This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft File: PkJOJFpkMkpocx3SbzDGhbqopng.mft (raw, json) Hash identifier: IKShEmXU6on1UpSR7AVoh9Cm1op0PnbHbpWmIWLhpNw= Subject key identifier: 47:BD:B4:3B:82:2D:7D:45:EB:E1:34:43:DA:93:A1:DA:3C:15:E8:50 Authority key identifier: 3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78 Certificate issuer: /CN=3e424e245a64324a68731dd26f30c685baa8a678 Certificate serial: 019B484B15385B5FC6BB8DAC511323E1C9A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft Manifest number: 1790 Signing time: Mon 22 Dec 2025 23:00:38 +0000 Manifest this update: Mon 22 Dec 2025 23:00:38 +0000 Manifest next update: Tue 23 Dec 2025 23:00:38 +0000 Files and hashes: 1: 9BKbZIRd9-X7DwnbmN0tiFBfwDk.roa (hash: sc6ZIVElHs/p3IrdFGLfeuXuK5hZseBYNoiFQsWbBIY=) 2: PkJOJFpkMkpocx3SbzDGhbqopng.crl (hash: 5xlw1ZHvnSaXavYgIOnkLP5IPSiLf2kH8TmN2mh0Nag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:4b:15:38:5b:5f:c6:bb:8d:ac:51:13:23:e1:c9:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e424e245a64324a68731dd26f30c685baa8a678 Validity Not Before: Dec 22 23:00:38 2025 GMT Not After : Dec 23 23:00:38 2025 GMT Subject: CN=47bdb43b822d7d45ebe13443da93a1da3c15e850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ee:66:c1:15:10:57:c3:54:7f:e2:f8:6d:9b: d5:09:b6:4a:de:c2:90:43:90:bd:29:a7:42:8e:44: ff:c1:08:80:09:4e:ed:00:08:c7:9f:24:f8:ea:30: 1c:3e:12:b5:1c:ad:85:2b:b0:06:8c:a5:cf:8f:1d: 1e:67:02:b5:c1:e5:7b:ce:a9:0c:83:79:98:c2:4c: 6d:41:92:f8:24:1e:42:7a:c1:6b:cf:1d:47:db:85: 3c:71:15:dd:a1:9d:c7:e7:a4:df:de:ac:a1:fc:c8: d7:0e:c0:7f:84:94:7f:51:c0:05:11:05:48:41:8b: 8a:22:f4:c6:ff:eb:7f:1a:4d:de:5f:01:95:9d:ab: bc:e1:7d:c9:d5:74:9d:a4:31:87:c8:2a:04:5d:d8: 80:2c:ef:79:1a:3c:89:48:fe:76:1f:cc:21:1c:a5: c8:55:74:07:02:ba:a7:b9:a7:6d:73:8a:43:0c:96: 2a:23:19:24:07:fb:56:3c:45:22:fc:be:fa:e5:fc: d3:39:e7:46:f4:2c:04:82:ab:ab:17:d8:c0:79:dc: 57:40:e7:9d:f9:0e:f9:6a:7e:85:a3:c7:5b:6c:98: c7:a3:c3:5e:90:91:15:31:e5:0f:17:76:60:19:39: 45:2f:5e:3a:d3:77:fb:b7:12:6b:50:dd:7f:a5:c9: e8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:BD:B4:3B:82:2D:7D:45:EB:E1:34:43:DA:93:A1:DA:3C:15:E8:50 X509v3 Authority Key Identifier: keyid:3E:42:4E:24:5A:64:32:4A:68:73:1D:D2:6F:30:C6:85:BA:A8:A6:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkJOJFpkMkpocx3SbzDGhbqopng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/1002c1-00bc-4308-b55d-54da0468fdad/1/PkJOJFpkMkpocx3SbzDGhbqopng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:93:69:a9:b1:6a:7c:2e:9b:3c:eb:a0:6a:c3:b4:62:1d:e8: