This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft File: PS60FH7nv8a6cvwDSUU0mPAA5YE.mft (raw, json) Hash identifier: 1uYm79B5G1ZdzHFfbp/Co/il5EWXiOsLp00gZv7HyqI= Subject key identifier: 16:39:4D:3D:7D:52:76:47:41:18:C3:1B:8C:41:5E:E3:50:C6:5E:C9 Authority key identifier: 3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81 Certificate issuer: /CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581 Certificate serial: 019B22BE5C6F0EA9D575758166EFA66CC09B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft Manifest number: 046E Signing time: Mon 15 Dec 2025 16:00:59 +0000 Manifest this update: Mon 15 Dec 2025 16:00:59 +0000 Manifest next update: Tue 16 Dec 2025 16:00:59 +0000 Files and hashes: 1: 9dpvTj3dN-E7QsiczyUqUE2pmXg.roa (hash: jPZhbMHjd5Wy0OIvYiA0rk7oPkiRrytJe32NXuq6K3g=) 2: PS60FH7nv8a6cvwDSUU0mPAA5YE.crl (hash: jdjUpJysQyzMa6AxzjDs17qbKwEdiIX3UD95snG0dFE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:be:5c:6f:0e:a9:d5:75:75:81:66:ef:a6:6c:c0:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d2eb4147ee7bfc6ba72fc0349453498f000e581 Validity Not Before: Dec 15 16:00:59 2025 GMT Not After : Dec 16 16:00:59 2025 GMT Subject: CN=16394d3d7d5276474118c31b8c415ee350c65ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:05:b4:34:ec:3f:18:af:29:43:bd:18:57: 56:b0:22:c4:d6:a3:7e:28:07:52:a4:63:b0:53:33: 89:cd:30:e1:6d:50:f3:39:21:a6:eb:a9:ec:28:6e: c1:27:f6:4d:79:78:88:20:40:6d:37:63:2a:83:9c: fc:55:14:56:c1:35:49:2e:04:7f:af:39:95:91:dd: f8:d5:bd:f2:fd:20:fe:58:04:c2:ff:71:7e:d1:ce: 08:cc:4e:45:12:b3:25:9c:40:44:f7:90:95:ca:9f: 0d:1c:a9:7b:a7:07:b4:db:59:a7:f8:73:e9:43:ce: 6a:cc:d1:83:10:35:ce:c7:0f:db:42:6f:18:a7:77: 31:8b:d9:35:a8:f0:29:a9:5d:38:1b:31:a4:99:31: 26:eb:31:03:85:6a:d9:a1:7a:98:c0:07:cc:22:9f: 2d:f7:f8:f0:b8:f8:4a:1c:de:b7:ca:fc:e1:0e:e7: e9:4c:63:91:ed:26:43:41:3f:71:d8:45:d1:5c:78: 38:ec:17:65:c8:08:97:af:d3:b5:f9:df:4e:ed:06: 10:48:ce:66:73:7b:09:64:ce:29:a8:50:81:c4:37: 91:82:91:af:c2:8c:1a:1c:d5:1e:08:45:bd:41:9f: a2:e2:60:83:e6:64:1c:3e:e0:7e:86:11:9c:d1:bc: 0e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:39:4D:3D:7D:52:76:47:41:18:C3:1B:8C:41:5E:E3:50:C6:5E:C9 X509v3 Authority Key Identifier: keyid:3D:2E:B4:14:7E:E7:BF:C6:BA:72:FC:03:49:45:34:98:F0:00:E5:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PS60FH7nv8a6cvwDSUU0mPAA5YE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/b8f53f-467f-45cf-8306-42951c2ca738/1/PS60FH7nv8a6cvwDSUU0mPAA5YE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:74:e4:3d:4e:55:83:8e:84:3e:4f:d3:1b:01:9c:84:01:e9: 