This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft File: PpeXKwFXszTha_kfKifuDi3BOag.mft (raw, json) Hash identifier: g2+PwELwMkl1xf5qv2t9sIWpq6WynYayi8GCxdMNM+s= Subject key identifier: 2B:74:C0:E6:D2:C6:0F:DB:57:9F:09:80:E5:2C:38:CA:A2:65:3B:8A Authority key identifier: 3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8 Certificate issuer: /CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8 Certificate serial: 019AF23FF37B8B5AC3818DA48210B6E04754 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft Manifest number: 03CF Signing time: Sat 06 Dec 2025 06:01:08 +0000 Manifest this update: Sat 06 Dec 2025 06:01:08 +0000 Manifest next update: Sun 07 Dec 2025 06:01:08 +0000 Files and hashes: 1: PpeXKwFXszTha_kfKifuDi3BOag.crl (hash: QK1YS4HuqjECqdxg/ef9QIj3p+s/6eJ+6JUTPn9Cfmk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:f3:7b:8b:5a:c3:81:8d:a4:82:10:b6:e0:47:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e97972b0157b334e16bf91f2a27ee0e2dc139a8 Validity Not Before: Dec 6 06:01:08 2025 GMT Not After : Dec 7 06:01:08 2025 GMT Subject: CN=2b74c0e6d2c60fdb579f0980e52c38caa2653b8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:10:b0:bc:bc:d7:a7:12:6c:2a:ac:a4:d9:c4: dd:68:03:d0:db:81:e6:be:11:c6:a5:b1:77:2f:ec: 0e:87:04:0c:d6:8a:80:2b:1a:be:8c:13:e8:24:9b: ef:78:27:0e:d6:85:22:e8:98:41:a2:70:89:d7:30: 6e:5c:6e:61:80:4d:95:bb:63:b5:b9:89:31:dc:53: 67:96:de:1e:d8:f7:5c:9b:a1:95:20:34:65:a4:39: 4a:86:7c:b2:c2:9b:33:f5:16:ee:db:fa:c3:02:c3: 49:3e:f3:48:4a:b7:7a:ef:5f:99:64:d7:aa:dd:d1: 55:3d:db:42:51:a4:99:48:d4:2c:42:e2:cb:e6:99: ee:19:75:e1:f4:83:e8:2c:6b:8a:94:e9:b4:1e:53: e8:6a:cd:04:a2:c0:9c:93:68:c5:50:75:ec:b0:10: af:e4:99:53:e7:bd:a5:db:6a:d0:71:ad:6a:e4:01: 6a:d4:9d:f0:2a:a2:31:82:05:99:ae:2f:0d:01:6a: 25:bd:e1:a7:f4:da:15:aa:29:9e:e0:e2:05:b9:f3: f7:df:27:13:8c:24:28:00:cd:82:16:32:2d:1b:b7: 9b:07:64:e5:a4:09:e0:dd:bf:4d:ac:e4:f6:33:3c: 08:4a:01:d5:43:71:83:2d:60:fa:64:05:db:4d:26: af:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:74:C0:E6:D2:C6:0F:DB:57:9F:09:80:E5:2C:38:CA:A2:65:3B:8A X509v3 Authority Key Identifier: keyid:3E:97:97:2B:01:57:B3:34:E1:6B:F9:1F:2A:27:EE:0E:2D:C1:39:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PpeXKwFXszTha_kfKifuDi3BOag.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/27eba1-3ea1-4191-9699-9f004101ce4c/1/PpeXKwFXszTha_kfKifuDi3BOag.