This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft File: PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft (raw, json) Hash identifier: PE3SqTFkNuOrpvV74L3J9qjadSpwOqZZvaA5yrIeBJw= Subject key identifier: 88:9F:38:4B:C5:56:F5:04:61:46:C8:4F:EC:CF:CF:89:6D:A8:71:62 Authority key identifier: 3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF Certificate issuer: /CN=3eabe028f3be7ee072885d02bbd7b62a652425ef Certificate serial: 019B34FB60219114B45C2E5695AC93138A1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft Manifest number: 0D96 Signing time: Fri 19 Dec 2025 05:00:47 +0000 Manifest this update: Fri 19 Dec 2025 05:00:47 +0000 Manifest next update: Sat 20 Dec 2025 05:00:47 +0000 Files and hashes: 1: PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl (hash: rmyTbQugj8j7G/aFqIoVHu8cA4gVpsg47SmmemSrRDo=) 2: dJvnPDYPLo4Sslu_Zmnf2lx_js4.roa (hash: 5Msv4aPMo6ReE0YmQsW6vQo0j0v5HFcFjEhrex1AtOU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:60:21:91:14:b4:5c:2e:56:95:ac:93:13:8a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3eabe028f3be7ee072885d02bbd7b62a652425ef Validity Not Before: Dec 19 05:00:47 2025 GMT Not After : Dec 20 05:00:47 2025 GMT Subject: CN=889f384bc556f5046146c84feccfcf896da87162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:02:19:0a:23:79:f6:0e:06:75:78:4a:58:fd: ab:73:ae:81:a4:a3:0d:52:59:51:f6:58:78:fb:24: 3d:93:28:70:05:f2:c1:39:27:e9:c6:a3:ab:37:6d: 38:89:fa:a3:ee:c6:7e:43:77:14:41:13:3a:83:34: 64:92:0c:3b:3b:c9:a9:9a:7d:38:6d:eb:31:10:ab: 96:e6:e0:3c:c5:62:79:ab:3f:00:91:5e:6f:0f:02: be:5a:12:28:5c:de:1a:63:44:24:27:ef:4a:7f:06: 07:31:95:f3:e4:07:d5:7a:ee:93:22:fb:b5:4f:7f: 25:15:92:b2:26:2a:7b:d6:72:de:c7:a7:0d:80:ff: 02:fb:4a:40:86:0e:68:38:f2:22:d6:04:c6:0f:d1: f2:b5:bb:a6:5d:e9:bc:4a:f7:d2:9a:71:9c:8c:48: a0:e0:30:4e:d2:f1:cc:af:f6:9e:cc:e1:9f:21:cc: 64:ef:5d:53:e0:c4:3e:ee:44:4f:d1:d1:9b:26:75: 1a:54:28:08:04:2b:bb:3a:70:5f:8a:c5:10:91:76: 4d:24:d3:fa:9b:11:4f:b7:e8:f2:9b:28:5e:10:76: 35:be:9d:87:0a:79:d6:c1:0b:ad:04:46:ca:40:52: 3a:f7:ad:14:7b:47:1d:69:0d:b2:6c:9c:99:a7:97: 0f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9F:38:4B:C5:56:F5:04:61:46:C8:4F:EC:CF:CF:89:6D:A8:71:62 X509v3 Authority Key Identifier: keyid:3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:db:07:93:9e:7a:e7:d2:9e:8a:37:04:97:49:c7:27:af:4e: c8:4e:bb:83:f0:b2:cf:f9:03:63:37:98:4c:01:c7:b4:c6:44: ff:d6:24:99:60:2e:e0:72:39:a2:d0:4d:0c:79:f7:dc:8e:a1: d3:63:3b:30:f7:43:fa:38:30:ab:05:01:a9:21:87:c4:3d:c4: f1:e3:83:bc:a5:e8:bc:61:0f:6a:bc:db:74:d8:55:a6:73:f4: 3f:9a:cd:8c:07:25:fc:46:ca:cf:cb:3d:dc:60:22:77:50:19: 5c:0c:51:67:da:61:09:8a:b1:1f:8c:d0:b5:c9:fe:e1:11:e6: 03:11:30:12:6a:59:2e:93:df:b6:27:3f:42:93:88:8e:3c:0d: 27:1d:d3:a1:a8:ee:a8:b5:99:40:79:43:61:a0:41:1b:4a:e7: 92:69:e1:f7:f6:b6:87:c9:5a:2f:68:4b:96:b5:c7:5c:b5:df: c6:22:33:54:a0:c9:ab:ed:c0:67:48:f0:02:90:77:b5:8a:60: 4a:c0:f7:d4:72:25:32:bb:ed:0b:7b:7d:1d:4a:1e:ca:77:f2: 81:f9:ce:c0:f9:9c:25:49:e5:13:cd:26:55:7d:e9:b0:95:78: b2:b8:0a:f6:91:37:4f:b7:67:57:6e:f4:f4:35:e8:6a:1d:57: 15:15:5f:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+2AhkRS0XC5WlayTE4oaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYWJlMDI4ZjNiZTdlZTA3Mjg4NWQwMmJiZDdiNjJhNjUy NDI1ZWYwHhcNMjUxMjE5MDUwMDQ3WhcNMjUxMjIwMDUwMDQ3WjAzMTEwLwYDVQQD Eyg4ODlmMzg0YmM1NTZmNTA0NjE0NmM4NGZlY2NmY2Y4OTZkYTg3MTYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgIZCiN59g4GdXhKWP2rc66BpKMN UllR9lh4+yQ9kyhwBfLBOSfpxqOrN204ifqj7sZ+Q3cUQRM6gzRkkgw7O8mpmn04 besxEKuW5uA8xWJ5qz8AkV5vDwK+WhIoXN4aY0QkJ+9KfwYHMZXz5AfVeu6TIvu1 T38lFZKyJip71nLex6cNgP8C+0pAhg5oOPIi1gTGD9HytbumXem8SvfSmnGcjEig 4DBO0vHMr/aezOGfIcxk711T4MQ+7kRP0dGbJnUaVCgIBCu7OnBfisUQkXZNJNP6 mxFPt+jymyheEHY1vp2HCnnWwQutBEbKQFI6960Ue0cdaQ2ybJyZp5cP8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIifOEvFVvUEYUbIT+zPz4ltqHFiMB8GA1UdIwQY MBaAFD6r4Cjzvn7gcohdArvXtiplJCXvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHF2Z0tQTy1mdUJ5aUYwQ3U5ZTJLbVVrSmU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yYWQ0ZmEtYmQ3Yi00MDdlLWIyNWEt ZGY3NDEwYjJkMjc1LzEvUHF2Z0tQTy1mdUJ5aUYwQ3U5ZTJLbVVrSmU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8yYWQ0ZmEtYmQ3Yi00MDdlLWIyNWEtZGY3NDEwYjJkMjc1 LzEvUHF2Z0tQTy1mdUJ5aUYwQ3U5ZTJLbVVrSmU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI9sHk556 59KeijcEl0nHJ69OyE67g/Cyz/kDYzeYTAHHtMZE/9YkmWAu4HI5otBNDHn33I6h 02M7MPdD+jgwqwUBqSGHxD3E8eODvKXovGEParzbdNhVpnP0P5rNjAcl/EbKz8s9 3GAid1AZXAxRZ9phCYqxH4zQtcn+4RHmAxEwEmpZLpPftic/QpOIjjwNJx3Toaju qLWZQHlDYaBBG0rnkmnh9/a2h8laL2hLlrXHXLXfxiIzVKDJq+3AZ0jwApB3tYpg SsD31HIlMrvtC3t9HUoeynfygfnOwPmcJUnlE80mVX3psJV4srgK9pE3T7dnV270 9DXoah1XFRVf5Q== -----END CERTIFICATE-----Generated at Fri Dec 19 07:58:08 2025 by rpki-client