This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft File: PnFWq-5roji5BzFd-cVShlrc2ug.mft (raw, json) Hash identifier: VhVdjK/EI9UK0bf5Box7c4KNx1IT1fWdwdTbokA1DXc= Subject key identifier: E3:E7:6E:51:08:AB:F3:69:1B:49:24:76:F5:8B:64:53:C3:5F:2A:A0 Authority key identifier: 3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8 Certificate issuer: /CN=3e7156abee6ba238b907315df9c552865adcdae8 Certificate serial: 019AF3F743478052952D3C0025B48E33A1C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft Manifest number: 09D4 Signing time: Sat 06 Dec 2025 14:00:59 +0000 Manifest this update: Sat 06 Dec 2025 14:00:59 +0000 Manifest next update: Sun 07 Dec 2025 14:00:59 +0000 Files and hashes: 1: DRXIRPlz989IQESya6WStEPwwfI.roa (hash: vzHP7wdlF/pn8v84Pbfgox37vxRmFYAJNGZAwD+DkvA=) 2: PnFWq-5roji5BzFd-cVShlrc2ug.crl (hash: HrhXnCzRONVKqGMQJT2qHt9JmF1qYNpHmlW0hDPmMoY=) 3: QWM4nrBr-pa9JzWD2Zz8wHHbmCU.roa (hash: VKweVNYicugh0mCYY3yIR2LnHnKsWIZPY+G4TQfXJ6E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:43:47:80:52:95:2d:3c:00:25:b4:8e:33:a1:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e7156abee6ba238b907315df9c552865adcdae8 Validity Not Before: Dec 6 14:00:59 2025 GMT Not After : Dec 7 14:00:59 2025 GMT Subject: CN=e3e76e5108abf3691b492476f58b6453c35f2aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1e:05:70:22:e1:c6:d5:bf:17:d2:1d:15:ab: 44:46:25:c5:85:cd:d7:9f:7a:07:de:db:3f:64:94: 55:2c:63:ac:f7:0b:ec:68:a7:3f:e2:27:05:3a:bb: d0:3a:26:32:fe:98:d5:78:70:8b:4b:2c:11:43:9f: ad:1e:01:46:00:71:c2:3e:36:52:34:56:3e:ed:78: 3a:38:0c:b0:dc:f2:e8:b7:f2:6b:b5:5f:c5:4d:80: a0:ca:21:47:e0:b1:c6:af:93:f7:83:b8:7c:d0:08: ab:68:87:9f:7d:cb:03:de:38:28:2e:5a:e9:1f:57: 62:79:94:4e:5a:80:84:d3:53:8c:98:9c:c9:6c:dc: 0b:39:b3:61:a4:cd:e0:32:14:e3:e7:c9:94:eb:fe: 29:58:23:1e:a8:61:bc:8e:e9:6b:00:f4:f9:a6:c3: 39:8c:ab:6e:75:c4:6f:b9:5d:80:96:68:77:c4:70: 5d:8a:43:1b:1e:07:b7:37:fb:ae:b8:da:37:64:57: be:a6:42:54:f7:68:f7:a2:29:b8:24:ac:cd:e3:54: 9a:a6:62:e0:46:7a:c0:61:97:01:0e:09:d7:8c:eb: 0d:b8:9b:7e:45:bb:c1:86:d7:77:fc:74:83:05:88: 57:ee:1f:32:c6:3f:91:30:44:af:93:38:38:eb:c8: 18:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:E7:6E:51:08:AB:F3:69:1B:49:24:76:F5:8B:64:53:C3:5F:2A:A0 X509v3 Authority Key Identifier: keyid:3E:71:56:AB:EE:6B:A2:38:B9:07:31:5D:F9:C5:52:86:5A:DC:DA:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnFWq-5roji5BzFd-cVShlrc2ug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a4a0f7-7dbd-4b03-b7f9-58f2d44ff281/1/PnFWq-5roji5BzFd-cVShlrc2ug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:6d:b5:bd:ce:9d:70:b3:25:90:e7:0e:12:55:9a:5c:3c:7a: 