This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft File: pxzA1YsWrbv3-lwv28Nln5xzx7o.mft (raw, json) Hash identifier: yshd3NWDjRLdL2G/7ZbJmcxN2LADmPU5V6j0ICtAHsM= Subject key identifier: 36:72:39:2F:DD:6B:6B:28:A0:C1:6C:20:63:C0:21:AF:66:F8:B0:1D Authority key identifier: A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA Certificate issuer: /CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba Certificate serial: 019B1682EB851D8B7B314F10BAD5CF2F3FDC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft Manifest number: 154B Signing time: Sat 13 Dec 2025 07:00:37 +0000 Manifest this update: Sat 13 Dec 2025 07:00:37 +0000 Manifest next update: Sun 14 Dec 2025 07:00:37 +0000 Files and hashes: 1: 3nrrtsZJ-IpATR6f6X0fXP8P3Ds.roa (hash: dHLYJp8vBdcpEI62KQkymjAsJXGywGpijB0UQKFJ6p4=) 2: b3rpvlrUc4F3iSwCht-ScFiNdQU.roa (hash: IxL38OMcTHb5h0kfUl/vgqGG9zstz9MS/9BQOovbMEE=) 3: o-IAHNtlfJTe0lrMjkAn3EfKWfQ.roa (hash: 4yZoP16QAdZ03Ygf8PchIKIjGuMurg8hghXjeARQmNw=) 4: pxzA1YsWrbv3-lwv28Nln5xzx7o.crl (hash: 7SbWW5AV3+uYfniHgEi29iS8rSe0xbhk4AtvTF31Wm4=) 5: z9pY0mNZw1275Un36HrGri4KO4o.roa (hash: YWMIyf15z9zL0EObbho/vFT6JF3XUpar4rPteqovYLo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 07:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:16:82:eb:85:1d:8b:7b:31:4f:10:ba:d5:cf:2f:3f:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a71cc0d58b16adbbf7fa5c2fdbc3659f9c73c7ba Validity Not Before: Dec 13 07:00:37 2025 GMT Not After : Dec 14 07:00:37 2025 GMT Subject: CN=3672392fdd6b6b28a0c16c2063c021af66f8b01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e8:b1:19:b6:4e:6c:4b:f0:b3:33:0a:04:9e: 3b:d3:5f:10:8c:10:42:17:16:70:1e:d4:90:cd:4a: 5b:14:34:4c:dc:12:e6:36:58:65:0a:29:ec:45:f2: 1f:d8:89:96:8f:d4:b6:66:e8:a3:b5:2e:1e:dc:f7: e4:c1:5d:d4:ee:fc:c5:4a:bc:3f:93:c8:98:e0:93: cb:69:78:53:10:aa:72:15:f6:15:1a:f4:f1:d1:9a: 52:1a:35:e8:b3:3a:52:1b:7d:a6:6e:53:67:ab:c8: 3d:4e:21:1a:a2:a6:51:23:09:20:3d:e1:a1:e8:21: 6b:05:6c:7c:f5:af:ef:4d:c8:60:d7:f5:cf:37:ff: 20:6d:15:4f:38:39:4f:66:49:95:92:5a:79:13:73: 68:25:9e:1d:30:b1:ed:ac:6a:e4:34:2b:ad:4f:e3: c4:95:32:5f:58:46:cb:56:c9:b6:6d:f1:19:2c:d8: bf:eb:37:c4:01:5c:c6:cb:cd:cd:5e:9e:37:9b:a4: a8:f0:4c:e3:bc:75:92:6d:86:ee:62:be:6f:3a:fd: a4:fd:0d:84:51:04:c8:7e:eb:a8:98:dc:fa:42:93: 1d:a5:09:17:fe:a6:8f:f5:2b:e3:f4:68:4f:f9:10: dc:b1:c3:5e:33:c1:6e:e2:be:81:9f:29:92:41:22: 90:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:72:39:2F:DD:6B:6B:28:A0:C1:6C:20:63:C0:21:AF:66:F8:B0:1D X509v3 Authority Key Identifier: