This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json) Hash identifier: uY2CNmTI1wjaqkmznBm96BlpePIz0vRtBf6wmigmBxQ= Subject key identifier: 76:DE:69:55:CD:88:39:28:36:8C:49:EF:C7:23:02:7C:76:C8:E9:0A Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Certificate serial: 019AF20908F7D508E4922642DB5CD8157F70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft Manifest number: 0B69 Signing time: Sat 06 Dec 2025 05:01:09 +0000 Manifest this update: Sat 06 Dec 2025 05:01:09 +0000 Manifest next update: Sun 07 Dec 2025 05:01:09 +0000 Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=) 2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=) 3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: 71dfm4Jy8aJo1zDXpCjv7biY9hjf6ENloEqNPppYxLU=) 4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=) 5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:08:f7:d5:08:e4:92:26:42:db:5c:d8:15:7f:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Validity Not Before: Dec 6 05:01:09 2025 GMT Not After : Dec 7 05:01:09 2025 GMT Subject: CN=76de6955cd883928368c49efc723027c76c8e90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:50:ae:ad:c6:7d:e2:3e:81:9c:2e:ed:de:f6: 0b:2d:33:a8:07:5f:c3:94:e3:10:af:88:5f:37:33: 8e:4e:39:02:91:9e:64:22:6f:fc:91:40:2c:0c:a8: 7b:c9:0d:13:c7:01:21:65:95:f9:cf:79:6c:95:ae: 15:04:0b:e7:a1:46:6a:c9:83:3b:ca:c3:53:34:1f: 9a:09:fa:f6:7f:a4:9e:6a:45:1a:88:e9:77:52:55: 2a:c7:8e:9a:08:1f:00:3f:12:92:9d:61:15:62:37: 7a:6e:c2:4f:95:a4:4f:e5:ac:58:f2:f6:6f:9e:b3: 53:f0:58:70:21:d1:7b:74:96:13:92:d3:c5:1c:81: 32:dd:4b:d7:b2:31:11:8d:23:30:2c:0b:50:84:fd: 8c:ce:a7:6a:de:22:2a:4a:c6:fa:20:11:02:f5:ee: 12:76:49:97:de:be:33:12:8e:d9:35:72:85:f8:2a: 47:5d:b0:d1:df:ed:63:58:cf:c5:42:c9:e6:0a:6a: b8:47:c9:fb:9f:04:53:2b:43:7f:7a:76:32:ce:ff: d0:e1:da:c5:3f:7e:56:e2:9c:43:50:dc:1f:b2:b4: 33:d7:31:cd:1e:aa:83:fd:10:2d:91:93:c6:74:f3: 4c:52:74:50:cd:5e:57:ae:41:75:a7:de:3e:e4:d9: 58:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DE:69:55:CD:88:39:28:36:8C:49:EF:C7:23:02:7C:76:C8:E9:0A X509v3 Authority Key Identifier: keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:3b:b7:92:89:77:e8:55:c0:5e:04:cb:2f:f0:c0:f4:30:bf: b3:80:a6:6d:37:79:8e:b4:29:ed:e9:19:77:db:84:64:d1:f6: 78:03:36:db:2a:b2:8e:19:56:62:b8:b7:88:af:4f:6d:d5:ce: 01:59:1d:fd:ee:3e:f2:80:9a:36:0e:1e:6a:a1:60:e9:8e:3a: 0a:3d:88:d9:42:f0:f8:c1:6a:33:fe:f7:3c:ba:56:4e:50:04: bf:6f:85:0f:03:82:ef:ba:38:5a:03:dc:59:c6:a9:f0:6b:05: d6:1e:d9:a6:bb:c2:08:3f:33:75:4a:e2:43:9e:94:b7:18:a5: da:1b:b4:cb:fd:01:49:b1:34:9f:03:47:b2:4a:10:53:6e:e2: 03:02:71:b9:d2:bb:38:1a:ce:fd:60:5b:7b:d9:2d:47:e2:85: b3:f5:7c:d8:e6:15:b9:81:67:4a:7c:07:30:75:5b:a3:fe:5e: b8:20:dc:3c:12:b1:29:7c:b9:81:db:40:da:2c:a0:86:6f:18: 2f:09:74:d8:2b:b4:f2:bf:a9:54:1b:c6:3a:7f:e7:5c:ca:68: d9:7d:e5:bb:b7:6c:2d:e5:5b:7b:8e:c1:c6:65:75:47:88:45: 62:1c:d3:5c:17:6a:cf:6c:b7:e5:e5:61:20:16:5b:a5:2e:13: 1f:b2:ca:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQj31QjkkiZC21zYFX9wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm OTZkZWMwHhcNMjUxMjA2MDUwMTA5WhcNMjUxMjA3MDUwMTA5WjAzMTEwLwYDVQQD Eyg3NmRlNjk1NWNkODgzOTI4MzY4YzQ5ZWZjNzIzMDI3Yzc2YzhlOTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFCurcZ94j6BnC7t3vYLLTOoB1/D lOMQr4hfNzOOTjkCkZ5kIm/8kUAsDKh7yQ0TxwEhZZX5z3lsla4VBAvnoUZqyYM7 ysNTNB+aCfr2f6SeakUaiOl3UlUqx46aCB8APxKSnWEVYjd6bsJPlaRP5axY8vZv nrNT8FhwIdF7dJYTktPFHIEy3UvXsjERjSMwLAtQhP2Mzqdq3iIqSsb6IBEC9e4S dkmX3r4zEo7ZNXKF+CpHXbDR3+1jWM/FQsnmCmq4R8n7nwRTK0N/enYyzv/Q4drF P35W4pxDUNwfsrQz1zHNHqqD/RAtkZPGdPNMUnRQzV5XrkF1p94+5NlYswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbeaVXNiDkoNoxJ78cjAnx2yOkKMB8GA1UdIwQY MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4 LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyDu3kol3 6FXAXgTLL/DA9DC/s4CmbTd5jrQp7ekZd9uEZNH2eAM22yqyjhlWYri3iK9PbdXO AVkd/e4+8oCaNg4eaqFg6Y46Cj2I2ULw+MFqM/73PLpWTlAEv2+FDwOC77o4WgPc Wcap8GsF1h7ZprvCCD8zdUriQ56Utxil2hu0y/0BSbE0nwNHskoQU27iAwJxudK7 OBrO/WBbe9ktR+KFs/V82OYVuYFnSnwHMHVbo/5euCDcPBKxKXy5gdtA2iyghm8Y Lwl02Cu08r+pVBvGOn/nXMpo2X3lu7dsLeVbe47BxmV1R4hFYhzTXBdqz2y35eVh IBZbpS4TH7LK9A== -----END CERTIFICATE-----Generated at Sat Dec 6 14:47:26 2025 by rpki-client