This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: jkbuyuO352QEh4e051JieL90a1oUEndS/QfIar1Gclw= Subject key identifier: 6D:80:C5:61:2A:72:8D:C7:AE:D3:05:CB:3F:1C:96:90:74:77:CB:52 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019AF12E30615A2861F498E0183D542749B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 152A Signing time: Sat 06 Dec 2025 01:02:07 +0000 Manifest this update: Sat 06 Dec 2025 01:02:07 +0000 Manifest next update: Sun 07 Dec 2025 01:02:07 +0000 Files and hashes: 1: 4_O_iIpyAI9RehObq-pOpadb0Oc.roa (hash: yk0faU3G873g+gLSQoGVoe7NYYyCWEaHzHI6ZIk9UdY=) 2: 7loUqY3SMQ476AvW8cBj_oE5D0w.roa (hash: 9ZWiK7Ya0oQoJXKuXssFNZZZ1jcO9WaxjH/2eSSyYlw=) 3: 9qXJnie35SdfH2J2EgodKBngTzA.roa (hash: jwDaD5ZgcucjZdcdoISWLpA3Zdrcncz7G1jWAlDHN4k=) 4: _K6pKy4r_yxn6KKjdedN6hKQIRc.roa (hash: Fa8PiwPRQ/Nbg/tMa4sLtAZckTKFYG8hQ2oLAm3z+YE=) 5: eeGo9wragRSvkLaXijzUVv6g1UQ.roa (hash: f0fCuBwmYqh4E9JpX2SXK0IGaTdlCqkrpCwPLzLM7U8=) 6: f_BAmJDU6YD_W-jGGFTEv2Fs7Ak.roa (hash: PaLYZLAv0TrU+Bsc9bxTmK6PnOfA5lCBIqcJSl9Ay7o=) 7: h0Rq-64YdH2Rhgx8VqQPxecaOJk.roa (hash: +OMPPDfPiGbQBs5xm10WtKzO2XvkhzUC6VL8TFg0R8M=) 8: p7CrYRPqjfqg5-SpOOWgZYcH7pg.roa (hash: VxeYJO6+oO8JTtkcjhdpm2dOlDG12rU/cm/baKhjYqs=) 9: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: V0CIa0NHX2rxDKdG4VS4pcqAg71qX3MM9hGfhOqwhH0=) 10: vm5i6AVzmYzAz9qPwbnD4VrLfVA.roa (hash: VDQ8oeDiLzJU7KaKEM2DHEI37PMjg/GP0JQI1knZDEc=) 11: yj9vr2VnE10QnxtDsz-n2QVr0i4.roa (hash: oY4OEejijqth0Kn/mWSI257F9MR4bW3yyLCjseFCr/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:30:61:5a:28:61:f4:98:e0:18:3d:54:27:49:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Dec 6 01:02:07 2025 GMT Not After : Dec 7 01:02:07 2025 GMT Subject: CN=6d80c5612a728dc7aed305cb3f1c96907477cb52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b8:b0:2e:01:0f:7d:1d:52:9e:52:7b:85:9a: 5a:b8:c1:00:a3:50:75:fa:37:b1:74:6d:9c:f7:56: 66:2e:21:6a:10:c5:3f:45:a0:c6:dd:ae:c1:8f:dc: fa:73:67:cc:2e:91:4a:f7:61:18:f0:a7:4b:70:4c: 94:09:c3:a4:f9:eb:9e:9f:85:32:30:92:31:57:97: 26:db:59:b2:1f:a3:a9:2a:4c:8a:bf:34:a4:5a:cf: c4:42:58:29:0c:f2:0c:00:c8:a0:1f:d1:1d:5c:fe: bf:77:97:35:43:e8:56:44:97:0c:35:c1:d6:7f:0d: 7a:46:cf:da:a3:de:9f:52:26:ff:4b:fe:8b:84:00: 6d:42:c8:62:3c:26:f0:46:05:ec:fc:0f:f2:0b:90: 66:ac:52:06:a6:23:17:72:70:03:a7:9c:f1:5e:6b: 3d:60:6e:b1:57:4f:21:19:db:42:00:78:c1:fe:14: 