This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft File: PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft (raw, json) Hash identifier: MB9r9+jmNfrxhDk7G7oGodhYMPbqsiKDrj9KjzVj9CQ= Subject key identifier: A2:90:BA:4C:63:57:23:58:17:EE:FC:DF:E6:C4:10:0D:F5:55:EE:EB Authority key identifier: 3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78 Certificate issuer: /CN=3d4fb91656dded5a0afaf0710d26a8df636ee078 Certificate serial: 019AF24018F71C2724685E244920AD5265F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft Manifest number: 064D Signing time: Sat 06 Dec 2025 06:01:18 +0000 Manifest this update: Sat 06 Dec 2025 06:01:18 +0000 Manifest next update: Sun 07 Dec 2025 06:01:18 +0000 Files and hashes: 1: PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl (hash: dHf4Mo0rRuRGHYPjR7vz/7SVjUUytJ0d0uNAjm+2PgA=) 2: eSMweySQayVjw4TxrRct4yupfzc.roa (hash: vIdUHA4BTNYVBukw2W8J/Pb08xt6VrAwfBVQVhqYWeQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:18:f7:1c:27:24:68:5e:24:49:20:ad:52:65:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d4fb91656dded5a0afaf0710d26a8df636ee078 Validity Not Before: Dec 6 06:01:18 2025 GMT Not After : Dec 7 06:01:18 2025 GMT Subject: CN=a290ba4c6357235817eefcdfe6c4100df555eeeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:1b:b1:5f:4e:52:cf:46:80:f4:28:b9:18: 60:ef:e4:ad:5b:0e:7f:e5:3c:16:81:7b:a9:30:00: 9e:39:5b:59:4c:02:f7:05:ef:e5:00:27:3e:97:a2: 62:e7:d6:c3:6f:c7:0a:8b:9a:f5:e9:cd:d3:1c:4d: 38:d4:db:fe:a6:56:4f:d7:53:11:ed:ee:33:77:93: 48:e0:e0:63:b3:9a:dd:50:9e:ab:ae:04:22:43:8c: e1:03:10:a0:0d:c8:4a:c2:97:ee:5f:57:16:c3:81: b2:3a:b1:79:fc:4d:06:a0:e3:19:88:24:55:a5:f6: 27:42:82:57:a7:e0:98:d4:07:1c:88:77:5e:67:b1: ba:8c:2f:f3:9e:ae:9f:9b:40:1c:1f:9f:27:71:de: c7:55:54:40:34:10:55:f4:46:ef:90:df:d2:f9:29: 98:73:3f:d6:0a:6e:17:e7:c7:c8:29:34:36:13:29: a0:11:e4:a4:5e:f0:44:37:b6:63:55:b0:fa:cb:3f: 35:09:c3:b4:19:0d:7e:0e:27:4f:45:0a:5e:29:c5: 93:3f:05:34:63:9d:cc:38:b8:2b:38:41:16:17:46: 94:a9:dc:b8:6c:8e:d0:70:dd:0d:20:ec:1c:e7:3c: a0:8d:5b:d0:52:de:29:53:a2:b0:e9:ed:79:99:80: 0c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:90:BA:4C:63:57:23:58:17:EE:FC:DF:E6:C4:10:0D:F5:55:EE:EB X509v3 Authority Key Identifier: keyid:3D:4F:B9:16:56:DD:ED:5A:0A:FA:F0:71:0D:26:A8:DF:63:6E:E0:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PU-5Flbd7VoK-vBxDSao32Nu4Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/92e068-4c9d-4a7e-a92f-52b85cf3fb78/1/PU-5Flbd7VoK-vBxDSao32Nu4Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:6c:6b:cd:aa:90:64:16:38:33:9d:a0:a0:4f:ba:c2:d4:ef: