This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json) Hash identifier: SJTj171MWPijIUx7vfHIJnoAlG+re9SK0V5QuNKYzAA= Subject key identifier: 7D:FE:38:6F:02:A1:74:AB:29:2A:5C:F1:AC:69:55:D3:48:4F:51:F3 Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81 Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581 Certificate serial: 019B323197AF045F6D0D26652F10F02ADA76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft Manifest number: 0476 Signing time: Thu 18 Dec 2025 16:01:09 +0000 Manifest this update: Thu 18 Dec 2025 16:01:09 +0000 Manifest next update: Fri 19 Dec 2025 16:01:09 +0000 Files and hashes: 1: 9dpvTj3dN-E7QsiczyUqUE2pmXg.roa (hash: jPZhbMHjd5Wy0OIvYiA0rk7oPkiRrytJe32NXuq6K3g=) 2: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: 0BJcR8vm++xDi7ofEfyKLQcJaBZXp4HwsvWGWRKHxHg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 16:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:31:97:af:04:5f:6d:0d:26:65:2f:10:f0:2a:da:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581 Validity Not Before: Dec 18 16:01:09 2025 GMT Not After : Dec 19 16:01:09 2025 GMT Subject: CN=7dfe386f02a174ab292a5cf1ac6955d3484f51f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:26:78:f7:5f:84:46:36:f5:db:c2:da:6f:08: a1:32:5a:a6:0f:c2:80:1a:40:91:30:5a:b1:d8:9e: 26:5a:2a:27:b9:55:39:1a:4b:41:97:05:64:40:52: 19:c8:82:1e:4b:24:0f:85:f1:49:df:43:f3:ee:f6: 6d:0a:dc:d0:ce:75:62:f7:25:ce:5f:b6:ac:66:8d: e2:c2:15:36:c6:69:a9:3d:fe:11:22:40:17:99:80: f5:86:a4:8f:67:44:89:ea:4d:78:13:8e:2d:4b:39: 59:a8:a5:1d:4f:48:23:af:6b:00:1b:79:cb:ae:0c: a5:40:b4:68:84:5e:b5:02:b4:0c:74:0c:53:21:ed: 80:ef:78:80:c0:5d:0d:49:55:3f:d5:51:62:d4:1c: 57:53:f6:e1:fd:7f:17:a9:62:2a:7a:5f:fe:6f:52: 59:3c:55:43:5e:fd:db:30:d9:d8:cb:e9:05:25:ab: 21:69:b0:f9:89:a9:c1:64:70:04:ee:c9:77:57:bd: 51:87:54:57:2f:3e:26:8d:19:6e:8c:75:fb:34:87: 16:62:ff:ed:67:8a:dd:c4:da:a2:13:df:f2:28:82: 8a:54:50:65:33:b3:92:d5:cb:64:55:62:d4:c6:66: 28:a7:a1:2a:a6:21:8a:e2:86:0b:5f:52:73:86:11: 5f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FE:38:6F:02:A1:74:AB:29:2A:5C:F1:AC:69:55:D3:48:4F:51:F3 X509v3 Authority Key Identifier: keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:8d:01:df:54:b1:7c:1e:de:c6:67:ff:56:cc:2f:0a:9e:10: 30:e2:05:21:02:e4:2b:8d:0c:0f:93:c0:ae:e2:1a:2d:56:8d: fb:63:21:ca:04:02:c2:51:b1:45:e1:5c:e6:bc:f8:5c:1e:a8: fd:11:c1:c3:7d:f4:89:4c:d1:77:b3:3a:89:31:01:80:01:89: 07:28:30:ca:63:b6:4f:69:a9:cb:a9:b9:54:68:03:f7:cd:2e: d2:c7:2e:44:68:1f:0c:99:b6:62:ed:27:26:f5:b5:d7:02:7b: 92:a1:4d:99:78:62:d6:52:f0:c3:89:6b:8a:29:79:dd:c1:a8: 42:0e:c8:35:55:e3:cc:3c:29:8b:89:f3:8f:37:df:de:72:84: 99:a8:8c:d3:e6:f7:33:08:74:73:69:73:89:70:14:17:3a:c1: f1:68:cd:34:08:4b:5e:5f:00:21:4d:11:01:a5:6b:f1:6b:e3: 78:7f:b9:03:64:8e:90:49:79:0d:a0:12:6c:ee:6a:44:4a:92: 23:cc:93:3c:ed:3f:42:50:48:d0:2c:bf:d8:f1:ee:79:03:53: b0:70:94:cb:16:6f:39:b9:d9:c2:6a:7f:93:68:62:1c:20:87: 59:c0:f0:21:d7:b9:d4:16:02:3a:d9:f0:36:1e:d9:84:ab:7d: 9d:c6:c7:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyMZevBF9tDSZlLxDwKtp2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMmViNDE0N2VlN2JmYzZiYTcyZmMwMzQ5NDUzNDk4ZjAw MGU1ODEwHhcNMjUxMjE4MTYwMTA5WhcNMjUxMjE5MTYwMTA5WjAzMTEwLwYDVQQD Eyg3ZGZlMzg2ZjAyYTE3NGFiMjkyYTVjZjFhYzY5NTVkMzQ4NGY1MWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCZ491+ERjb128LabwihMlqmD8KA GkCRMFqx2J4mWionuVU5GktBlwVkQFIZyIIeSyQPhfFJ30Pz7vZtCtzQznVi9yXO X7asZo3iwhU2xmmpPf4RIkAXmYD1hqSPZ0SJ6k14E44tSzlZqKUdT0gjr2sAG3nL rgylQLRohF61ArQMdAxTIe2A73iAwF0NSVU/1VFi1BxXU/bh/X8XqWIqel/+b1JZ PFVDXv3bMNnYy+kFJashabD5ianBZHAE7sl3V71Rh1RXLz4mjRlujHX7NIcWYv/t Z4rdxNqiE9/yKIKKVFBlM7OS1ctkVWLUxmYop6EqpiGK4oYLX1JzhhFfQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH3+OG8CoXSrKSpc8axpVdNIT1HzMB8GA1UdIwQY MBaAFD0utBR+57/GunL8A0lFNJjwAOWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9iOGY1M2YtNDY3Zi00NWNmLTgzMDYt NDI5NTFjMmNhNzM4LzEvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9iOGY1M2YtNDY3Zi00NWNmLTgzMDYtNDI5NTFjMmNhNzM4 LzEvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF40B31Sx fB7exmf/VswvCp4QMOIFIQLkK40MD5PAruIaLVaN+2MhygQCwlGxReFc5rz4XB6o /RHBw330iUzRd7M6iTEBgAGJBygwymO2T2mpy6m5VGgD980u0scuRGgfDJm2Yu0n JvW11wJ7kqFNmXhi1lLww4lriil53cGoQg7INVXjzDwpi4nzjzff3nKEmaiM0+b3 Mwh0c2lziXAUFzrB8WjNNAhLXl8AIU0RAaVr8WvjeH+5A2SOkEl5DaASbO5qREqS I8yTPO0/QlBI0Cy/2PHueQNTsHCUyxZvObnZwmp/k2hiHCCHWcDwIde51BYCOtnw Nh7ZhKt9ncbHkg== -----END CERTIFICATE-----Generated at Fri Dec 19 00:57:03 2025 by rpki-client