This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft File: PheDehDbHT3XPiDfC0eeQNsiNv4.mft (raw, json) Hash identifier: ngb55lAWlz4hbxadPpocaEFUBNhZDWUaAw9cGJh3XtI= Subject key identifier: E7:D9:C7:0F:D4:97:A2:51:84:B2:A0:4B:DA:BC:6B:9D:96:01:78:4D Authority key identifier: 3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE Certificate issuer: /CN=3e17837a10db1d3dd73e20df0b479e40db2236fe Certificate serial: 019B3E6C86349E71D27C4C79D8A31D1B2B0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft Manifest number: 0F9E Signing time: Sun 21 Dec 2025 01:00:58 +0000 Manifest this update: Sun 21 Dec 2025 01:00:58 +0000 Manifest next update: Mon 22 Dec 2025 01:00:58 +0000 Files and hashes: 1: CZQAZEvMh_XTxw7BOmbx2zwgX-k.roa (hash: Ire9dW7Oeexx5f9et2qGgWkDs4AnuBBZcM9DwhOcJAg=) 2: PheDehDbHT3XPiDfC0eeQNsiNv4.crl (hash: mY90sD7kPPlV/U/P7rVNCJG66hMjovrRi/N8wWD22Qk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:86:34:9e:71:d2:7c:4c:79:d8:a3:1d:1b:2b:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e17837a10db1d3dd73e20df0b479e40db2236fe Validity Not Before: Dec 21 01:00:58 2025 GMT Not After : Dec 22 01:00:58 2025 GMT Subject: CN=e7d9c70fd497a25184b2a04bdabc6b9d9601784d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:2d:92:8e:a8:7e:44:8a:83:3e:2d:ef:9b: dd:4c:04:5b:e5:2c:2b:f5:23:83:be:d5:3d:af:23: c6:b1:f9:43:0f:f9:d0:62:f3:cd:de:a7:1f:0f:c1: 9a:80:30:77:6d:39:27:e8:93:97:aa:5a:bb:bf:ee: d9:d9:4c:9c:18:2f:f3:12:06:50:10:47:e3:d7:30: a2:f3:8d:42:5e:0d:d7:03:06:39:cb:cf:43:33:1e: f0:65:ea:62:42:c6:f3:18:7a:1d:d6:68:68:e5:dc: 8f:9b:bf:4a:4f:bc:bd:48:de:d2:10:9c:81:25:a3: 41:74:ac:28:97:a1:7d:1c:fd:1b:67:55:48:c3:28: 22:54:6b:6f:a0:61:a3:ec:11:4d:13:6e:f3:96:c2: 28:a2:92:e1:83:65:83:ee:d1:b6:09:57:47:61:4c: fa:09:16:cd:15:67:91:d7:d6:24:ec:b1:0b:2d:dd: 56:1d:1b:e4:7e:b5:f9:51:c7:98:27:c1:c8:87:8a: 3b:a1:ee:a9:f9:ea:57:b4:da:3d:f4:69:ed:42:15: 2c:3d:50:37:b4:88:7e:fa:ee:21:96:ed:2f:41:a6: be:36:b8:48:21:85:72:f6:2c:af:83:f6:7f:b2:a3: 37:ea:5f:aa:25:dd:91:30:60:86:96:28:1f:7b:9b: 19:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D9:C7:0F:D4:97:A2:51:84:B2:A0:4B:DA:BC:6B:9D:96:01:78:4D X509v3 Authority Key Identifier: keyid:3E:17:83:7A:10:DB:1D:3D:D7:3E:20:DF:0B:47:9E:40:DB:22:36:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PheDehDbHT3XPiDfC0eeQNsiNv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/4c043c-5fcd-48cb-bd50-c596af2a42ba/1/PheDehDbHT3XPiDfC0eeQNsiNv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:70:67:b8:bf:7b:08:a1:7d:d5:cf:c7:cd:8f:61:2d:ce:90: 