This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft File: PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft (raw, json) Hash identifier: XeScvJUv0uDTJc9GjsTaub/ZIKy/13N7e/7BUf2dgvQ= Subject key identifier: B2:22:94:D3:7C:6B:42:68:C4:3C:21:C3:72:07:92:23:A8:EF:63:69 Authority key identifier: 3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A Certificate issuer: /CN=3ca447fd0979b8a989355c354d304d114d20727a Certificate serial: 019B3D22B3620C1EEF526B9F0187827DC593 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft Manifest number: 0466 Signing time: Sat 20 Dec 2025 19:00:42 +0000 Manifest this update: Sat 20 Dec 2025 19:00:42 +0000 Manifest next update: Sun 21 Dec 2025 19:00:42 +0000 Files and hashes: 1: BcTRmH6BmmlSz8rh3pMxnCQXpBs.roa (hash: xmk+1c+FLynSNXKfYDQ/lfjoeA1RsSdHXQaf1l1+6Ak=) 2: PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl (hash: qE5immxy0tlCSu1lNZLYhu3KLDoc/GCA69nNTsjbGTo=) 3: eP87Vey-9rBbyOrOh4YCvuO3c1M.roa (hash: az6VMbDPubRZM135slIGEREK5WUZUt9MUwTRvHW3psg=) 4: wBy33E8gC6zWuMOmD5yzfH0QyIQ.roa (hash: yM84zdMfEYNT7elb1Nq+ZFqPP22ZSrKZWHzVdylcK6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:22:b3:62:0c:1e:ef:52:6b:9f:01:87:82:7d:c5:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ca447fd0979b8a989355c354d304d114d20727a Validity Not Before: Dec 20 19:00:42 2025 GMT Not After : Dec 21 19:00:42 2025 GMT Subject: CN=b22294d37c6b4268c43c21c372079223a8ef6369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:3d:2d:65:aa:e0:c3:7a:c3:29:de:87:55: b7:60:71:e1:7f:22:72:f4:b9:a4:f8:b1:25:91:b1: a6:55:65:54:1d:1b:98:60:51:02:37:ba:4c:de:f1: d3:68:2a:7b:a4:c2:7c:0e:94:f1:92:05:48:66:8f: c8:0e:6b:9f:14:75:6c:25:76:7a:a5:b5:e8:a7:b6: c9:d8:24:b0:35:b9:b3:19:e8:ee:0f:21:e6:4c:a6: 36:cc:f0:ca:92:e1:ee:4a:7f:b3:ed:88:5d:46:f8: f8:36:51:63:49:a4:a3:61:b6:7e:05:da:b1:39:07: 28:2e:57:4c:40:cc:4c:67:16:df:b5:15:ca:ac:2d: 2e:d1:fc:d5:cc:64:ed:b6:63:05:c3:fe:a3:32:52: 34:de:cd:f0:6a:7c:36:8a:f8:40:75:18:9f:4a:c0: 2d:a7:ba:22:eb:b1:e4:b4:dd:1d:5f:fd:07:90:6e: b8:1e:e5:6a:02:d6:78:3f:02:a0:d9:b5:ba:9d:86: 29:35:ab:94:08:cc:2b:1f:62:7a:4c:b4:fb:a7:7b: 89:a2:bf:4d:ea:04:b6:3a:d5:61:03:1a:d0:21:65: c4:4d:8f:e6:bc:53:b9:ae:04:68:b4:e1:ae:1f:7d: 82:13:7a:67:c0:b4:c3:51:8f:c3:6d:69:dd:7f:3b: da:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:22:94:D3:7C:6B:42:68:C4:3C:21:C3:72:07:92:23:A8:EF:63:69 X509v3 Authority Key Identifier: keyid:3C:A4:47:FD:09:79:B8:A9:89:35:5C:35:4D:30:4D:11:4D:20:72:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKRH_Ql5uKmJNVw1TTBNEU0gcno.