This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft File: pdCLMVCtNN4riFkhdBkkCDlvEfs.mft (raw, json) Hash identifier: LUJn1hSCDwGotHIohX9bgBBpdmIJvgKgoSB+xHYR5fk= Subject key identifier: 00:FE:66:BF:82:99:FD:96:BE:E8:BF:E0:07:9E:8B:BF:0F:EE:6D:A1 Authority key identifier: A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB Certificate issuer: /CN=a5d08b3150ad34de2b88592174192408396f11fb Certificate serial: 019B2F6794F2B3BC2CEB1496FD2062A88F22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft Manifest number: 1781 Signing time: Thu 18 Dec 2025 03:01:16 +0000 Manifest this update: Thu 18 Dec 2025 03:01:16 +0000 Manifest next update: Fri 19 Dec 2025 03:01:16 +0000 Files and hashes: 1: bY2tBQ51YL8a-pcphuYuVQz7bOg.roa (hash: FnAC9AE4W5+r++w2y10UXXpTgultC6LrjOa8S41rhns=) 2: pdCLMVCtNN4riFkhdBkkCDlvEfs.crl (hash: wvnSXVfJdmJP/Y0LJqIBjwLCHlywSlf8j9NruwLzcAc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 03:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:67:94:f2:b3:bc:2c:eb:14:96:fd:20:62:a8:8f:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5d08b3150ad34de2b88592174192408396f11fb Validity Not Before: Dec 18 03:01:16 2025 GMT Not After : Dec 19 03:01:16 2025 GMT Subject: CN=00fe66bf8299fd96bee8bfe0079e8bbf0fee6da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:85:db:31:51:f1:97:da:14:48:9c:dd:21: 73:2d:9a:34:f9:7a:c3:3a:7b:82:de:9a:41:83:f2: 8d:57:84:8d:8e:43:ea:ca:3f:64:91:ce:9b:37:07: ae:df:30:96:13:c3:36:39:35:55:94:ce:e2:10:0c: 7f:00:47:f0:60:71:1e:ca:44:4a:b4:c6:3a:93:57: 85:43:0b:fb:d4:ff:88:49:03:28:0a:f9:e6:df:85: 8f:f8:a1:52:02:a2:74:15:43:c0:2a:43:e0:e2:65: b1:87:38:ed:bf:da:b4:40:05:b2:68:f2:22:f1:e1: 13:26:c3:71:5b:e7:e4:f6:96:ff:8d:6f:23:ea:7b: 85:4a:89:a5:73:09:90:ec:16:52:f0:ec:60:68:af: 0a:60:ea:da:ac:bf:c0:dc:1a:e3:ee:a7:fa:6f:cc: d9:33:12:19:c9:68:cc:17:ae:4f:5d:42:d6:6d:3f: 75:42:e8:0d:db:f4:42:d4:16:02:e3:da:c3:d9:bd: 83:ca:66:4b:0a:c0:72:44:b8:dd:c8:00:9e:6f:28: 41:32:ec:bf:87:b0:ab:05:0a:a6:97:a0:60:12:a6: 44:ed:67:05:06:ea:8e:b2:b2:08:f6:80:e2:c7:d3: 74:f8:2f:cf:9b:ca:b8:91:5e:d8:d7:2b:8d:6a:2d: be:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FE:66:BF:82:99:FD:96:BE:E8:BF:E0:07:9E:8B:BF:0F:EE:6D:A1 X509v3 Authority Key Identifier: keyid:A5:D0:8B:31:50:AD:34:DE:2B:88:59:21:74:19:24:08:39:6F:11:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdCLMVCtNN4riFkhdBkkCDlvEfs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/901839-0ef2-40ec-99b3-43cc5b46d5b2/1/pdCLMVCtNN4riFkhdBkkCDlvEfs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:52:e0:38:b6:59:2e:15:e5:3d:f2:15:c3:76:d2:b9:ba:f4: 