This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json) Hash identifier: UsfqdY0b4pRdyB45hKG6JDhQViLhLNZEry9ca5tCD1I= Subject key identifier: 61:8A:62:15:15:D5:F4:E7:40:21:C6:DF:4C:ED:F6:22:D7:40:67:A9 Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54 Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654 Certificate serial: 019B3C46EB3B46B2803B632648491B9D3EA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft Manifest number: 1195 Signing time: Sat 20 Dec 2025 15:00:39 +0000 Manifest this update: Sat 20 Dec 2025 15:00:39 +0000 Manifest next update: Sun 21 Dec 2025 15:00:39 +0000 Files and hashes: 1: 26IGIkKKzrFcY_mAcu5qAWXSYNM.roa (hash: AipHDf8GM8mnMeuhSsY7F7gLpKfZW2aW0smCsw7aDgA=) 2: DTkkXlwWhjBYM7E-LiW8oFBHJjI.roa (hash: cFY01vIGbPqfZkXvhIFJCumwHCyy8N/DU0Sq4RcHFF0=) 3: I0FL7Dchm9rnaWDDI9OKxv66R2c.roa (hash: cq/fzJDEl5efuviSrzcYQ/eMdyrzXj2HULveLhWUz0M=) 4: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: urvjKrQEEkxLeUQwSSyxQZ9CORozEjRlzDusgDAAsS0=) 5: PgYgGFElQ5q1n0LGZNZBRta_Qd4.roa (hash: 69CNmBY++9WnYAnXQ2BFsg1ecbH6Dliq6fHkpb2sLS4=) 6: f3EQDAp01aGz4ygf13OnfmgCiyU.roa (hash: K8CWfwsXMWBETuXajB8y0tfb/O1sIwj6IWVOuqi5a0s=) 7: ogPQoPSabyv8on770Elj1zJ6-J0.roa (hash: zvAjfTV3Azot7+N3ib1/beOBlCWsw2CmUnTbiVG6HT4=) 8: pFPDjT8pWmy_pJ6wWX4rR8Qo9rg.roa (hash: RavCPb/6jDXHA14PmNTAv5fyK25mmxUX1z7WqLe0jdg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:46:eb:3b:46:b2:80:3b:63:26:48:49:1b:9d:3e:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654 Validity Not Before: Dec 20 15:00:39 2025 GMT Not After : Dec 21 15:00:39 2025 GMT Subject: CN=618a621515d5f4e74021c6df4cedf622d74067a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f4:71:41:00:1c:3f:9a:e3:9a:f0:93:d3:5a: 6b:fe:c7:cc:e2:c7:10:bb:75:3f:54:56:57:b3:6d: 81:eb:83:48:af:f6:b8:fa:6c:63:a9:67:6b:c5:2f: 64:1c:0d:66:5f:bf:39:b5:eb:20:1d:5d:c8:0d:e0: e8:4c:85:91:9c:96:1f:dd:29:fa:89:11:34:8b:8d: b0:fa:04:c8:41:7f:2f:ba:f3:5d:bb:ea:3a:f0:d1: 14:94:16:33:2d:31:a5:74:1c:b8:9b:87:b3:2d:59: 33:86:01:ff:d6:32:9b:21:79:9e:55:6b:3b:d7:ca: 1c:13:6a:64:15:db:68:14:a5:ba:b5:59:71:9f:8b: 1f:1d:6a:45:a7:ed:ca:d3:71:1e:3d:f1:9e:94:69: 6a:72:1b:1b:e5:3e:e1:86:dc:ca:da:4b:5e:b5:0b: 2c:60:a5:9d:59:6a:1a:ca:7e:64:b5:3c:d5:da:a1: 0a:72:bd:15:81:36:af:08:64:f2:da:20:05:37:16: d2:bb:36:87:37:9a:24:63:46:9c:5c:f7:ae:54:cf: c8:58:62:52:39:fe:ff:8f:cd:e6:76:9c:d8:5d:c1: d9:39:f6:09:a4:59:8f:ba:3b:2a:6d:93:f9:c7:e6: