This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft File: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft (raw, json) Hash identifier: jz/CN1Z/zLMx2iP1DJ08HB4N38/H/4ze2jCmvtR2GGc= Subject key identifier: 0C:D0:F3:0B:FD:CE:16:91:96:23:15:3D:B2:C5:18:62:2D:B6:6E:A1 Authority key identifier: 3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77 Certificate issuer: /CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877 Certificate serial: 019B48B8F4FF4696D153D0E133E09F341EC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft Manifest number: 060D Signing time: Tue 23 Dec 2025 01:00:39 +0000 Manifest this update: Tue 23 Dec 2025 01:00:39 +0000 Manifest next update: Wed 24 Dec 2025 01:00:39 +0000 Files and hashes: 1: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl (hash: SIfvbK2/8t9Qs34f43g3+/B5QOrfiHZmFueP2L/eHdo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:b8:f4:ff:46:96:d1:53:d0:e1:33:e0:9f:34:1e:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877 Validity Not Before: Dec 23 01:00:39 2025 GMT Not After : Dec 24 01:00:39 2025 GMT Subject: CN=0cd0f30bfdce16919623153db2c518622db66ea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f9:ee:a7:8f:27:a1:71:61:9d:bd:fc:63:9e: 0d:f6:78:db:77:a5:ba:9d:7f:da:01:f6:41:3c:cc: a2:ea:e7:aa:a5:a0:19:5d:d9:d1:ab:79:40:f9:4f: 5a:c5:a1:ed:29:c1:65:a6:65:b7:44:28:9c:ed:7d: b1:1b:69:0f:ab:80:68:5a:49:23:3c:39:79:b2:bb: 85:9c:dd:77:c4:ed:51:51:7b:fa:72:f7:1e:35:4d: 2f:c5:9d:40:eb:cd:67:b2:b2:17:d2:0c:d1:dd:22: 01:13:43:a1:bc:9f:b7:6b:ad:bf:00:c3:f6:a9:dd: ec:f1:1e:bf:13:7e:b6:70:26:c5:e0:66:e0:65:e4: 2c:d3:b2:34:88:4e:41:f0:32:7f:4a:a6:1b:2b:6b: 1d:11:fa:9e:76:b4:35:20:91:e0:79:ae:f7:e7:c3: 02:f9:29:79:6b:ef:4a:fe:d0:fc:30:a1:9d:c0:fa: 4c:2d:bf:83:06:ee:44:53:71:4a:67:7c:cc:40:5d: 1f:77:24:a4:4d:e3:82:7f:d4:bf:6d:7b:d7:59:44: 11:c7:01:fd:c3:49:e0:e3:cc:08:0b:ca:2b:15:8f: c2:db:89:41:57:74:69:5a:e6:ad:43:b7:99:bf:c6: 0a:6a:3b:db:cc:3b:c5:b8:14:15:0c:21:2a:50:7c: a6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D0:F3:0B:FD:CE:16:91:96:23:15:3D:B2:C5:18:62:2D:B6:6E:A1 X509v3 Authority Key Identifier: keyid:3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:e7:18:2e:a5:af:ab:a4:29:05:a5:94:27:05:b2:43:9c:c4: ae:e9:d2:2d:05:31:01:51:8c:bd:5e:f3:57:e8:77:74:54:36: a3:2e:d9:61:91:cd:63:db:ee:c7:81:98:07:c0:22:ad:a4:4b: bd:5c:e2:c7:19:1b:38:c2:51:a1:48:62:b5:f1:59:40:87:98: 0b:de:8a:a4:f9:b5:47:10:c3:81:88:52:ed:4e:17:5e:ed:7f: 5a:4e:b1:c0:08:5d:4e:85:c2:af:04:86:f7:29:41:4e:df:c3: 31:8a:f3:19:c4:3b:f5:bd:66:8c:15:98:c4:29:13:c5:54:17: ae:07:32:bf:2b:ce:ea:c5:e6:dc:95:e4:c8:a1:4d:45:38:e2: c2:c1:aa:61:55:8d:d0:4b:57:b1:5b:e4:d2:55:84:72:87:38: 9f:01:be:02:38:87:47:ba:3c:9d:1c:eb:51:98:79:a7:4e:75: 6d:72:b2:59:d7:ee:5c:e8:03:31:5b:8e:81:ca:b0:b9:48:e9: 7f:ae:58:54:b1:db:7f:1c:f8:cc:e5:47:13:05:bc:b0:6c:9f: fd:8a:55:52:af:3a:ef:e4:2f:f5:09:72:32:54:b3:e6:ee:cb: 85:e4:29:83:a0:4f:e1:88:20:1e:0b:38:d3:ab:33:92:d4:64: 13:ef:a9:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIuPT/RpbRU9DhM+CfNB7IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMGFiYTMwZjRiNDA0ZmY0ZGVjOWZjMDAxNmMwYmJlZTRi NmI4NzcwHhcNMjUxMjIzMDEwMDM5WhcNMjUxMjI0MDEwMDM5WjAzMTEwLwYDVQQD EygwY2QwZjMwYmZkY2UxNjkxOTYyMzE1M2RiMmM1MTg2MjJkYjY2ZWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvnup48noXFhnb38Y54N9njbd6W6 nX/aAfZBPMyi6ueqpaAZXdnRq3lA+U9axaHtKcFlpmW3RCic7X2xG2kPq4BoWkkj PDl5sruFnN13xO1RUXv6cvceNU0vxZ1A681nsrIX0gzR3SIBE0OhvJ+3a62/AMP2 qd3s8R6/E362cCbF4GbgZeQs07I0iE5B8DJ/SqYbK2sdEfqedrQ1IJHgea7358MC +Sl5a+9K/tD8MKGdwPpMLb+DBu5EU3FKZ3zMQF0fdySkTeOCf9S/bXvXWUQRxwH9 w0ng48wIC8orFY/C24lBV3RpWuatQ7eZv8YKajvbzDvFuBQVDCEqUHym4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAzQ8wv9zhaRliMVPbLFGGIttm6hMB8GA1UdIwQY MBaAFD4KujD0tAT/TeyfwAFsC77ktrh3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGdxNk1QUzBCUDlON0pfQUFXd0x2dVMydUhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9kNGU1NTctMDY0MC00OGQzLTg3ZDYt NTkwMjlhOGI1MzNhLzEvUGdxNk1QUzBCUDlON0pfQUFXd0x2dVMydUhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My9kNGU1NTctMDY0MC00OGQzLTg3ZDYtNTkwMjlhOGI1MzNh LzEvUGdxNk1QUzBCUDlON0pfQUFXd0x2dVMydUhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxOcYLqWv q6QpBaWUJwWyQ5zErunSLQUxAVGMvV7zV+h3dFQ2oy7ZYZHNY9vux4GYB8AiraRL vVzixxkbOMJRoUhitfFZQIeYC96KpPm1RxDDgYhS7U4XXu1/Wk6xwAhdToXCrwSG 9ylBTt/DMYrzGcQ79b1mjBWYxCkTxVQXrgcyvyvO6sXm3JXkyKFNRTjiwsGqYVWN 0EtXsVvk0lWEcoc4nwG+AjiHR7o8nRzrUZh5p051bXKyWdfuXOgDMVuOgcqwuUjp f65YVLHbfxz4zOVHEwW8sGyf/YpVUq867+Qv9QlyMlSz5u7LheQpg6BP4YggHgs4 06szktRkE++p/Q== -----END CERTIFICATE-----Generated at Tue Dec 23 06:05:35 2025 by rpki-client