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b5a08f-d9f8-432d-ba4b-a6ef752c6dc2/1/PKRH_Ql5uKmJNVw1TTBNEU0gcno.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:2a:ce:cf:1e:68:a0:e7:cc:78:1b:fb:f1:37:a6:2b:1a:fd: bf:12:f5:ed:71:a1:dc:de:d6:d3:25:4c:4b:6b:85:76:38:ac: f1:60:97:92:7e:0f:f8:aa:d0:83:9d:c0:9f:ca:ce:8b:d6:8c: 65:f5:b0:0d:b7:65:fc:95:8d:68:29:fc:6c:ea:69:11:71:ef: 34:d4:0f:41:b3:18:36:3f:30:f9:7f:d0:d0:64:dc:07:c2:09: 7f:24:80:e5:31:c7:93:df:bb:76:31:d6:6e:de:56:b8:ad:5d: 40:4d:83:62:ca:80:18:5a:ba:ab:dd:b1:d1:40:38:e9:70:7e: 1e:c7:7c:01:84:4f:76:7a:e9:b0:38:3b:7b:4e:f0:62:6c:c8: 56:32:1a:18:31:24:88:9e:33:fb:7c:7e:16:de:b7:eb:78:a4: 02:50:67:30:e7:27:10:73:e8:33:2f:f1:ad:3d:0e:71:67:bb: 53:b5:ba:b6:5f:78:21:6d:e1:3d:1b:cf:07:64:eb:1b:53:84: b0:df:6d:e0:ab:94:5d:b0:ca:7c:ff:76:80:9d:fe:d9:e1:6e: f5:ec:2c:9e:88:0e:b6:36:e4:03:50:dc:6b:30:3b:20:7d:97: bb:ac:45:1b:4f:88:e0:3b:e7:dc:c5:dd:15:7c:bc:0f:e8:9d: de:4a:3b:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9IrNiDB7vUmufAYeCfcWTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjYTQ0N2ZkMDk3OWI4YTk4OTM1NWMzNTRkMzA0ZDExNGQy MDcyN2EwHhcNMjUxMjIwMTkwMDQyWhcNMjUxMjIxMTkwMDQyWjAzMTEwLwYDVQQD EyhiMjIyOTRkMzdjNmI0MjY4YzQzYzIxYzM3MjA3OTIyM2E4ZWY2MzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwk9LWWq4MN6wyneh1W3YHHhfyJy 9Lmk+LElkbGmVWVUHRuYYFECN7pM3vHTaCp7pMJ8DpTxkgVIZo/IDmufFHVsJXZ6 pbXop7bJ2CSwNbmzGejuDyHmTKY2zPDKkuHuSn+z7YhdRvj4NlFjSaSjYbZ+Bdqx OQcoLldMQMxMZxbftRXKrC0u0fzVzGTttmMFw/6jMlI03s3wanw2ivhAdRifSsAt p7oi67HktN0dX/0HkG64HuVqAtZ4PwKg2bW6nYYpNauUCMwrH2J6TLT7p3uJor9N 6gS2OtVhAxrQIWXETY/mvFO5rgRotOGuH32CE3pnwLTDUY/DbWndfzva9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLIilNN8a0JoxDwhw3IHkiOo72NpMB8GA1UdIwQY MBaAFDykR/0JebipiTVcNU0wTRFNIHJ6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGIt YTZlZjc1MmM2ZGMyLzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9iNWEwOGYtZDlmOC00MzJkLWJhNGItYTZlZjc1MmM2ZGMy LzEvUEtSSF9RbDV1S21KTlZ3MVRUQk5FVTBnY25vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdSrOzx5o oOfMeBv78TemKxr9vxL17XGh3N7W0yVMS2uFdjis8WCXkn4P+KrQg53An8rOi9aM ZfWwDbdl/JWNaCn8bOppEXHvNNQPQbMYNj8w+X/Q0GTcB8IJfySA5THHk9+7djHW bt5WuK1dQE2DYsqAGFq6q92x0UA46XB+Hsd8AYRPdnrpsDg7e07wYmzIVjIaGDEk iJ4z+3x+Ft6363ikAlBnMOcnEHPoMy/xrT0OcWe7U7W6tl94IW3hPRvPB2TrG1OE sN9t4KuUXbDKfP92gJ3+2eFu9ewsnogOtjbkA1DcazA7IH2Xu6xFG0+I4Dvn3MXd FXy8D+id3ko7MQ== -----END CERTIFICATE-----Generated at Sun Dec 21 04:57:11 2025 by rpki-client