This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft File: PYr-wXpBs52_aQE-yhZ732Oqhl0.mft (raw, json) Hash identifier: I5vGlvEYD/QZtGB9oqwH7Y5GicQspMzekfz5qPAHrIQ= Subject key identifier: 93:E7:38:31:34:54:E6:DC:51:0C:BA:B5:2F:A6:89:DB:67:04:D3:B8 Authority key identifier: 3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D Certificate issuer: /CN=3d8afec17a41b39dbf69013eca167bdf63aa865d Certificate serial: 019B5976BB23ADC6FC6A580D3B43A38EDB59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft Manifest number: 0896 Signing time: Fri 26 Dec 2025 07:01:51 +0000 Manifest this update: Fri 26 Dec 2025 07:01:51 +0000 Manifest next update: Sat 27 Dec 2025 07:01:51 +0000 Files and hashes: 1: PYr-wXpBs52_aQE-yhZ732Oqhl0.crl (hash: O9usrOz8Ce4PfnxAPrtQbzI7KYWen0b2119Kt6YzMNI=) 2: jrw3uqdkA6aKRrYyLdhJsdQJmwE.roa (hash: E/ICIdLuVq2VYN9ruBUIoxT9BQwq5xAlmJn8kVZHVXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:bb:23:ad:c6:fc:6a:58:0d:3b:43:a3:8e:db:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d8afec17a41b39dbf69013eca167bdf63aa865d Validity Not Before: Dec 26 07:01:51 2025 GMT Not After : Dec 27 07:01:51 2025 GMT Subject: CN=93e738313454e6dc510cbab52fa689db6704d3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c7:c4:98:50:38:ff:b6:89:38:e1:0c:fa:7a: 25:85:0b:85:75:1b:9e:a5:e6:54:d7:ff:9a:5c:24: 32:92:f2:b3:c2:29:e8:4a:eb:7c:6d:0b:fc:e0:6a: 45:8c:5f:1d:bb:3b:64:4c:32:44:d4:24:4d:7d:4b: 86:da:15:74:85:c7:3c:be:74:68:50:a4:35:e9:6f: 6a:48:cd:56:ac:58:76:94:f3:47:58:77:32:e9:6b: d1:27:82:f6:0f:2e:ae:6b:ca:47:86:3b:0d:71:f8: ea:25:d1:1c:3a:97:df:22:4d:4d:06:df:ec:d1:18: b5:10:6c:4b:d8:3e:5e:7f:e0:b0:49:1a:bc:84:9e: 0e:ae:10:55:f9:ae:a8:6a:11:25:22:cf:a0:36:c2: 05:1c:9a:9e:e1:f9:7d:2f:bc:e9:58:85:3f:c1:5f: 2d:bf:16:87:62:eb:8b:cc:8f:9d:cc:a2:49:bd:92: 98:2c:10:db:28:85:ae:09:94:01:e4:7e:e4:a0:9e: 3e:7a:ae:0a:0e:86:32:bc:af:8b:64:c5:93:39:17: 2f:7f:0e:75:d6:45:55:c5:b0:3a:dd:8f:d1:a8:3e: e8:6b:e6:1f:27:c6:43:1d:61:92:a0:37:7f:d1:fc: 5b:4d:b4:2b:1f:bd:b6:ce:8c:42:4f:23:dc:78:de: d1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E7:38:31:34:54:E6:DC:51:0C:BA:B5:2F:A6:89:DB:67:04:D3:B8 X509v3 Authority Key Identifier: keyid:3D:8A:FE:C1:7A:41:B3:9D:BF:69:01:3E:CA:16:7B:DF:63:AA:86:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYr-wXpBs52_aQE-yhZ732Oqhl0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/8bcaba-38ad-4051-b414-94d37e9595c1/1/PYr-wXpBs52_aQE-yhZ732Oqhl0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:2a:c1:39:84:23:63:c1:be:f0:46:43:d0:6c:eb:af:bc:9a: f5:19:a7:12:5a:f0:93:0c:86:41:f2:92:96:04:7a:6f:c5:bc: 82:69:43:b2:ae:00:42:f3:14:6e:87:06:8d:1d:ef:da:c2:63: d5:7c:f9:5b:69:b9:2a:46:b1:f0:fc:67:90:de:7d:bc:1f:1c: 83:cf:bf:fb:28:e9:51:86:2c:dd:a2:5f:e7:08:75:a9:74:81: c5:2c:5b:0d:4e:06:38:a0:e0:6a:2f:ff:fb:dc:b8:7f:df:4b: 2d:06:75:0d:06:90:8e:3d:cf:07:00:b9:6b:72:3d:7e:20:1c: 49:1c:60:98:eb:1f:e0:68:f1:5f:c5:3e:20:d4:da:fa:bb:ba: 7b:18:fc:8f:be:31:86:de:c8:4d:fb:dc:be:b5:04:f3:b4:12: 01:41:37:db:47:da:99:00:08:a5:02:7c:bf:6a:88:41:18:fa: 11:95:6e:5c:f1:69:b5:66:58:18:5c:a5:92:46:4d:3a:e3:6d: 15:f3:d9:d5:b8:48:f5:b3:c2:c3:3d:69:83:28:2b:15:c3:4c: b0:b3:ce:f6:b2:f4:06:b2:bf:7e:ff:ba:d5:39:2b:c9:8e:88: d2:dc:3d:0a:24:c0:c9:4e:08:90:35:f1:af:d5:5c:41:75:1c: 67:73:4f:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdrsjrcb8algNO0OjjttZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkOGFmZWMxN2E0MWIzOWRiZjY5MDEzZWNhMTY3YmRmNjNh YTg2NWQwHhcNMjUxMjI2MDcwMTUxWhcNMjUxMjI3MDcwMTUxWjAzMTEwLwYDVQQD Eyg5M2U3MzgzMTM0NTRlNmRjNTEwY2JhYjUyZmE2ODlkYjY3MDRkM2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsfEmFA4/7aJOOEM+nolhQuFdRue peZU1/+aXCQykvKzwinoSut8bQv84GpFjF8duztkTDJE1CRNfUuG2hV0hcc8vnRo UKQ16W9qSM1WrFh2lPNHWHcy6WvRJ4L2Dy6ua8pHhjsNcfjqJdEcOpffIk1NBt/s 0Ri1EGxL2D5ef+CwSRq8hJ4OrhBV+a6oahElIs+gNsIFHJqe4fl9L7zpWIU/wV8t vxaHYuuLzI+dzKJJvZKYLBDbKIWuCZQB5H7koJ4+eq4KDoYyvK+LZMWTORcvfw51 1kVVxbA63Y/RqD7oa+YfJ8ZDHWGSoDd/0fxbTbQrH722zoxCTyPceN7RRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJPnODE0VObcUQy6tS+midtnBNO4MB8GA1UdIwQY MBaAFD2K/sF6QbOdv2kBPsoWe99jqoZdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFlyLXdYcEJzNTJfYVFFLXloWjczMk9xaGwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy84YmNhYmEtMzhhZC00MDUxLWI0MTQt OTRkMzdlOTU5NWMxLzEvUFlyLXdYcEJzNTJfYVFFLXloWjczMk9xaGwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy84YmNhYmEtMzhhZC00MDUxLWI0MTQtOTRkMzdlOTU5NWMx LzEvUFlyLXdYcEJzNTJfYVFFLXloWjczMk9xaGwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcCrBOYQj Y8G+8EZD0Gzrr7ya9RmnElrwkwyGQfKSlgR6b8W8gmlDsq4AQvMUbocGjR3v2sJj 1Xz5W2m5Kkax8PxnkN59vB8cg8+/+yjpUYYs3aJf5wh1qXSBxSxbDU4GOKDgai// +9y4f99LLQZ1DQaQjj3PBwC5a3I9fiAcSRxgmOsf4GjxX8U+INTa+ru6exj8j74x ht7ITfvcvrUE87QSAUE320famQAIpQJ8v2qIQRj6EZVuXPFptWZYGFylkkZNOuNt FfPZ1bhI9bPCwz1pgygrFcNMsLPO9rL0BrK/fv+61TkryY6I0tw9CiTAyU4IkDXx r9VcQXUcZ3NPkg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:53 2025 by rpki-client