b8:51:87:d8:95:df:15:eb:52:dd:39:99:fd:88:e2:a5:36:cb: 75:c9:59:2f:80:18:75:17:2d:dd:1b:ec:e4:6c:10:75:d6:0f: 1f:23:5f:d5:d4:86:3f:8d:44:f8:aa:29:99:51:7d:d2:65:88: 3c:96:78:7e:f2:77:0e:45:45:2d:d5:8f:c9:12:00:95:cc:66: f2:b0:08:af:32:4a:50:e2:94:97:6f:4e:3d:0f:f3:57:e4:82: ea:ae:ba:77:c1:c3:ae:c3:3d:7a:b9:17:b9:ee:cd:81:1c:c4: 7b:07:3f:6d:50:26:d8:00:c1:ae:de:f6:52:b2:a1:69:6f:5f: fd:6f:cf:59:f2:01:27:2f:bb:95:c7:9f:6e:24:6b:59:50:c3: 26:ac:55:51:2e:40:d7:f8:a5:b5:68:36:0f:18:95:81:f1:28: 94:36:50:15:b0:f4:58:9c:e3:3c:7b:06:58:6f:02:6d:bc:93: db:69:2f:83:68:b7:07:c0:a0:f6:79:e2:d6:d0:0b:a3:83:30: 11:be:33:01:e5:96:32:0c:44:f3:a8:c4:e9:6a:85:18:86:e1: 02:87:43:55:df:31:bd:50:f4:c6:2a:b0:5b:9f:b3:5b:27:35: cb:9d:a4:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtISxU4W1/Gu42sURMj4cmgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNDI0ZTI0NWE2NDMyNGE2ODczMWRkMjZmMzBjNjg1YmFh OGE2NzgwHhcNMjUxMjIyMjMwMDM4WhcNMjUxMjIzMjMwMDM4WjAzMTEwLwYDVQQD Eyg0N2JkYjQzYjgyMmQ3ZDQ1ZWJlMTM0NDNkYTkzYTFkYTNjMTVlODUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzu5mwRUQV8NUf+L4bZvVCbZK3sKQ Q5C9KadCjkT/wQiACU7tAAjHnyT46jAcPhK1HK2FK7AGjKXPjx0eZwK1weV7zqkM g3mYwkxtQZL4JB5CesFrzx1H24U8cRXdoZ3H56Tf3qyh/MjXDsB/hJR/UcAFEQVI QYuKIvTG/+t/Gk3eXwGVnau84X3J1XSdpDGHyCoEXdiALO95GjyJSP52H8whHKXI VXQHArqnuadtc4pDDJYqIxkkB/tWPEUi/L765fzTOedG9CwEgqurF9jAedxXQOed +Q75an6Fo8dbbJjHo8NekJEVMeUPF3ZgGTlFL14603f7txJrUN1/pcno+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEe9tDuCLX1F6+E0Q9qTodo8FehQMB8GA1UdIwQY MBaAFD5CTiRaZDJKaHMd0m8wxoW6qKZ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQt NTRkYTA0NjhmZGFkLzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8xMDAyYzEtMDBiYy00MzA4LWI1NWQtNTRkYTA0NjhmZGFk LzEvUGtKT0pGcGtNa3BvY3gzU2J6REdoYnFvcG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbZNpqbFq fC6bPOugasO0Yh3ouFGH2JXfFetS3TmZ/YjipTbLdclZL4AYdRct3Rvs5GwQddYP HyNf1dSGP41E+KopmVF90mWIPJZ4fvJ3DkVFLdWPyRIAlcxm8rAIrzJKUOKUl29O PQ/zV+SC6q66d8HDrsM9erkXue7NgRzEewc/bVAm2ADBrt72UrKhaW9f/W/PWfIB Jy+7lcefbiRrWVDDJqxVUS5A1/iltWg2DxiVgfEolDZQFbD0WJzjPHsGWG8CbbyT 22kvg2i3B8Cg9nni1tALo4MwEb4zAeWWMgxE86jE6WqFGIbhAodDVd8xvVD0xiqw W5+zWyc1y52kyA== -----END CERTIFICATE-----Generated at Tue Dec 23 02:55:36 2025 by rpki-client