keyid:A7:1C:C0:D5:8B:16:AD:BB:F7:FA:5C:2F:DB:C3:65:9F:9C:73:C7:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pxzA1YsWrbv3-lwv28Nln5xzx7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5f5a60-9026-4b66-baaa-de640d012065/1/pxzA1YsWrbv3-lwv28Nln5xzx7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:42:4e:f1:5b:3a:fd:d0:c6:ba:f5:da:8a:fc:a8:0b:11:f9: 2d:dc:55:4a:ab:35:b5:f9:32:e1:c3:b7:9f:b9:3d:98:00:2a: d0:30:09:88:8f:7f:ad:a3:1f:97:58:69:cf:04:d8:ab:e5:fa: 63:8e:86:94:16:f0:cf:74:17:75:02:4a:8d:0e:8f:60:62:72: 18:1d:d4:27:0d:17:a7:4c:a5:24:48:54:f0:f7:8e:40:35:66: fa:69:38:f6:8c:da:05:5b:5f:52:f6:bb:63:3d:43:36:8a:43: b8:34:42:c5:6a:78:34:2c:d0:fa:bc:fa:25:85:d1:d5:bd:27: 23:fc:23:1e:70:f0:3c:2f:e9:e9:af:0d:45:ea:81:23:28:fa: 62:58:1d:3b:1e:5b:44:55:02:3f:87:50:cf:db:c9:12:69:9a: 5d:09:75:5c:20:ed:68:52:ce:60:cb:1a:0e:02:92:80:a1:1b: 34:f7:b4:b3:e7:ad:10:61:83:38:f8:fe:9b:7c:4f:0a:9e:43: 48:62:b8:bc:d0:33:48:6d:7b:94:cf:5e:52:fc:b7:ef:2d:62: ca:a2:bc:79:7b:eb:42:21:de:cd:7f:0e:6e:06:3c:86:98:56: 12:97:76:e3:63:af:54:29:f2:e7:32:91:66:95:f7:10:ac:4a: 72:9d:11:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsWguuFHYt7MU8QutXPLz/cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3MWNjMGQ1OGIxNmFkYmJmN2ZhNWMyZmRiYzM2NTlmOWM3 M2M3YmEwHhcNMjUxMjEzMDcwMDM3WhcNMjUxMjE0MDcwMDM3WjAzMTEwLwYDVQQD EygzNjcyMzkyZmRkNmI2YjI4YTBjMTZjMjA2M2MwMjFhZjY2ZjhiMDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuixGbZObEvwszMKBJ47018QjBBC FxZwHtSQzUpbFDRM3BLmNlhlCinsRfIf2ImWj9S2ZuijtS4e3PfkwV3U7vzFSrw/ k8iY4JPLaXhTEKpyFfYVGvTx0ZpSGjXoszpSG32mblNnq8g9TiEaoqZRIwkgPeGh 6CFrBWx89a/vTchg1/XPN/8gbRVPODlPZkmVklp5E3NoJZ4dMLHtrGrkNCutT+PE lTJfWEbLVsm2bfEZLNi/6zfEAVzGy83NXp43m6So8EzjvHWSbYbuYr5vOv2k/Q2E UQTIfuuomNz6QpMdpQkX/qaP9Svj9GhP+RDcscNeM8Fu4r6BnymSQSKQvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDZyOS/da2sooMFsIGPAIa9m+LAdMB8GA1UdIwQY MBaAFKccwNWLFq279/pcL9vDZZ+cc8e6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHh6QTFZc1dyYnYzLWx3djI4TmxuNXh6eDdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS81ZjVhNjAtOTAyNi00YjY2LWJhYWEt ZGU2NDBkMDEyMDY1LzEvcHh6QTFZc1dyYnYzLWx3djI4TmxuNXh6eDdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS81ZjVhNjAtOTAyNi00YjY2LWJhYWEtZGU2NDBkMDEyMDY1 LzEvcHh6QTFZc1dyYnYzLWx3djI4TmxuNXh6eDdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAekJO8Vs6 /dDGuvXaivyoCxH5LdxVSqs1tfky4cO3n7k9mAAq0DAJiI9/raMfl1hpzwTYq+X6 Y46GlBbwz3QXdQJKjQ6PYGJyGB3UJw0Xp0ylJEhU8PeOQDVm+mk49ozaBVtfUva7 Yz1DNopDuDRCxWp4NCzQ+rz6JYXR1b0nI/wjHnDwPC/p6a8NReqBIyj6YlgdOx5b RFUCP4dQz9vJEmmaXQl1XCDtaFLOYMsaDgKSgKEbNPe0s+etEGGDOPj+m3xPCp5D SGK4vNAzSG17lM9eUvy37y1iyqK8eXvrQiHezX8ObgY8hphWEpd242OvVCny5zKR ZpX3EKxKcp0R6A== -----END CERTIFICATE-----Generated at Sat Dec 13 12:53:05 2025 by rpki-client