81:0b:20:64:17:fa:ff:16:10:62:89:4b:cd:e2:6c:5d:13:03: 81:54:e8:13:92:bf:f1:e3:7b:de:02:9b:06:72:8f:02:1e:cf: e9:6a:4a:3f:7f:1b:04:a6:b9:7f:d3:3e:89:d7:e2:47:18:d1: 97:b7:02:07:8d:af:07:cb:33:88:9a:6f:fd:53:67:3d:4e:fd: 6f:a1:7f:29:fe:44:61:db:49:b6:2c:e3:83:de:71:9d:ea:09: 8e:2d:05:a9:0d:dc:02:e5:ff:16:a8:26:a8:ea:41:51:ad:2b: 16:62:61:ce:e5:9f:2c:4b:41:38:3c:41:e4:ff:f1:17:7b:11: da:f8:1a:85:67:81:6c:1e:cf:c9:a4:6a:7f:be:76:be:99:3f: 1c:6c:dc:04:10:44:fa:b4:60:83:71:16:58:03:60:03:be:a7: 4f:78:94:a6:95:ee:1b:94:fa:b5:9f:79:d7:85:78:03:f0:a4: 6b:44:76:4f:f2:e4:31:ff:56:6e:14:55:5c:c3:14:d2:05:ae: 16:2f:11:fd:b7:2d:7e:79:6e:da:39:0d:5c:96:6c:e8:49:21: 4f:e1:20:90:6a:50:dd:34:b9:59:06:c0:db:25:d9:a6:b5:fb: f7:57:f6:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bIY0nnHSfEx52KMdGysOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMTc4MzdhMTBkYjFkM2RkNzNlMjBkZjBiNDc5ZTQwZGIy MjM2ZmUwHhcNMjUxMjIxMDEwMDU4WhcNMjUxMjIyMDEwMDU4WjAzMTEwLwYDVQQD EyhlN2Q5YzcwZmQ0OTdhMjUxODRiMmEwNGJkYWJjNmI5ZDk2MDE3ODRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKMtko6ofkSKgz4t75vdTARb5Swr 9SODvtU9ryPGsflDD/nQYvPN3qcfD8GagDB3bTkn6JOXqlq7v+7Z2UycGC/zEgZQ EEfj1zCi841CXg3XAwY5y89DMx7wZepiQsbzGHod1mho5dyPm79KT7y9SN7SEJyB JaNBdKwol6F9HP0bZ1VIwygiVGtvoGGj7BFNE27zlsIoopLhg2WD7tG2CVdHYUz6 CRbNFWeR19Yk7LELLd1WHRvkfrX5UceYJ8HIh4o7oe6p+epXtNo99GntQhUsPVA3 tIh++u4hlu0vQaa+NrhIIYVy9iyvg/Z/sqM36l+qJd2RMGCGligfe5sZrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOfZxw/Ul6JRhLKgS9q8a52WAXhNMB8GA1UdIwQY MBaAFD4Xg3oQ2x091z4g3wtHnkDbIjb+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAt YzU5NmFmMmE0MmJhLzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS80YzA0M2MtNWZjZC00OGNiLWJkNTAtYzU5NmFmMmE0MmJh LzEvUGhlRGVoRGJIVDNYUGlEZkMwZWVRTnNpTnY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoHBnuL97 CKF91c/HzY9hLc6QgQsgZBf6/xYQYolLzeJsXRMDgVToE5K/8eN73gKbBnKPAh7P 6WpKP38bBKa5f9M+idfiRxjRl7cCB42vB8sziJpv/VNnPU79b6F/Kf5EYdtJtizj g95xneoJji0FqQ3cAuX/FqgmqOpBUa0rFmJhzuWfLEtBODxB5P/xF3sR2vgahWeB bB7PyaRqf752vpk/HGzcBBBE+rRgg3EWWANgA76nT3iUppXuG5T6tZ9514V4A/Ck a0R2T/LkMf9WbhRVXMMU0gWuFi8R/bctfnlu2jkNXJZs6EkhT+EgkGpQ3TS5WQbA 2yXZprX791f2hg== -----END CERTIFICATE-----Generated at Sun Dec 21 08:14:51 2025 by rpki-client