdVmrjhjI0sv2b4ooVovpPwfOzY3C1RqUqTeA7SQkIQ7RIm2UGZ P3g/yGH63pNGY939MJxXfz8NNfy5zosmRqm9LV4BzhP2SdzPryZyO3wQHtWjAWSw o63i43soFLIt8FN8s4CYravMI0WMx8wi8M+qsQeF7uBEwlOr6oVvyh5WARISFQ9F tHaD+5dJcCeaI/1jBPhGOduVUtqzU4xni+axEUQWAZuS1tSuUk1N0qGZ4hRRIq2v vsmRXNdil/EFenvaVuwzquALLQX2c4XatwpyCcTYtxFUqHO07Y7YrwS8zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLBkSOigRAkFWA6uUCNRvipS+T97MB8GA1UdIwQY MBaAFD35bn2lSYtw47sXtuGKMRNxLTK2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYt MzZlODg1MDY2ODBlLzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC84ODMxZDktMzkzMy00ODNhLWI5YWYtMzZlODg1MDY2ODBl LzEvUGZsdWZhVkppM0RqdXhlMjRZb3hFM0V0TXJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC1Wb20qt rpfoqgq89ZYxMzZ/EYhPsxAo4xU8emFU+DZ6lQwLn8dwLgv/c+UjIUCMAEcM7CZh tI6+sgEuM7JbMA/pAZ2c3nUAhyy19ggcTW3C9ZOXegPpx4zq7t0r6YVxihrE3QI4 t/sTQSIvKOECUgcYQ8aw0QEuXTazXmNi2KcHTWAONWpA5iRY6WRzy8s5PmN1EvFV Dqw7VJIPth6VU/kgDPbJ+/Uccp2zoO9KWcgq7tFIFp4H90HvIVyL2VkWEtksSa+V gdeJfyOapHydyHOr8zhayIkZDfa9lbX9/Frtx+AIl83hgmLrdVYSXDLGoKLX8RSN DOSnp9OThZ2aVQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:36:52 2025 by rpki-client