ba:b9:6b:c0:d9:91:de:ca:cd:dc:69:f1:aa:6b:dc:78:1c:82: 17:34:bf:81:7e:f8:17:cc:04:b7:bc:99:bd:a7:11:7d:33:c0: 51:97:0a:bd:c3:3f:dc:a6:0e:08:14:e7:ce:c5:29:b4:85:ad: 1a:8b:b1:be:26:ac:55:d4:97:d3:de:e1:7d:f4:12:26:54:35: dd:d7:92:96:4a:f4:dc:35:11:0e:ec:85:22:92:b0:ef:c2:9e: 71:dc:4b:d0:f2:0d:95:5f:af:4e:fd:2e:c3:c6:f3:4b:26:e3: 2a:60:be:d0:87:2b:2a:25:64:48:c2:aa:68:a7:9c:a0:c7:01: 16:95:d4:e9:de:c4:7d:b7:8c:78:c8:34:a7:53:2e:4d:78:23: c7:84:e5:c6:34:93:df:5c:41:93:a6:bb:c6:92:28:d0:d6:4a: ea:9a:9e:2c:70:ac:7e:7e:55:d0:a5:7f:1d:5f:96:16:77:d5: 4c:1c:94:a9:ba:00:08:31:08:57:56:e0:5b:05:ff:5c:c1:95: 25:4c:8f:d3:fe:89:c1:90:e3:34:34:4a:cb:1b:b0:a0:35:36: 48:ad:b8:43:d1:29:9d:4e:31:cb:3d:59:9e:00:28:a0:43:bf: 4e:0b:13:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQBj3HCckaF4kSSCtUmX5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNGZiOTE2NTZkZGVkNWEwYWZhZjA3MTBkMjZhOGRmNjM2 ZWUwNzgwHhcNMjUxMjA2MDYwMTE4WhcNMjUxMjA3MDYwMTE4WjAzMTEwLwYDVQQD EyhhMjkwYmE0YzYzNTcyMzU4MTdlZWZjZGZlNmM0MTAwZGY1NTVlZWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquAbsV9OUs9GgPQouRhg7+StWw5/ 5TwWgXupMACeOVtZTAL3Be/lACc+l6Ji59bDb8cKi5r16c3THE041Nv+plZP11MR 7e4zd5NI4OBjs5rdUJ6rrgQiQ4zhAxCgDchKwpfuX1cWw4GyOrF5/E0GoOMZiCRV pfYnQoJXp+CY1AcciHdeZ7G6jC/znq6fm0AcH58ncd7HVVRANBBV9EbvkN/S+SmY cz/WCm4X58fIKTQ2EymgEeSkXvBEN7ZjVbD6yz81CcO0GQ1+DidPRQpeKcWTPwU0 Y53MOLgrOEEWF0aUqdy4bI7QcN0NIOwc5zygjVvQUt4pU6Kw6e15mYAMwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKKQukxjVyNYF+783+bEEA31Ve7rMB8GA1UdIwQY MBaAFD1PuRZW3e1aCvrwcQ0mqN9jbuB4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYt NTJiODVjZjNmYjc4LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85MmUwNjgtNGM5ZC00YTdlLWE5MmYtNTJiODVjZjNmYjc4 LzEvUFUtNUZsYmQ3Vm9LLXZCeERTYW8zMk51NEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsmxrzaqQ ZBY4M52goE+6wtTvurlrwNmR3srN3GnxqmvceByCFzS/gX74F8wEt7yZvacRfTPA UZcKvcM/3KYOCBTnzsUptIWtGouxviasVdSX097hffQSJlQ13deSlkr03DURDuyF IpKw78KecdxL0PINlV+vTv0uw8bzSybjKmC+0IcrKiVkSMKqaKecoMcBFpXU6d7E fbeMeMg0p1MuTXgjx4TlxjST31xBk6a7xpIo0NZK6pqeLHCsfn5V0KV/HV+WFnfV TByUqboACDEIV1bgWwX/XMGVJUyP0/6JwZDjNDRKyxuwoDU2SK24Q9EpnU4xyz1Z ngAooEO/TgsTeg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:59 2025 by rpki-client