This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json) Hash identifier: RHy47lQ32uCbc4X+iQhmZcaLX3689Wwl74r9+0fVlew= Subject key identifier: D6:EF:A8:A3:74:AF:DA:32:0C:95:F2:F7:D5:8B:D5:CF:4E:BA:91:F6 Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e Certificate serial: 019B3F116F4DA5D6634885489AB3EC7AE73D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft Manifest number: 0424 Signing time: Sun 21 Dec 2025 04:01:05 +0000 Manifest this update: Sun 21 Dec 2025 04:01:05 +0000 Manifest next update: Mon 22 Dec 2025 04:01:05 +0000 Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=) 2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: jiObDvR0f6SDaTpfSi3FJsvcspnA7solHiXiY3ecedQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:6f:4d:a5:d6:63:48:85:48:9a:b3:ec:7a:e7:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e Validity Not Before: Dec 21 04:01:05 2025 GMT Not After : Dec 22 04:01:05 2025 GMT Subject: CN=d6efa8a374afda320c95f2f7d58bd5cf4eba91f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:ae:73:02:f5:0f:ba:03:33:b9:14:a3:ad:6a: 4f:3a:19:76:36:c4:2e:54:95:bc:4a:f5:18:2b:8b: 68:e9:9d:48:88:e9:d2:bd:5c:1c:76:64:3f:d0:bb: a3:c5:cc:4f:04:5f:28:a8:19:23:68:68:5d:79:d3: 2c:07:5d:0c:e3:f3:60:55:e6:31:ed:93:56:dc:f8: 4d:b8:be:47:e8:f2:56:cd:90:50:72:13:63:16:0c: df:e9:c3:d4:ec:2b:43:af:fb:d6:4f:96:72:f2:49: c8:9d:a9:36:0c:05:47:34:dd:a9:08:ec:b2:d3:75: 21:62:8f:96:b0:81:e5:58:b0:9a:0d:69:f2:aa:de: f9:9f:e4:6a:77:05:03:b3:cf:c5:8d:0c:9f:2f:26: ce:0c:1d:23:84:11:b8:57:30:6a:e1:74:74:aa:de: 2f:e2:f4:a9:56:30:72:fc:96:7e:ae:f8:fa:24:1f: 34:f8:f6:1e:6c:de:34:c9:2f:dc:8d:22:78:b6:0e: 8c:7d:58:32:9c:ed:ff:22:6d:57:34:31:45:df:8d: c7:b9:c9:86:21:19:d4:09:86:9f:ac:7d:3b:21:e1: 61:85:79:29:8c:ca:95:d7:ee:92:22:fd:2e:58:f2: 9f:de:6b:61:4e:46:dd:2c:29:03:56:9d:60:fd:34: 1b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EF:A8:A3:74:AF:DA:32:0C:95:F2:F7:D5:8B:D5:CF:4E:BA:91:F6 X509v3 Authority Key Identifier: keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:a2:3c:16:46:8c:d2:ee:c1:3a:0a:95:e4:be:22:d1:7f:76: e7:ea:bb:56:93:42:af:a4:46:6f:08:f3:d7:5b:dc:39:97:9e: af:cc:9d:2c:51:7d:6f:8a:8c:1d:64:ae:4b:5e:e6:e1:34:45: 8e:c8:ce:7a:29:08:7d:44:78:db:3a:9d:8c:6e:9f:51:6a:1a: 8e:05:65:81:bd:43:1b:20:e7:8a:0f:4f:cf:0d:52:b2:f9:74: c8:a1:c9:94:d4:d4:1e:f5:26:76:4c:a9:89:62:98:bd:47:62: 65:e5:d5:72:80:64:ef:9f:85:81:5f:2d:42:83:5d:41:6a:62: 4a:3c:bb:17:fd:6a:c0:e0:72:ba:08:2c:74:2d:09:4f:8c:02: 36:e0:11:e7:67:2e:10:b8:23:cc:2d:b4:4c:70:9d:ee:9e:c2: f5:04:97:91:b5:21:68:6b:31:d4:a3:2d:5b:cc:00:7f:42:e2: fc:e9:e6:39:f8:da:b0:09:3b:af:1a:e1:ab:5f:af:88:37:0b: cd:c0:e3:d2:67:37:62:79:c7:66:73:5b:4b:05:59:ff:28:b2: 53:64:ec:bd:00:97:d0:44:05:8d:a0:a3:ea:0f:ad:ca:b3:0b: 6b:75:4e:30:fb:a2:a0:c8:75:7f:6e:fa:68:69:ee:ab:e8:81: c6:31:18:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EW9NpdZjSIVImrPseuc9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NTA3NWI4ZTQyZTQ1MTRlZjQ5ZDNmZWEyZjE4NzI2NGU3 NGZiMmUwHhcNMjUxMjIxMDQwMTA1WhcNMjUxMjIyMDQwMTA1WjAzMTEwLwYDVQQD EyhkNmVmYThhMzc0YWZkYTMyMGM5NWYyZjdkNThiZDVjZjRlYmE5MWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi65zAvUPugMzuRSjrWpPOhl2NsQu VJW8SvUYK4to6Z1IiOnSvVwcdmQ/0LujxcxPBF8oqBkjaGhdedMsB10M4/NgVeYx 7ZNW3PhNuL5H6PJWzZBQchNjFgzf6cPU7CtDr/vWT5Zy8knInak2DAVHNN2pCOyy 03UhYo+WsIHlWLCaDWnyqt75n+RqdwUDs8/FjQyfLybODB0jhBG4VzBq4XR0qt4v 4vSpVjBy/JZ+rvj6JB80+PYebN40yS/cjSJ4tg6MfVgynO3/Im1XNDFF343HucmG IRnUCYafrH07IeFhhXkpjMqV1+6SIv0uWPKf3mthTkbdLCkDVp1g/TQbkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNbvqKN0r9oyDJXy99WL1c9OupH2MB8GA1UdIwQY MBaAFKVQdbjkLkUU70nT/qLxhyZOdPsuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS85YjFmOTUtM2IxOC00ODEyLTkyNGUt N2JmZGE2MjU0NGNlLzEvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS85YjFmOTUtM2IxOC00ODEyLTkyNGUtN2JmZGE2MjU0NGNl LzEvcFZCMXVPUXVSUlR2U2RQLW92R0hKazUwLXk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYqI8FkaM 0u7BOgqV5L4i0X925+q7VpNCr6RGbwjz11vcOZeer8ydLFF9b4qMHWSuS17m4TRF jsjOeikIfUR42zqdjG6fUWoajgVlgb1DGyDnig9Pzw1Ssvl0yKHJlNTUHvUmdkyp iWKYvUdiZeXVcoBk75+FgV8tQoNdQWpiSjy7F/1qwOByuggsdC0JT4wCNuAR52cu ELgjzC20THCd7p7C9QSXkbUhaGsx1KMtW8wAf0Li/OnmOfjasAk7rxrhq1+viDcL zcDj0mc3YnnHZnNbSwVZ/yiyU2TsvQCX0EQFjaCj6g+tyrMLa3VOMPuioMh1f276 aGnuq+iBxjEYdQ== -----END CERTIFICATE-----Generated at Sun Dec 21 06:03:48 2025 by rpki-client