This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json) Hash identifier: vu5o+xenqBuWXBTdcWjfnxZpob0YmZctnmYazw4GUDA= Subject key identifier: F7:25:5D:9D:F3:CD:57:E2:E1:A7:FD:BF:E5:F6:B0:6C:29:31:8E:90 Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78 Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678 Certificate serial: 019AF35219F46D0452DF2A4D25C5F9F05986 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 11:00:35 +0000 Manifest this update: Sat 06 Dec 2025 11:00:35 +0000 Manifest next update: Sun 07 Dec 2025 11:00:35 +0000 Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=) 2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: zLOE84UXOuf8OJpWCFCXL6nAXpq9CGb2tp7sQGASgCo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:19:f4:6d:04:52:df:2a:4d:25:c5:f9:f0:59:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678 Validity Not Before: Dec 6 11:00:35 2025 GMT Not After : Dec 7 11:00:35 2025 GMT Subject: CN=f7255d9df3cd57e2e1a7fdbfe5f6b06c29318e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8a:15:75:cc:0c:7d:54:0d:cd:dc:a0:f3:a9: 8d:a6:8f:2a:2c:57:39:39:fe:24:ce:a8:7e:dd:85: 62:04:48:8a:b4:45:b3:41:fa:16:e6:19:a1:5d:bd: 07:ed:1d:11:46:44:f8:84:ba:48:78:7d:38:72:0f: 76:ef:98:74:a8:ac:3a:ce:93:24:0e:71:8d:c4:24: c8:28:f5:3d:34:66:e8:b1:14:8e:77:fd:2d:89:0d: e6:13:a0:89:6f:e4:1f:f7:b7:50:24:cf:74:f1:02: 27:f0:a2:4e:c9:ba:81:f8:3b:48:9b:78:51:45:04: ad:d3:ee:10:e5:dc:a3:fd:16:6e:a1:d9:bb:54:b3: ba:bc:64:42:fa:0e:b4:15:95:73:90:ea:a6:b2:4f: 0b:aa:ad:d2:33:87:e6:7c:e5:ee:b0:01:b9:bd:cc: a5:d3:73:d1:7b:cf:a7:e1:d0:b3:6b:35:7d:b1:68: af:10:e5:45:f2:9a:41:99:c9:ef:88:1b:9e:f9:91: 76:f5:7a:ae:6f:48:a6:5c:7a:fa:c8:e6:77:1c:e9: 3b:41:eb:9a:20:f2:0e:1c:2f:77:0d:a5:22:0c:0a: d8:26:10:c4:90:46:57:f1:5d:55:9f:34:39:e2:c7: a6:fc:c4:3f:ed:86:bd:bb:4a:51:a1:79:a0:1b:ba: 5c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:25:5D:9D:F3:CD:57:E2:E1:A7:FD:BF:E5:F6:B0:6C:29:31:8E:90 X509v3 Authority Key Identifier: keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:f9:7d:79:69:32:96:1f:f7:b7:d8:49:07:87:a0:ea:27:8e: a9:7d:9e:14:72:78:ca:f3:30:bf:23:12:b3:d6:33:95:d0:f2: e5:dc:b0:da:41:10:7f:a9:f8:39:20:55:32:5f:a1:5b:68:08: dd:fb:aa:4a:e5:bd:13:d2:a6:d6:e2:37:eb:d2:eb:ee:ee:bd: fd:3b:c3:d8:a8:4a:a3:6c:97:cb:fa:b6:5a:42:82:29:14:2e: b6:05:ea:c1:4c:21:3f:1f:34:7c:c8:ac:7e:4a:a4:1e:67:3f: e4:6e:59:9f:09:0e:a9:cf:46:e6:59:77:0a:d4:89:ed:4e:ff: 2f:c4:f7:74:48:9f:56:d8:f5:19:ee:70:6b:18:4c:24:5a:49: 61:56:c3:3d:30:9f:0a:d5:c2:1f:15:49:fc:49:04:9c:2c:cf: ef:b3:36:a1:77:fb:ce:9e:37:08:0e:9c:63:d5:ae:41:5c:f3: 37:cc:f5:83:90:2e:e2:75:50:65:e5:48:53:23:b4:89:35:0d: 67:bd:66:84:6c:31:a8:8c:9a:98:62:61:64:0e:3b:e1:11:03: a5:18:bc:f0:76:2f:7e:49:50:a3:8f:c0:f0:bc:22:37:e3:b4: 98:3c:c8:20:80:8a:5c:52:03:2e:c3:d0:f7:b1:fc:58:cd:ae: 5e:7e:8b:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUhn0bQRS3ypNJcX58FmGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNDI0ZTI0NWE2NDMyNGE2ODczMWRkMjZmMzBjNjg1YmFh OGE2NzgwHhcNMjUxMjA2MTEwMDM1WhcNMjUxMjA3MTEwMDM1WjAzMTEwLwYDVQQD EyhmNzI1NWQ5ZGYzY2Q1N2UyZTFhN2ZkYmZlNWY2YjA2YzI5MzE4ZTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YoVdcwMfVQNzdyg86mNpo8qLFc5 Of4kzqh+3YViBEiKtEWzQfoW5hmhXb0H7R0RRkT4hLpIeH04cg9275h0qKw6zpMk DnGNxCTIKPU9NGbosRSOd/0tiQ3mE6CJb+Qf97dQJM908QIn8KJOybqB+DtIm3hR RQSt0+4Q5dyj/RZuodm7VLO6vGRC+g60FZVzkOqmsk8Lqq3SM4fmfOXusAG5vcyl 03PRe8+n4dCzazV9sWivEOVF8ppBmcnviBue+ZF29Xqub0imXHr6yOZ3HOk7Qeua IPIOHC93DaUiDArYJhDEkEZX8V1VnzQ54sem/MQ/7Ya9u0pRoXmgG7pcTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPclXZ3zzVfi4af9v+X2sGwpMY6QMB8GA1UdIwQY MBaAFD5CTiRaZDJKaHMd0m8wxoW6qKZ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQt NTRkYTA0NjhmZGFkLzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQtNTRkYTA0NjhmZGFk LzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKfl9eWky lh/3t9hJB4eg6ieOqX2eFHJ4yvMwvyMSs9YzldDy5dyw2kEQf6n4OSBVMl+hW2gI 3fuqSuW9E9Km1uI369Lr7u69/TvD2KhKo2yXy/q2WkKCKRQutgXqwUwhPx80fMis fkqkHmc/5G5ZnwkOqc9G5ll3CtSJ7U7/L8T3dEifVtj1Ge5waxhMJFpJYVbDPTCf CtXCHxVJ/EkEnCzP77M2oXf7zp43CA6cY9WuQVzzN8z1g5Au4nVQZeVIUyO0iTUN Z71mhGwxqIyamGJhZA474REDpRi88HYvfklQo4/A8LwiN+O0mDzIIICKXFIDLsPQ 97H8WM2uXn6Lrw== -----END CERTIFICATE-----Generated at Sat Dec 6 20:05:52 2025 by rpki-client