This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft File: PRgTEVbDK1enN4cYxgiq46mWXCs.mft (raw, json) Hash identifier: A1Clrdp/FqvcgU3hgiAvJulo5nYGHhJ98wCMSZs/zUY= Subject key identifier: FA:C9:2A:CB:6C:63:FF:60:D3:89:F8:F9:BB:0A:EA:A1:2F:3E:A9:39 Authority key identifier: 3D:18:13:11:56:C3:2B:57:A7:37:87:18:C6:08:AA:E3:A9:96:5C:2B Certificate issuer: /CN=3d18131156c32b57a7378718c608aae3a9965c2b Certificate serial: 019B5976B0EFEE1497BF7DCF40ECE6583CCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft Manifest number: 1792 Signing time: Fri 26 Dec 2025 07:01:49 +0000 Manifest this update: Fri 26 Dec 2025 07:01:49 +0000 Manifest next update: Sat 27 Dec 2025 07:01:49 +0000 Files and hashes: 1: PRgTEVbDK1enN4cYxgiq46mWXCs.crl (hash: kPtqu3vs21eqX5lsy9i6K0COc6D1MhM/w17a2wbWpAo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:b0:ef:ee:14:97:bf:7d:cf:40:ec:e6:58:3c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d18131156c32b57a7378718c608aae3a9965c2b Validity Not Before: Dec 26 07:01:49 2025 GMT Not After : Dec 27 07:01:49 2025 GMT Subject: CN=fac92acb6c63ff60d389f8f9bb0aeaa12f3ea939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:2d:05:a2:e2:3b:3a:a5:36:72:95:63:a2: 4d:32:8c:c5:8f:d5:c9:0d:50:0a:9f:25:f2:d5:d2: 18:2c:ef:7b:fc:12:f3:74:a4:7c:a6:c3:41:d9:cf: 2d:8d:60:1b:f9:4f:f2:c9:a9:81:e2:2e:d9:36:fc: c2:1c:fe:44:64:e5:9a:36:2a:9a:26:40:b0:d6:42: 25:b6:58:2e:93:51:3e:58:2a:8e:a9:34:80:de:a9: 30:55:87:0c:c7:7c:87:c9:13:1a:1c:01:62:45:16: d5:9e:81:62:aa:ef:5a:9c:73:b4:a1:6d:7b:82:04: 37:88:15:f8:21:69:e6:62:32:5d:80:3f:8b:3f:dd: 4e:90:df:02:3d:8c:a5:98:2e:ad:15:44:18:f4:04: dc:ee:2d:56:76:62:bb:bd:bd:93:21:a2:69:5b:d8: 03:97:7d:b7:ad:79:12:8a:f2:8f:0f:a6:8d:9b:53: 1d:94:ac:e0:55:7a:24:f6:c6:03:12:aa:fe:2c:4e: 0d:5f:2d:49:a3:c7:14:2c:a4:f6:fa:2c:60:0d:0b: 1d:72:e6:34:1d:05:17:55:10:f8:1f:3a:91:8a:88: 25:51:74:91:94:17:0b:50:09:d3:09:50:c6:3f:cb: 46:4c:35:74:69:c0:4b:12:09:d1:8c:4f:2e:89:3b: 91:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C9:2A:CB:6C:63:FF:60:D3:89:F8:F9:BB:0A:EA:A1:2F:3E:A9:39 X509v3 Authority Key Identifier: keyid:3D:18:13:11:56:C3:2B:57:A7:37:87:18:C6:08:AA:E3:A9:96:5C:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRgTEVbDK1enN4cYxgiq46mWXCs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/aae017-5afd-4bfd-8fdd-d6e7dcc52799/1/PRgTEVbDK1enN4cYxgiq46mWXCs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:78:af:66:48:52:1d:05:49:00:1e:9b:76:8c:7c:a0:fc:16: 