This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft File: PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft (raw, json) Hash identifier: dB0RYaixYu2JTLRPTu9vsIKd75MBLh8Z90OzG19Wgkg= Subject key identifier: A6:B5:F2:02:3B:C5:D5:58:25:6E:3B:8E:B5:32:78:0C:AD:1A:62:15 Authority key identifier: 3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44 Certificate issuer: /CN=3d6abe5c48aecebd4a237e153c3684f30608d444 Certificate serial: 019B4693ACCFBE6DBBE0EE47DD1D6014114F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft Manifest number: 0592 Signing time: Mon 22 Dec 2025 15:00:41 +0000 Manifest this update: Mon 22 Dec 2025 15:00:41 +0000 Manifest next update: Tue 23 Dec 2025 15:00:41 +0000 Files and hashes: 1: 0-NbRqc8zQ3-jTIYZOwXbybz260.roa (hash: F4aAH1P/CqccbM0rJQ6/jB1mC+tQi8oCbtTD8Uif+I8=) 2: PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl (hash: rCu0jvvGxinwRn4yVeM2rw8wq4w9mBkzmJWMRrlD/3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:93:ac:cf:be:6d:bb:e0:ee:47:dd:1d:60:14:11:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d6abe5c48aecebd4a237e153c3684f30608d444 Validity Not Before: Dec 22 15:00:41 2025 GMT Not After : Dec 23 15:00:41 2025 GMT Subject: CN=a6b5f2023bc5d558256e3b8eb532780cad1a6215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5b:86:9b:2c:6f:0d:bb:c6:bf:fa:04:18:4b: 73:97:4f:df:e1:7c:61:98:57:47:ab:f3:0d:72:ff: 90:5e:e9:de:c2:57:a9:ae:13:64:d0:ae:4f:b4:02: 03:db:52:10:2c:a0:82:fc:38:69:04:6e:1e:9d:c6: 47:8e:17:34:55:bf:49:da:2c:8f:48:cd:11:6d:39: ee:ee:5b:1a:35:10:37:8a:f9:bc:f6:d3:e1:8e:03: 9b:0f:13:7a:cb:10:34:e3:e1:14:6a:60:a2:14:89: 6f:55:2d:25:35:3f:ed:64:b3:7a:43:0a:fc:1f:56: e3:8c:52:1b:9a:e0:c4:f3:0c:4a:48:0d:5b:46:12: a2:8a:fa:da:0e:1f:06:7b:89:88:02:1f:0c:90:20: 66:dd:5e:6c:41:a0:90:d8:db:bc:18:59:ae:a1:fb: 91:7e:3a:49:3a:23:25:97:90:e7:80:71:e8:34:ce: de:41:41:d3:4e:a7:15:b4:64:d9:8c:97:10:fd:8b: 21:c1:04:61:79:38:74:99:9a:79:66:e1:22:0b:aa: 27:52:0a:2f:da:67:d7:2d:14:f1:ca:5a:1d:f3:84: 0a:92:85:d2:06:f8:e6:e8:4f:45:75:1b:a1:cf:2b: af:f2:d0:ac:76:0d:bd:69:2a:ee:7e:7c:a8:11:05: 4c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B5:F2:02:3B:C5:D5:58:25:6E:3B:8E:B5:32:78:0C:AD:1A:62:15 X509v3 Authority Key Identifier: keyid:3D:6A:BE:5C:48:AE:CE:BD:4A:23:7E:15:3C:36:84:F3:06:08:D4:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PWq-XEiuzr1KI34VPDaE8wYI1EQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5fb803-4333-4175-90df-aec14ea17ebf/1/PWq-XEiuzr1KI34VPDaE8wYI1EQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d4:25:92:f1:46:80:12:b7:e9:e6:09:e4:52:cb:74:c5:45:98: 