This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft File: PidqxRoTJAHbTNdB2GalRiKg0Vw.mft (raw, json) Hash identifier: KBhswFhdhFjDPgCY7YbytPpvn+Bj6j3vDelxzn7dqAw= Subject key identifier: 20:16:31:86:E4:A4:E6:F4:C8:D6:0E:36:CF:32:D3:6F:06:6D:53:34 Authority key identifier: 3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C Certificate issuer: /CN=3e276ac51a132401db4cd741d866a54622a0d15c Certificate serial: 019B35694E3BF51C310C1B391E8BB94888B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft Manifest number: 14A7 Signing time: Fri 19 Dec 2025 07:00:52 +0000 Manifest this update: Fri 19 Dec 2025 07:00:52 +0000 Manifest next update: Sat 20 Dec 2025 07:00:52 +0000 Files and hashes: 1: PidqxRoTJAHbTNdB2GalRiKg0Vw.crl (hash: gSlkonlW/LE71fGaIXZ2S0aN8+Jzid+cZ39jIiGIEyA=) 2: mmsyAnMHt_dbYyNaAmRzOf1ER00.roa (hash: Z0B0gLnq6WYbQAuekKr8EymO3fzsvhfiIyL1pWQiz74=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:4e:3b:f5:1c:31:0c:1b:39:1e:8b:b9:48:88:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e276ac51a132401db4cd741d866a54622a0d15c Validity Not Before: Dec 19 07:00:52 2025 GMT Not After : Dec 20 07:00:52 2025 GMT Subject: CN=20163186e4a4e6f4c8d60e36cf32d36f066d5334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:67:8b:18:3f:88:1f:a4:35:4e:1d:16:88:cb: 6b:cd:54:19:44:9d:8e:f6:6c:a3:54:f0:f5:d2:40: eb:00:5a:c8:e9:53:ee:ef:e6:92:48:99:37:df:09: 81:28:cf:b4:4d:6d:3d:a2:2c:b8:72:1c:e6:fd:aa: f6:ea:71:24:29:e8:fa:03:90:2f:99:f2:0f:48:d4: 6d:cb:47:9b:91:16:ff:bb:be:e6:29:8c:8b:8e:85: bc:71:9f:40:be:d7:02:b0:3c:6e:a2:6a:52:b9:c4: 3d:4c:73:18:8a:6b:9a:95:3e:f5:95:60:1e:43:fc: b4:4d:fa:46:f3:2d:51:bd:d6:95:d9:52:e0:d6:b3: 66:a3:9c:9b:4b:ba:61:d3:e6:52:5a:4b:c3:1a:0f: de:09:b8:40:6d:49:8f:e3:c0:2f:07:fc:df:39:b3: fc:53:92:e2:ee:a8:7f:b2:88:8d:21:c9:96:27:f5: 36:cd:6b:f9:3c:6c:89:46:ec:23:a9:e4:19:84:94: 53:f7:3d:47:0f:f5:a7:c9:cd:59:0c:09:f0:8b:ee: e7:fe:20:17:7a:c8:6d:01:6c:80:2d:48:05:3e:ad: 06:59:de:9e:9a:f0:cb:e0:9a:e0:c0:fe:ce:5a:f5: 8f:2a:4a:dc:63:8e:2b:d6:8d:a9:34:b7:0b:18:66: 12:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:16:31:86:E4:A4:E6:F4:C8:D6:0E:36:CF:32:D3:6F:06:6D:53:34 X509v3 Authority Key Identifier: keyid:3E:27:6A:C5:1A:13:24:01:DB:4C:D7:41:D8:66:A5:46:22:A0:D1:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PidqxRoTJAHbTNdB2GalRiKg0Vw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5cac1e-831d-4d9e-9a22-1eef11a8dddf/1/PidqxRoTJAHbTNdB2GalRiKg0Vw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:79:ba:22:8d:f2:aa:18:94:72:bc:9c:ba:4a:94:eb:fb:e5: ea:35:97:ef:f5:d7:22:59:e6:50:de:b7:9b:52:fc:61:7f:46: 8a:f8:e0:a2:a6:aa:9e:be:ef:3b:be:ea:91:75:fb:40:5e:9d: c4:de:0f:f1:da:da:9b:6c:e7:55:30:4e:22:04:71:95:59:c1: 5c:47:b2:d2:13:8e:1c:89:8c:11:92:7c:6c:5e:8f:90:8a:fd: 8a:c8:9d:8a:15:44:01:ef:a8:be:a8:29:84:fa:eb:78:db:56: f0:e4:e7:dc:2d:66:cb:0a:92:ac:82:4d:ad:5f:a6:f0:c2:4c: da:c9:50:c6:da:8d:93:86:c9:3f:a3:46:20:e8:92:4f:41:f8: 3f:3b:f7:16:48:12:3d:92:2f:ce:3d:74:16:e3:b3:d7:dd:94: ae:83:bb:6a:ae:e6:a1:c3:f2:23:b1:a5:d9:1d:38:3c:09:17: 8b:db:f4:aa:fb:ee:56:c2:f8:8f:d0:f1:9c:84:29:11:a1:16: 6b:56:6b:c8:d1:82:8c:f1:ad:9c:e0:46:6a:e0:f8:e0:fe:2c: 11:53:64:ae:cd:31:95:4c:f0:70:7e:39:8d:80:db:27:d5:63: e9:6b:68:fb:65:b3:25:a5:4e:d1:1e:f1:cb:94:55:f4:ed:9a: 0e:c4:6e:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aU479RwxDBs5Hou5SIi1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMjc2YWM1MWExMzI0MDFkYjRjZDc0MWQ4NjZhNTQ2MjJh MGQxNWMwHhcNMjUxMjE5MDcwMDUyWhcNMjUxMjIwMDcwMDUyWjAzMTEwLwYDVQQD EygyMDE2MzE4NmU0YTRlNmY0YzhkNjBlMzZjZjMyZDM2ZjA2NmQ1MzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6WeLGD+IH6Q1Th0WiMtrzVQZRJ2O 9myjVPD10kDrAFrI6VPu7+aSSJk33wmBKM+0TW09oiy4chzm/ar26nEkKej6A5Av mfIPSNRty0ebkRb/u77mKYyLjoW8cZ9AvtcCsDxuompSucQ9THMYimualT71lWAe Q/y0TfpG8y1RvdaV2VLg1rNmo5ybS7ph0+ZSWkvDGg/eCbhAbUmP48AvB/zfObP8 U5Li7qh/soiNIcmWJ/U2zWv5PGyJRuwjqeQZhJRT9z1HD/Wnyc1ZDAnwi+7n/iAX eshtAWyALUgFPq0GWd6emvDL4JrgwP7OWvWPKkrcY44r1o2pNLcLGGYSzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCAWMYbkpOb0yNYONs8y028GbVM0MB8GA1UdIwQY MBaAFD4nasUaEyQB20zXQdhmpUYioNFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjIt MWVlZjExYThkZGRmLzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi81Y2FjMWUtODMxZC00ZDllLTlhMjItMWVlZjExYThkZGRm LzEvUGlkcXhSb1RKQUhiVE5kQjJHYWxSaUtnMFZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqXm6Io3y qhiUcrycukqU6/vl6jWX7/XXIlnmUN63m1L8YX9Givjgoqaqnr7vO77qkXX7QF6d xN4P8dram2znVTBOIgRxlVnBXEey0hOOHImMEZJ8bF6PkIr9isidihVEAe+ovqgp hPrreNtW8OTn3C1mywqSrIJNrV+m8MJM2slQxtqNk4bJP6NGIOiST0H4Pzv3FkgS PZIvzj10FuOz192UroO7aq7mocPyI7Gl2R04PAkXi9v0qvvuVsL4j9DxnIQpEaEW a1ZryNGCjPGtnOBGauD44P4sEVNkrs0xlUzwcH45jYDbJ9Vj6Wto+2WzJaVO0R7x y5RV9O2aDsRuWA== -----END CERTIFICATE-----Generated at Fri Dec 19 14:32:51 2025 by rpki-client