ad:09:43:34:12:96:f7:5f:a6:be:15:ea:ec:31:32: e5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8A:62:15:15:D5:F4:E7:40:21:C6:DF:4C:ED:F6:22:D7:40:67:A9 X509v3 Authority Key Identifier: keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:8f:b4:f6:22:16:e7:79:e1:f5:f4:72:df:8a:c0:71:c5:ce: cb:62:71:e9:a4:a7:2d:20:2a:28:82:9d:fb:4c:07:d8:74:54: d8:80:28:5f:9b:bb:4a:05:d8:1d:d4:67:0f:a5:4e:11:c4:0a: 1f:ef:89:5b:be:4c:62:87:61:3b:01:15:c4:7b:ff:c8:55:2c: 3e:c8:24:67:2b:53:e9:1a:13:5b:72:96:86:0a:37:1e:e1:7a: 3a:ce:a9:e6:6b:79:49:1c:c2:75:8d:60:86:c6:52:b3:7f:32: 0b:04:b0:26:f4:45:8d:5e:7c:6c:c4:24:36:5c:2e:8a:c1:77: 1d:50:47:00:5f:d7:11:86:3c:05:a2:6a:f2:c7:b7:d4:4b:cd: d5:51:61:2e:fc:7c:58:ea:83:cb:72:0c:0d:b7:18:f5:81:34: d6:79:27:fc:96:5c:7f:02:7c:70:49:3c:df:ab:a7:a6:8b:ee: 44:34:89:ff:4b:db:80:51:29:03:2f:76:48:96:f4:63:03:b2: 66:b3:c5:7d:ad:f9:cc:01:51:23:4c:ac:f5:d6:9a:3f:92:63: ed:61:86:9f:42:60:c6:ca:42:6b:f9:62:74:25:db:a7:d5:d1: 52:15:6b:46:c0:65:c3:a9:77:e6:74:97:e5:3a:d4:15:e0:7c: 96:b4:16:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8Rus7RrKAO2MmSEkbnT6gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz MDQ2NTQwHhcNMjUxMjIwMTUwMDM5WhcNMjUxMjIxMTUwMDM5WjAzMTEwLwYDVQQD Eyg2MThhNjIxNTE1ZDVmNGU3NDAyMWM2ZGY0Y2VkZjYyMmQ3NDA2N2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/RxQQAcP5rjmvCT01pr/sfM4scQ u3U/VFZXs22B64NIr/a4+mxjqWdrxS9kHA1mX785tesgHV3IDeDoTIWRnJYf3Sn6 iRE0i42w+gTIQX8vuvNdu+o68NEUlBYzLTGldBy4m4ezLVkzhgH/1jKbIXmeVWs7 18ocE2pkFdtoFKW6tVlxn4sfHWpFp+3K03EePfGelGlqchsb5T7hhtzK2ktetQss YKWdWWoayn5ktTzV2qEKcr0VgTavCGTy2iAFNxbSuzaHN5okY0acXPeuVM/IWGJS Of7/j83mdpzYXcHZOfYJpFmPujsqbZP5x+atCUM0Epb3X6a+FersMTLlgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGGKYhUV1fTnQCHG30zt9iLXQGepMB8GA1UdIwQY MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct MGZiNDgyM2Y1Yjg3LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3 LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeY+09iIW 53nh9fRy34rAccXOy2Jx6aSnLSAqKIKd+0wH2HRU2IAoX5u7SgXYHdRnD6VOEcQK H++JW75MYodhOwEVxHv/yFUsPsgkZytT6RoTW3KWhgo3HuF6Os6p5mt5SRzCdY1g hsZSs38yCwSwJvRFjV58bMQkNlwuisF3HVBHAF/XEYY8BaJq8se31EvN1VFhLvx8 WOqDy3IMDbcY9YE01nkn/JZcfwJ8cEk836unpovuRDSJ/0vbgFEpAy92SJb0YwOy ZrPFfa35zAFRI0ys9daaP5Jj7WGGn0JgxspCa/lidCXbp9XRUhVrRsBlw6l35nSX 5TrUFeB8lrQWqw== -----END CERTIFICATE-----Generated at Sun Dec 21 01:39:47 2025 by rpki-client