98:a2:17:ad:1f:eb:85:5b:74:ac:ec:6d:02:b7:ee:09:02:43: 93:cd:1f:01:d6:67:a4:3c:87:2e:65:d9:3c:d0:af:47:8f:e9: 3d:d6:af:7d:d0:f2:42:0f:92:27:a2:5e:fa:19:99:25:c6:32: 94:a0:aa:75:c0:56:a1:61:53:08:4a:65:13:37:71:c1:2b:5e: e1:d9:b6:ac:6a:6c:62:1a:a8:a9:bd:db:bb:5e:91:b5:00:7e: b0:74:c0:fd:17:ec:3e:5d:ea:b4:8d:ba:a9:16:3e:e1:1d:92: 88:68:2d:e8:f5:55:58:98:b0:09:96:dd:f2:38:0b:53:46:56: 04:fa:b7:d6:d7:09:9c:0b:22:eb:85:3c:46:c0:5a:f5:82:7c: 34:9e:97:5c:e1:41:3a:ce:68:b2:68:5f:9e:56:fd:e7:b8:46: 8e:75:e3:6e:03:60:b7:d5:ed:59:1e:1c:38:0c:9f:63:cb:27: e9:d4:b1:e7:90:8f:ca:72:d1:7b:ab:0a:47:40:52:ee:d3:43: 2f:2f:0f:4c:04:a2:aa:a0:0b:68:f1:77:3a:dc:3d:aa:8b:36: cf:e3:b6:4d:4f:73:1c:c9:38:7d:44:08:74:e5:f6:f4:29:37: 67:79:f4:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGk6zPvm274O5H3R1gFBFPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNmFiZTVjNDhhZWNlYmQ0YTIzN2UxNTNjMzY4NGYzMDYw OGQ0NDQwHhcNMjUxMjIyMTUwMDQxWhcNMjUxMjIzMTUwMDQxWjAzMTEwLwYDVQQD EyhhNmI1ZjIwMjNiYzVkNTU4MjU2ZTNiOGViNTMyNzgwY2FkMWE2MjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoluGmyxvDbvGv/oEGEtzl0/f4Xxh mFdHq/MNcv+QXunewleprhNk0K5PtAID21IQLKCC/DhpBG4encZHjhc0Vb9J2iyP SM0RbTnu7lsaNRA3ivm89tPhjgObDxN6yxA04+EUamCiFIlvVS0lNT/tZLN6Qwr8 H1bjjFIbmuDE8wxKSA1bRhKiivraDh8Ge4mIAh8MkCBm3V5sQaCQ2Nu8GFmuofuR fjpJOiMll5DngHHoNM7eQUHTTqcVtGTZjJcQ/YshwQRheTh0mZp5ZuEiC6onUgov 2mfXLRTxylod84QKkoXSBvjm6E9FdRuhzyuv8tCsdg29aSrufnyoEQVMDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKa18gI7xdVYJW47jrUyeAytGmIVMB8GA1UdIwQY MBaAFD1qvlxIrs69SiN+FTw2hPMGCNREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFdxLVhFaXV6cjFLSTM0VlBEYUU4d1lJMUVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC81ZmI4MDMtNDMzMy00MTc1LTkwZGYt YWVjMTRlYTE3ZWJmLzEvUFdxLVhFaXV6cjFLSTM0VlBEYUU4d1lJMUVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC81ZmI4MDMtNDMzMy00MTc1LTkwZGYtYWVjMTRlYTE3ZWJm LzEvUFdxLVhFaXV6cjFLSTM0VlBEYUU4d1lJMUVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1CWS8UaA Erfp5gnkUst0xUWYmKIXrR/rhVt0rOxtArfuCQJDk80fAdZnpDyHLmXZPNCvR4/p PdavfdDyQg+SJ6Je+hmZJcYylKCqdcBWoWFTCEplEzdxwSte4dm2rGpsYhqoqb3b u16RtQB+sHTA/RfsPl3qtI26qRY+4R2SiGgt6PVVWJiwCZbd8jgLU0ZWBPq31tcJ nAsi64U8RsBa9YJ8NJ6XXOFBOs5osmhfnlb957hGjnXjbgNgt9XtWR4cOAyfY8sn 6dSx55CPynLRe6sKR0BS7tNDLy8PTASiqqALaPF3Otw9qos2z+O2TU9zHMk4fUQI dOX29Ck3Z3n0Zw== -----END CERTIFICATE-----Generated at Mon Dec 22 22:34:54 2025 by rpki-client