This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json) Hash identifier: FPB/cWRNyGPX2HDgoYZVgq1tdp9rrbrQAB7mV19/KyY= Subject key identifier: 7D:3A:B2:04:63:86:4E:C7:C6:12:9C:8F:E2:DC:95:CF:B4:57:C6:AB Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Certificate serial: 019AF3F770BF771497553F4EE97E1234E81E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft Manifest number: 0B6A Signing time: Sat 06 Dec 2025 14:01:10 +0000 Manifest this update: Sat 06 Dec 2025 14:01:10 +0000 Manifest next update: Sun 07 Dec 2025 14:01:10 +0000 Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=) 2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=) 3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: 6AN4Hsn3tymuSnNeJmveaU3TDMAW0rURCbLWE6TsHDg=) 4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=) 5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:70:bf:77:14:97:55:3f:4e:e9:7e:12:34:e8:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Validity Not Before: Dec 6 14:01:10 2025 GMT Not After : Dec 7 14:01:10 2025 GMT Subject: CN=7d3ab20463864ec7c6129c8fe2dc95cfb457c6ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:30:fc:e6:a4:b0:ee:89:d0:c3:5f:ab:c1:88: cd:eb:78:7b:7b:7e:0c:0d:88:49:db:bf:5b:e1:bd: e6:8d:73:1b:08:68:0d:df:48:9d:84:89:7d:f0:95: 5d:51:08:44:da:a5:f5:8e:ae:e2:21:71:6d:4e:9e: 03:63:a0:6b:82:89:3e:d8:51:f9:3f:ed:06:cb:9a: 02:c2:4c:88:58:d7:d4:bd:7b:09:1b:05:b5:c9:54: c7:a5:26:7b:87:70:93:24:bb:dc:91:83:d4:71:07: 78:db:4e:4c:dc:e7:8c:51:6c:bf:ef:98:8f:72:14: 36:d1:39:2d:b2:41:e7:dd:66:ad:2e:7f:21:35:6f: 1e:42:95:43:4a:32:d8:43:3e:4a:97:a7:c9:e7:fd: 05:d1:08:62:19:5b:86:6f:d4:bb:74:42:24:f4:02: d0:e6:a8:34:33:9c:27:ee:ca:d0:78:55:7c:a0:f4: 94:47:cd:85:21:a1:8e:06:2a:c4:a3:19:0c:aa:39: 6a:b0:52:06:8c:ee:24:7a:24:34:96:45:9e:52:73: a4:70:9c:7d:3d:61:6b:85:2a:4c:36:0c:b3:40:6c: da:3d:c1:b8:df:39:86:1d:1a:ab:f5:f2:03:91:ac: 3a:bc:e3:15:6c:f3:50:d8:58:d9:21:68:01:47:1b: 0e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3A:B2:04:63:86:4E:C7:C6:12:9C:8F:E2:DC:95:CF:B4:57:C6:AB X509v3 Authority Key Identifier: keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:02:64:23:5d:24:f9:1b:0b:90:54:28:52:94:45:45:86:87: ab:7d:41:d8:d2:2b:a6:2f:d7:ed:5b:e1:93:65:78:33:0e:ae: 9d:8f:37:bb:22:6a:33:23:ad:52:0d:a4:d6:f0:96:b7:5f:92: 6d:43:2e:87:27:51:b3:7d:de:03:4d:17:97:44:75:26:87:03: db:8a:2a:78:5b:fc:29:08:e2:3d:ae:42:9b:78:0c:53:ad:38: 96:65:8b:13:05:8d:f0:b2:6d:4c:bb:0a:fc:4d:bc:a4:e7:4b: 52:b1:7a:7b:5a:d5:75:fa:ea:f3:1b:25:16:ab:e6:a1:75:a4: 1e:4a:3f:20:47:36:ff:f0:93:63:8d:ac:91:13:e8:91:1d:dd: 62:ed:ed:b5:08:87:6c:31:00:4b:c5:16:2a:02:6e:84:27:ec: 24:0d:84:18:53:84:4f:70:6d:02:66:79:3f:a2:36:3f:07:fc: 17:82:ab:0e:f2:f4:18:91:17:22:ef:16:50:76:7c:2c:2a:4d: 04:a7:b0:f1:eb:fa:cc:30:a6:e3:81:4a:18:26:8e:4b:b3:36: f0:c0:8b:6e:1d:43:b1:8c:37:50:1e:43:5e:f6:7d:b4:0c:a2: c6:8a:70:49:21:0f:a8:12:3a:25:1b:15:6f:33:6e:39:5d:09: f2:d1:b9:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz93C/dxSXVT9O6X4SNOgeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm OTZkZWMwHhcNMjUxMjA2MTQwMTEwWhcNMjUxMjA3MTQwMTEwWjAzMTEwLwYDVQQD Eyg3ZDNhYjIwNDYzODY0ZWM3YzYxMjljOGZlMmRjOTVjZmI0NTdjNmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTD85qSw7onQw1+rwYjN63h7e34M DYhJ279b4b3mjXMbCGgN30idhIl98JVdUQhE2qX1jq7iIXFtTp4DY6Brgok+2FH5 P+0Gy5oCwkyIWNfUvXsJGwW1yVTHpSZ7h3CTJLvckYPUcQd4205M3OeMUWy/75iP chQ20TktskHn3WatLn8hNW8eQpVDSjLYQz5Kl6fJ5/0F0QhiGVuGb9S7dEIk9ALQ 5qg0M5wn7srQeFV8oPSUR82FIaGOBirEoxkMqjlqsFIGjO4keiQ0lkWeUnOkcJx9 PWFrhSpMNgyzQGzaPcG43zmGHRqr9fIDkaw6vOMVbPNQ2FjZIWgBRxsOswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH06sgRjhk7HxhKcj+Lclc+0V8arMB8GA1UdIwQY MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4 LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqgJkI10k +RsLkFQoUpRFRYaHq31B2NIrpi/X7Vvhk2V4Mw6unY83uyJqMyOtUg2k1vCWt1+S bUMuhydRs33eA00Xl0R1JocD24oqeFv8KQjiPa5Cm3gMU604lmWLEwWN8LJtTLsK /E28pOdLUrF6e1rVdfrq8xslFqvmoXWkHko/IEc2//CTY42skRPokR3dYu3ttQiH bDEAS8UWKgJuhCfsJA2EGFOET3BtAmZ5P6I2Pwf8F4KrDvL0GJEXIu8WUHZ8LCpN BKew8ev6zDCm44FKGCaOS7M28MCLbh1DsYw3UB5DXvZ9tAyixopwSSEPqBI6JRsV bzNuOV0J8tG5qA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:21:20 2025 by rpki-client