This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft File: pl24nou2YPIetcSvO5rdUtV-uJ8.mft (raw, json) Hash identifier: Rj0zO6NY4k35tk7YMSc3wQ+V3SpCw0cNVE3t12G3yd8= Subject key identifier: B6:BE:D1:4D:23:4C:6C:4E:F6:EA:D5:49:ED:BF:4D:2F:E6:EC:41:76 Authority key identifier: A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F Certificate issuer: /CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f Certificate serial: 019B1014DDEF816045E8DFF3C6546562DD4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft Manifest number: 04DA Signing time: Fri 12 Dec 2025 01:02:41 +0000 Manifest this update: Fri 12 Dec 2025 01:02:41 +0000 Manifest next update: Sat 13 Dec 2025 01:02:41 +0000 Files and hashes: 1: dz9PyU4ctyXKZ49cHOyHFCLYwcU.roa (hash: 3Y8oozkK4fYw8w+acos4s7WtEJkSyImOIymISL/lshA=) 2: pl24nou2YPIetcSvO5rdUtV-uJ8.crl (hash: z+/B9C1d4vXw6myZi3POo+zHALIY9I2+AkF3c9a89DA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:dd:ef:81:60:45:e8:df:f3:c6:54:65:62:dd:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a65db89e8bb660f21eb5c4af3b9add52d57eb89f Validity Not Before: Dec 12 01:02:41 2025 GMT Not After : Dec 13 01:02:41 2025 GMT Subject: CN=b6bed14d234c6c4ef6ead549edbf4d2fe6ec4176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:5d:d0:b8:bc:a0:c5:ce:a0:40:84:cf:27: f2:31:b4:d8:c3:16:e0:3f:10:f8:e2:68:11:d1:e5: 83:5c:8b:16:6a:8a:1a:3b:b2:e1:1f:81:67:9b:dd: ee:f5:a9:b5:42:f5:cc:23:8b:c3:93:c6:ad:f6:bc: 6b:99:9f:7b:b4:ef:f4:33:66:cd:71:f1:37:b3:58: 72:9e:dd:e1:f2:f3:d6:23:ec:49:8c:93:f5:68:5e: 2f:2b:b2:65:84:87:5f:4a:63:27:87:aa:b0:f2:4e: e2:53:a3:96:29:b9:0b:21:97:1d:13:13:7b:67:4a: e6:99:99:ac:99:4b:3e:3f:a9:c2:19:5f:d2:46:8a: 25:77:4d:8d:df:10:2e:e5:9d:5d:c9:58:51:a6:11: b9:0f:d4:23:ac:48:ae:b4:e3:6b:41:9e:1e:c9:53: 5d:d8:ea:b2:19:e5:9d:bb:ec:17:85:cb:e7:6b:30: 76:1f:91:0e:36:d1:c0:4f:e7:98:44:22:a6:12:02: c5:06:e4:b3:d8:f6:66:3f:1f:ab:fe:89:48:04:da: a3:36:93:1e:09:32:51:ac:a7:ef:04:04:7f:9e:b6: 87:42:45:ea:70:14:cf:de:52:b8:d3:a0:a9:72:33: c8:3d:5d:d4:e3:b6:dd:da:12:09:f6:26:cc:af:ae: 56:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BE:D1:4D:23:4C:6C:4E:F6:EA:D5:49:ED:BF:4D:2F:E6:EC:41:76 X509v3 Authority Key Identifier: keyid:A6:5D:B8:9E:8B:B6:60:F2:1E:B5:C4:AF:3B:9A:DD:52:D5:7E:B8:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pl24nou2YPIetcSvO5rdUtV-uJ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3b06a3-caf4-4d6c-bb7b-a3578c944040/1/pl24nou2YPIetcSvO5rdUtV-uJ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ff:e4:33:44:63:f7:4f:a5:3a:e4:34:d6:31:c4:e2:50:b7: