This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft File: pPhDYAPTdgICa2VTF1XKj80xvtI.mft (raw, json) Hash identifier: uVq1EGj/1BCql+KxXsBKiqP0sHpNw7qcWNdNEkcktbg= Subject key identifier: E5:17:D6:78:63:68:95:7B:D9:B8:5B:7A:0C:1C:3E:8B:70:2B:57:99 Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2 Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2 Certificate serial: 019B3F48B1BF1B7CB03F2B4A4C590F3F9B90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft Manifest number: 17A3 Signing time: Sun 21 Dec 2025 05:01:27 +0000 Manifest this update: Sun 21 Dec 2025 05:01:27 +0000 Manifest next update: Mon 22 Dec 2025 05:01:27 +0000 Files and hashes: 1: HMGH1OixlUbIZln6UuRHK_JoRTM.roa (hash: hIobepQhJMDuyYwWr9rOBNqOIvasbF7MFvvQPTjZKdk=) 2: PQ45AYuoXrKgjYd4a2nYqs6hfn8.roa (hash: 7Md1PLbDzWkJqH/gps7rzdw/URXMoRhj3yufH4c5pmc=) 3: XXKuildCsFJXdNyCwBMrowurkY0.roa (hash: NXW1f3EG3KW4h6xADEdnRgY4ZNLFSP48OU6WesEP2Jo=) 4: pPhDYAPTdgICa2VTF1XKj80xvtI.crl (hash: zGiiJT4bqrDx50p9MT8kbKdwzjNzsnEmSfmcA1uCGhw=) 5: pjx3rNTZc8zgxWfuwXBOXgS3sqk.roa (hash: WRGBj9YhrJQ6r6myfQ5P/R+NIt879XmbiNbiLcGeJP4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:b1:bf:1b:7c:b0:3f:2b:4a:4c:59:0f:3f:9b:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2 Validity Not Before: Dec 21 05:01:27 2025 GMT Not After : Dec 22 05:01:27 2025 GMT Subject: CN=e517d6786368957bd9b85b7a0c1c3e8b702b5799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b4:24:0d:21:16:34:5c:9e:25:8a:65:15:e7: f7:09:5e:ac:07:e0:78:54:a3:a4:58:22:f7:02:91: d8:d7:62:c1:7d:c4:11:5a:ce:14:6e:30:db:f2:23: 80:1c:5d:0d:e1:fb:4a:0c:9f:a1:20:12:33:ea:10: d2:19:6f:19:69:bd:f6:cf:6e:93:df:0d:8b:2b:f3: 09:a7:0d:78:c7:47:80:55:2a:21:eb:d7:dd:f1:0b: 8a:a9:8e:7c:8c:27:4f:e3:7e:26:50:8c:90:9e:06: 89:4f:4b:39:74:4c:31:4a:b9:d9:b8:5d:a2:5a:c9: c3:a3:75:9f:70:22:6c:34:6c:06:8e:8f:a4:cc:2d: f7:bf:72:c2:62:06:bb:d4:45:1e:93:e7:e2:61:29: 7d:a9:68:fa:10:68:1b:db:2f:6e:d2:03:4e:88:05: ae:51:38:eb:1b:34:78:52:6e:02:f8:7f:1b:77:51: a1:9c:40:b4:ec:74:cd:4d:34:7f:f3:a9:72:65:c7: 76:bd:89:1e:76:f3:e0:54:22:c1:c4:1d:59:68:b9: ad:80:f2:67:78:e1:ba:5a:d2:ce:f7:f3:4d:56:b7: 8f:7a:66:32:68:d0:91:d4:7a:a0:a3:33:33:10:72: 79:1b:7e:f3:30:4c:54:6c:5a:e1:ac:5b:2e:8a:4f: 7b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:17:D6:78:63:68:95:7B:D9:B8:5B:7A:0C:1C:3E:8B:70:2B:57:99 X509v3 Authority Key