This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft File: PiTH7Po30khxUvubu6tQvnneJhk.mft (raw, json) Hash identifier: Ejcpy7Qp+DFyZ451FV4czyDSD9me+qwrTfwRRDg1ihU= Subject key identifier: 89:99:88:35:C5:8E:CA:93:22:68:10:A4:89:51:E2:B0:BC:64:76:A0 Authority key identifier: 3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19 Certificate issuer: /CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619 Certificate serial: 019B243E7A3380F5F4F5B20926433D005D76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft Manifest number: 178B Signing time: Mon 15 Dec 2025 23:00:32 +0000 Manifest this update: Mon 15 Dec 2025 23:00:32 +0000 Manifest next update: Tue 16 Dec 2025 23:00:32 +0000 Files and hashes: 1: 3y2t9Y4w34qiFBdy_Ek4JJUO21Q.roa (hash: /TZVDNQyK0D1wC867uTU8KAEMW8e+Zi9YcbvlB1rMAE=) 2: EmNqWHZHvcbARh8MqUG6nxXKDnk.roa (hash: qFrAZp7TQYaT2zIiJ3kN/K/RUigkO6TizDHq1yApShI=) 3: PiTH7Po30khxUvubu6tQvnneJhk.crl (hash: fB3oxAYRnN2Z9Rus7uH9mKwoblYGl//hzPzPCG+645w=) 4: k0j78iVx37wwO7bDjCAVoyijDeU.roa (hash: x4YCjAIVRyxgn0vQG0zlSLFCcDO0MbVYoCzpTeJPa0I=) 5: oLh3yoxxKDPJ0rI4fFfhHDN8zHc.roa (hash: gc86IVswZ2auip9vASDEdi6AXEh5d/2Jw9bjMy6Pwd8=) 6: oqQMhQCTnCvqpL4FDtvR2ocumgk.roa (hash: 9N1juEbb6Fp6BQG9Mi2KAk0Vy7P2TkUjOEW3w+qZU1s=) 7: u7jBF_TQnJz9mTpZhXYq5nggn8c.roa (hash: wreTMB6pW+vrdjrRc+OCyHOCrMzU/JZ3/7CTFhlab7A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 23:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:3e:7a:33:80:f5:f4:f5:b2:09:26:43:3d:00:5d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619 Validity Not Before: Dec 15 23:00:32 2025 GMT Not After : Dec 16 23:00:32 2025 GMT Subject: CN=89998835c58eca93226810a48951e2b0bc6476a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:7a:41:48:3c:7b:3f:3d:b7:e1:4f:76:ba:f8: 18:75:90:4b:74:ed:c2:80:e1:30:2f:8b:c4:6c:7a: 28:bb:a0:0c:b7:82:e6:cc:99:e8:02:36:bb:ba:b7: 74:12:86:ce:31:e5:c6:dd:78:f5:7a:16:7c:03:d0: fb:7c:43:0a:b6:e7:8d:07:1f:86:b5:6c:61:73:ee: b7:36:cb:e7:da:5f:89:60:6d:a5:b3:69:6d:ac:dc: 7b:f1:35:7d:55:ee:a5:4c:1e:8b:f6:1f:c0:42:28: e3:1e:0a:19:09:bf:bd:78:c2:42:18:1c:bf:ef:2a: 1b:a4:11:11:32:57:40:04:70:32:56:2b:56:b6:df: 98:35:92:f7:9e:74:7c:87:ef:a1:d6:8f:d2:ff:a2: f6:7a:de:68:cd:92:37:91:91:2f:69:4b:67:bd:e2: ea:3d:6d:b7:e0:92:d3:27:24:c4:c1:79:6c:5a:2b: 29:6b:4f:be:d6:42:81:bb:28:6f:d3:31:9c:be:5d: eb:1a:52:b0:4b:05:a5:d6:8b:fe:c5:aa:91:d9:92: 7b:c2:b9:fa:4d:05:81:07:ad:4f:48:c8:f2:fb:a8: 68:9e:15:a2:73:8b:a4:e8:85:ed:6a:fb:64:b1:63: b7:e3:43:8b:f2:28:66:36:45:9b:96:27:85:37:b5: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:99:88:35:C5:8E:CA:93:22:68:10:A4:89:51:E2:B0:BC:64:76:A0 