This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft File: PRf0av89iyHwD-6PY16uNKf0pNc.mft (raw, json) Hash identifier: Sr+MYyJv0L09JVWfPCrNqJWhw/rUdEdlDVKx3cLgMxc= Subject key identifier: 6B:29:61:66:64:5F:65:C6:C8:A9:27:CF:AF:C7:A2:1F:F6:03:3E:95 Authority key identifier: 3D:17:F4:6A:FF:3D:8B:21:F0:0F:EE:8F:63:5E:AE:34:A7:F4:A4:D7 Certificate issuer: /CN=3d17f46aff3d8b21f00fee8f635eae34a7f4a4d7 Certificate serial: 019B597629ACCCD21ECE9EF8E4FF993C2AB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PRf0av89iyHwD-6PY16uNKf0pNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft Manifest number: 0C85 Signing time: Fri 26 Dec 2025 07:01:14 +0000 Manifest this update: Fri 26 Dec 2025 07:01:14 +0000 Manifest next update: Sat 27 Dec 2025 07:01:14 +0000 Files and hashes: 1: PRf0av89iyHwD-6PY16uNKf0pNc.crl (hash: eXTn7/qUy8boBnLRZ1KrhBriWpfqONpRTq9sF4Xy6tM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft rsync://rpki.ripe.net/repository/DEFAULT/PRf0av89iyHwD-6PY16uNKf0pNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:29:ac:cc:d2:1e:ce:9e:f8:e4:ff:99:3c:2a:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d17f46aff3d8b21f00fee8f635eae34a7f4a4d7 Validity Not Before: Dec 26 07:01:14 2025 GMT Not After : Dec 27 07:01:14 2025 GMT Subject: CN=6b296166645f65c6c8a927cfafc7a21ff6033e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b9:3f:bb:3a:4c:82:0a:55:c0:3d:f3:e8:d1: 71:bc:e2:96:c8:ea:da:5d:50:16:bd:45:9d:66:22: 86:34:bc:c9:a0:25:87:99:4d:56:9b:78:62:3f:90: 0f:13:38:79:20:0d:5e:6e:20:b7:56:16:9b:7a:df: fc:32:e7:55:c6:f4:a4:7c:d2:33:f4:a6:8e:68:37: ab:22:83:50:19:01:30:bb:61:ea:80:31:7b:c8:5c: 1c:7b:33:d1:36:d3:c4:e0:0b:59:44:fd:06:00:ee: ba:96:c5:b1:b3:31:a0:9b:90:8a:b9:d3:a6:22:8b: ca:a4:41:38:2c:a6:f9:df:07:6c:25:e1:0a:e7:22: 87:6a:49:b4:68:2e:2f:ae:4e:03:76:a2:f7:72:8d: f3:d5:0b:87:5d:1f:74:9d:c9:82:19:07:5d:33:27: 91:78:58:21:41:ae:c5:4e:69:4d:66:be:ac:f5:37: a3:76:48:74:ba:84:4a:cb:2a:a1:b5:7c:55:29:48: d2:36:52:ee:3f:4b:25:a3:c6:d9:4f:7a:47:74:25: 91:8e:90:f2:09:df:54:8e:c4:b8:8f:80:2a:84:a7: aa:c9:db:2d:08:6c:2d:37:d8:61:fa:be:75:98:e7: 93:9f:4f:11:05:fa:a6:01:a2:f9:df:eb:d1:51:f8: 78:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:29:61:66:64:5F:65:C6:C8:A9:27:CF:AF:C7:A2:1F:F6:03:3E:95 X509v3 Authority Key Identifier: keyid:3D:17:F4:6A:FF:3D:8B:21:F0:0F:EE:8F:63:5E:AE:34:A7:F4:A4:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PRf0av89iyHwD-6PY16uNKf0pNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b281c7-cd9a-4375-b84a-851ed529f222/1/PRf0av89iyHwD-6PY16uNKf0pNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:6a:9e:69:58:97:67:c8:aa:dc:c3:84:56:21:da:90:4c:08: