This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: YK3SMYPKdgV77yZ/TAn6RDZl2ez4r2wWRhbqox4iP6M= Subject key identifier: 58:BF:5F:1A:2A:AA:FF:B1:19:C3:3C:F0:F9:16:16:82:EC:90:08:21 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019B120231113337D2B3E5C9CE521AD8694C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 153B Signing time: Fri 12 Dec 2025 10:01:31 +0000 Manifest this update: Fri 12 Dec 2025 10:01:31 +0000 Manifest next update: Sat 13 Dec 2025 10:01:31 +0000 Files and hashes: 1: 4_O_iIpyAI9RehObq-pOpadb0Oc.roa (hash: yk0faU3G873g+gLSQoGVoe7NYYyCWEaHzHI6ZIk9UdY=) 2: 7loUqY3SMQ476AvW8cBj_oE5D0w.roa (hash: 9ZWiK7Ya0oQoJXKuXssFNZZZ1jcO9WaxjH/2eSSyYlw=) 3: 9qXJnie35SdfH2J2EgodKBngTzA.roa (hash: jwDaD5ZgcucjZdcdoISWLpA3Zdrcncz7G1jWAlDHN4k=) 4: _K6pKy4r_yxn6KKjdedN6hKQIRc.roa (hash: Fa8PiwPRQ/Nbg/tMa4sLtAZckTKFYG8hQ2oLAm3z+YE=) 5: eeGo9wragRSvkLaXijzUVv6g1UQ.roa (hash: f0fCuBwmYqh4E9JpX2SXK0IGaTdlCqkrpCwPLzLM7U8=) 6: f_BAmJDU6YD_W-jGGFTEv2Fs7Ak.roa (hash: PaLYZLAv0TrU+Bsc9bxTmK6PnOfA5lCBIqcJSl9Ay7o=) 7: h0Rq-64YdH2Rhgx8VqQPxecaOJk.roa (hash: +OMPPDfPiGbQBs5xm10WtKzO2XvkhzUC6VL8TFg0R8M=) 8: p7CrYRPqjfqg5-SpOOWgZYcH7pg.roa (hash: VxeYJO6+oO8JTtkcjhdpm2dOlDG12rU/cm/baKhjYqs=) 9: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: N+eXbPcd6FcZmjNeSLwh4KKfrRZ92SEPWEwO5wQmZKA=) 10: vm5i6AVzmYzAz9qPwbnD4VrLfVA.roa (hash: VDQ8oeDiLzJU7KaKEM2DHEI37PMjg/GP0JQI1knZDEc=) 11: yj9vr2VnE10QnxtDsz-n2QVr0i4.roa (hash: oY4OEejijqth0Kn/mWSI257F9MR4bW3yyLCjseFCr/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:02:31:11:33:37:d2:b3:e5:c9:ce:52:1a:d8:69:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Dec 12 10:01:31 2025 GMT Not After : Dec 13 10:01:31 2025 GMT Subject: CN=58bf5f1a2aaaffb119c33cf0f9161682ec900821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:31:b6:8f:53:d7:a1:c8:13:1c:4d:7f:2d:a1: c9:2e:9c:72:1c:40:d0:51:36:98:da:65:d9:1a:ea: fc:47:f4:a1:f3:31:59:b2:24:33:ff:59:5d:20:67: c4:6e:47:99:10:46:a3:e3:bd:82:5e:59:5a:ea:01: 1c:7f:47:25:ec:1c:e2:4d:07:f3:11:97:5e:27:45: cf:99:7a:d5:b3:77:9c:eb:51:a5:71:a7:d7:ff:ee: 0a:13:33:a3:09:07:a4:14:b3:51:db:23:ad:24:68: 90:6c:21:e4:11:00:fb:a0:88:c2:ff:ed:86:0c:84: 5a:10:64:75:5e:19:95:ac:03:fe:ca:25:9a:35:b2: 39:8b:1f:8a:65:b5:df:da:9b:13:a2:6c:57:b4:be: a7:ac:b6:7b:ac:f6:0f:a2:4b:02:46:78:2f:ff:3d: 19:f6:00:ff:d7:21:88:f9:81:3f:08:e4:d4:85:0e: 