3e:b5:96:29:3e:59:66:d1:08:81:2a:3c:41:8a:4e:27:5d:85: 46:21:a8:29:01:18:65:12:be:46:98:8f:e8:03:af:2c:b2:1f: 26:aa:2b:90:0e:56:75:87:f6:65:2d:dd:6c:a3:2c:2c:b8:11: 3a:82:7e:98:60:6a:09:18:b9:d4:ef:5e:99:67:1b:f3:5d:56: da:f2:f7:8e:88:62:16:f4:f1:49:1d:e4:17:65:99:51:58:6f: d4:26:4b:b5:48:4a:c4:86:99:d6:20:9d:2c:9e:4e:d3:2b:cc: 4f:dc:e1:86:76:e8:3c:ee:21:00:93:9d:de:38:35:20:d6:cc: e0:35:42:e7:a3:e7:b6:ba:34:75:29:21:df:4f:99:f6:ec:d4: 20:e5:33:9a:1b:fe:95:7d:4d:14:8c:61:91:f5:fc:79:44:f4: 12:63:2b:20:b3:3e:36:52:7d:7a:ff:67:92:27:ba:df:06:99: 62:d6:6b:10:94:9b:e7:d9:af:1b:6f:36:bd:c2:c5:9d:8c:45: 33:d6:e0:aa:b2:1f:13:c0:ad:e4:42:85:05:02:4b:3c:d5:10: cc:44:2a:d4:c1:90:89:ff:e5:db:3a:2b:46:d9:fb:01:75:af: 1c:4a:69:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz90NHgFKVLTwAJbSOM6HBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNzE1NmFiZWU2YmEyMzhiOTA3MzE1ZGY5YzU1Mjg2NWFk Y2RhZTgwHhcNMjUxMjA2MTQwMDU5WhcNMjUxMjA3MTQwMDU5WjAzMTEwLwYDVQQD EyhlM2U3NmU1MTA4YWJmMzY5MWI0OTI0NzZmNThiNjQ1M2MzNWYyYWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyB4FcCLhxtW/F9IdFatERiXFhc3X n3oH3ts/ZJRVLGOs9wvsaKc/4icFOrvQOiYy/pjVeHCLSywRQ5+tHgFGAHHCPjZS NFY+7Xg6OAyw3PLot/JrtV/FTYCgyiFH4LHGr5P3g7h80AiraIeffcsD3jgoLlrp H1dieZROWoCE01OMmJzJbNwLObNhpM3gMhTj58mU6/4pWCMeqGG8julrAPT5psM5 jKtudcRvuV2Almh3xHBdikMbHge3N/uuuNo3ZFe+pkJU92j3oim4JKzN41SapmLg RnrAYZcBDgnXjOsNuJt+RbvBhtd3/HSDBYhX7h8yxj+RMESvkzg468gYAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOPnblEIq/NpG0kkdvWLZFPDXyqgMB8GA1UdIwQY MBaAFD5xVqvua6I4uQcxXfnFUoZa3NroMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG5GV3EtNXJvamk1QnpGZC1jVlNobHJjMnVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9hNGEwZjctN2RiZC00YjAzLWI3Zjkt NThmMmQ0NGZmMjgxLzEvUG5GV3EtNXJvamk1QnpGZC1jVlNobHJjMnVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9hNGEwZjctN2RiZC00YjAzLWI3ZjktNThmMmQ0NGZmMjgx LzEvUG5GV3EtNXJvamk1QnpGZC1jVlNobHJjMnVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGW21vc6d cLMlkOcOElWaXDx6PrWWKT5ZZtEIgSo8QYpOJ12FRiGoKQEYZRK+RpiP6AOvLLIf JqorkA5WdYf2ZS3dbKMsLLgROoJ+mGBqCRi51O9emWcb811W2vL3johiFvTxSR3k F2WZUVhv1CZLtUhKxIaZ1iCdLJ5O0yvMT9zhhnboPO4hAJOd3jg1INbM4DVC56Pn tro0dSkh30+Z9uzUIOUzmhv+lX1NFIxhkfX8eUT0EmMrILM+NlJ9ev9nkie63waZ YtZrEJSb59mvG282vcLFnYxFM9bgqrIfE8Ct5EKFBQJLPNUQzEQq1MGQif/l2zor Rtn7AXWvHEppWw== -----END CERTIFICATE-----Generated at Sat Dec 6 21:16:20 2025 by rpki-client