This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json) Hash identifier: PttML8tc4jPC/WJ49O1myMZfwnTs9VhJFAUlOz+SoAQ= Subject key identifier: 63:9B:5F:BB:B4:AA:25:CA:91:29:CA:3A:3B:D4:52:B8:1B:23:04:76 Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8 Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8 Certificate serial: 019B5D1BA77266B6672492B22947640CE52E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft Manifest number: 0C2E Signing time: Sat 27 Dec 2025 00:00:52 +0000 Manifest this update: Sat 27 Dec 2025 00:00:52 +0000 Manifest next update: Sun 28 Dec 2025 00:00:52 +0000 Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=) 2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: JCwGeMs/kw2ER5xF3lBms4xsvNO9KNRnnIuTDRP08+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5d:1b:a7:72:66:b6:67:24:92:b2:29:47:64:0c:e5:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8 Validity Not Before: Dec 27 00:00:52 2025 GMT Not After : Dec 28 00:00:52 2025 GMT Subject: CN=639b5fbbb4aa25ca9129ca3a3bd452b81b230476 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3f:3c:c7:2f:c0:48:18:8b:83:85:05:11:a9: 79:95:19:4b:41:6a:f1:2b:e6:fb:3e:5b:c0:38:22: 4d:b2:6d:bd:4d:dc:e4:aa:dc:d3:a5:7e:6c:c2:14: 31:9c:03:a3:ee:59:17:90:fc:89:18:f0:50:51:04: 7a:55:67:07:9d:6d:64:a5:4f:fa:b7:c4:7a:cb:31: 94:af:c5:1c:f3:f3:ad:f7:ac:69:0e:d9:d9:6c:e7: 25:03:c0:ea:52:a5:0d:90:d5:ba:58:3e:57:78:86: 9d:d7:13:02:cf:8e:2c:ff:e6:16:78:4e:6b:f8:8b: 40:56:bc:c0:bc:73:39:37:67:d0:cb:4f:c3:08:35: 10:5a:9d:b0:32:54:3d:26:50:ec:91:57:cd:9d:f0: 28:dd:69:79:91:2d:6c:86:ff:3a:fd:fc:44:a0:fc: e2:82:c8:77:18:1f:8c:e8:41:aa:fe:12:e4:b6:ec: 86:01:3c:de:22:2a:b5:db:0f:59:75:1b:e2:e4:6a: 03:ef:a3:21:dd:33:45:28:6d:82:41:44:4e:d4:1b: c3:c8:0e:43:15:8d:04:cd:c4:82:92:6d:b0:d2:42: 2c:89:e7:9b:9b:50:c2:9c:4a:ff:aa:fa:c4:c9:e9: 44:7c:5a:49:af:44:07:a1:97:59:25:0f:70:a7:a7: ed:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9B:5F:BB:B4:AA:25:CA:91:29:CA:3A:3B:D4:52:B8:1B:23:04:76 X509v3 Authority Key Identifier: keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:68:92:d0:11:1a:29:33:8c:ef:8c:49:83:87:7f:7f:57:14: 75:ec:8b:d3:2e:60:72:cd:e0:ba:19:e7:94:bd:fe:88:d1:0f: e1:e8:a0:bd:c7:61:e8:0a:e3:fd:f5:5f:fa:cb:e3:8d:0c:a1: aa:1c:28:a8:f2:ae:0a:97:29:d7:9c:30:e5:b5:50:df:6c:f3: f3:c9:67:d5:b2:87:69:db:c4:77:da:ac:4d:1c:cc:42:03:0d: 10:02:32:85:77:00:06:cc:7a:4c:66:e4:2b:de:ee:4c:f5:62: 64:c6:d2:55:ae:31:f1:e5:ce:4b:be:3f:56:75:30:9e:cf:16: 68:65:9c:26:99:ea:0c:1d:7d:a9:cd:6f:3d:78:7b:eb:87:c9: 57:eb:03:8f:81:38:db:e3:70:74:b8:8f:ea:33:86:71:58:c5: 03:e9:ba:06:32:50:f3:8d:98:4e:8a:c7:79:d2:d8:10:8b:02: 7a:e8:9a:e8:1c:f8:ff:d1:79:dc:2d:ba:3c:ea:75:51:f2:ed: 27:05:4c:3b:2e:55:b6:23:95:5b:23:93:6b:0c:b0:73:ba:3f: 11:03:5f:9d:b4:78:d7:08:bf:ee:39:65:a9:fd:8e:2d:54:56: 7c:89:e6:67:f8:9d:a8:e8:07:c0:29:b8:79:09:f8:1d:79:1b: 4b:bf:64:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtdG6dyZrZnJJKyKUdkDOUuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1OWNhYTJhNzM2ODA2OThiMmM5ZTFhNmM5NjQxYTc0ZjNj ZTc2ZTgwHhcNMjUxMjI3MDAwMDUyWhcNMjUxMjI4MDAwMDUyWjAzMTEwLwYDVQQD Eyg2MzliNWZiYmI0YWEyNWNhOTEyOWNhM2EzYmQ0NTJiODFiMjMwNDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0j88xy/ASBiLg4UFEal5lRlLQWrx K+b7PlvAOCJNsm29TdzkqtzTpX5swhQxnAOj7lkXkPyJGPBQUQR6VWcHnW1kpU/6 t8R6yzGUr8Uc8/Ot96xpDtnZbOclA8DqUqUNkNW6WD5XeIad1xMCz44s/+YWeE5r +ItAVrzAvHM5N2fQy0/DCDUQWp2wMlQ9JlDskVfNnfAo3Wl5kS1shv86/fxEoPzi gsh3GB+M6EGq/hLktuyGATzeIiq12w9ZdRvi5GoD76Mh3TNFKG2CQURO1BvDyA5D FY0EzcSCkm2w0kIsieebm1DCnEr/qvrEyelEfFpJr0QHoZdZJQ9wp6ftzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGObX7u0qiXKkSnKOjvUUrgbIwR2MB8GA1UdIwQY MBaAFKWcqipzaAaYssnhpslkGnTzznboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYt YWU5MWFiMzQyYmUxLzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYtYWU5MWFiMzQyYmUx LzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZmiS0BEa KTOM74xJg4d/f1cUdeyL0y5gcs3guhnnlL3+iNEP4eigvcdh6Arj/fVf+svjjQyh qhwoqPKuCpcp15ww5bVQ32zz88ln1bKHadvEd9qsTRzMQgMNEAIyhXcABsx6TGbk K97uTPViZMbSVa4x8eXOS74/VnUwns8WaGWcJpnqDB19qc1vPXh764fJV+sDj4E4 2+NwdLiP6jOGcVjFA+m6BjJQ842YTorHedLYEIsCeuia6Bz4/9F53C26POp1UfLt JwVMOy5VtiOVWyOTawywc7o/EQNfnbR41wi/7jllqf2OLVRWfInmZ/idqOgHwCm4 eQn4HXkbS79kFw== -----END CERTIFICATE-----Generated at Sat Dec 27 02:00:42 2025 by rpki-client