This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft File: PBnm8n2SgJXlYN52ePKONFnVWUc.mft (raw, json) Hash identifier: Zz4r9JEaUnacMOm8vFQM9UoX80cACRRplrCxYDnfWRo= Subject key identifier: 52:BD:14:3D:94:C7:60:04:6D:12:EA:29:06:F9:5F:08:6A:ED:61:56 Authority key identifier: 3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47 Certificate issuer: /CN=3c19e6f27d928095e560de7678f28e3459d55947 Certificate serial: 019B3E6C69C164DFB7EF53D39C3630C95A59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft Manifest number: 029C Signing time: Sun 21 Dec 2025 01:00:50 +0000 Manifest this update: Sun 21 Dec 2025 01:00:50 +0000 Manifest next update: Mon 22 Dec 2025 01:00:50 +0000 Files and hashes: 1: PBnm8n2SgJXlYN52ePKONFnVWUc.crl (hash: OQiYr5mM0L0Yna0QlkJyFNgSiQ/a6KytE51CwSw0XH4=) 2: QmVb0SoXYnlMedY0w_3_iXHpV1g.roa (hash: a3gXOD/NjdWHnE6P9SQzEQhqDOtbuugfMMDorP0aI2g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:69:c1:64:df:b7:ef:53:d3:9c:36:30:c9:5a:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3c19e6f27d928095e560de7678f28e3459d55947 Validity Not Before: Dec 21 01:00:50 2025 GMT Not After : Dec 22 01:00:50 2025 GMT Subject: CN=52bd143d94c760046d12ea2906f95f086aed6156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:96:6a:6e:e0:b1:2d:1b:71:dc:19:dd:2c:c5: 5c:ab:fc:4d:35:c8:8a:dc:02:d9:20:da:c1:a5:bf: e7:bf:8a:36:d4:f4:8a:9b:92:9d:06:68:e4:1d:ac: cd:58:f8:1a:64:56:e5:34:3e:9e:2a:b0:4d:e1:53: 38:66:22:ae:49:0d:ab:5d:9c:25:63:0a:97:7b:6e: 68:b5:0a:c6:ea:67:13:ce:b9:e2:2d:b3:ee:dd:95: 93:ce:6a:cb:c9:b8:86:66:a4:b8:d7:f4:be:b3:23: fb:ba:84:59:cd:df:3f:ed:08:f2:59:be:69:42:e5: 12:f9:5b:32:e8:84:11:63:5a:5f:a3:25:77:19:a5: 50:01:d7:3b:7b:65:94:fc:e2:8c:0f:6e:24:28:a0: 6d:55:2e:0e:78:09:f4:21:d1:5f:44:7d:5f:56:93: 9e:7d:64:ae:3a:29:2a:60:46:9b:7d:00:07:cb:32: 37:d8:97:75:31:b6:ef:21:81:e1:19:b5:c0:49:08: ab:07:47:c5:82:56:61:81:c4:ad:72:30:4f:d5:23: 18:60:37:2d:10:cb:d8:f8:3e:8c:d9:6c:54:fa:ae: 72:76:8c:dc:58:2f:0f:d4:7b:10:e0:cd:14:72:2d: 21:ef:d9:b9:2c:06:de:bd:ed:98:89:97:18:75:03: 93:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BD:14:3D:94:C7:60:04:6D:12:EA:29:06:F9:5F:08:6A:ED:61:56 X509v3 Authority Key Identifier: keyid:3C:19:E6:F2:7D:92:80:95:E5:60:DE:76:78:F2:8E:34:59:D5:59:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBnm8n2SgJXlYN52ePKONFnVWUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/239b73-7aa7-4b58-b12c-7927de539364/1/PBnm8n2SgJXlYN52ePKONFnVWUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:6e:26:a8:83:be:cb:5c:b2:88:ab:8e:74:fb:8e:c5:bb:f1: 