This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json) Hash identifier: U+hbf90RMfg+ZJq0PuzPsYUt7K2dq6zOmVguqdos7VI= Subject key identifier: 85:3A:69:42:4C:C5:55:03:0F:DB:8A:0C:9C:F8:FE:EC:A1:A2:8C:A6 Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Certificate serial: 019AE67233F0BC87F9DA50A5EEB78D0C7BA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft Manifest number: 0B63 Signing time: Wed 03 Dec 2025 23:00:35 +0000 Manifest this update: Wed 03 Dec 2025 23:00:35 +0000 Manifest next update: Thu 04 Dec 2025 23:00:35 +0000 Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=) 2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=) 3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: piXYClhJ6DIBpO/49lagY/azLnbDd2SwVX8qrZCa5a4=) 4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=) 5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 23:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e6:72:33:f0:bc:87:f9:da:50:a5:ee:b7:8d:0c:7b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Validity Not Before: Dec 3 23:00:35 2025 GMT Not After : Dec 4 23:00:35 2025 GMT Subject: CN=853a69424cc555030fdb8a0c9cf8feeca1a28ca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cb:b4:87:06:b8:ac:df:cb:ea:2e:b4:9b:2f: 93:fc:24:87:45:e0:a9:e4:33:c1:08:05:5f:79:88: 2e:c3:52:59:96:3a:a9:6b:49:fc:f7:fe:9d:a8:1b: ba:36:d6:88:0f:ff:06:bd:45:71:72:52:4e:a1:e5: 79:95:bf:cc:67:24:6b:dc:3a:53:19:d5:37:68:bd: af:a9:bb:07:11:ab:f1:e8:ec:f2:a5:b3:04:da:bc: 67:b1:8e:57:d4:1c:b8:f7:d5:fb:25:3c:5c:22:ca: 41:09:8c:4d:7e:8e:a5:43:c9:49:5e:ff:cb:c4:f9: d3:24:b9:1b:00:bd:90:44:99:d4:82:45:6b:64:db: 80:19:eb:dc:5a:f8:f9:1f:32:af:38:81:02:9c:ab: b6:5c:fa:bb:7b:dc:d2:c1:6c:4c:ba:d8:ce:a9:0e: 95:f4:c5:14:46:ac:ca:6d:d6:a7:73:d8:7e:65:fc: b6:ff:e4:08:fe:91:81:5a:e8:99:08:f2:c7:cc:a1: 34:00:a2:e0:c0:42:d5:44:39:11:5a:e4:25:13:93: 94:97:fa:38:ee:5d:9d:f8:ac:f0:a6:79:32:d0:bf: 2f:fc:78:37:1f:df:5f:d4:aa:74:4c:40:05:d6:a1: 3a:e8:df:29:23:87:97:78:df:6c:d5:5b:f7:88:aa: 07:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3A:69:42:4C:C5:55:03:0F:DB:8A:0C:9C:F8:FE:EC:A1:A2:8C:A6 X509v3 Authority Key Identifier: keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:cd:5e:ad:0f:5a:9e:1d:cd:15:a3:e3:0b:f9:c3:ac:44:f7: 77:1e:b2:12:34:35:ab:63:b5:07:2d:db:7a:af:fc:ae:6d:61: c4:93:09:2d:92:c8:d5:51:36:70:61:29:01:e8:5b:09:67:4b: a1:79:c4:35:a7:2c:a5:d4:a7:e6:5c:ea:23:68:ec:44:25:6d: dd:e7:17:44:5f:59:d8:5e:17:65:a2:3c:d7:e0:e8:79:40:bd: 2f:9d:81:2d:8b:0a:2b:ef:f2:ee:aa:2e:60:54:4b:bc:9e:23: 1a:24:a4:80:b6:18:fc:1e:ba:5d:df:48:51:bf:ac:e4:f9:40: 22:56:31:90:3c:28:f4:b8:97:bb:db:90:12:8b:34:c2:10:81: 04:27:82:ba:65:11:e2:c9:8b:a8:d4:66:a6:96:2e:7e:62:cf: 0e:1b:06:38:cf:72:c1:dd:2b:c1:2d:e7:f9:3a:6e:4a:ea:f5: cb:9b:51:d5:09:bc:ff:b2:5a:b1:ff:c6:95:9a:02:fe:49:ed: db:ea:45:b1:18:b8:c5:c6:40:e3:69:2a:57:34:64:bc:3b:fa: 69:03:9e:a4:95:b4:d5:f8:18:52:9a:cf:6b:a5:96:b2:37:18: c8:af:b6:15:28:13:10:cd:ec:a4:83:96:8e:7c:94:97:c1:3c: b9:e3:96:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrmcjPwvIf52lCl7reNDHuoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm OTZkZWMwHhcNMjUxMjAzMjMwMDM1WhcNMjUxMjA0MjMwMDM1WjAzMTEwLwYDVQQD Eyg4NTNhNjk0MjRjYzU1NTAzMGZkYjhhMGM5Y2Y4ZmVlY2ExYTI4Y2E2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1cu0hwa4rN/L6i60my+T/CSHReCp 5DPBCAVfeYguw1JZljqpa0n89/6dqBu6NtaID/8GvUVxclJOoeV5lb/MZyRr3DpT GdU3aL2vqbsHEavx6OzypbME2rxnsY5X1By499X7JTxcIspBCYxNfo6lQ8lJXv/L xPnTJLkbAL2QRJnUgkVrZNuAGevcWvj5HzKvOIECnKu2XPq7e9zSwWxMutjOqQ6V 9MUURqzKbdanc9h+Zfy2/+QI/pGBWuiZCPLHzKE0AKLgwELVRDkRWuQlE5OUl/o4 7l2d+Kzwpnky0L8v/Hg3H99f1Kp0TEAF1qE66N8pI4eXeN9s1Vv3iKoHhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIU6aUJMxVUDD9uKDJz4/uyhooymMB8GA1UdIwQY MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4 LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc81erQ9a nh3NFaPjC/nDrET3dx6yEjQ1q2O1By3beq/8rm1hxJMJLZLI1VE2cGEpAehbCWdL oXnENacspdSn5lzqI2jsRCVt3ecXRF9Z2F4XZaI81+DoeUC9L52BLYsKK+/y7qou YFRLvJ4jGiSkgLYY/B66Xd9IUb+s5PlAIlYxkDwo9LiXu9uQEos0whCBBCeCumUR 4smLqNRmppYufmLPDhsGOM9ywd0rwS3n+TpuSur1y5tR1Qm8/7Jasf/GlZoC/knt 2+pFsRi4xcZA42kqVzRkvDv6aQOepJW01fgYUprPa6WWsjcYyK+2FSgTEM3spIOW jnyUl8E8ueOW7Q== -----END CERTIFICATE-----Generated at Thu Dec 4 05:14:04 2025 by rpki-client