This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft File: P6LWhQu8RyBVepF03LyXYK7MCxo.mft (raw, json) Hash identifier: oKvmlcpg7oiGFGwr86kWvABt2FsskTJo7oM8drgrSzk= Subject key identifier: 80:2E:F9:84:9E:25:2C:1B:25:F4:BD:CE:47:C7:4A:CB:51:C0:46:D2 Authority key identifier: 3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A Certificate issuer: /CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a Certificate serial: 019B4C5ED9124359473A0F68D3112BC8CADE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft Manifest number: 149C Signing time: Tue 23 Dec 2025 18:00:42 +0000 Manifest this update: Tue 23 Dec 2025 18:00:42 +0000 Manifest next update: Wed 24 Dec 2025 18:00:42 +0000 Files and hashes: 1: GAO-zTi3etu6ipkvC2n1MQjAfa8.roa (hash: xkkdl+Sobv3rMi6edmSVvQinnG04ZdzSM/7er87DV0E=) 2: P6LWhQu8RyBVepF03LyXYK7MCxo.crl (hash: X3Bs6zKTA32DZ6e2esjnz8Jqw3Am68ZLokislheWkzY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4c:5e:d9:12:43:59:47:3a:0f:68:d3:11:2b:c8:ca:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a Validity Not Before: Dec 23 18:00:42 2025 GMT Not After : Dec 24 18:00:42 2025 GMT Subject: CN=802ef9849e252c1b25f4bdce47c74acb51c046d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:48:45:f9:9f:cc:68:14:0e:62:f0:ae:86:dd: fb:b5:51:70:05:24:56:58:fc:e4:90:ff:d7:73:39: 5c:fd:b7:43:c7:d2:86:b1:00:f2:f4:40:cf:43:22: 8e:3e:0d:bb:c6:21:c1:91:a3:f0:7e:8b:48:4e:6d: f0:77:f7:25:a1:ae:cd:75:61:90:03:1c:2e:ce:63: 17:ae:ea:ab:c0:cd:40:94:0f:9c:b7:5d:ac:bb:6d: e6:fd:7e:6b:ec:12:46:e3:8c:c9:ee:33:af:4d:d1: fb:67:d5:f0:3e:a6:93:e7:a8:4b:f0:f3:7a:9d:79: c8:ec:da:4f:a6:93:60:52:ac:98:99:08:63:83:db: 20:06:51:0a:57:ca:9b:25:57:44:7c:db:1d:96:70: 11:6a:6b:cb:ee:59:82:14:a3:71:3f:cf:0a:31:6c: 71:41:91:a5:78:1c:cf:96:83:f7:19:d3:3d:87:e8: 6d:ae:bf:02:17:f2:69:b5:83:06:c5:be:e7:f9:42: 2a:ca:16:34:55:cf:51:84:c4:ab:33:f7:5a:c4:f9: 23:38:33:8d:c8:51:1e:5f:60:db:12:07:9d:52:0e: 8b:53:a8:f3:39:8b:ff:1a:ed:93:52:90:42:98:e9: ae:c4:39:94:de:9d:a8:64:6d:a7:94:bd:14:a7:58: d9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2E:F9:84:9E:25:2C:1B:25:F4:BD:CE:47:C7:4A:CB:51:C0:46:D2 X509v3 Authority Key Identifier: keyid:3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:5d:75:de:60:51:21:33:21:9b:d8:a6:65:80:0b:b1:fa:f1: e7:d9:07:b6:54:00:b6:47:62:00:2a:d3:b5:71:6d:23:c8:66: 85:a2:a2:79:fb:c0:a0:ee:20:62:08:19:bd:85:6a:ce:7b:f0: 07:cf:7a:4f:9e:73:b6:c0:89:5d:01:10:9a:7d:1b:19:d5:95: a2:81:7e:6a:c2:77:3e:7a:6f:61:43:aa:94:83:71:d7:b8:a9: 76:2e:35:34:cb:3c:e7:97:df:a0:ee:1a:7a:55:9d:a6:58:9f: a2:74:e6:4f:e0:6f:74:87:45:75:5c:d9:81:0b:2f:63:33:96: 42:c8:95:39:b7:c2:56:ca:71:7e:71:b9:64:17:8c:85:2b:07: 72:05:1e:4d:46:17:3e:03:c2:28:15:64:08:7f:fc:c1:d0:2f: 78:59:50:99:db:bc:54:da:15:a5:5f:d7:69:09:ae:0e:a7:e7: 98:8e:cd:28:69:5c:bc:d3:f3:f7:f8:7e:58:8a:cd:c5:b7:22: 10:44:96:9f:db:8d:f7:06:4f:91:18:18:3e:af:a0:2b:c8:ce: cf:32:75:a5:b2:21:34:21:14:68:2d:f8:83:8b:fd:a1:ec:23: 86:71:c4:1b:59:20:ab:93:78:16:bf:2c:ce:d5:fa:aa:81:72: 84:3e:cf:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtMXtkSQ1lHOg9o0xEryMreMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmYTJkNjg1MGJiYzQ3MjA1NTdhOTE3NGRjYmM5NzYwYWVj YzBiMWEwHhcNMjUxMjIzMTgwMDQyWhcNMjUxMjI0MTgwMDQyWjAzMTEwLwYDVQQD Eyg4MDJlZjk4NDllMjUyYzFiMjVmNGJkY2U0N2M3NGFjYjUxYzA0NmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0hF+Z/MaBQOYvCuht37tVFwBSRW WPzkkP/Xczlc/bdDx9KGsQDy9EDPQyKOPg27xiHBkaPwfotITm3wd/cloa7NdWGQ AxwuzmMXruqrwM1AlA+ct12su23m/X5r7BJG44zJ7jOvTdH7Z9XwPqaT56hL8PN6 nXnI7NpPppNgUqyYmQhjg9sgBlEKV8qbJVdEfNsdlnARamvL7lmCFKNxP88KMWxx QZGleBzPloP3GdM9h+htrr8CF/JptYMGxb7n+UIqyhY0Vc9RhMSrM/daxPkjODON yFEeX2DbEgedUg6LU6jzOYv/Gu2TUpBCmOmuxDmU3p2oZG2nlL0Up1jZAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIAu+YSeJSwbJfS9zkfHSstRwEbSMB8GA1UdIwQY MBaAFD+i1oULvEcgVXqRdNy8l2CuzAsaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9jM2M3NTgtYTI1My00OTg5LWFlMmQt OWM2NWQxODhlNTRlLzEvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9jM2M3NTgtYTI1My00OTg5LWFlMmQtOWM2NWQxODhlNTRl LzEvUDZMV2hRdThSeUJWZXBGMDNMeVhZSzdNQ3hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANF113mBR ITMhm9imZYALsfrx59kHtlQAtkdiACrTtXFtI8hmhaKiefvAoO4gYggZvYVqznvw B896T55ztsCJXQEQmn0bGdWVooF+asJ3PnpvYUOqlINx17ipdi41NMs855ffoO4a elWdplifonTmT+BvdIdFdVzZgQsvYzOWQsiVObfCVspxfnG5ZBeMhSsHcgUeTUYX PgPCKBVkCH/8wdAveFlQmdu8VNoVpV/XaQmuDqfnmI7NKGlcvNPz9/h+WIrNxbci EESWn9uN9wZPkRgYPq+gK8jOzzJ1pbIhNCEUaC34g4v9oewjhnHEG1kgq5N4Fr8s ztX6qoFyhD7PBw== -----END CERTIFICATE-----Generated at Tue Dec 23 21:52:41 2025 by rpki-client