7d:82:4c:54:8a:e3:21:6f:8a:6a:0b:45:73:fe:2b:01:e5:66: f4:55:aa:95:a9:74:ab:fc:6e:0d:13:31:63:37:be:f1:f4:db: e9:f4:3f:8d:4e:d0:bb:69:72:de:3a:65:f6:77:dd:bc:13:70: e7:f9:61:69:f5:f2:ec:4b:09:c3:c4:f9:fd:85:d6:9e:55:fb: 69:46:10:a1:9b:e5:0c:c4:98:da:97:df:22:e9:9a:92:f8:5c: 54:3c:9b:c2:a8:c7:1f:7d:37:58:b1:44:2d:73:da:f0:66:b7: 48:0d:8a:02:db:9a:c3:00:39:5e:7d:da:4f:5b:9e:39:67:d5: 3c:d3:92:54:75:89:c6:36:00:46:1e:74:61:47:4a:59:0e:3c: bc:7e:ab:7f:35:c3:ff:64:ac:67:d0:1c:38:b5:a2:1b:b3:40: f1:2d:c3:ce:23:2c:22:9f:a8:8c:10:98:b5:44:07:a0:a5:b2: 9d:cb:cc:6f:42:bd:08:0f:8a:0b:62:b6:ad:97:03:a4:58:0b: 46:1c:3c:57:14:d7:4c:77:76:46:6a:0e:bc:d8:02:ca:02:c6: 4a:7c:c7:fb:03:d2:dc:fb:99:8e:f1:22:81:1e:73:b1:8b:c2: 87:c0:54:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsivlxvDqnVdXWBZu+mbMCbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMmViNDE0N2VlN2JmYzZiYTcyZmMwMzQ5NDUzNDk4ZjAw MGU1ODEwHhcNMjUxMjE1MTYwMDU5WhcNMjUxMjE2MTYwMDU5WjAzMTEwLwYDVQQD EygxNjM5NGQzZDdkNTI3NjQ3NDExOGMzMWI4YzQxNWVlMzUwYzY1ZWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxL4FtDTsPxivKUO9GFdWsCLE1qN+ KAdSpGOwUzOJzTDhbVDzOSGm66nsKG7BJ/ZNeXiIIEBtN2Mqg5z8VRRWwTVJLgR/ rzmVkd341b3y/SD+WATC/3F+0c4IzE5FErMlnEBE95CVyp8NHKl7pwe021mn+HPp Q85qzNGDEDXOxw/bQm8Yp3cxi9k1qPApqV04GzGkmTEm6zEDhWrZoXqYwAfMIp8t 9/jwuPhKHN63yvzhDufpTGOR7SZDQT9x2EXRXHg47BdlyAiXr9O1+d9O7QYQSM5m c3sJZM4pqFCBxDeRgpGvwowaHNUeCEW9QZ+i4mCD5mQcPuB+hhGc0bwOEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBY5TT19UnZHQRjDG4xBXuNQxl7JMB8GA1UdIwQY MBaAFD0utBR+57/GunL8A0lFNJjwAOWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9iOGY1M2YtNDY3Zi00NWNmLTgzMDYt NDI5NTFjMmNhNzM4LzEvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9iOGY1M2YtNDY3Zi00NWNmLTgzMDYtNDI5NTFjMmNhNzM4 LzEvUFM2MEZIN252OGE2Y3Z3RFNVVTBtUEFBNVlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHTkPU5V g46EPk/TGwGchAHpfYJMVIrjIW+KagtFc/4rAeVm9FWqlal0q/xuDRMxYze+8fTb 6fQ/jU7Qu2ly3jpl9nfdvBNw5/lhafXy7EsJw8T5/YXWnlX7aUYQoZvlDMSY2pff IumakvhcVDybwqjHH303WLFELXPa8Ga3SA2KAtuawwA5Xn3aT1ueOWfVPNOSVHWJ xjYARh50YUdKWQ48vH6rfzXD/2SsZ9AcOLWiG7NA8S3DziMsIp+ojBCYtUQHoKWy ncvMb0K9CA+KC2K2rZcDpFgLRhw8VxTXTHd2RmoOvNgCygLGSnzH+wPS3PuZjvEi gR5zsYvCh8BUWw== -----END CERTIFICATE-----Generated at Mon Dec 15 20:02:15 2025 by rpki-client