This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json) Hash identifier: phFZMLMaPu7WEhmWsvF4CStJPK82/p9ktoxZ0VMjhsg= Subject key identifier: 73:FF:20:37:48:8B:B2:AF:B2:E3:20:05:C0:C7:EB:68:9B:7C:81:42 Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a Certificate serial: 019B318C8AB7A296A6409198FDF6BAB1F845 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft Manifest number: 0460 Signing time: Thu 18 Dec 2025 13:00:52 +0000 Manifest this update: Thu 18 Dec 2025 13:00:52 +0000 Manifest next update: Fri 19 Dec 2025 13:00:52 +0000 Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=) 2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: AK1X7qDmN12Uy0W+d3rNEsAlcJfCAh0Shq2B8QoY2HQ=) 3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=) 4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:8c:8a:b7:a2:96:a6:40:91:98:fd:f6:ba:b1:f8:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a Validity Not Before: Dec 18 13:00:52 2025 GMT Not After : Dec 19 13:00:52 2025 GMT Subject: CN=73ff2037488bb2afb2e32005c0c7eb689b7c8142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7f:eb:a9:d8:7e:b6:ab:ff:ed:68:f1:4d:1f: 68:ab:c5:64:b1:67:15:77:49:f4:f9:5e:c5:ed:ee: 45:11:c9:c3:18:8b:ee:80:9c:88:8e:b1:4c:0b:9e: fb:c6:59:8c:1f:63:b1:a7:80:e3:be:77:48:cd:48: f9:08:7a:c2:c8:a4:35:cc:d0:33:a1:aa:25:86:7e: ef:cb:93:12:95:79:69:d7:95:9d:4d:47:0d:fe:72: 5e:3a:90:7a:af:c7:a0:bc:28:03:a2:ae:d4:92:5b: 06:ff:58:68:b9:1f:cd:42:8a:b4:5b:c9:58:7d:82: ab:9f:bf:2d:45:99:89:b0:a6:5b:82:60:1d:1f:05: f0:1c:f5:bf:0b:40:4b:24:66:3d:ec:43:0f:f0:06: e4:7d:82:46:5a:ec:19:e5:f1:35:c0:83:55:c0:82: 23:48:1c:ae:e4:89:46:22:3d:d1:91:44:d0:ff:8a: b7:a6:64:06:a8:3a:10:b6:88:67:b6:99:28:dd:cd: a4:24:b2:6e:b0:d4:92:42:1a:8b:6f:88:d0:75:f3: 38:0b:a2:d8:e8:03:35:82:00:26:88:8a:cc:9d:c4: 79:76:60:a8:dc:cd:7d:a6:10:03:01:08:9f:e3:7a: dc:fd:3a:d9:14:c5:d6:6d:fb:23:a8:ea:f6:2f:1a: 18:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FF:20:37:48:8B:B2:AF:B2:E3:20:05:C0:C7:EB:68:9B:7C:81:42 X509v3 Authority Key Identifier: keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:7e:65:d5:86:f8:f0:9e:43:c1:08:58:1d:a2:55:b2:b6:3e: f0:ee:e3:86:32:5a:2e:d3:48:42:92:9a:2f:15:8d:06:fb:a7: 83:ed:2e:73:8c:03:76:2a:4e:29:ce:bf:11:fe:79:01:84:be: f6:43:08:f5:ca:b6:b1:30:33:aa:fb:1a:62:0b:19:ba:5f:36: fd:cf:c2:47:08:cb:fa:c1:b8:1e:d1:d5:6f:07:25:c6:f3:bc: 0d:b1:88:83:8d:92:9d:56:6e:e4:01:bc:10:20:a9:58:4c:73: 98:cc:16:b0:62:f9:35:c8:da:52:d9:88:09:19:34:98:90:59: ea:8e:fd:9b:aa:93:01:4f:68:98:61:88:e4:9e:6c:9f:93:4d: ec:74:4d:cf:98:0e:92:d1:72:73:f8:56:fc:a4:72:70:6e:48: c7:85:68:2c:d3:72:51:ab:56:dd:fc:34:ba:c1:5f:cd:22:0f: a2:74:8b:b1:f6:42:f1:3b:a5:23:15:10:88:3f:6c:e7:21:18: fc:8b:33:6d:d5:d0:45:f5:3f:4e:4b:31:a9:74:6c:fd:4d:ba: 05:bb:1d:e1:8a:4c:aa:f1:9a:9f:60:52:6e:b9:7c:a3:e6:bc: b6:07:a2:59:be:0a:ad:db:30:dc:9e:71:fb:82:d5:1d:39:0d: b9:a6:60:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxjIq3opamQJGY/fa6sfhFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjYTQ0N2ZkMDk3OWI4YTk4OTM1NWMzNTRkMzA0ZDExNGQy MDcyN2EwHhcNMjUxMjE4MTMwMDUyWhcNMjUxMjE5MTMwMDUyWjAzMTEwLwYDVQQD Eyg3M2ZmMjAzNzQ4OGJiMmFmYjJlMzIwMDVjMGM3ZWI2ODliN2M4MTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwH/rqdh+tqv/7WjxTR9oq8VksWcV d0n0+V7F7e5FEcnDGIvugJyIjrFMC577xlmMH2Oxp4DjvndIzUj5CHrCyKQ1zNAz oaolhn7vy5MSlXlp15WdTUcN/nJeOpB6r8egvCgDoq7UklsG/1houR/NQoq0W8lY fYKrn78tRZmJsKZbgmAdHwXwHPW/C0BLJGY97EMP8AbkfYJGWuwZ5fE1wINVwIIj SByu5IlGIj3RkUTQ/4q3pmQGqDoQtohntpko3c2kJLJusNSSQhqLb4jQdfM4C6LY 6AM1ggAmiIrMncR5dmCo3M19phADAQif43rc/TrZFMXWbfsjqOr2LxoYZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHP/IDdIi7KvsuMgBcDH62ibfIFCMB8GA1UdIwQY MBaAFDykR/0JebipiTVcNU0wTRFNIHJ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGIt YTZlZjc1MmM2ZGMyLzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGItYTZlZjc1MmM2ZGMy LzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO35l1Yb4 8J5DwQhYHaJVsrY+8O7jhjJaLtNIQpKaLxWNBvung+0uc4wDdipOKc6/Ef55AYS+ 9kMI9cq2sTAzqvsaYgsZul82/c/CRwjL+sG4HtHVbwclxvO8DbGIg42SnVZu5AG8 ECCpWExzmMwWsGL5NcjaUtmICRk0mJBZ6o79m6qTAU9omGGI5J5sn5NN7HRNz5gO ktFyc/hW/KRycG5Ix4VoLNNyUatW3fw0usFfzSIPonSLsfZC8TulIxUQiD9s5yEY /IszbdXQRfU/TksxqXRs/U26Bbsd4YpMqvGan2BSbrl8o+a8tgeiWb4Krdsw3J5x +4LVHTkNuaZgUg== -----END CERTIFICATE-----Generated at Thu Dec 18 22:39:04 2025 by rpki-client