This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft File: pRA1bcClIYlc5h-FSV4G2vehKzs.mft (raw, json) Hash identifier: +Pf79Y1sg9kjhiWLjiMrJzNnSG1J1q47X3Np9oBWEgs= Subject key identifier: E1:72:36:43:39:DA:E1:14:8D:5D:E1:4A:06:E6:47:5D:4D:FB:EF:D1 Authority key identifier: A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B Certificate issuer: /CN=a510356dc0a521895ce61f85495e06daf7a12b3b Certificate serial: 019B33B2152A47AA221D5363A30DEB523D6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft Manifest number: 1786 Signing time: Thu 18 Dec 2025 23:01:07 +0000 Manifest this update: Thu 18 Dec 2025 23:01:07 +0000 Manifest next update: Fri 19 Dec 2025 23:01:07 +0000 Files and hashes: 1: DZzf4gixVG1v_XBOTEdiJTCnpgc.roa (hash: EKgVMjgzgQW/dE4uPulEkrnDhBOvFfmwxhJ1zs6dJk4=) 2: PyDzr8WmYcRo05FGb5UzcWZdKls.roa (hash: IYIt11a1r2unTfjZQuVOMhykI3XsxsOfurke5JUMHZc=) 3: pRA1bcClIYlc5h-FSV4G2vehKzs.crl (hash: 4zEJbgL26rG5GnhE2G+XU1B4/Y4j5vMU0Eb9sLG6y0o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:15:2a:47:aa:22:1d:53:63:a3:0d:eb:52:3d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a510356dc0a521895ce61f85495e06daf7a12b3b Validity Not Before: Dec 18 23:01:07 2025 GMT Not After : Dec 19 23:01:07 2025 GMT Subject: CN=e172364339dae1148d5de14a06e6475d4dfbefd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ab:67:f1:3a:8d:98:44:53:89:f9:aa:ff:de: bc:cc:40:a0:48:f5:e6:88:a5:b3:6f:ab:21:b4:a4: a9:e0:5d:d8:ef:0c:f6:45:c1:34:40:01:e9:bb:c2: 9e:0b:dc:32:c5:c1:03:4e:f4:89:18:0f:f1:74:d8: 80:55:fd:7b:c8:27:cd:92:63:bc:72:19:71:d3:07: 65:46:a1:44:c1:9e:4e:71:08:d0:b6:f1:57:2e:cf: c1:b4:99:fc:f4:52:6d:53:b8:c1:ab:9e:68:a8:a2: 61:01:c5:51:fc:22:8b:01:08:a0:31:0b:e6:72:c7: fc:6f:45:ec:64:1a:03:ec:2c:1b:23:2f:d7:29:6d: 17:c3:e5:d3:82:ba:2f:0e:fe:60:ab:49:d7:69:d1: 9f:e5:c2:3a:c4:1a:1f:28:03:7e:46:2d:c9:74:38: 48:10:71:d6:d7:3e:f1:2b:b9:86:70:27:aa:b8:6e: 88:e9:e6:71:e7:46:3d:94:db:38:c2:21:cb:1f:98: 07:e2:3c:2f:52:66:7e:b2:bf:25:76:c1:77:7b:fc: 6f:de:b9:dd:a7:74:97:c5:60:de:aa:0e:74:5c:de: 8c:1c:c0:f5:6e:7a:b7:33:38:12:52:da:18:34:37: 6e:e4:30:d8:f1:ec:8b:40:b9:cf:ff:5c:fd:ac:e6: f2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:72:36:43:39:DA:E1:14:8D:5D:E1:4A:06:E6:47:5D:4D:FB:EF:D1 X509v3 Authority Key Identifier: keyid:A5:10:35:6D:C0:A5:21:89:5C:E6:1F:85:49:5E:06:DA:F7:A1:2B:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pRA1bcClIYlc5h-FSV4G2vehKzs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/3c7c7c-4326-4184-8356-01182f840789/1/pRA1bcClIYlc5h-FSV4G2vehKzs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:1f:3e:08:6b:fc:ee:66:ac:39:68:e5:c8:8a:db:c6:0b:67: 