This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft File: praJ3e9Y8KM4Pi71qjonxP5FMY4.mft (raw, json) Hash identifier: WI5WjIc1/ESKYzgkJTKR8mJGGP78LVsMHD6FUAbwOC0= Subject key identifier: 6D:B9:55:95:FB:54:4F:11:1D:36:BA:AA:43:CB:73:78:59:8C:4B:8E Authority key identifier: A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E Certificate issuer: /CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e Certificate serial: 019B20D007F7B0A16F1883C3D9C4B90B1CD7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft Manifest number: 177A Signing time: Mon 15 Dec 2025 07:01:02 +0000 Manifest this update: Mon 15 Dec 2025 07:01:02 +0000 Manifest next update: Tue 16 Dec 2025 07:01:02 +0000 Files and hashes: 1: 1-hqyEGwonCGY9K2L38Pw7_zJV_k.roa (hash: a3BoJ3dncPr176aD5ziB0Bh5202joOPjBl2mIqn/r/0=) 2: praJ3e9Y8KM4Pi71qjonxP5FMY4.crl (hash: F1SY5zJZDktcEkUo4oWDUj+F+5fDDW0cRjIQIDsFNec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 07:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:d0:07:f7:b0:a1:6f:18:83:c3:d9:c4:b9:0b:1c:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6b689ddef58f0a3383e2ef5aa3a27c4fe45318e Validity Not Before: Dec 15 07:01:02 2025 GMT Not After : Dec 16 07:01:02 2025 GMT Subject: CN=6db95595fb544f111d36baaa43cb7378598c4b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:6e:14:99:5a:26:48:0c:fa:b0:27:91:18:60: 76:8b:d0:17:07:85:1e:7c:7d:7b:7f:f4:ee:30:15: 76:05:dd:9f:89:52:c0:7f:7c:8b:00:74:84:75:dc: 99:f4:18:89:4e:b2:66:71:be:34:48:89:8f:68:53: c1:b2:d7:28:ca:0b:a7:25:c1:fe:c6:ac:f2:5a:9c: 6b:9a:07:3f:24:4b:d8:d5:e5:75:9e:67:ac:3d:30: a1:89:b3:f6:2d:c4:d2:f6:c9:02:ee:05:9f:97:1c: 09:e2:db:56:1e:9a:2d:4a:44:9a:8e:20:12:e1:3c: 98:86:48:92:5d:d3:2c:78:3c:4a:73:2e:23:04:15: 8d:17:06:96:a1:a5:f6:18:f8:a7:04:19:6a:82:0f: 2a:f7:94:d9:72:e6:09:18:84:c7:4c:63:5a:b4:77: f2:1b:47:2c:c5:de:4d:f3:02:ec:28:7f:f2:c0:3c: 9c:de:4e:40:34:07:7e:e4:bb:25:a6:a2:2d:b0:41: c6:95:1f:88:5a:52:74:14:42:86:8c:6d:a1:99:f6: 08:87:32:3e:46:f7:fc:23:d0:73:3d:e2:88:0b:58: 6e:f8:7a:b7:21:4c:9d:f9:39:a5:dd:6e:8b:0b:af: aa:ec:ce:2b:e6:23:7d:38:6d:2a:c4:3d:09:b7:1b: 91:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:B9:55:95:FB:54:4F:11:1D:36:BA:AA:43:CB:73:78:59:8C:4B:8E X509v3 Authority Key Identifier: keyid:A6:B6:89:DD:EF:58:F0:A3:38:3E:2E:F5:AA:3A:27:C4:FE:45:31:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/praJ3e9Y8KM4Pi71qjonxP5FMY4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8fef7f-d011-4cdb-ac0a-31700f0e1a61/1/praJ3e9Y8KM4Pi71qjonxP5FMY4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:7d:88:6c:80:37:56:12:22:38:93:16:28:0e:06:7b:c1:1e: 