ac:40:c9:55:d1:b1:4c:5c:db:6a:fd:21:be:d7:fb:8f:4b:89: 29:ef:72:c7:4e:9e:fa:cc:60:90:94:51:98:20:e7:01:3d:c8: 74:6a:51:8f:53:8a:3c:98:c6:88:90:b3:19:41:63:ed:9f:6b: 92:e0:03:53:14:b2:59:87:00:2c:6d:e2:5e:0d:0b:cc:5a:be: 20:f7:8b:9e:5d:4f:41:49:99:d2:b1:54:8f:45:28:90:ba:f6: 7d:32:0c:ec:4d:03:79:0c:7a:e9:9e:04:02:18:f4:e2:e9:ac: fc:4c:53:57:83:f1:84:39:fa:b7:a8:f6:e4:30:63:68:24:d8: 84:ff:09:6a:fe:86:f5:8e:1b:44:2c:d8:fd:6f:25:bc:0f:f6: 3f:24:c0:a4:a5:d0:6a:4d:b6:ea:1e:e1:70:fe:1b:e0:07:a0: a6:7a:66:99:e5:28:74:08:31:12:89:57:39:22:95:0c:96:a6: 8c:67:92:94:b2:a5:db:4a:73:21:97:d8:67:82:0a:98:a2:e9: 8e:a6:35:3b:1d:1a:9d:3b:80:54:cd:d7:bb:b7:f2:fc:d3:33: 39:24:02:65:26:c8:bb:b3:57:01:af:7b:99:73:8b:d0:dc:fd: b5:f9:68:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFN3vgWBF6N/zxlRlYt1NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NWRiODllOGJiNjYwZjIxZWI1YzRhZjNiOWFkZDUyZDU3 ZWI4OWYwHhcNMjUxMjEyMDEwMjQxWhcNMjUxMjEzMDEwMjQxWjAzMTEwLwYDVQQD EyhiNmJlZDE0ZDIzNGM2YzRlZjZlYWQ1NDllZGJmNGQyZmU2ZWM0MTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunRd0Li8oMXOoECEzyfyMbTYwxbg PxD44mgR0eWDXIsWaooaO7LhH4Fnm93u9am1QvXMI4vDk8at9rxrmZ97tO/0M2bN cfE3s1hynt3h8vPWI+xJjJP1aF4vK7JlhIdfSmMnh6qw8k7iU6OWKbkLIZcdExN7 Z0rmmZmsmUs+P6nCGV/SRoold02N3xAu5Z1dyVhRphG5D9QjrEiutONrQZ4eyVNd 2OqyGeWdu+wXhcvnazB2H5EONtHAT+eYRCKmEgLFBuSz2PZmPx+r/olIBNqjNpMe CTJRrKfvBAR/nraHQkXqcBTP3lK406CpcjPIPV3U47bd2hIJ9ibMr65W8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLa+0U0jTGxO9urVSe2/TS/m7EF2MB8GA1UdIwQY MBaAFKZduJ6LtmDyHrXErzua3VLVfrifMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGwyNG5vdTJZUElldGNTdk81cmRVdFYtdUo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8zYjA2YTMtY2FmNC00ZDZjLWJiN2It YTM1NzhjOTQ0MDQwLzEvcGwyNG5vdTJZUElldGNTdk81cmRVdFYtdUo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS8zYjA2YTMtY2FmNC00ZDZjLWJiN2ItYTM1NzhjOTQ0MDQw LzEvcGwyNG5vdTJZUElldGNTdk81cmRVdFYtdUo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC//kM0Rj 90+lOuQ01jHE4lC3rEDJVdGxTFzbav0hvtf7j0uJKe9yx06e+sxgkJRRmCDnAT3I dGpRj1OKPJjGiJCzGUFj7Z9rkuADUxSyWYcALG3iXg0LzFq+IPeLnl1PQUmZ0rFU j0UokLr2fTIM7E0DeQx66Z4EAhj04ums/ExTV4PxhDn6t6j25DBjaCTYhP8Jav6G 9Y4bRCzY/W8lvA/2PyTApKXQak226h7hcP4b4AegpnpmmeUodAgxEolXOSKVDJam jGeSlLKl20pzIZfYZ4IKmKLpjqY1Ox0anTuAVM3Xu7fy/NMzOSQCZSbIu7NXAa97 mXOL0Nz9tfloFw== -----END CERTIFICATE-----Generated at Fri Dec 12 07:43:37 2025 by rpki-client