This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft File: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft (raw, json) Hash identifier: RNyTsFlKtHE1vSygZS97BAunhezD1xOZc+6WcxqkT6M= Subject key identifier: 4F:47:0A:06:26:9E:3E:31:7B:2C:6C:07:D4:0E:8E:57:E7:45:88:9E Authority key identifier: A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1 Certificate issuer: /CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1 Certificate serial: 019B378E8CA01834EB1E1F835B6D5F597402 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft Manifest number: 0419 Signing time: Fri 19 Dec 2025 17:00:47 +0000 Manifest this update: Fri 19 Dec 2025 17:00:47 +0000 Manifest next update: Sat 20 Dec 2025 17:00:47 +0000 Files and hashes: 1: aU9nU6J43VKML7pOttC9ZY6jQ98.roa (hash: FbRy0Mzafv2hiOEuNsxPoMw70K3GoSJZXHuz7LnmQeE=) 2: pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl (hash: gLy4vneySyrVrrBmvIbKS7IAl5JU4z9sY1DTFQQRSj8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:8c:a0:18:34:eb:1e:1f:83:5b:6d:5f:59:74:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1 Validity Not Before: Dec 19 17:00:47 2025 GMT Not After : Dec 20 17:00:47 2025 GMT Subject: CN=4f470a06269e3e317b2c6c07d40e8e57e745889e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c0:da:f9:37:cb:45:e5:a7:c3:a7:80:2c:a1: d8:0a:3b:5c:d4:b2:51:49:35:cb:d7:45:67:25:46: 21:3e:d6:0b:ea:68:64:0c:db:ea:78:70:05:a0:2e: 87:4f:91:01:0b:5f:da:7a:bc:98:14:61:4d:7f:bb: 3d:47:25:87:8f:8e:5e:4f:3b:0b:87:7f:43:95:a0: f7:4d:3d:f6:dc:db:2a:2f:f9:50:63:dd:30:09:86: 3a:63:5b:8a:46:3e:c8:1f:ab:42:6c:d0:20:a7:ab: 64:d3:11:fa:85:bf:cb:ae:09:15:70:2a:6d:30:6e: 6a:84:95:70:f4:ff:bb:c8:5b:e6:07:14:28:f4:8f: c0:63:c5:0d:4a:6a:75:60:56:04:d6:39:7f:ef:77: a1:ba:ef:8d:49:c0:6c:19:2f:bb:05:a7:49:b7:3a: 1d:29:0b:11:6c:4c:39:05:ca:b0:db:6b:a7:08:69: 4a:c3:31:be:7f:71:58:43:e5:fc:0f:ca:09:e1:87: 03:f1:21:eb:ab:bc:93:17:02:ef:ec:3d:10:42:fb: f9:a3:81:80:fd:4d:eb:a4:32:fe:14:8f:5b:53:9a: d7:20:04:d7:65:f0:1f:b1:ce:51:c9:17:d1:97:16: a8:67:b8:68:cc:db:ed:8e:70:33:29:5b:b0:1e:b0: e6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:47:0A:06:26:9E:3E:31:7B:2C:6C:07:D4:0E:8E:57:E7:45:88:9E X509v3 Authority Key Identifier: keyid:A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e5:37:19:65:1a:1c:41:a7:43:e9:58:f9:db:d3:0f:fe:df: d2:2e:39:3b:8e:ad:29:91:9f:07:6e:db:66:23:56:57:12:fe: dd:24:1e:6f:18:a2:ab:91:c3:72:01:7b:f8:0d:1b:9e:6c:fc: 81:50:e5:05:63:6c:9e:1f:2f:0d:37:2a:c5:5b:cd:60:ff:a6: bb:ad:71:1f:e6:18:99:85:0d:1a:d0:e4:2e:42:ae:88:4d:78: 83:84:0e:5a:de:41:c5:c7:af:81:96:1d:53:e0:93:2b:3e:d2: 99:97:ad:85:f4:89:26:22:ef:6a:c3:09:d1:f1:b8:ff:da:e0: fd:b9:0a:c8:69:cb:ef:8a:a2:59:42:84:1b:73:d8:40:b7:ee: 90:b8:2b:c0:ab:47:83:d2:7a:33:49:12:35:95:08:55:22:1f: 22:d2:d4:62:e0:63:db:ca:c9:1d:f8:53:77:6b:6d:e9:44:ad: be:9f:15:8e:f5:ab:13:5f:aa:ed:37:44:7f:73:eb:92:dd:db: 3d:e2:19:43:0f:43:f1:1f:be:2b:aa:1c:2f:01:2b:06:38:bc: 8d:ff:d3:05:6d:ee:e1:b5:93:b7:6f:05:64:77:43:4e:5d:78: 3c:fd:1e:57:8e:ed:77:35:c3:99:8f:f0:47:97:0a:d2:ea:af: 2f:de:3a:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3joygGDTrHh+DW21fWXQCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZjU1MzNhNTI3YjI2NGNhMmU4MzczMjg1ZDc4MGQzM2Ey YmQwYTEwHhcNMjUxMjE5MTcwMDQ3WhcNMjUxMjIwMTcwMDQ3WjAzMTEwLwYDVQQD Eyg0ZjQ3MGEwNjI2OWUzZTMxN2IyYzZjMDdkNDBlOGU1N2U3NDU4ODllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysDa+TfLReWnw6eALKHYCjtc1LJR STXL10VnJUYhPtYL6mhkDNvqeHAFoC6HT5EBC1/aeryYFGFNf7s9RyWHj45eTzsL h39DlaD3TT323NsqL/lQY90wCYY6Y1uKRj7IH6tCbNAgp6tk0xH6hb/LrgkVcCpt MG5qhJVw9P+7yFvmBxQo9I/AY8UNSmp1YFYE1jl/73ehuu+NScBsGS+7BadJtzod KQsRbEw5Bcqw22unCGlKwzG+f3FYQ+X8D8oJ4YcD8SHrq7yTFwLv7D0QQvv5o4GA /U3rpDL+FI9bU5rXIATXZfAfsc5RyRfRlxaoZ7hozNvtjnAzKVuwHrDm5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE9HCgYmnj4xeyxsB9QOjlfnRYieMB8GA1UdIwQY MBaAFKT1UzpSeyZMoug3MoXXgNM6K9ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYt NDI0NDYyYmM5NDliLzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYtNDI0NDYyYmM5NDli LzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQeU3GWUa HEGnQ+lY+dvTD/7f0i45O46tKZGfB27bZiNWVxL+3SQebxiiq5HDcgF7+A0bnmz8 gVDlBWNsnh8vDTcqxVvNYP+mu61xH+YYmYUNGtDkLkKuiE14g4QOWt5BxcevgZYd U+CTKz7SmZethfSJJiLvasMJ0fG4/9rg/bkKyGnL74qiWUKEG3PYQLfukLgrwKtH g9J6M0kSNZUIVSIfItLUYuBj28rJHfhTd2tt6UStvp8VjvWrE1+q7TdEf3Prkt3b PeIZQw9D8R++K6ocLwErBji8jf/TBW3u4bWTt28FZHdDTl14PP0eV47tdzXDmY/w R5cK0uqvL946Cw== -----END CERTIFICATE-----Generated at Fri Dec 19 22:08:05 2025 by rpki-client