This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft File: PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft (raw, json) Hash identifier: gPsHM0BQVU/P0Zw2F+NuNy+Q38YzoxUyWshPjTG5X+k= Subject key identifier: D7:90:50:06:49:42:66:B7:67:C6:62:3F:D9:F3:C7:6C:3D:FA:DF:EC Authority key identifier: 3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E Certificate issuer: /CN=3d70f1f6563de43a11d3644975667c1c28e7959e Certificate serial: 019AF389478F78F97298B7B4BEE4DCCB0190 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 12:00:51 +0000 Manifest this update: Sat 06 Dec 2025 12:00:51 +0000 Manifest next update: Sun 07 Dec 2025 12:00:51 +0000 Files and hashes: 1: 2AYUWvm8F1To8URav6-hliMLNGM.roa (hash: xtydpTSnQLnPEEmzIm3eQJgTUjiDutczP4OZlZO4Bow=) 2: PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl (hash: QjBSOsij8X02xWm/vkNb3kEaASYKkmntqQVGi68a0C4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:47:8f:78:f9:72:98:b7:b4:be:e4:dc:cb:01:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d70f1f6563de43a11d3644975667c1c28e7959e Validity Not Before: Dec 6 12:00:51 2025 GMT Not After : Dec 7 12:00:51 2025 GMT Subject: CN=d7905006494266b767c6623fd9f3c76c3dfadfec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0e:81:20:ab:93:aa:9f:81:b9:0a:28:48:e3: 46:6a:bf:b4:bf:7b:30:3e:90:62:9e:fd:f4:03:f0: bd:55:44:9f:cb:7c:52:6d:2d:98:ec:01:1a:86:69: b2:6c:4b:4c:03:7d:f1:9b:e9:d7:d8:e0:3e:7a:54: 66:0c:58:aa:48:0d:7b:27:6e:09:c2:83:5d:16:db: b5:37:ac:78:39:21:74:69:6a:75:f1:5a:90:1c:69: 5a:81:a6:65:24:a2:f6:4d:ce:dc:6c:b1:fa:92:34: 5d:1d:1b:0d:24:bd:57:a4:fe:c7:0f:04:81:77:e3: 3e:01:1d:e3:dc:12:cb:d5:5a:9c:23:5b:79:f3:00: ee:d1:56:04:ad:46:6d:6a:a2:61:3a:ad:5e:68:12: 0d:48:fc:c6:fd:84:f5:88:df:fc:39:e0:ee:52:8d: d6:bd:38:03:46:4d:d8:6b:a1:e8:a8:72:5d:b1:48: 99:a7:f8:fb:a1:83:93:69:9c:8e:88:43:9f:38:d8: 17:99:2d:7f:37:78:73:73:a0:a4:f1:62:60:b8:db: 17:4f:12:67:56:b6:51:1a:d9:8b:04:f7:7f:4c:ad: 8c:aa:ba:8c:5e:08:c8:63:4f:a6:a6:f6:76:5d:f0: 0a:20:60:8a:ec:60:fa:43:5a:58:3d:c0:68:f9:a7: 4f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:90:50:06:49:42:66:B7:67:C6:62:3F:D9:F3:C7:6C:3D:FA:DF:EC X509v3 Authority Key Identifier: keyid:3D:70:F1:F6:56:3D:E4:3A:11:D3:64:49:75:66:7C:1C:28:E7:95:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXDx9lY95DoR02RJdWZ8HCjnlZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/6c075e-6263-4ff3-a26d-8d32220715ee/1/PXDx9lY95DoR02RJdWZ8HCjnlZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:cc:5e:85:b4:4a:d7:d7:db:53:af:44:72:3d:6a:39:45:e5: 