95:46:c0:99:c3:e7:4e:01:40:83:f8:a1:48:a2:e4:20:06:81: 7e:b0:79:78:64:ab:e7:5e:f2:c5:00:dc:d3:85:44:f6:84:f8: 14:01:4c:6b:6a:af:0d:79:ce:91:00:c0:e1:7d:5d:d3:aa:28: fb:e0:31:93:75:c9:f9:12:a5:ed:bf:6c:d5:3c:2a:fd:4b:65: 63:ca:3e:fb:e7:40:94:37:75:1e:7f:3e:eb:8c:10:c8:79:cb: e8:f3:2e:d4:46:4b:ae:df:55:0c:2b:6d:8d:b7:2d:4e:d3:9f: b3:53:fa:ae:98:46:7b:17:3d:df:23:ff:04:83:74:64:08:e5: b3:81:27:de:e9:e3:64:f5:7a:09:d8:eb:82:a3:30:28:2d:94: 5c:31:d6:37:45:c6:c1:3a:ad:31:44:4e:b3:11:f7:d8:5a:0c: 95:4c:53:e5:49:f3:30:d9:e1:72:ba:cd:6b:bf:d6:2a:8d:ea: 3a:d2:1a:8c:9d:3f:86:66:5c:24:8f:19:70:5a:88:82:d7:71: d7:73:15:21:fd:30:3f:f6:85:ba:73:0f:70:09:2d:77:38:54: df:a8:1e:d9:07:b3:a9:b7:93:17:20:97:ff:a9:85:9f:75:24: 8f:d3:39:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bGnBZN+371PTnDYwyVpZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjMTllNmYyN2Q5MjgwOTVlNTYwZGU3Njc4ZjI4ZTM0NTlk NTU5NDcwHhcNMjUxMjIxMDEwMDUwWhcNMjUxMjIyMDEwMDUwWjAzMTEwLwYDVQQD Eyg1MmJkMTQzZDk0Yzc2MDA0NmQxMmVhMjkwNmY5NWYwODZhZWQ2MTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5JZqbuCxLRtx3BndLMVcq/xNNciK 3ALZINrBpb/nv4o21PSKm5KdBmjkHazNWPgaZFblND6eKrBN4VM4ZiKuSQ2rXZwl YwqXe25otQrG6mcTzrniLbPu3ZWTzmrLybiGZqS41/S+syP7uoRZzd8/7QjyWb5p QuUS+Vsy6IQRY1pfoyV3GaVQAdc7e2WU/OKMD24kKKBtVS4OeAn0IdFfRH1fVpOe fWSuOikqYEabfQAHyzI32Jd1MbbvIYHhGbXASQirB0fFglZhgcStcjBP1SMYYDct EMvY+D6M2WxU+q5ydozcWC8P1HsQ4M0Uci0h79m5LAbeve2YiZcYdQOTHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFK9FD2Ux2AEbRLqKQb5Xwhq7WFWMB8GA1UdIwQY MBaAFDwZ5vJ9koCV5WDednjyjjRZ1VlHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEJubThuMlNnSlhsWU41MmVQS09ORm5WV1VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8yMzliNzMtN2FhNy00YjU4LWIxMmMt NzkyN2RlNTM5MzY0LzEvUEJubThuMlNnSlhsWU41MmVQS09ORm5WV1VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS8yMzliNzMtN2FhNy00YjU4LWIxMmMtNzkyN2RlNTM5MzY0 LzEvUEJubThuMlNnSlhsWU41MmVQS09ORm5WV1VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE24mqIO+ y1yyiKuOdPuOxbvxlUbAmcPnTgFAg/ihSKLkIAaBfrB5eGSr517yxQDc04VE9oT4 FAFMa2qvDXnOkQDA4X1d06oo++Axk3XJ+RKl7b9s1Twq/UtlY8o+++dAlDd1Hn8+ 64wQyHnL6PMu1EZLrt9VDCttjbctTtOfs1P6rphGexc93yP/BIN0ZAjls4En3unj ZPV6CdjrgqMwKC2UXDHWN0XGwTqtMUROsxH32FoMlUxT5UnzMNnhcrrNa7/WKo3q OtIajJ0/hmZcJI8ZcFqIgtdx13MVIf0wP/aFunMPcAktdzhU36ge2QezqbeTFyCX /6mFn3Ukj9M5xg== -----END CERTIFICATE-----Generated at Sun Dec 21 03:37:34 2025 by rpki-client