This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft File: PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft (raw, json) Hash identifier: ZxR/E2+3HqivPbyvJLE79MuHtYDfKnYKPnqcSYzeSdM= Subject key identifier: BA:BA:26:40:7A:58:99:FE:09:36:E1:5A:0E:AF:C2:10:86:36:05:19 Authority key identifier: 3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08 Certificate issuer: /CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408 Certificate serial: 019B18DFD70A123D08D5A998BDEBA6F7563B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft Manifest number: 0FFC Signing time: Sat 13 Dec 2025 18:01:21 +0000 Manifest this update: Sat 13 Dec 2025 18:01:21 +0000 Manifest next update: Sun 14 Dec 2025 18:01:21 +0000 Files and hashes: 1: J60Pw4hyKKjQhqi1eSTzFtauoi0.roa (hash: Pts66hPVy/S0JFZfVc88DLunALgdL+k1upaL/I3M97g=) 2: PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl (hash: vdh97Qel4G99ZeGtqh5zNI3xzJ9w1JKVEYydWReHwyk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:df:d7:0a:12:3d:08:d5:a9:98:bd:eb:a6:f7:56:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d767d5fe7ef3f228bddbde5a0e5c18006f75408 Validity Not Before: Dec 13 18:01:21 2025 GMT Not After : Dec 14 18:01:21 2025 GMT Subject: CN=baba26407a5899fe0936e15a0eafc21086360519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:25:1e:35:33:ea:f4:f0:90:f6:61:98:d1: da:7b:f4:4a:dc:ac:18:71:e2:94:ef:7a:90:fe:35: 7f:b5:c6:78:76:2c:40:71:fd:48:cd:5b:75:fa:01: 73:a2:a4:4f:b0:1d:28:19:64:aa:51:20:98:16:e2: 1a:98:12:2d:31:54:95:dd:aa:23:e8:cf:68:0a:7b: 27:c2:13:01:e4:8a:07:8d:69:01:6d:2c:31:b1:75: b9:25:62:94:e8:11:7a:05:85:90:ee:a3:29:b4:0d: bf:c8:bc:e5:a6:b2:38:4a:c9:a0:18:c3:d9:b3:41: 4f:4e:d0:7f:3f:34:21:d5:fe:cc:6c:31:0a:11:92: e6:03:fd:97:cc:36:66:f4:4d:96:1f:81:a5:bf:dc: 99:56:95:ff:87:3b:8e:f3:cb:37:af:b1:cc:39:a3: b7:a1:99:09:f4:b3:14:b3:9a:b6:9c:b5:04:0a:c1: ee:c4:54:62:a0:a7:8c:ef:33:d1:5a:11:5f:c6:fa: 8d:30:61:51:82:87:75:87:87:60:fe:1b:f1:e1:5d: 11:b6:21:bf:10:5d:5b:fb:e7:f1:ea:28:de:94:f5: 5c:b8:af:a6:e3:a5:3b:65:13:b8:c6:a2:a5:a1:20: 5b:57:0f:30:6d:ab:1a:6d:df:c2:4c:f9:78:90:00: 7c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BA:26:40:7A:58:99:FE:09:36:E1:5A:0E:AF:C2:10:86:36:05:19 X509v3 Authority Key Identifier: keyid:3D:76:7D:5F:E7:EF:3F:22:8B:DD:BD:E5:A0:E5:C1:80:06:F7:54:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXZ9X-fvPyKL3b3loOXBgAb3VAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/074982-db01-4747-9d12-ff72e4fa93a5/1/PXZ9X-fvPyKL3b3loOXBgAb3VAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:de:29:f1:00:b2:2e:ff:fd:7b:58:9d:78:0b:28:30:95:1e: 