This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json) Hash identifier: YQx0GB0Rf34t399I/fU0hm5hS8mgeTza2echeg6ARNo= Subject key identifier: C2:E0:EC:97:E0:81:E5:84:D3:1F:D2:36:D5:F4:96:B2:74:29:46:3C Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Certificate serial: 019B378EC0C63AC25341ACF4F132F86421AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft Manifest number: 0B8D Signing time: Fri 19 Dec 2025 17:01:00 +0000 Manifest this update: Fri 19 Dec 2025 17:01:00 +0000 Manifest next update: Sat 20 Dec 2025 17:01:00 +0000 Files and hashes: 1: GQiJ6A3TQvBKFhpquOxaF9eGGSM.roa (hash: 6erLpsgMI9bO4qfOCcfgJUCMEDYhGzxWY2AMUbeslCE=) 2: IHvKxmr3uwpJKwkutA9nKfip_F8.roa (hash: E257yWlPmy47lDQ49F17JotJ+RKeZHzV+AfLNrTNJCw=) 3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: 1J6f173rV9QStrgqsRbBReUs1ZwyjaF9xzn6PHrE8Ms=) 4: pqLRP6br3Tf8MSpYzZpv7JQJdvI.roa (hash: t46mDE1wE8ruzgJ1jDR113WnhduQHovpLeyn+ltLQ0w=) 5: sS3umUajXXmqMBA_9lX5Ye0iJuQ.roa (hash: IM/xG6YgVa2blydnHEIN0rcU5aCmvFCbaiZgSErPPdI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 17:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:c0:c6:3a:c2:53:41:ac:f4:f1:32:f8:64:21:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Validity Not Before: Dec 19 17:01:00 2025 GMT Not After : Dec 20 17:01:00 2025 GMT Subject: CN=c2e0ec97e081e584d31fd236d5f496b27429463c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c8:44:9f:78:d0:2f:5b:cf:d4:d0:46:99:6b: a3:0e:0c:eb:a1:17:6e:08:bc:39:3e:ff:58:f0:e9: 4c:e4:21:0b:3d:b9:0b:a5:f2:3a:ba:3c:c8:b7:ad: 1c:03:02:a0:43:c1:bc:eb:8a:eb:4e:74:62:10:a5: 2a:4a:d3:55:f6:bc:38:5a:76:b2:f4:9c:cd:08:99: b2:9e:e9:66:ff:59:89:f2:73:26:e4:76:80:a5:e9: 0a:65:6e:3a:11:17:69:b0:58:83:32:67:2b:88:df: 76:7e:cb:3c:34:6a:20:81:ab:6a:1e:1f:a3:13:64: be:17:0f:ad:b3:dc:3f:e9:2d:ce:74:b7:33:d6:91: 35:07:f6:7f:69:a6:04:cb:36:10:39:81:98:c3:0a: c2:04:a2:15:c7:c7:72:98:fd:b6:7e:ef:c1:98:b9: dc:1d:28:2f:77:5a:80:cd:2c:04:6e:0d:63:fd:73: 3d:98:86:32:c5:ff:20:ee:8a:be:6c:26:a0:74:5a: 10:65:34:f3:81:80:41:c4:41:c0:20:c3:78:c3:54: 73:c9:96:25:63:25:e7:28:90:11:42:35:4f:f3:3e: 02:f6:92:cd:91:96:af:de:aa:22:0f:29:19:e0:4f: f1:e9:1f:3d:c0:3a:41:c9:63:1a:ba:de:d3:6d:40: 06:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E0:EC:97:E0:81:E5:84:D3:1F:D2:36:D5:F4:96:B2:74:29:46:3C X509v3 Authority Key Identifier: keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:f5:a9:4f:44:f8:d0:4e:2e:94:86:70:64:65:d1:e5:50:a9: f3:bf:c1:c7:23:92:28:af:79:cc:7b:c4:3d:59:7f:c8:0d:55: 54:ad:b4:b9:3c:1a:85:b3:4c:09:1d:59:19:dc:62:70:2f:5f: fe:8d:b1:ca:2e:ab:89:45:dd:34:c7:d9:da:84:f4:cb:b7:bd: c5:09:94:b1:5d:44:f9:37:85:d4:6a:c7:42:7f:c9:17:12:f8: 20:69:e7:8c:c2:8c:f7:03:8a:9b:8b:d8:ae:79:78:cb:03:66: 8f:a2:a3:ce:60:a5:b6:2b:73:52:44:f5:40:26:2f:b6:c3:38: 2b:37:5d:37:86:22:a6:fc:87:d0:b3:1d:17:b8:5e:ec:69:e0: f9:81:19:f3:1e:a9:a4:fe:17:03:7e:55:7b:e2:02:b9:42:98: a9:0c:3b:47:71:c8:b8:b1:69:71:c7:55:70:11:ea:a5:f9:ad: ef:03:b7:61:42:63:e1:ed:a4:5c:1c:b4:eb:4c:01:bc:f6:d0: 32:64:b6:e4:81:90:28:8c:c7:ce:68:d1:71:48:94:ce:a0:c8: 36:2c:83:5b:0a:68:8b:d0:ef:b8:ee:32:d1:55:2d:c4:26:7b: c7:2a:54:2f:00:46:e4:cf:53:04:ce:15:36:53:37:54:7c:9a: 0a:66:d8:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3jsDGOsJTQaz08TL4ZCGuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm OTZkZWMwHhcNMjUxMjE5MTcwMTAwWhcNMjUxMjIwMTcwMTAwWjAzMTEwLwYDVQQD EyhjMmUwZWM5N2UwODFlNTg0ZDMxZmQyMzZkNWY0OTZiMjc0Mjk0NjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MhEn3jQL1vP1NBGmWujDgzroRdu CLw5Pv9Y8OlM5CELPbkLpfI6ujzIt60cAwKgQ8G864rrTnRiEKUqStNV9rw4Wnay 9JzNCJmynulm/1mJ8nMm5HaApekKZW46ERdpsFiDMmcriN92fss8NGoggatqHh+j E2S+Fw+ts9w/6S3OdLcz1pE1B/Z/aaYEyzYQOYGYwwrCBKIVx8dymP22fu/BmLnc HSgvd1qAzSwEbg1j/XM9mIYyxf8g7oq+bCagdFoQZTTzgYBBxEHAIMN4w1RzyZYl YyXnKJARQjVP8z4C9pLNkZav3qoiDykZ4E/x6R89wDpByWMaut7TbUAGnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMLg7JfggeWE0x/SNtX0lrJ0KUY8MB8GA1UdIwQY MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4 LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfWpT0T4 0E4ulIZwZGXR5VCp87/BxyOSKK95zHvEPVl/yA1VVK20uTwahbNMCR1ZGdxicC9f /o2xyi6riUXdNMfZ2oT0y7e9xQmUsV1E+TeF1GrHQn/JFxL4IGnnjMKM9wOKm4vY rnl4ywNmj6KjzmCltitzUkT1QCYvtsM4KzddN4YipvyH0LMdF7he7Gng+YEZ8x6p pP4XA35Ve+ICuUKYqQw7R3HIuLFpccdVcBHqpfmt7wO3YUJj4e2kXBy060wBvPbQ MmS25IGQKIzHzmjRcUiUzqDINiyDWwpoi9DvuO4y0VUtxCZ7xypULwBG5M9TBM4V NlM3VHyaCmbYGw== -----END CERTIFICATE-----Generated at Sat Dec 20 03:14:44 2025 by rpki-client