26:76:a8:34:a3:be:e2:03:02:98:6a:47:c8:ce:5e:92:3b:ec: 22:d7:5e:4b:f6:32:ca:10:8a:07:63:f4:05:4e:a6:da:05:0b: d8:fb:7f:ab:91:07:a0:1e:82:40:66:77:96:fa:e6:1c:5c:7d: 31:42:3b:5a:9b:ac:13:72:bf:33:98:62:76:60:28:0d:e0:79: 41:73:8e:3f:68:97:8e:91:00:e1:86:ae:71:1a:6b:a1:ef:ed: c9:c8:c0:fb:98:0a:05:e5:68:36:a4:76:9f:a4:5c:31:40:93: ab:fb:1f:36:b1:32:97:eb:0d:e1:92:45:5e:09:8a:95:75:40: f9:23:ef:8b:ac:af:1c:6f:d4:2a:84:7d:01:b4:60:94:36:c5: 08:9e:cb:9b:1a:17:2d:13:d8:53:86:da:62:73:c0:47:04:a2: 99:bf:b2:f4:fe:02:eb:bc:4b:98:a3:8f:00:aa:78:f7:d4:8b: 32:11:1c:37:85:00:e6:99:2b:b5:14:94:e8:c6:53:52:c1:82: ee:54:24:91:48:97:c8:46:9b:25:12:51:89:5a:13:6f:02:ab: 23:7d:f9:f4:ad:a4:da:3f:4d:44:7c:69:6d:a6:f8:7b:19:47: d3:40:ab:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszshUqR6oiHVNjow3rUj1uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1MTAzNTZkYzBhNTIxODk1Y2U2MWY4NTQ5NWUwNmRhZjdh MTJiM2IwHhcNMjUxMjE4MjMwMTA3WhcNMjUxMjE5MjMwMTA3WjAzMTEwLwYDVQQD EyhlMTcyMzY0MzM5ZGFlMTE0OGQ1ZGUxNGEwNmU2NDc1ZDRkZmJlZmQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKtn8TqNmERTifmq/968zECgSPXm iKWzb6shtKSp4F3Y7wz2RcE0QAHpu8KeC9wyxcEDTvSJGA/xdNiAVf17yCfNkmO8 chlx0wdlRqFEwZ5OcQjQtvFXLs/BtJn89FJtU7jBq55oqKJhAcVR/CKLAQigMQvm csf8b0XsZBoD7CwbIy/XKW0Xw+XTgrovDv5gq0nXadGf5cI6xBofKAN+Ri3JdDhI EHHW1z7xK7mGcCequG6I6eZx50Y9lNs4wiHLH5gH4jwvUmZ+sr8ldsF3e/xv3rnd p3SXxWDeqg50XN6MHMD1bnq3MzgSUtoYNDdu5DDY8eyLQLnP/1z9rObygQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOFyNkM52uEUjV3hSgbmR11N++/RMB8GA1UdIwQY MBaAFKUQNW3ApSGJXOYfhUleBtr3oSs7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFJBMWJjQ2xJWWxjNWgtRlNWNEcydmVoS3pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8zYzdjN2MtNDMyNi00MTg0LTgzNTYt MDExODJmODQwNzg5LzEvcFJBMWJjQ2xJWWxjNWgtRlNWNEcydmVoS3pzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8zYzdjN2MtNDMyNi00MTg0LTgzNTYtMDExODJmODQwNzg5 LzEvcFJBMWJjQ2xJWWxjNWgtRlNWNEcydmVoS3pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATx8+CGv8 7masOWjlyIrbxgtnJnaoNKO+4gMCmGpHyM5ekjvsItdeS/YyyhCKB2P0BU6m2gUL 2Pt/q5EHoB6CQGZ3lvrmHFx9MUI7WpusE3K/M5hidmAoDeB5QXOOP2iXjpEA4Yau cRproe/tycjA+5gKBeVoNqR2n6RcMUCTq/sfNrEyl+sN4ZJFXgmKlXVA+SPvi6yv HG/UKoR9AbRglDbFCJ7LmxoXLRPYU4baYnPARwSimb+y9P4C67xLmKOPAKp499SL MhEcN4UA5pkrtRSU6MZTUsGC7lQkkUiXyEabJRJRiVoTbwKrI3359K2k2j9NRHxp bab4exlH00CrKg== -----END CERTIFICATE-----Generated at Fri Dec 19 01:54:33 2025 by rpki-client