This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.mft File: puiiWpN5KlizotgPsarZWeZa7d8.mft (raw, json) Hash identifier: OTR1rjFGXTt39aHwSx5CEd8x1yUNVBTpTui9cSy3kDE= Subject key identifier: EA:E6:86:16:C2:EA:16:58:66:7B:41:48:7F:2A:72:C6:01:26:7E:BB Authority key identifier: A6:E8:A2:5A:93:79:2A:58:B3:A2:D8:0F:B1:AA:D9:59:E6:5A:ED:DF Certificate issuer: /CN=a6e8a25a93792a58b3a2d80fb1aad959e65aeddf Certificate serial: 019B19BB903A897EBD1AB67D5476B8B76766 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.mft Manifest number: 16D0 Signing time: Sat 13 Dec 2025 22:01:21 +0000 Manifest this update: Sat 13 Dec 2025 22:01:21 +0000 Manifest next update: Sun 14 Dec 2025 22:01:21 +0000 Files and hashes: 1: puiiWpN5KlizotgPsarZWeZa7d8.crl (hash: QlXg/zZn+nA3cODnQvzvcVKyVou5ZTIr0U+XdIpCraY=) 2: wEf0XFewVLDEH498_3ycA_iLwpA.roa (hash: jj8EG5dFJudLiKXib9hP+9XTMUS6HXp2GHHzc8cEo24=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.mft rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 22:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bb:90:3a:89:7e:bd:1a:b6:7d:54:76:b8:b7:67:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6e8a25a93792a58b3a2d80fb1aad959e65aeddf Validity Not Before: Dec 13 22:01:21 2025 GMT Not After : Dec 14 22:01:21 2025 GMT Subject: CN=eae68616c2ea1658667b41487f2a72c601267ebb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:51:18:d2:13:5f:60:68:2d:ec:0c:53:14:c8: fe:a1:b7:26:c6:04:42:67:6a:13:f6:d9:91:3c:a9: 13:85:b8:70:51:e2:f2:d4:9f:f1:17:61:52:c3:d4: 42:b4:b4:11:97:f7:56:58:e8:8b:ec:c6:0b:eb:fb: b2:04:94:80:8d:31:b8:13:ec:d9:6b:81:8f:a8:56: 8a:80:58:11:f3:55:3c:e7:5e:88:85:eb:43:d6:6e: 26:2d:2b:b7:ea:22:6f:24:d4:81:39:7c:6c:eb:f7: cc:cd:13:8a:5f:46:8f:19:28:15:94:fc:60:e9:c4: 46:34:94:37:e0:30:1c:c4:b1:e2:61:4f:66:80:74: c0:55:f5:77:30:96:d8:6a:e2:5c:da:1a:66:5f:b4: f5:d7:37:67:84:c5:8e:49:98:ad:b6:3f:d4:e4:bd: c2:f1:4a:cb:41:8a:28:43:3c:39:95:46:40:bf:4f: 52:26:25:15:ca:28:79:57:39:51:7e:db:dd:b4:aa: 10:7c:68:e0:87:aa:5c:6e:13:3a:58:df:24:02:49: e4:7b:29:b9:21:54:36:16:82:37:8a:0d:20:1c:1c: 3a:de:60:b3:a3:01:22:4e:83:d8:3e:b6:a6:c3:49: 47:22:c2:33:68:ad:f0:09:0f:db:39:85:7b:fe:b8: e4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E6:86:16:C2:EA:16:58:66:7B:41:48:7F:2A:72:C6:01:26:7E:BB X509v3 Authority Key Identifier: keyid:A6:E8:A2:5A:93:79:2A:58:B3:A2:D8:0F:B1:AA:D9:59:E6:5A:ED:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/puiiWpN5KlizotgPsarZWeZa7d8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4c6e75-a800-4d4f-8ac7-4eaeb2a23b27/1/puiiWpN5KlizotgPsarZWeZa7d8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:35:c2:7a:aa:51:8c:f2:b4:ae:f0:b2:86:da:5c:b8:59:c5: b3:51:d3:5c:86:fb:d1:aa:97:fb:af:89:8d:41:d4:0c:df:1d: 31:b7:cf:c3:a0:2e:82:d0:23:26:13:39:84:6e:b9:96:e7:39: 1f:e1:30:96:d9:20:b0:78:63:78:e8:09:e4:b1:d3:da:71:51: 07:76:59:7d:3a:f4:2c:e9:4f:81:ba:7c:e3:4c:08:e2:80:c3: 8b:a0:9b:6d:b4:2d:e1:96:df:92:0a:7d:aa:86:aa:01:ef:19: b2:8e:6e:03:53:b9:dd:99:7b:98:db:df:56:68:0a:65:95:2c: 32:21:8c:bc:35:c4:dc:0b:31:54:db:20:ef:1d:ac:a1:33:41: 03:e6:05:5b:a7:8d:2a:72:f4:78:39:0a:5f:9e:e8:1a:8a:85: 4d:90:f4:2e:26:bc:e7:96:e3:92:9b:60:92:33:05:49:5f:49: bf:c0:f0:b8:67:28:cd:a1:91:6b:de:52:41:55:97:57:f9:bb: 1a:3e:6d:67:84:c8:31:da:89:a3:7d:50:a0:22:20:19:55:16: 35:32:cd:ad:86:25:8b:91:65:6f:56:33:3f:0c:23:a3:05:2a: cc:8c:e0:82:c6:0e:79:24:ee:4c:f5:82:fc:34:d3:12:b0:6c: 4c:0f:98:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZu5A6iX69GrZ9VHa4t2dmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2ZThhMjVhOTM3OTJhNThiM2EyZDgwZmIxYWFkOTU5ZTY1 YWVkZGYwHhcNMjUxMjEzMjIwMTIxWhcNMjUxMjE0MjIwMTIxWjAzMTEwLwYDVQQD EyhlYWU2ODYxNmMyZWExNjU4NjY3YjQxNDg3ZjJhNzJjNjAxMjY3ZWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8FEY0hNfYGgt7AxTFMj+obcmxgRC Z2oT9tmRPKkThbhwUeLy1J/xF2FSw9RCtLQRl/dWWOiL7MYL6/uyBJSAjTG4E+zZ a4GPqFaKgFgR81U8516IhetD1m4mLSu36iJvJNSBOXxs6/fMzROKX0aPGSgVlPxg 6cRGNJQ34DAcxLHiYU9mgHTAVfV3MJbYauJc2hpmX7T11zdnhMWOSZittj/U5L3C 8UrLQYooQzw5lUZAv09SJiUVyih5VzlRftvdtKoQfGjgh6pcbhM6WN8kAknkeym5 IVQ2FoI3ig0gHBw63mCzowEiToPYPramw0lHIsIzaK3wCQ/bOYV7/rjk2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrmhhbC6hZYZntBSH8qcsYBJn67MB8GA1UdIwQY MBaAFKboolqTeSpYs6LYD7Gq2VnmWu3fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHVpaVdwTjVLbGl6b3RnUHNhclpXZVphN2Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS80YzZlNzUtYTgwMC00ZDRmLThhYzct NGVhZWIyYTIzYjI3LzEvcHVpaVdwTjVLbGl6b3RnUHNhclpXZVphN2Q4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS80YzZlNzUtYTgwMC00ZDRmLThhYzctNGVhZWIyYTIzYjI3 LzEvcHVpaVdwTjVLbGl6b3RnUHNhclpXZVphN2Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMjXCeqpR jPK0rvCyhtpcuFnFs1HTXIb70aqX+6+JjUHUDN8dMbfPw6AugtAjJhM5hG65luc5 H+EwltkgsHhjeOgJ5LHT2nFRB3ZZfTr0LOlPgbp840wI4oDDi6CbbbQt4Zbfkgp9 qoaqAe8Zso5uA1O53Zl7mNvfVmgKZZUsMiGMvDXE3AsxVNsg7x2soTNBA+YFW6eN KnL0eDkKX57oGoqFTZD0Lia855bjkptgkjMFSV9Jv8DwuGcozaGRa95SQVWXV/m7 Gj5tZ4TIMdqJo31QoCIgGVUWNTLNrYYli5Flb1YzPwwjowUqzIzggsYOeSTuTPWC /DTTErBsTA+Y1A== -----END CERTIFICATE-----Generated at Sun Dec 14 07:50:14 2025 by rpki-client