42:d0:0e:1d:9e:e8:20:38:bc:ac:8a:77:23:ca:bc:1a:d6:83: 8f:f4:bd:b6:29:d5:f7:df:65:f8:ed:a1:d4:49:b0:93:bc:48: fb:6e:6b:99:eb:0a:0b:81:10:8b:e9:b5:4a:27:03:b7:92:b3: 58:2f:c4:27:1c:d7:2e:52:8a:6f:db:f8:75:b4:f5:71:9f:27: 55:1c:08:99:86:5b:9d:af:b6:9c:23:fb:ae:2a:be:48:cf:8b: d5:4d:a7:18:6f:12:2a:46:58:71:8e:03:45:ca:37:36:8b:9c: f9:3d:42:6f:28:91:ce:4f:44:c4:37:0a:2b:5c:b3:af:23:31: f3:b1:6c:16:f2:9b:46:13:1c:49:58:5c:7a:01:c6:5b:f6:5a: 46:8c:bf:b3:1e:c9:d4:cc:b1:69:32:d4:82:6f:1a:e7:65:c4: 9f:74:8a:75:a8:03:fb:3e:1e:76:b6:2f:fd:4f:e9:87:08:c2: f0:64:e3:f6:2a:f7:09:fd:a6:00:1f:ad:e4:60:c8:28:f0:0a: bd:39:6c:73:dd:76:f5:db:b7:57:cd:04:82:d4:05:32:f1:88: 89:36:11:d7:71:ae:11:8e:b0:4e:7d:ef:99:55:79:fe:1f:b2: be:c3:23:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziUePePlymLe0vuTcywGQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNzBmMWY2NTYzZGU0M2ExMWQzNjQ0OTc1NjY3YzFjMjhl Nzk1OWUwHhcNMjUxMjA2MTIwMDUxWhcNMjUxMjA3MTIwMDUxWjAzMTEwLwYDVQQD EyhkNzkwNTAwNjQ5NDI2NmI3NjdjNjYyM2ZkOWYzYzc2YzNkZmFkZmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAng6BIKuTqp+BuQooSONGar+0v3sw PpBinv30A/C9VUSfy3xSbS2Y7AEahmmybEtMA33xm+nX2OA+elRmDFiqSA17J24J woNdFtu1N6x4OSF0aWp18VqQHGlagaZlJKL2Tc7cbLH6kjRdHRsNJL1XpP7HDwSB d+M+AR3j3BLL1VqcI1t58wDu0VYErUZtaqJhOq1eaBINSPzG/YT1iN/8OeDuUo3W vTgDRk3Ya6HoqHJdsUiZp/j7oYOTaZyOiEOfONgXmS1/N3hzc6Ck8WJguNsXTxJn VrZRGtmLBPd/TK2MqrqMXgjIY0+mpvZ2XfAKIGCK7GD6Q1pYPcBo+adPcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNeQUAZJQma3Z8ZiP9nzx2w9+t/sMB8GA1UdIwQY MBaAFD1w8fZWPeQ6EdNkSXVmfBwo55WeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC82YzA3NWUtNjI2My00ZmYzLWEyNmQt OGQzMjIyMDcxNWVlLzEvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC82YzA3NWUtNjI2My00ZmYzLWEyNmQtOGQzMjIyMDcxNWVl LzEvUFhEeDlsWTk1RG9SMDJSSmRXWjhIQ2pubFo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiMxehbRK 19fbU69Ecj1qOUXlQtAOHZ7oIDi8rIp3I8q8GtaDj/S9tinV999l+O2h1Emwk7xI +25rmesKC4EQi+m1SicDt5KzWC/EJxzXLlKKb9v4dbT1cZ8nVRwImYZbna+2nCP7 riq+SM+L1U2nGG8SKkZYcY4DRco3Nouc+T1CbyiRzk9ExDcKK1yzryMx87FsFvKb RhMcSVhcegHGW/ZaRoy/sx7J1MyxaTLUgm8a52XEn3SKdagD+z4edrYv/U/phwjC 8GTj9ir3Cf2mAB+t5GDIKPAKvTlsc9129du3V80EgtQFMvGIiTYR13GuEY6wTn3v mVV5/h+yvsMjHQ== -----END CERTIFICATE-----Generated at Sat Dec 6 20:02:23 2025 by rpki-client