83:e9:3c:ea:8b:4d:7b:d1:8d:22:a6:03:fc:d6:41:ec:b7:13: b2:5f:97:82:09:cd:ef:a7:5a:e0:9f:bd:4e:c6:86:99:5a:09: 16:40:ca:97:b6:15:fa:b4:02:1a:50:da:b4:3f:93:ff:e4:80: 72:51:0a:52:ad:d4:96:04:ab:50:97:ff:9d:dc:b9:87:8f:7d: 90:cf:23:52:a5:73:db:9b:74:02:ea:02:83:bd:e9:05:f0:df: 06:08:e5:06:ae:bf:c5:1b:1c:f7:3e:c3:41:3a:74:97:28:47: 85:57:db:9c:7a:52:e8:12:ea:d6:c7:da:04:5b:26:10:15:10: f7:e9:34:1c:3b:54:3e:b7:8d:7a:0e:58:ac:c8:2c:03:1f:38: d3:21:e7:18:d1:32:5f:2f:43:16:0b:c8:cc:70:2f:73:78:2a: 2d:05:53:a1:c2:b8:93:d2:55:86:30:72:d5:33:68:93:31:6f: 2b:26:d8:5d:e5:34:97:0b:84:14:af:d7:19:ee:7b:5b:2c:16: 06:d2:59:0b:ef:37:f7:7e:d2:09:9d:7c:86:84:7e:7b:5a:90: 39:4a:84:aa:5f:46:51:00:67:45:82:c6:d8:11:61:1d:e0:14: 3f:74:22:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsY39cKEj0I1amYveum91Y7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkNzY3ZDVmZTdlZjNmMjI4YmRkYmRlNWEwZTVjMTgwMDZm NzU0MDgwHhcNMjUxMjEzMTgwMTIxWhcNMjUxMjE0MTgwMTIxWjAzMTEwLwYDVQQD EyhiYWJhMjY0MDdhNTg5OWZlMDkzNmUxNWEwZWFmYzIxMDg2MzYwNTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxl8lHjUz6vTwkPZhmNHae/RK3KwY ceKU73qQ/jV/tcZ4dixAcf1IzVt1+gFzoqRPsB0oGWSqUSCYFuIamBItMVSV3aoj 6M9oCnsnwhMB5IoHjWkBbSwxsXW5JWKU6BF6BYWQ7qMptA2/yLzlprI4SsmgGMPZ s0FPTtB/PzQh1f7MbDEKEZLmA/2XzDZm9E2WH4Glv9yZVpX/hzuO88s3r7HMOaO3 oZkJ9LMUs5q2nLUECsHuxFRioKeM7zPRWhFfxvqNMGFRgod1h4dg/hvx4V0RtiG/ EF1b++fx6ijelPVcuK+m46U7ZRO4xqKloSBbVw8wbasabd/CTPl4kAB8fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLq6JkB6WJn+CTbhWg6vwhCGNgUZMB8GA1UdIwQY MBaAFD12fV/n7z8ii9295aDlwYAG91QIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8wNzQ5ODItZGIwMS00NzQ3LTlkMTIt ZmY3MmU0ZmE5M2E1LzEvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8wNzQ5ODItZGIwMS00NzQ3LTlkMTItZmY3MmU0ZmE5M2E1 LzEvUFhaOVgtZnZQeUtMM2IzbG9PWEJnQWIzVkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm94p8QCy Lv/9e1ideAsoMJUeg+k86otNe9GNIqYD/NZB7LcTsl+XggnN76da4J+9TsaGmVoJ FkDKl7YV+rQCGlDatD+T/+SAclEKUq3UlgSrUJf/ndy5h499kM8jUqVz25t0AuoC g73pBfDfBgjlBq6/xRsc9z7DQTp0lyhHhVfbnHpS6BLq1sfaBFsmEBUQ9+k0HDtU PreNeg5YrMgsAx840yHnGNEyXy9DFgvIzHAvc3gqLQVTocK4k9JVhjBy1TNokzFv KybYXeU0lwuEFK/XGe57WywWBtJZC+83937SCZ18hoR+e1qQOUqEql9GUQBnRYLG 2BFhHeAUP3QiaQ== -----END CERTIFICATE-----Generated at Sun Dec 14 00:06:26 2025 by rpki-client