This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft File: _PU0Avp2-gY3bN6mvNOV4YAHnbc.mft (raw, json) Hash identifier: Jo3qpGVLTjbrft3tbCGzHKVrDdMaQaltotJsb6Q6EfQ= Subject key identifier: 8B:C4:2E:2C:64:FA:E5:4E:C1:3B:5A:9B:46:85:13:32:AC:70:BD:14 Authority key identifier: FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7 Certificate issuer: /CN=fcf53402fa76fa06376cdea6bcd395e180079db7 Certificate serial: 019B44DC79A0B82060519B05055EF10F5F2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft Manifest number: 149B Signing time: Mon 22 Dec 2025 07:00:58 +0000 Manifest this update: Mon 22 Dec 2025 07:00:58 +0000 Manifest next update: Tue 23 Dec 2025 07:00:58 +0000 Files and hashes: 1: 5QVE77uQnSCLbr9iYF89fXdJU-M.roa (hash: IPgTEo7hNu+XjVm/3xLzVMgF8abs7044xMIbnapyQg8=) 2: _PU0Avp2-gY3bN6mvNOV4YAHnbc.crl (hash: /HNMrYxfKsz6kwxD2nVXJqcuJdiKq9OD/nNhgrgVgoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 07:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:dc:79:a0:b8:20:60:51:9b:05:05:5e:f1:0f:5f:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fcf53402fa76fa06376cdea6bcd395e180079db7 Validity Not Before: Dec 22 07:00:58 2025 GMT Not After : Dec 23 07:00:58 2025 GMT Subject: CN=8bc42e2c64fae54ec13b5a9b46851332ac70bd14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:23:9a:7e:0e:55:06:21:20:c7:68:26:92:f1: cb:99:91:cc:e0:91:be:c4:50:31:ca:8a:b2:b4:af: a7:b4:8c:89:c8:50:cb:08:eb:f0:c6:7c:1f:d6:08: 4f:63:b4:ec:ea:0e:96:ef:ff:39:0d:ea:ae:93:df: 71:76:95:18:8f:db:f8:2e:ac:f6:70:a2:83:41:7f: 9c:4d:06:26:de:4f:dc:61:f6:f1:c3:f8:49:ca:a9: 82:82:86:31:a8:b3:96:15:b8:b6:9a:d6:4f:fa:50: 23:39:59:29:00:35:b3:31:b9:cb:5f:6a:fc:40:45: 0e:d1:f5:82:61:f5:e3:13:50:1d:d2:ec:71:ce:d0: b5:19:7c:1e:6d:f2:ac:3e:c4:66:00:99:1c:e3:65: 41:34:20:b0:66:60:4e:4a:d7:37:75:19:41:04:0e: ff:c8:6a:ac:16:71:58:93:9d:07:32:cb:cb:c1:e5: c7:19:13:a2:67:07:2b:da:6a:75:ec:d1:b1:48:7e: 86:05:1d:db:59:b9:4d:1d:8c:ad:f8:fb:a2:be:ce: 5f:99:c4:12:da:0d:fb:f9:c6:14:1a:20:ea:0e:e6: 00:fe:82:67:e0:db:08:5a:f1:a4:33:0f:7f:7b:49: 41:ab:c9:ca:c9:d9:6b:24:1c:80:2b:3c:1b:46:cf: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C4:2E:2C:64:FA:E5:4E:C1:3B:5A:9B:46:85:13:32:AC:70:BD:14 X509v3 Authority Key Identifier: keyid:FC:F5:34:02:FA:76:FA:06:37:6C:DE:A6:BC:D3:95:E1:80:07:9D:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PU0Avp2-gY3bN6mvNOV4YAHnbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c8313-ed1c-414b-b4cc-5ed057025516/1/_PU0Avp2-gY3bN6mvNOV4YAHnbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:1f:1c:82:1f:22:42:7e:d4:85:ed:91:41:41:62:1d:74:b7: f9:40:59:61:44:3e:62:69:73:49:b1:e0:12:cc:82:22:2c:8c: 95:02:2e:12:9e:b6:98:fc:06:d0:0f:f2:d8:d3:f2:60:db:ca: d2:03:6b:c4:26:55:f4:c9:fc:36:df:4c:3a:77:d1:58:4c:dd: 06:ed:9c:01:a1:5b:68:73:6a:fd:2a:84:6e:bf:cb:34:b7:60: de:db:1e:9f:99:4c:4a:8a:ac:93:a7:89:a6:57:13:23:47:d7: 53:ac:78:e3:83:e7:9c:36:cc:b9:32:b6:e0:54:58:4c:e6:85: 6e:fd:c7:76:da:da:6f:62:b3:d5:31:7c:d4:3a:24:d0:2c:b7: a5:44:f1:50:ac:78:38:f1:51:97:b9:74:ec:88:21:3e:25:6a: fd:0a:ff:81:5c:f3:68:24:87:4d:b6:f7:65:fe:52:65:a0:5e: 85:b4:5b:ae:4b:cf:8b:b1:76:46:af:be:42:c4:85:3e:52:0a: ad:d4:2b:a1:81:62:30:50:b2:45:b7:cb:34:f2:eb:44:ae:46: 35:55:8d:f2:79:54:ab:35:59:35:e4:bc:92:7b:d3:b4:cc:2a: 86:31:4b:e4:eb:db:84:4f:56:63:28:27:f4:dd:89:2b:09:41: f0:fb:c9:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtE3HmguCBgUZsFBV7xD18tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjZjUzNDAyZmE3NmZhMDYzNzZjZGVhNmJjZDM5NWUxODAw NzlkYjcwHhcNMjUxMjIyMDcwMDU4WhcNMjUxMjIzMDcwMDU4WjAzMTEwLwYDVQQD Eyg4YmM0MmUyYzY0ZmFlNTRlYzEzYjVhOWI0Njg1MTMzMmFjNzBiZDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSOafg5VBiEgx2gmkvHLmZHM4JG+ xFAxyoqytK+ntIyJyFDLCOvwxnwf1ghPY7Ts6g6W7/85Dequk99xdpUYj9v4Lqz2 cKKDQX+cTQYm3k/cYfbxw/hJyqmCgoYxqLOWFbi2mtZP+lAjOVkpADWzMbnLX2r8 QEUO0fWCYfXjE1Ad0uxxztC1GXwebfKsPsRmAJkc42VBNCCwZmBOStc3dRlBBA7/ yGqsFnFYk50HMsvLweXHGROiZwcr2mp17NGxSH6GBR3bWblNHYyt+Puivs5fmcQS 2g37+cYUGiDqDuYA/oJn4NsIWvGkMw9/e0lBq8nKydlrJByAKzwbRs+TywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIvELixk+uVOwTtam0aFEzKscL0UMB8GA1UdIwQY MBaAFPz1NAL6dvoGN2zeprzTleGAB523MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1BVMEF2cDItZ1kzYk42bXZOT1Y0WUFIbmJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84YzgzMTMtZWQxYy00MTRiLWI0Y2Mt NWVkMDU3MDI1NTE2LzEvX1BVMEF2cDItZ1kzYk42bXZOT1Y0WUFIbmJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni84YzgzMTMtZWQxYy00MTRiLWI0Y2MtNWVkMDU3MDI1NTE2 LzEvX1BVMEF2cDItZ1kzYk42bXZOT1Y0WUFIbmJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARB8cgh8i Qn7Uhe2RQUFiHXS3+UBZYUQ+YmlzSbHgEsyCIiyMlQIuEp62mPwG0A/y2NPyYNvK 0gNrxCZV9Mn8Nt9MOnfRWEzdBu2cAaFbaHNq/SqEbr/LNLdg3tsen5lMSoqsk6eJ plcTI0fXU6x444PnnDbMuTK24FRYTOaFbv3Hdtrab2Kz1TF81Dok0Cy3pUTxUKx4 OPFRl7l07IghPiVq/Qr/gVzzaCSHTbb3Zf5SZaBehbRbrkvPi7F2Rq++QsSFPlIK rdQroYFiMFCyRbfLNPLrRK5GNVWN8nlUqzVZNeS8knvTtMwqhjFL5OvbhE9WYygn 9N2JKwlB8PvJ8Q== -----END CERTIFICATE-----Generated at Mon Dec 22 09:42:24 2025 by rpki-client