33:b0:c2:ee:77:88:cb:cf:36:35:a4:c2:bd:b0:f9:91:40:3d: e7:eb:eb:25:91:3d:23:d5:7a:4a:61:85:3d:cf:5a:7d:68:65: 2c:88:af:dc:f1:b6:39:55:cb:fd:1c:f6:01:80:ed:65:2a:ec: d1:92:05:74:5a:58:ae:b9:0b:8d:7b:49:35:25:16:fe:f9:74: 95:f5:2e:5b:f5:92:be:81:71:c6:d3:db:8d:57:76:20:06:4c: a4:5f:a2:5a:dd:84:08:49:a6:52:7d:97:82:47:78:8b:bf:57: 0c:1e:37:18:87:20:4e:2e:ca:60:c8:c8:61:37:48:8c:e4:4b: 3f:b0:40:06:ac:ea:28:eb:85:19:02:eb:66:77:3e:41:7c:3b: c1:53:53:e7:d8:8d:c8:61:9a:32:54:7e:1c:51:22:11:e3:f1: 59:32:84:0d:7e:e6:d4:22:d6:e2:54:e7:d8:ca:52:29:a7:c9: d2:07:c4:70:e9:9b:27:9f:44:b8:21:41:a6:aa:c2:40:6f:e7: f4:41:ea:a9:41:e5:2b:92:20:15:85:ac:39:12:c4:7d:59:30: 78:2c:83:a6:59:cf:47:f3:4f:f8:c7:67:bf:23:ae:b6:cf:75: 68:91:7d:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsg0Af3sKFvGIPD2cS5CxzXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2YjY4OWRkZWY1OGYwYTMzODNlMmVmNWFhM2EyN2M0ZmU0 NTMxOGUwHhcNMjUxMjE1MDcwMTAyWhcNMjUxMjE2MDcwMTAyWjAzMTEwLwYDVQQD Eyg2ZGI5NTU5NWZiNTQ0ZjExMWQzNmJhYWE0M2NiNzM3ODU5OGM0YjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlW4UmVomSAz6sCeRGGB2i9AXB4Ue fH17f/TuMBV2Bd2fiVLAf3yLAHSEddyZ9BiJTrJmcb40SImPaFPBstcoygunJcH+ xqzyWpxrmgc/JEvY1eV1nmesPTChibP2LcTS9skC7gWflxwJ4ttWHpotSkSajiAS 4TyYhkiSXdMseDxKcy4jBBWNFwaWoaX2GPinBBlqgg8q95TZcuYJGITHTGNatHfy G0csxd5N8wLsKH/ywDyc3k5ANAd+5LslpqItsEHGlR+IWlJ0FEKGjG2hmfYIhzI+ Rvf8I9BzPeKIC1hu+Hq3IUyd+Tml3W6LC6+q7M4r5iN9OG0qxD0JtxuRlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG25VZX7VE8RHTa6qkPLc3hZjEuOMB8GA1UdIwQY MBaAFKa2id3vWPCjOD4u9ao6J8T+RTGOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC84ZmVmN2YtZDAxMS00Y2RiLWFjMGEt MzE3MDBmMGUxYTYxLzEvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC84ZmVmN2YtZDAxMS00Y2RiLWFjMGEtMzE3MDBmMGUxYTYx LzEvcHJhSjNlOVk4S000UGk3MXFqb254UDVGTVk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVH2IbIA3 VhIiOJMWKA4Ge8EeM7DC7neIy882NaTCvbD5kUA95+vrJZE9I9V6SmGFPc9afWhl LIiv3PG2OVXL/Rz2AYDtZSrs0ZIFdFpYrrkLjXtJNSUW/vl0lfUuW/WSvoFxxtPb jVd2IAZMpF+iWt2ECEmmUn2Xgkd4i79XDB43GIcgTi7KYMjIYTdIjORLP7BABqzq KOuFGQLrZnc+QXw7wVNT59iNyGGaMlR+HFEiEePxWTKEDX7m1CLW4lTn2MpSKafJ 0gfEcOmbJ59EuCFBpqrCQG/n9EHqqUHlK5IgFYWsORLEfVkweCyDplnPR/NP+Mdn vyOuts91aJF9gw== -----END CERTIFICATE-----Generated at Mon Dec 15 13:36:28 2025 by rpki-client