This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft File: Pt7grog0cFCIgFBEvnXHQDsdx-I.mft (raw, json) Hash identifier: jx5VEhdTq9uxh+f8M+fe++vxEKzqMEEVuE8SkWq9sIo= Subject key identifier: 96:DC:DE:16:66:58:77:38:07:BA:D5:EA:16:3D:6C:2F:19:81:B4:0B Authority key identifier: 3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2 Certificate issuer: /CN=3edee0ae8834705088805044be75c7403b1dc7e2 Certificate serial: 019B3C7FBB39E3FFCBA82AD71B63434D59E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft Manifest number: 141D Signing time: Sat 20 Dec 2025 16:02:42 +0000 Manifest this update: Sat 20 Dec 2025 16:02:42 +0000 Manifest next update: Sun 21 Dec 2025 16:02:42 +0000 Files and hashes: 1: Pt7grog0cFCIgFBEvnXHQDsdx-I.crl (hash: 9lC9sQ/ooJIT1GFSkk1XiAEmWueNcdi0F+06XDa6i1g=) 2: f4uXUqTz6EMLfxnYPkQ3ht2dRz0.roa (hash: WwKae4E8mCPYphGvXV9B/QCbohcENp4wZ1ekmYvPPps=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7f:bb:39:e3:ff:cb:a8:2a:d7:1b:63:43:4d:59:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3edee0ae8834705088805044be75c7403b1dc7e2 Validity Not Before: Dec 20 16:02:42 2025 GMT Not After : Dec 21 16:02:42 2025 GMT Subject: CN=96dcde166658773807bad5ea163d6c2f1981b40b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:5b:89:38:9c:e5:60:4b:35:d2:75:4b:40:49: e1:3e:78:87:3e:93:36:52:85:e1:56:f1:2e:d5:78: 16:75:e8:cd:91:9e:23:bb:e0:8f:fe:02:b1:6b:93: 68:ed:c3:d3:3e:f6:85:01:fb:17:cb:4e:4e:2a:7c: ee:10:f7:5d:39:c8:99:a3:76:ec:3f:40:d8:ee:74: a1:8b:b0:4c:f0:a7:68:07:a0:d2:b3:57:12:9b:e4: 80:c9:75:e7:10:5f:35:fd:5c:95:86:51:78:e7:46: 61:69:9b:ef:2f:10:f4:9f:fc:c5:b8:b8:7b:bd:f9: 16:08:30:a8:cd:41:8d:c9:98:25:e8:7c:c2:4f:f3: 5e:db:6d:85:d2:93:74:aa:b1:fd:39:c8:ea:7d:fa: e3:61:72:6c:69:ba:f9:2e:63:c6:3f:a9:e2:c3:24: 5c:46:0c:4c:9d:4d:46:5f:76:fe:fc:48:82:b5:6e: ae:19:bb:05:32:37:23:77:86:dc:c7:5a:83:b9:95: d8:da:f5:f5:4e:2b:55:cd:59:5e:15:df:96:3e:b5: b7:0c:08:09:cd:2e:1e:79:c3:e2:db:a7:f3:f1:8d: 37:c6:7b:0f:ff:59:b7:52:4e:5b:0d:8f:1c:1d:f1: d6:0b:4a:64:b4:63:03:64:8c:08:3b:61:3f:9a:e9: 0f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DC:DE:16:66:58:77:38:07:BA:D5:EA:16:3D:6C:2F:19:81:B4:0B X509v3 Authority Key Identifier: keyid:3E:DE:E0:AE:88:34:70:50:88:80:50:44:BE:75:C7:40:3B:1D:C7:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pt7grog0cFCIgFBEvnXHQDsdx-I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/514cf4-126b-4cc5-b4d5-79ab48d83bab/1/Pt7grog0cFCIgFBEvnXHQDsdx-I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d7:d6:07:43:3f:9c:65:5f:43:65:3e:6a:6c:5f:9d:a2:d1: 