83:29:ee:eb:d5:4b:82:1e:9c:1d:47:fc:d7:50:7f: b3:95:ea:21:dc:41:86:4d:81:1f:57:92:02:01:8c: 7b:58:c0:50:38:a1:54:4b:33:a3:c9:86:7c:88:a1: 38:1c:d2:88:d2:ba:57:d7:17:6c:f7:fe:a6:eb:ff: b0:99:ca:9f:e9:86:e3:70:b7:b4:fa:8b:fa:9c:db: f2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:80:C5:61:2A:72:8D:C7:AE:D3:05:CB:3F:1C:96:90:74:77:CB:52 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:9f:cf:70:6a:d4:ff:dd:54:93:25:2f:8f:fd:5e:c1:10:d0: 1a:ca:5d:71:a0:c2:77:52:f1:39:25:33:cc:de:ec:f7:e1:24: 92:60:cb:bc:13:bf:bb:b5:d3:2d:1f:22:37:5d:e4:8f:4f:52: de:84:5d:00:21:2e:b0:35:5e:6f:7a:8b:b4:f2:1f:81:bd:ce: 2f:84:70:31:aa:59:b3:12:d7:69:75:8e:7b:79:00:07:b8:e0: cb:2a:00:34:03:17:8a:72:e1:06:e2:f9:78:ea:f7:2d:59:07: 52:8a:08:c9:97:54:84:a1:f8:2d:0a:69:4f:fe:f2:d1:d6:44: 9d:ba:46:10:50:60:16:66:73:19:0b:8b:46:aa:f4:34:d6:51: f6:52:bb:d9:ed:6b:62:5b:87:ea:9a:04:1d:4e:ca:cc:01:bb: 32:e6:66:84:69:fd:77:68:02:87:ff:0a:57:59:55:51:90:ee: ad:d1:0a:2a:44:6a:cf:ce:c4:31:2e:4f:04:2d:fb:29:00:a2: db:74:b6:c5:26:77:d6:4d:52:08:bd:92:94:ce:eb:3a:5a:72: 02:69:1d:e8:3d:a1:bf:59:d1:b2:e7:3a:b0:f9:df:8a:98:b6: e9:f5:0c:68:1d:73:f9:8f:2f:2f:ed:7f:9b:85:b9:0b:f1:d0: fc:77:b2:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLjBhWihh9JjgGD1UJ0mxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjUxMjA2MDEwMjA3WhcNMjUxMjA3MDEwMjA3WjAzMTEwLwYDVQQD Eyg2ZDgwYzU2MTJhNzI4ZGM3YWVkMzA1Y2IzZjFjOTY5MDc0NzdjYjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7iwLgEPfR1SnlJ7hZpauMEAo1B1 +jexdG2c91ZmLiFqEMU/RaDG3a7Bj9z6c2fMLpFK92EY8KdLcEyUCcOk+euen4Uy MJIxV5cm21myH6OpKkyKvzSkWs/EQlgpDPIMAMigH9EdXP6/d5c1Q+hWRJcMNcHW fw16Rs/ao96fUib/S/6LhABtQshiPCbwRgXs/A/yC5BmrFIGpiMXcnADp5zxXms9 YG6xV08hGdtCAHjB/hSDKe7r1UuCHpwdR/zXUH+zleoh3EGGTYEfV5ICAYx7WMBQ OKFUSzOjyYZ8iKE4HNKI0rpX1xds9/6m6/+wmcqf6YbjcLe0+ov6nNvyhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG2AxWEqco3HrtMFyz8clpB0d8tSMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUZ/PcGrU /91UkyUvj/1ewRDQGspdcaDCd1LxOSUzzN7s9+EkkmDLvBO/u7XTLR8iN13kj09S 3oRdACEusDVeb3qLtPIfgb3OL4RwMapZsxLXaXWOe3kAB7jgyyoANAMXinLhBuL5 eOr3LVkHUooIyZdUhKH4LQppT/7y0dZEnbpGEFBgFmZzGQuLRqr0NNZR9lK72e1r YluH6poEHU7KzAG7MuZmhGn9d2gCh/8KV1lVUZDurdEKKkRqz87EMS5PBC37KQCi 23S2xSZ31k1SCL2SlM7rOlpyAmkd6D2hv1nRsuc6sPnfipi26fUMaB1z+Y8vL+1/ m4W5C/HQ/Heyaw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:19 2025 by rpki-client