This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json) Hash identifier: tpi3KAlz4kBEuyEFdxsxvW2U594Kqfld+HhP26WrshQ= Subject key identifier: 81:33:91:B5:65:EC:A1:7A:E4:F2:35:43:90:97:CB:59:4C:D7:2A:04 Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c Certificate serial: 019B5A1A5908E634D78E235E61547F14A897 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft Manifest number: 14BA Signing time: Fri 26 Dec 2025 10:00:34 +0000 Manifest this update: Fri 26 Dec 2025 10:00:34 +0000 Manifest next update: Sat 27 Dec 2025 10:00:34 +0000 Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: 3QRN0An3A+GWs8CypeF3MoKg0D90E9CcQgapjaBKlrg=) 2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:59:08:e6:34:d7:8e:23:5e:61:54:7f:14:a8:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c Validity Not Before: Dec 26 10:00:34 2025 GMT Not After : Dec 27 10:00:34 2025 GMT Subject: CN=813391b565eca17ae4f235439097cb594cd72a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7d:3b:a6:03:2b:43:29:b8:21:45:a0:a3:ea: 63:05:f9:55:a5:99:b2:d6:1a:6c:83:d4:c6:f3:c1: f6:c0:04:f9:8e:9f:64:66:f9:ae:8f:6f:82:23:ea: 51:fc:48:64:5d:42:10:03:69:ce:e2:e1:19:3e:79: d3:4e:58:d7:7e:42:37:83:f4:4b:cb:0b:5e:ae:15: 22:63:df:f7:d0:a2:e7:29:c0:df:98:fd:7f:db:95: df:79:81:f1:34:a2:17:83:cd:1d:9a:58:d9:c0:7f: 15:93:c9:cf:2f:3e:74:35:82:4b:25:69:da:00:e4: f3:5b:aa:27:48:78:ee:d1:13:ec:36:37:20:4b:4b: df:c1:d4:6b:48:4c:e9:1f:9a:49:4a:53:bb:de:3e: de:27:14:7e:7d:71:66:00:0e:d6:47:c5:a2:cf:b1: 9d:ea:30:43:99:c0:bb:1c:ca:23:7e:b2:a0:7b:d9: de:90:9d:d4:e3:09:70:93:39:54:8a:25:38:31:1e: 0e:70:30:bf:d0:b1:0b:20:72:80:da:de:75:d4:17: 49:91:2a:8d:3c:c7:26:06:01:58:6f:55:0b:d5:0e: 63:55:7a:16:f2:96:55:e0:d9:be:30:f8:86:fb:2c: 1a:f1:5f:0c:c3:b2:2e:9a:99:6c:14:49:7e:85:fd: ca:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:33:91:B5:65:EC:A1:7A:E4:F2:35:43:90:97:CB:59:4C:D7:2A:04 X509v3 Authority Key Identifier: keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:10:ac:70:63:08:a9:87:97:e4:0f:25:6c:c2:46:67:1a:09: 00:1e:ed:e3:17:91:f2:9f:b1:c4:b6:68:a3:a5:82:5e:26:0e: 78:31:b2:22:1c:c4:2b:c6:20:c1:a7:6e:86:7f:c6:22:fe:4c: 33:99:b2:c3:79:ac:59:d3:65:db:01:98:14:94:39:3b:4c:48: 0b:3c:a4:07:72:bb:44:73:68:f1:ba:31:79:04:c9:50:d4:15: a5:3b:9c:65:75:c4:bb:75:b9:66:62:c6:3c:3a:6f:55:cd:1c: 64:06:2f:61:01:5f:46:bd:85:cd:d0:d7:9f:08:a2:bb:55:69: f5:b0:df:f1:83:57:4e:b0:72:e6:80:7a:8f:38:74:72:15:6d: 56:38:31:04:3b:35:52:ff:65:52:0e:8c:82:59:3a:be:d4:f3: 93:38:a0:06:e9:b0:bf:ab:68:23:57:f9:76:15:e3:67:80:17: 59:81:99:a2:45:a0:5b:82:45:e7:b2:79:b2:0e:ee:f7:9a:8b: 93:35:70:e4:6d:fb:ae:72:3c:a3:2e:c6:98:df:83:5d:06:c9: 7c:cc:7c:d6:ab:1f:c9:41:d7:6e:7b:c2:b0:1f:c8:16:a8:f7: 28:8a:ac:94:7e:77:c7:b5:3f:8f:3c:83:9a:68:47:7c:d5:93: e5:aa:76:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGlkI5jTXjiNeYVR/FKiXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMjc2YWM1MWExMzI0MDFkYjRjZDc0MWQ4NjZhNTQ2MjJh MGQxNWMwHhcNMjUxMjI2MTAwMDM0WhcNMjUxMjI3MTAwMDM0WjAzMTEwLwYDVQQD Eyg4MTMzOTFiNTY1ZWNhMTdhZTRmMjM1NDM5MDk3Y2I1OTRjZDcyYTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlX07pgMrQym4IUWgo+pjBflVpZmy 1hpsg9TG88H2wAT5jp9kZvmuj2+CI+pR/EhkXUIQA2nO4uEZPnnTTljXfkI3g/RL ywterhUiY9/30KLnKcDfmP1/25XfeYHxNKIXg80dmljZwH8Vk8nPLz50NYJLJWna AOTzW6onSHju0RPsNjcgS0vfwdRrSEzpH5pJSlO73j7eJxR+fXFmAA7WR8Wiz7Gd 6jBDmcC7HMojfrKge9nekJ3U4wlwkzlUiiU4MR4OcDC/0LELIHKA2t511BdJkSqN PMcmBgFYb1UL1Q5jVXoW8pZV4Nm+MPiG+ywa8V8Mw7IumplsFEl+hf3KqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIEzkbVl7KF65PI1Q5CXy1lM1yoEMB8GA1UdIwQY MBaAFD4nasUaEyQB20zXQdhmpUYioNFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjIt MWVlZjExYThkZGRmLzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjItMWVlZjExYThkZGRm LzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAixCscGMI qYeX5A8lbMJGZxoJAB7t4xeR8p+xxLZoo6WCXiYOeDGyIhzEK8Ygwaduhn/GIv5M M5myw3msWdNl2wGYFJQ5O0xICzykB3K7RHNo8boxeQTJUNQVpTucZXXEu3W5ZmLG PDpvVc0cZAYvYQFfRr2FzdDXnwiiu1Vp9bDf8YNXTrBy5oB6jzh0chVtVjgxBDs1 Uv9lUg6Mglk6vtTzkzigBumwv6toI1f5dhXjZ4AXWYGZokWgW4JF57J5sg7u95qL kzVw5G37rnI8oy7GmN+DXQbJfMx81qsfyUHXbnvCsB/IFqj3KIqslH53x7U/jzyD mmhHfNWT5ap2bA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:47 2025 by rpki-client