29:e1:58:af:9f:b8:82:7f:63:95:d2:7b:f1:9c:11:cf:35:bc: 75:4e:74:13:f1:5a:05:0a:7b:6c:f7:45:e3:40:c5:07:6f:70: ef:80:8e:37:a7:72:84:01:91:7c:46:2c:7a:0c:5a:b0:24:b5: 0e:c2:07:87:4a:ed:17:fb:4d:99:02:96:2d:e7:e5:8c:d7:e8: 53:57:a3:e8:98:67:42:71:7e:83:73:8d:9c:4a:e7:7b:b6:a5: c4:07:09:b9:90:9c:4f:59:2e:0c:8e:9b:43:c3:0e:98:e5:c1: 83:79:94:3d:57:87:49:e2:5c:9c:d5:90:53:6d:10:29:ad:8b: 5d:db:57:da:66:49:02:52:69:27:82:0b:06:08:a4:96:6f:0a: 84:c5:93:f6:23:7f:ab:6d:f5:37:84:4c:8c:d4:ff:f6:ef:d3: 6b:60:9b:b1:02:4f:b0:5b:de:56:09:37:ad:3e:fc:11:00:4a: 1b:1f:94:90:e2:93:83:5a:a2:5f:ef:c8:9e:96:a8:f4:c5:2a: c3:bd:f0:16:fc:ee:58:ab:db:0c:80:3b:e6:42:31:8e:59:74: 8a:39:38:eb:8a:6c:d0:87:4e:da:64:45:1d:65:88:7e:cd:d6: c3:01:f2:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8f7s54//LqCrXG2NDTVniMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZGVlMGFlODgzNDcwNTA4ODgwNTA0NGJlNzVjNzQwM2Ix ZGM3ZTIwHhcNMjUxMjIwMTYwMjQyWhcNMjUxMjIxMTYwMjQyWjAzMTEwLwYDVQQD Eyg5NmRjZGUxNjY2NTg3NzM4MDdiYWQ1ZWExNjNkNmMyZjE5ODFiNDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiluJOJzlYEs10nVLQEnhPniHPpM2 UoXhVvEu1XgWdejNkZ4ju+CP/gKxa5No7cPTPvaFAfsXy05OKnzuEPddOciZo3bs P0DY7nShi7BM8KdoB6DSs1cSm+SAyXXnEF81/VyVhlF450ZhaZvvLxD0n/zFuLh7 vfkWCDCozUGNyZgl6HzCT/Ne222F0pN0qrH9OcjqffrjYXJsabr5LmPGP6niwyRc RgxMnU1GX3b+/EiCtW6uGbsFMjcjd4bcx1qDuZXY2vX1TitVzVleFd+WPrW3DAgJ zS4eecPi26fz8Y03xnsP/1m3Uk5bDY8cHfHWC0pktGMDZIwIO2E/mukPNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJbc3hZmWHc4B7rV6hY9bC8ZgbQLMB8GA1UdIwQY MBaAFD7e4K6INHBQiIBQRL51x0A7HcfiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny81MTRjZjQtMTI2Yi00Y2M1LWI0ZDUt NzlhYjQ4ZDgzYmFiLzEvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny81MTRjZjQtMTI2Yi00Y2M1LWI0ZDUtNzlhYjQ4ZDgzYmFi LzEvUHQ3Z3JvZzBjRkNJZ0ZCRXZuWEhRRHNkeC1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb9fWB0M/ nGVfQ2U+amxfnaLRKeFYr5+4gn9jldJ78ZwRzzW8dU50E/FaBQp7bPdF40DFB29w 74CON6dyhAGRfEYsegxasCS1DsIHh0rtF/tNmQKWLefljNfoU1ej6JhnQnF+g3ON nErne7alxAcJuZCcT1kuDI6bQ8MOmOXBg3mUPVeHSeJcnNWQU20QKa2LXdtX2mZJ AlJpJ4ILBgiklm8KhMWT9iN/q231N4RMjNT/9u/Ta2CbsQJPsFveVgk3rT78EQBK Gx+UkOKTg1qiX+/Inpao9MUqw73wFvzuWKvbDIA75kIxjll0ijk464ps0IdO2mRF HWWIfs3WwwHyxA== -----END CERTIFICATE-----Generated at Sat Dec 20 18:09:59 2025 by rpki-client