8d:33:f1:cf:b9:b1:e4:1c:95:39:95:6d:f6:63:5d:6f:cf:16: 94:ea:aa:82:6d:ee:4b:15:03:27:d1:59:ad:a6:d8:62:53:d2: e8:7c:a2:e7:c9:0b:d6:93:07:fc:90:3d:ce:53:4d:3e:b0:b8: e9:0a:92:92:fc:b1:b6:df:e5:70:39:09:4b:a3:f9:e7:27:8c: 43:29:c0:7f:d4:6f:e0:38:56:94:84:f5:c7:c3:76:ce:3c:cb: dd:1a:26:5c:6f:c8:8c:87:20:fc:5a:ba:4a:fb:44:29:84:27: ee:a5:4c:65:c6:09:83:96:25:79:a2:07:76:6c:4f:2c:9b:82: 4c:f0:75:c5:ef:9c:de:38:bb:5e:0b:cc:d4:99:04:c3:5a:1d: 2d:2c:f4:0f:7f:46:5c:a7:fa:91:ea:60:60:e7:b3:55:76:27: 76:b1:96:88:cf:15:cd:28:22:de:a3:63:8c:c6:4e:72:41:13: 0b:1f:68:41:e1:3f:7c:e2:b3:a2:66:ec:4d:9f:bd:9d:af:45: fd:d5:cd:d0:4c:1f:10:94:52:33:cc:fc:dd:20:1b:b8:8f:7d: c3:48:8a:ed:e9:01:bd:be:5e:bd:ff:1b:15:47:e9:fe:be:9f: ce:9c:aa:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdrDv7hSXv33PQOzmWDzPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMTgxMzExNTZjMzJiNTdhNzM3ODcxOGM2MDhhYWUzYTk5 NjVjMmIwHhcNMjUxMjI2MDcwMTQ5WhcNMjUxMjI3MDcwMTQ5WjAzMTEwLwYDVQQD EyhmYWM5MmFjYjZjNjNmZjYwZDM4OWY4ZjliYjBhZWFhMTJmM2VhOTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd0tBaLiOzqlNnKVY6JNMozFj9XJ DVAKnyXy1dIYLO97/BLzdKR8psNB2c8tjWAb+U/yyamB4i7ZNvzCHP5EZOWaNiqa JkCw1kIltlguk1E+WCqOqTSA3qkwVYcMx3yHyRMaHAFiRRbVnoFiqu9anHO0oW17 ggQ3iBX4IWnmYjJdgD+LP91OkN8CPYylmC6tFUQY9ATc7i1WdmK7vb2TIaJpW9gD l323rXkSivKPD6aNm1MdlKzgVXok9sYDEqr+LE4NXy1Jo8cULKT2+ixgDQsdcuY0 HQUXVRD4HzqRioglUXSRlBcLUAnTCVDGP8tGTDV0acBLEgnRjE8uiTuR4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPrJKstsY/9g04n4+bsK6qEvPqk5MB8GA1UdIwQY MBaAFD0YExFWwytXpzeHGMYIquOpllwrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFJnVEVWYkRLMWVuTjRjWXhnaXE0Nm1XWENzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9hYWUwMTctNWFmZC00YmZkLThmZGQt ZDZlN2RjYzUyNzk5LzEvUFJnVEVWYkRLMWVuTjRjWXhnaXE0Nm1XWENzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9hYWUwMTctNWFmZC00YmZkLThmZGQtZDZlN2RjYzUyNzk5 LzEvUFJnVEVWYkRLMWVuTjRjWXhnaXE0Nm1XWENzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI3ivZkhS HQVJAB6bdox8oPwWjTPxz7mx5ByVOZVt9mNdb88WlOqqgm3uSxUDJ9FZrabYYlPS 6Hyi58kL1pMH/JA9zlNNPrC46QqSkvyxtt/lcDkJS6P55yeMQynAf9Rv4DhWlIT1 x8N2zjzL3RomXG/IjIcg/Fq6SvtEKYQn7qVMZcYJg5YleaIHdmxPLJuCTPB1xe+c 3ji7XgvM1JkEw1odLSz0D39GXKf6kepgYOezVXYndrGWiM8VzSgi3qNjjMZOckET Cx9oQeE/fOKzombsTZ+9na9F/dXN0EwfEJRSM8z83SAbuI99w0iK7ekBvb5evf8b FUfp/r6fzpyqew== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:25 2025 by rpki-client