Identifier: keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:3e:cc:64:cd:02:16:d2:bd:ae:aa:1e:c3:ac:f4:91:e9:af: 2d:1a:61:94:60:6a:e7:be:74:d4:fe:1d:a0:1d:b5:ae:fd:89: 9d:d9:73:0c:3a:23:3a:a8:9b:f8:68:4c:42:fc:3b:b3:5b:02: d9:25:66:bc:66:30:8e:65:e1:84:a1:c1:9d:0a:1c:08:22:a8: 4a:19:e9:02:13:a2:1c:c2:a6:aa:98:d2:64:98:20:d0:28:1e: 6d:ee:0a:ff:5f:d4:a9:16:f3:8c:87:e3:1f:74:69:d7:31:9e: 22:27:38:93:b1:59:ee:17:14:59:63:19:91:b2:5a:76:ca:1c: e5:64:d5:96:ce:84:95:fb:34:1d:e5:cc:35:19:a5:f0:ba:25: f8:29:fd:24:d1:5a:20:6e:99:eb:2e:f7:0b:c7:be:f7:e3:a6: bd:93:e4:04:25:b5:65:7b:53:57:1a:d7:c1:02:ed:21:6a:62: f7:65:fd:e5:b6:8b:9a:33:f0:89:4f:d8:04:de:fe:91:15:ea: e9:d0:10:01:37:b7:ad:95:cd:33:c4:8a:57:e1:5d:6e:f3:cc: 7c:0c:fa:30:77:53:80:d5:01:00:59:2e:ca:03:1c:cd:1b:4f: d4:45:c3:1b:01:d0:37:54:3c:48:03:b2:f4:8e:ca:7f:4e:dc: 0e:0c:13:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SLG/G3ywPytKTFkPP5uQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0Zjg0MzYwMDNkMzc2MDIwMjZiNjU1MzE3NTVjYThmY2Qz MWJlZDIwHhcNMjUxMjIxMDUwMTI3WhcNMjUxMjIyMDUwMTI3WjAzMTEwLwYDVQQD EyhlNTE3ZDY3ODYzNjg5NTdiZDliODViN2EwYzFjM2U4YjcwMmI1Nzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2rQkDSEWNFyeJYplFef3CV6sB+B4 VKOkWCL3ApHY12LBfcQRWs4UbjDb8iOAHF0N4ftKDJ+hIBIz6hDSGW8Zab32z26T 3w2LK/MJpw14x0eAVSoh69fd8QuKqY58jCdP434mUIyQngaJT0s5dEwxSrnZuF2i WsnDo3WfcCJsNGwGjo+kzC33v3LCYga71EUek+fiYSl9qWj6EGgb2y9u0gNOiAWu UTjrGzR4Um4C+H8bd1GhnEC07HTNTTR/86lyZcd2vYkedvPgVCLBxB1ZaLmtgPJn eOG6WtLO9/NNVrePemYyaNCR1HqgozMzEHJ5G37zMExUbFrhrFsuik97DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOUX1nhjaJV72bhbegwcPotwK1eZMB8GA1UdIwQY MBaAFKT4Q2AD03YCAmtlUxdVyo/NMb7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQt MjdiZjgzY2RlZDZiLzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS81MTU2MDgtNTAxMi00YTQwLWIzMjQtMjdiZjgzY2RlZDZi LzEvcFBoRFlBUFRkZ0lDYTJWVEYxWEtqODB4dnRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZT7MZM0C FtK9rqoew6z0kemvLRphlGBq57501P4doB21rv2JndlzDDojOqib+GhMQvw7s1sC 2SVmvGYwjmXhhKHBnQocCCKoShnpAhOiHMKmqpjSZJgg0Cgebe4K/1/UqRbzjIfj H3Rp1zGeIic4k7FZ7hcUWWMZkbJadsoc5WTVls6Elfs0HeXMNRml8Lol+Cn9JNFa IG6Z6y73C8e+9+OmvZPkBCW1ZXtTVxrXwQLtIWpi92X95baLmjPwiU/YBN7+kRXq 6dAQATe3rZXNM8SKV+FdbvPMfAz6MHdTgNUBAFkuygMczRtP1EXDGwHQN1Q8SAOy 9I7Kf07cDgwT1Q== -----END CERTIFICATE-----Generated at Sun Dec 21 08:17:15 2025 by rpki-client