This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json) Hash identifier: DF9gTKPlghiuU4UnvooCvl5xZD1RhiXfxNoxU0cXwxw= Subject key identifier: 6D:66:42:79:58:35:D9:56:46:05:80:34:55:8A:B4:E6:F1:1C:6E:66 Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6 Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6 Certificate serial: 019B5976D08F51CDD7A9AB033D37299417E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft Manifest number: 119B Signing time: Fri 26 Dec 2025 07:01:57 +0000 Manifest this update: Fri 26 Dec 2025 07:01:57 +0000 Manifest next update: Sat 27 Dec 2025 07:01:57 +0000 Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: Vqm8IZDjHV1vSORvXiAZEvJSz2KkOlaXwrhYHTd9aNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:d0:8f:51:cd:d7:a9:ab:03:3d:37:29:94:17:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6 Validity Not Before: Dec 26 07:01:57 2025 GMT Not After : Dec 27 07:01:57 2025 GMT Subject: CN=6d6642795835d95646058034558ab4e6f11c6e66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:70:b7:c2:70:66:ab:e7:46:0f:ab:86:e0:2f: 7c:37:3c:41:1f:b4:87:a0:1e:9e:35:ed:8e:88:7f: 9b:c2:c3:40:55:63:7e:f5:33:ad:11:76:ce:35:4d: cf:88:67:7d:d4:2b:99:79:6f:b8:b0:5f:94:2b:3c: 8a:f7:d8:45:c9:e3:c0:33:83:60:83:6e:0c:21:b2: 4b:ce:70:24:28:47:df:44:96:6e:ae:15:fc:ee:e1: da:28:88:d1:57:9e:70:dd:f3:6c:ff:0b:6e:2b:98: a0:7d:e2:a7:18:05:ea:c3:3e:8e:a0:89:1d:b1:c2: f5:de:a8:ab:d9:60:71:f5:fb:08:5d:2d:f0:d4:4a: 97:4a:ef:6a:77:7d:8d:f1:fc:81:64:7c:0b:e0:37: 52:93:1e:34:cd:d9:a9:2d:c8:be:82:ac:6b:4f:22: dd:22:6c:1c:35:6b:39:bf:0f:82:a9:26:47:ae:72: 59:34:ad:4c:05:e1:28:3a:54:35:c3:fc:21:fa:57: 3a:4f:1b:32:ee:f9:de:c7:ea:a2:66:0e:7b:a6:0a: 2e:c0:85:96:c4:ec:b6:68:fc:9a:d5:2f:b3:c1:38: 74:7f:2d:2b:70:c3:e7:38:ca:ed:fa:1c:b0:31:14: 7f:4c:b7:b6:d5:02:33:8c:73:d4:95:06:5e:e0:96: 3d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:66:42:79:58:35:D9:56:46:05:80:34:55:8A:B4:E6:F1:1C:6E:66 X509v3 Authority Key Identifier: keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:70:6f:6c:74:58:7f:9e:b7:f5:22:50:57:0a:ea:37:ff:a8: 31:0c:96:27:22:9d:d0:27:00:25:e9:36:a6:28:da:a2:d8:41: c6:44:2c:69:1d:0f:4c:a1:a8:de:f1:df:f5:9b:5b:7b:fa:83: 52:7a:41:ee:85:86:f1:c8:83:80:6f:d5:4d:e1:92:ca:6a:04: 6b:d0:2e:18:fb:06:03:9a:fa:c8:ae:21:a4:a6:1c:66:12:d3: de:9b:77:8f:63:9b:64:b0:e3:86:3e:5a:e5:1b:00:95:22:bd: 60:c4:8a:d0:c3:3d:42:35:00:0d:87:59:69:d5:19:9d:4d:3e: 26:93:a1:74:93:06:0e:b3:f9:67:0f:dc:35:83:77:07:3b:f6: 0a:4d:d0:66:4a:67:ff:ab:ad:5d:73:58:3b:ee:0c:8f:63:96: 4e:db:09:07:4c:bc:83:bb:c0:6a:2f:25:5c:b0:01:b4:10:41: e0:e9:8a:55:f4:44:f1:c8:b3:26:7f:13:91:cd:20:e2:9a:d0: 10:8a:3f:e3:14:b2:a1:f1:01:7a:e2:32:5c:da:62:73:9d:0f: 1f:51:47:84:f4:1c:ae:19:22:7a:c7:7c:56:ac:c9:ff:98:0a: 72:24:af:e9:38:f1:88:f4:cf:cd:3c:2a:a5:36:19:79:f8:af: 2e:fc:1a:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdtCPUc3XqasDPTcplBfoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjNDFlYTQ0MTc4YTcwMmM1MDcwMDAwMjNkMTRhOWY5YzQ3 MjYwZTYwHhcNMjUxMjI2MDcwMTU3WhcNMjUxMjI3MDcwMTU3WjAzMTEwLwYDVQQD Eyg2ZDY2NDI3OTU4MzVkOTU2NDYwNTgwMzQ1NThhYjRlNmYxMWM2ZTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3C3wnBmq+dGD6uG4C98NzxBH7SH oB6eNe2OiH+bwsNAVWN+9TOtEXbONU3PiGd91CuZeW+4sF+UKzyK99hFyePAM4Ng g24MIbJLznAkKEffRJZurhX87uHaKIjRV55w3fNs/wtuK5igfeKnGAXqwz6OoIkd scL13qir2WBx9fsIXS3w1EqXSu9qd32N8fyBZHwL4DdSkx40zdmpLci+gqxrTyLd ImwcNWs5vw+CqSZHrnJZNK1MBeEoOlQ1w/wh+lc6Txsy7vnex+qiZg57pgouwIWW xOy2aPya1S+zwTh0fy0rcMPnOMrt+hywMRR/TLe21QIzjHPUlQZe4JY9HwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG1mQnlYNdlWRgWANFWKtObxHG5mMB8GA1UdIwQY MBaAFDxB6kQXinAsUHAAAj0UqfnEcmDmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEVIcVJCZUtjQ3hRY0FBQ1BSU3AtY1J5WU9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8xNDQ5NDEtMTM1NC00ODY5LWFhYzIt NzQ3MjUxZTQ5MjQyLzEvUEVIcVJCZUtjQ3hRY0FBQ1BSU3AtY1J5WU9ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8xNDQ5NDEtMTM1NC00ODY5LWFhYzItNzQ3MjUxZTQ5MjQy LzEvUEVIcVJCZUtjQ3hRY0FBQ1BSU3AtY1J5WU9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIHBvbHRY f5639SJQVwrqN/+oMQyWJyKd0CcAJek2pijaothBxkQsaR0PTKGo3vHf9Ztbe/qD UnpB7oWG8ciDgG/VTeGSymoEa9AuGPsGA5r6yK4hpKYcZhLT3pt3j2ObZLDjhj5a 5RsAlSK9YMSK0MM9QjUADYdZadUZnU0+JpOhdJMGDrP5Zw/cNYN3Bzv2Ck3QZkpn /6utXXNYO+4Mj2OWTtsJB0y8g7vAai8lXLABtBBB4OmKVfRE8cizJn8Tkc0g4prQ EIo/4xSyofEBeuIyXNpic50PH1FHhPQcrhkiesd8VqzJ/5gKciSv6TjxiPTPzTwq pTYZefivLvwazQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:08:50 2025 by rpki-client