80:1f:6c:bf:71:19:3f:22:f2:42:1b:5f:bc:e7:ce: 48:1e:7b:6f:6c:0e:1c:58:80:8c:4c:71:cd:64:7c: 17:89:dd:1a:6e:c5:90:3b:1d:78:a5:2e:73:ff:0b: e9:db:63:19:a0:1e:ed:40:5d:8e:f5:46:3f:64:52: e4:ee:e3:50:a0:fc:c4:98:de:b1:9e:9a:58:c1:05: 07:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:BF:5F:1A:2A:AA:FF:B1:19:C3:3C:F0:F9:16:16:82:EC:90:08:21 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:29:19:80:d3:a4:14:25:22:3b:b3:ac:96:46:df:b3:82:62: 21:f9:b6:53:6b:6d:72:2e:8d:4c:38:d6:1c:33:64:25:1e:8d: e3:10:5d:e4:6e:40:52:5f:0a:db:93:ca:5d:60:54:6f:be:ef: 1c:4a:f6:19:f6:f1:63:cc:8c:ef:d2:64:d2:0c:1f:be:ae:7f: d9:f9:a2:f0:a6:29:09:15:56:34:9b:ba:6d:36:91:a9:ce:3e: 18:8c:12:9c:89:c2:b7:90:55:29:dd:6a:fc:4b:d3:8d:21:c9: 80:42:73:23:43:a5:af:4c:a8:e6:84:5a:28:dc:9a:67:bd:94: c8:8c:ef:0c:64:b9:54:0f:d0:24:df:c6:68:ce:2c:02:49:3b: 88:95:4f:91:65:28:70:f6:16:f9:55:54:b5:69:00:8a:f6:3f: 25:98:99:7f:ca:7b:6b:cd:9f:02:17:12:b2:42:b4:80:ac:dc: 09:ef:1f:63:7b:1d:1a:13:f4:b4:68:34:4d:fc:c8:03:e4:fb: 8b:c8:c1:95:f2:f3:fc:1e:4c:53:86:c3:87:c2:8a:75:50:58: 45:2d:b4:fb:e5:66:bc:4b:54:8c:ee:88:cd:72:0d:e5:38:ef: 4b:d4:2e:43:b6:83:cc:23:ac:09:37:e3:2a:1d:50:7e:2a:66: 7a:4a:1e:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAjERMzfSs+XJzlIa2GlMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjUxMjEyMTAwMTMxWhcNMjUxMjEzMTAwMTMxWjAzMTEwLwYDVQQD Eyg1OGJmNWYxYTJhYWFmZmIxMTljMzNjZjBmOTE2MTY4MmVjOTAwODIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2DG2j1PXocgTHE1/LaHJLpxyHEDQ UTaY2mXZGur8R/Sh8zFZsiQz/1ldIGfEbkeZEEaj472CXlla6gEcf0cl7BziTQfz EZdeJ0XPmXrVs3ec61GlcafX/+4KEzOjCQekFLNR2yOtJGiQbCHkEQD7oIjC/+2G DIRaEGR1XhmVrAP+yiWaNbI5ix+KZbXf2psTomxXtL6nrLZ7rPYPoksCRngv/z0Z 9gD/1yGI+YE/COTUhQ6AH2y/cRk/IvJCG1+8585IHntvbA4cWICMTHHNZHwXid0a bsWQOx14pS5z/wvp22MZoB7tQF2O9UY/ZFLk7uNQoPzEmN6xnppYwQUHPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFi/Xxoqqv+xGcM88PkWFoLskAghMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVSkZgNOk FCUiO7Oslkbfs4JiIfm2U2ttci6NTDjWHDNkJR6N4xBd5G5AUl8K25PKXWBUb77v HEr2GfbxY8yM79Jk0gwfvq5/2fmi8KYpCRVWNJu6bTaRqc4+GIwSnInCt5BVKd1q /EvTjSHJgEJzI0Olr0yo5oRaKNyaZ72UyIzvDGS5VA/QJN/GaM4sAkk7iJVPkWUo cPYW+VVUtWkAivY/JZiZf8p7a82fAhcSskK0gKzcCe8fY3sdGhP0tGg0TfzIA+T7 i8jBlfLz/B5MU4bDh8KKdVBYRS20++VmvEtUjO6IzXIN5TjvS9QuQ7aDzCOsCTfj Kh1QfipmekoeIg== -----END CERTIFICATE-----Generated at Fri Dec 12 17:12:15 2025 by rpki-client