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:88:07:9a:d9:50:ee:80:04:15:f2:0d:53:89:6b:c7:1b:74: aa:4a:aa:50:69:66:6e:3d:fc:f3:79:b1:5e:fe:11:05:bc:29: 21:5b:8d:e0:e0:12:0b:3b:db:90:1d:0d:14:34:7a:4a:fd:9f: b6:bd:63:24:09:af:d6:e4:89:ab:26:c5:6e:d4:fe:35:9d:4a: 78:3e:6d:a6:7e:a0:b9:ab:b5:2d:ee:5e:2f:0d:f3:27:b3:c2: 4a:f4:33:9d:30:1f:aa:5c:5b:e0:a8:0c:89:53:93:61:d7:f6: 44:df:8f:be:9b:d5:b8:06:f6:16:92:b3:df:60:57:2b:eb:4b: c7:34:2e:31:d5:c3:84:f1:46:e7:ed:a8:7e:2a:65:61:6b:f1: 6a:f7:09:ec:98:82:c7:4d:2c:83:89:b1:1c:18:c8:24:a7:6c: a3:6d:32:2e:02:01:99:ab:a4:a0:da:12:8b:1e:76:04:ef:eb: f5:2e:1f:47:b2:25:31:8b:80:39:73:14:bf:10:8f:db:1c:8a: 48:10:42:32:c4:0d:3f:7f:61:ed:e7:9f:e0:e6:4e:39:a0:f2: cc:e5:f5:0c:70:cc:83:1f:b1:d1:c8:7b:7e:34:a3:ae:f2:f1: c1:50:aa:8b:00:f4:4a:50:38:30:6b:0e:1e:d8:ff:49:1f:e6: dc:e9:9f:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP/N7i1rDgY2kghC24EdUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlOTc5NzJiMDE1N2IzMzRlMTZiZjkxZjJhMjdlZTBlMmRj MTM5YTgwHhcNMjUxMjA2MDYwMTA4WhcNMjUxMjA3MDYwMTA4WjAzMTEwLwYDVQQD EygyYjc0YzBlNmQyYzYwZmRiNTc5ZjA5ODBlNTJjMzhjYWEyNjUzYjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkhCwvLzXpxJsKqyk2cTdaAPQ24Hm vhHGpbF3L+wOhwQM1oqAKxq+jBPoJJvveCcO1oUi6JhBonCJ1zBuXG5hgE2Vu2O1 uYkx3FNnlt4e2Pdcm6GVIDRlpDlKhnyywpsz9Rbu2/rDAsNJPvNISrd671+ZZNeq 3dFVPdtCUaSZSNQsQuLL5pnuGXXh9IPoLGuKlOm0HlPoas0EosCck2jFUHXssBCv 5JlT572l22rQca1q5AFq1J3wKqIxggWZri8NAWolveGn9NoVqime4OIFufP33ycT jCQoAM2CFjItG7ebB2TlpAng3b9NrOT2MzwISgHVQ3GDLWD6ZAXbTSavlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCt0wObSxg/bV58JgOUsOMqiZTuKMB8GA1UdIwQY MBaAFD6XlysBV7M04Wv5Hyon7g4twTmoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHBlWEt3RlhzelRoYV9rZktpZnVEaTNCT2FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8yN2ViYTEtM2VhMS00MTkxLTk2OTkt OWYwMDQxMDFjZTRjLzEvUHBlWEt3RlhzelRoYV9rZktpZnVEaTNCT2FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8yN2ViYTEtM2VhMS00MTkxLTk2OTktOWYwMDQxMDFjZTRj LzEvUHBlWEt3RlhzelRoYV9rZktpZnVEaTNCT2FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfogHmtlQ 7oAEFfINU4lrxxt0qkqqUGlmbj3883mxXv4RBbwpIVuN4OASCzvbkB0NFDR6Sv2f tr1jJAmv1uSJqybFbtT+NZ1KeD5tpn6guau1Le5eLw3zJ7PCSvQznTAfqlxb4KgM iVOTYdf2RN+PvpvVuAb2FpKz32BXK+tLxzQuMdXDhPFG5+2ofiplYWvxavcJ7JiC x00sg4mxHBjIJKdso20yLgIBmaukoNoSix52BO/r9S4fR7IlMYuAOXMUvxCP2xyK SBBCMsQNP39h7eef4OZOOaDyzOX1DHDMgx+x0ch7fjSjrvLxwVCqiwD0SlA4MGsO Htj/SR/m3OmfUA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:00 2025 by rpki-client