c4:ab:4b:30:66:80:33:09:cc:72:e6:d5:2e:be:7a:50:4f:44: e6:5a:6a:17:78:06:83:4f:37:41:94:89:e6:d6:91:05:6e:87: 9c:c8:cd:8c:df:3b:f0:d6:57:b1:40:22:ac:09:93:19:07:bd: 17:d8:b8:b3:e3:ef:7b:02:7d:ef:19:b9:77:e4:c0:42:df:d6: a6:3a:55:65:a5:f9:0c:c3:d6:cb:4f:3b:37:28:18:1e:db:d5: d8:7f:e4:51:bb:be:3c:e9:7b:46:5d:96:63:88:c4:91:93:09: f6:e7:fa:93:7b:ef:55:ea:c9:1a:c9:1f:7f:5c:c0:69:44:0c: 99:54:1f:0b:06:18:3e:d5:84:62:1e:18:dd:84:29:ab:57:8d: bb:f3:09:91:f9:bb:4e:fc:f3:26:c3:5d:6a:71:9b:b0:a7:3f: ce:eb:1a:3b:0a:ea:3a:7f:31:f6:a8:01:6a:b7:9f:73:c2:e0: e1:72:8e:9b:98:7a:81:81:a2:95:d0:c8:7f:73:a1:98:5c:21: 13:55:4f:89:02:de:81:cb:1c:7e:71:c2:f7:32:31:36:25:de: d8:d3:56:29:d3:1e:94:34:81:62:1a:41:53:6f:69:af:e8:a6: b3:72:a6:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdimszNIezp745P+ZPCqyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkMTdmNDZhZmYzZDhiMjFmMDBmZWU4ZjYzNWVhZTM0YTdm NGE0ZDcwHhcNMjUxMjI2MDcwMTE0WhcNMjUxMjI3MDcwMTE0WjAzMTEwLwYDVQQD Eyg2YjI5NjE2NjY0NWY2NWM2YzhhOTI3Y2ZhZmM3YTIxZmY2MDMzZTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bk/uzpMggpVwD3z6NFxvOKWyOra XVAWvUWdZiKGNLzJoCWHmU1Wm3hiP5APEzh5IA1ebiC3Vhabet/8MudVxvSkfNIz 9KaOaDerIoNQGQEwu2HqgDF7yFwcezPRNtPE4AtZRP0GAO66lsWxszGgm5CKudOm IovKpEE4LKb53wdsJeEK5yKHakm0aC4vrk4DdqL3co3z1QuHXR90ncmCGQddMyeR eFghQa7FTmlNZr6s9Tejdkh0uoRKyyqhtXxVKUjSNlLuP0slo8bZT3pHdCWRjpDy Cd9UjsS4j4AqhKeqydstCGwtN9hh+r51mOeTn08RBfqmAaL53+vRUfh4ywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGspYWZkX2XGyKknz6/Hoh/2Az6VMB8GA1UdIwQY MBaAFD0X9Gr/PYsh8A/uj2NerjSn9KTXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFJmMGF2ODlpeUh3RC02UFkxNnVOS2YwcE5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS9iMjgxYzctY2Q5YS00Mzc1LWI4NGEt ODUxZWQ1MjlmMjIyLzEvUFJmMGF2ODlpeUh3RC02UFkxNnVOS2YwcE5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS9iMjgxYzctY2Q5YS00Mzc1LWI4NGEtODUxZWQ1MjlmMjIy LzEvUFJmMGF2ODlpeUh3RC02UFkxNnVOS2YwcE5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN2qeaViX Z8iq3MOEViHakEwIxKtLMGaAMwnMcubVLr56UE9E5lpqF3gGg083QZSJ5taRBW6H nMjNjN878NZXsUAirAmTGQe9F9i4s+PvewJ97xm5d+TAQt/WpjpVZaX5DMPWy087 NygYHtvV2H/kUbu+POl7Rl2WY4jEkZMJ9uf6k3vvVerJGskff1zAaUQMmVQfCwYY PtWEYh4Y3YQpq1eNu/MJkfm7TvzzJsNdanGbsKc/zusaOwrqOn8x9qgBarefc8Lg 4XKOm5h6gYGildDIf3OhmFwhE1VPiQLegcscfnHC9zIxNiXe2NNWKdMelDSBYhpB U29pr+ims3Kmxg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:02 2025 by rpki-client