8b:26:8b:06:6c:dd:84:9c:e4:65:cf:41:a8:e6:90:12:fd:9f: 62:76:8c:32:e0:15:34:a3:5e:63:37:04:f3:79:00:b7:e2:6b: 1c:8f:46:1c:81:8a:76:b9:47:bb:e0:b7:07:d3:3c:d5:b7:fd: 1f:e0:54:ac:c4:7e:21:6f:80:e7:e5:20:7b:af:b2:b9:7c:dc: f9:b8:bf:05:2d:67:89:75:35:72:67:d5:e4:9a:34:27:72:48: b8:6c:6a:58:b4:8d:1c:4b:4b:69:97:bd:a9:5e:ab:5b:ab:83: e7:95:f1:2b:f5:9e:43:4a:7a:c9:53:26:b5:ed:cd:4a:de:bd: 99:ed:48:3a:ec:b6:1f:ef:e1:0e:93:6b:75:33:c0:04:76:92: 66:e3:e4:67:dd:20:4c:a2:0b:be:0a:0d:cf:e7:d8:76:3c:c6: 79:d1:7d:2d:e5:66:48:d1:cb:f4:f7:0a:97:d1:1a:21:a7:f6: 42:10:8f:b3:43:be:f0:79:61:d7:dc:1e:17:f8:5d:0d:ac:2e: 4e:09:a6:d1:ee:10:b4:bb:b2:91:26:7e:89:93:20:03:4b:44: b1:ff:5e:0b:72:e7:6b:71:30:d9:73:50:97:61:43:35:be:60: 90:e4:99:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvZ5Tys7ws6xSW/SBiqI8iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1ZDA4YjMxNTBhZDM0ZGUyYjg4NTkyMTc0MTkyNDA4Mzk2 ZjExZmIwHhcNMjUxMjE4MDMwMTE2WhcNMjUxMjE5MDMwMTE2WjAzMTEwLwYDVQQD EygwMGZlNjZiZjgyOTlmZDk2YmVlOGJmZTAwNzllOGJiZjBmZWU2ZGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwqF2zFR8ZfaFEic3SFzLZo0+XrD OnuC3ppBg/KNV4SNjkPqyj9kkc6bNweu3zCWE8M2OTVVlM7iEAx/AEfwYHEeykRK tMY6k1eFQwv71P+ISQMoCvnm34WP+KFSAqJ0FUPAKkPg4mWxhzjtv9q0QAWyaPIi 8eETJsNxW+fk9pb/jW8j6nuFSomlcwmQ7BZS8OxgaK8KYOrarL/A3Brj7qf6b8zZ MxIZyWjMF65PXULWbT91QugN2/RC1BYC49rD2b2DymZLCsByRLjdyACebyhBMuy/ h7CrBQqml6BgEqZE7WcFBuqOsrII9oDix9N0+C/Pm8q4kV7Y1yuNai2+CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAD+Zr+Cmf2Wvui/4Aeei78P7m2hMB8GA1UdIwQY MBaAFKXQizFQrTTeK4hZIXQZJAg5bxH7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGRDTE1WQ3ROTjRyaUZraGRCa2tDRGx2RWZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85MDE4MzktMGVmMi00MGVjLTk5YjMt NDNjYzViNDZkNWIyLzEvcGRDTE1WQ3ROTjRyaUZraGRCa2tDRGx2RWZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi85MDE4MzktMGVmMi00MGVjLTk5YjMtNDNjYzViNDZkNWIy LzEvcGRDTE1WQ3ROTjRyaUZraGRCa2tDRGx2RWZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQFLgOLZZ LhXlPfIVw3bSubr0iyaLBmzdhJzkZc9BqOaQEv2fYnaMMuAVNKNeYzcE83kAt+Jr HI9GHIGKdrlHu+C3B9M81bf9H+BUrMR+IW+A5+Uge6+yuXzc+bi/BS1niXU1cmfV 5Jo0J3JIuGxqWLSNHEtLaZe9qV6rW6uD55XxK/WeQ0p6yVMmte3NSt69me1IOuy2 H+/hDpNrdTPABHaSZuPkZ90gTKILvgoNz+fYdjzGedF9LeVmSNHL9PcKl9EaIaf2 QhCPs0O+8Hlh19weF/hdDawuTgmm0e4QtLuykSZ+iZMgA0tEsf9eC3Lna3Ew2XNQ l2FDNb5gkOSZgA== -----END CERTIFICATE-----Generated at Thu Dec 18 10:23:22 2025 by rpki-client