This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft File: pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft (raw, json) Hash identifier: L7bev5hmmzDWRGp6wfxO9xvFF7QFQiUo8lPMI6if4U4= Subject key identifier: 90:53:A9:5A:06:97:5E:49:CC:35:DD:4D:49:3C:53:8A:A6:02:3D:08 Authority key identifier: A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C Certificate issuer: /CN=a55004661a09e2675fc1599d4e40027d778c404c Certificate serial: 019AF2095E4D6F5B83304E668C950A9BFC7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft Manifest number: 0892 Signing time: Sat 06 Dec 2025 05:01:31 +0000 Manifest this update: Sat 06 Dec 2025 05:01:31 +0000 Manifest next update: Sun 07 Dec 2025 05:01:31 +0000 Files and hashes: 1: e4pYTgrST_OIh_0Qkxb1VUF6r3Y.roa (hash: CwIOS1Io6ZhDFcyydlZIo2WNdIO73K5UrPWTpvd7EH0=) 2: pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl (hash: R1B106n7H1QcvZRJraimtjYGvCGAG6m9pIz2FeJz/ts=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:5e:4d:6f:5b:83:30:4e:66:8c:95:0a:9b:fc:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a55004661a09e2675fc1599d4e40027d778c404c Validity Not Before: Dec 6 05:01:31 2025 GMT Not After : Dec 7 05:01:31 2025 GMT Subject: CN=9053a95a06975e49cc35dd4d493c538aa6023d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3e:80:56:85:1f:4f:c8:58:46:0b:2d:1c:08: 45:90:c9:88:dd:4b:86:5d:40:0b:e8:16:25:84:2f: bb:ba:34:dd:3c:6e:58:18:4e:77:f3:8d:a9:60:fb: 86:e3:06:1a:24:ed:dd:f6:4c:b8:c7:4e:e0:4a:67: aa:22:76:29:a6:23:dd:d0:8d:13:e6:3f:38:b4:b3: 3b:16:cf:ce:b8:e5:bd:41:6e:33:07:e1:a9:b5:2e: e4:63:7e:a6:b6:05:23:ff:59:d7:b1:28:db:99:eb: e1:3e:9e:b7:d0:44:db:b1:17:b1:5d:ac:9d:4d:ab: c6:ce:02:df:46:34:91:ba:fb:41:14:d7:2d:fa:09: 40:93:ff:24:20:57:29:13:fd:be:3c:c0:9a:a2:db: ae:ae:84:8e:a5:96:56:36:c9:7f:fb:ab:6b:bb:6e: d2:03:13:5f:cc:03:70:c0:5b:df:05:6a:22:e1:ff: fc:80:02:f0:86:4f:8b:57:73:ed:41:19:c0:f0:2f: fd:28:e9:50:65:05:82:af:2e:6c:fd:07:63:80:3d: 6c:ce:81:09:cb:40:3c:f0:7a:c6:a1:aa:a2:4f:b5: 3e:d4:4a:49:9f:5b:be:a5:05:fa:44:d6:53:b6:9d: 16:7d:d1:08:b5:df:bf:64:27:61:ca:80:6a:bc:fc: a4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:53:A9:5A:06:97:5E:49:CC:35:DD:4D:49:3C:53:8A:A6:02:3D:08 X509v3 Authority Key Identifier: keyid:A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:7a:01:f8:eb:de:d6:62:87:af:75:c5:2c:18:92:b3:92:c8: ee:29:20:e0:ea:14:47:54:5d:61:5a:d2:b6:14:ad:51:cd:5f: 41:40:5f:79:44:cf:93:c2:1b:17:d6:ab:d6:ad:cc:1e:f1:93: 9e:40:fc:cf:30:6e:95:f7:a8:b7:f6:48:88:d6:38:17:8b:ed: 92:bb:2f:09:bd:45:75:df:b1:74:6e:5a:62:83:2b:18:2d:22: 13:40:35:d8:a3:9e:ab:f9:31:e5:02:7b:da:a9:52:f5:c6:d9: 50:0d:4e:ad:aa:28:52:17:1c:6a:a5:6b:6f:44:1d:42:0a:c3: 8e:b2:3e:7b:9c:83:50:d5:75:17:32:cd:a9:12:4c:07:62:6d: ef:13:46:b6:8e:d1:46:c3:54:fb:db:a4:c1:3a:a9:75:5d:b9: ad:cc:78:61:e7:09:77:9d:8a:38:b3:5b:bc:93:ae:f3:03:b2: 57:64:48:20:1c:e2:5c:91:96:51:c0:bd:dc:64:e3:44:e2:a4: 56:57:5c:54:6c:dc:2c:70:fa:16:06:76:08:bc:03:a6:9f:26: bf:88:08:00:82:02:56:28:ea:43:d0:ca:69:55:86:57:5a:f9: 84:0e:11:a2:cc:79:a6:10:48:6d:4c:61:8f:d3:76:2b:b5:5e: ad:b6:db:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCV5Nb1uDME5mjJUKm/x7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NTAwNDY2MWEwOWUyNjc1ZmMxNTk5ZDRlNDAwMjdkNzc4 YzQwNGMwHhcNMjUxMjA2MDUwMTMxWhcNMjUxMjA3MDUwMTMxWjAzMTEwLwYDVQQD Eyg5MDUzYTk1YTA2OTc1ZTQ5Y2MzNWRkNGQ0OTNjNTM4YWE2MDIzZDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtj6AVoUfT8hYRgstHAhFkMmI3UuG XUAL6BYlhC+7ujTdPG5YGE53842pYPuG4wYaJO3d9ky4x07gSmeqInYppiPd0I0T 5j84tLM7Fs/OuOW9QW4zB+GptS7kY36mtgUj/1nXsSjbmevhPp630ETbsRexXayd TavGzgLfRjSRuvtBFNct+glAk/8kIFcpE/2+PMCaotuuroSOpZZWNsl/+6tru27S AxNfzANwwFvfBWoi4f/8gALwhk+LV3PtQRnA8C/9KOlQZQWCry5s/QdjgD1szoEJ y0A88HrGoaqiT7U+1EpJn1u+pQX6RNZTtp0WfdEItd+/ZCdhyoBqvPykkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJBTqVoGl15JzDXdTUk8U4qmAj0IMB8GA1UdIwQY MBaAFKVQBGYaCeJnX8FZnU5AAn13jEBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFZBRVpob0o0bWRmd1ZtZFRrQUNmWGVNUUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8yY2ZkZmQtMWIzYi00YWFhLWJkODIt M2Y3OGJjM2RlM2E4LzEvcFZBRVpob0o0bWRmd1ZtZFRrQUNmWGVNUUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8yY2ZkZmQtMWIzYi00YWFhLWJkODItM2Y3OGJjM2RlM2E4 LzEvcFZBRVpob0o0bWRmd1ZtZFRrQUNmWGVNUUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYHoB+Ove 1mKHr3XFLBiSs5LI7ikg4OoUR1RdYVrSthStUc1fQUBfeUTPk8IbF9ar1q3MHvGT nkD8zzBulfeot/ZIiNY4F4vtkrsvCb1Fdd+xdG5aYoMrGC0iE0A12KOeq/kx5QJ7 2qlS9cbZUA1OraooUhccaqVrb0QdQgrDjrI+e5yDUNV1FzLNqRJMB2Jt7xNGto7R RsNU+9ukwTqpdV25rcx4YecJd52KOLNbvJOu8wOyV2RIIBziXJGWUcC93GTjROKk VldcVGzcLHD6FgZ2CLwDpp8mv4gIAIICVijqQ9DKaVWGV1r5hA4Rosx5phBIbUxh j9N2K7Verbbbsg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:50 2025 by rpki-client