X509v3 Authority Key Identifier: keyid:3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:00:34:e5:57:23:f2:4d:f6:09:3f:ba:ce:97:b3:fe:12:c2: ea:10:0b:ae:85:41:3d:27:32:ce:74:9b:e2:3f:cf:de:03:54: 7b:92:ba:84:f2:68:e9:a6:08:03:11:91:fc:f7:c3:89:4f:fd: ed:95:42:53:9b:fd:3a:f5:51:64:8d:d0:92:3b:8e:45:2e:9b: c0:44:24:03:b7:fd:a8:c3:06:bd:d2:a4:25:d1:a8:3f:34:e3: 23:30:9b:95:81:8e:e5:fe:27:bc:c3:10:10:94:f9:b6:95:af: f3:29:d1:72:18:cd:b5:5f:82:37:c8:23:cc:26:d4:b0:f7:e8: cb:73:6a:80:1f:ce:46:d1:c4:f0:2c:44:75:55:93:b7:23:51: 84:2d:48:11:83:ae:3c:8c:19:26:ef:c9:6c:f0:91:a1:28:1e: e9:32:5f:91:d6:57:0f:e2:77:d3:49:32:7e:b6:88:ee:2d:c9: 10:ee:61:fd:11:9d:e2:89:d0:e3:ac:ce:79:07:47:52:93:c6: ed:92:9d:b2:3a:42:43:d8:90:c9:ca:08:86:60:00:0d:27:44: 11:38:54:60:dc:2f:36:62:24:03:b3:db:3e:bf:bd:50:14:d2: 31:68:51:1f:14:ea:39:9b:bd:39:3e:92:82:5d:b3:b5:93:9a: 24:0b:f8:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskPnozgPX09bIJJkM9AF12MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMjRjN2VjZmEzN2QyNDg3MTUyZmI5YmJiYWI1MGJlNzlk ZTI2MTkwHhcNMjUxMjE1MjMwMDMyWhcNMjUxMjE2MjMwMDMyWjAzMTEwLwYDVQQD Eyg4OTk5ODgzNWM1OGVjYTkzMjI2ODEwYTQ4OTUxZTJiMGJjNjQ3NmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4npBSDx7Pz234U92uvgYdZBLdO3C gOEwL4vEbHoou6AMt4LmzJnoAja7urd0EobOMeXG3Xj1ehZ8A9D7fEMKtueNBx+G tWxhc+63Nsvn2l+JYG2ls2ltrNx78TV9Ve6lTB6L9h/AQijjHgoZCb+9eMJCGBy/ 7yobpBERMldABHAyVitWtt+YNZL3nnR8h++h1o/S/6L2et5ozZI3kZEvaUtnveLq PW234JLTJyTEwXlsWispa0++1kKBuyhv0zGcvl3rGlKwSwWl1ov+xaqR2ZJ7wrn6 TQWBB61PSMjy+6honhWic4uk6IXtavtksWO340OL8ihmNkWblieFN7UvZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImZiDXFjsqTImgQpIlR4rC8ZHagMB8GA1UdIwQY MBaAFD4kx+z6N9JIcVL7m7urUL553iYZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGlUSDdQbzMwa2h4VXZ1YnU2dFF2bm5lSmhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8zOWE1ZmMtZDI2ZS00ZDUzLTkxZTMt NDkzZDc3NGFhMWZmLzEvUGlUSDdQbzMwa2h4VXZ1YnU2dFF2bm5lSmhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8zOWE1ZmMtZDI2ZS00ZDUzLTkxZTMtNDkzZDc3NGFhMWZm LzEvUGlUSDdQbzMwa2h4VXZ1YnU2dFF2bm5lSmhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZAA05Vcj 8k32CT+6zpez/hLC6hALroVBPScyznSb4j/P3gNUe5K6hPJo6aYIAxGR/PfDiU/9 7ZVCU5v9OvVRZI3QkjuORS6bwEQkA7f9qMMGvdKkJdGoPzTjIzCblYGO5f4nvMMQ EJT5tpWv8ynRchjNtV+CN8gjzCbUsPfoy3NqgB/ORtHE8CxEdVWTtyNRhC1IEYOu PIwZJu/JbPCRoSge6TJfkdZXD+J300kyfraI7i3JEO5h/RGd4onQ46zOeQdHUpPG 7ZKdsjpCQ9iQycoIhmAADSdEEThUYNwvNmIkA7PbPr+9UBTSMWhRHxTqOZu9OT6S gl2ztZOaJAv4/Q== -----END CERTIFICATE-----Generated at Tue Dec 16 06:27:58 2025 by rpki-client