This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json) Hash identifier: xPlG7JrGmuzeY7QLn34GB8HIC+ROIdwl1jR+F6ndcv8= Subject key identifier: 52:20:5D:BC:4A:75:1D:8E:B0:65:84:8E:AB:F2:21:DB:A0:CC:51:E3 Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa Certificate serial: 019AF12D805027317D7C5CF64440165315CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft Manifest number: 16F2 Signing time: Sat 06 Dec 2025 01:01:22 +0000 Manifest this update: Sat 06 Dec 2025 01:01:22 +0000 Manifest next update: Sun 07 Dec 2025 01:01:22 +0000 Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: BoVwrISTKxxbriY35+Rr7CgiNqjUPnLeUs0JDWtaweg=) 2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:80:50:27:31:7d:7c:5c:f6:44:40:16:53:15:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa Validity Not Before: Dec 6 01:01:22 2025 GMT Not After : Dec 7 01:01:22 2025 GMT Subject: CN=52205dbc4a751d8eb065848eabf221dba0cc51e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:ec:ab:f4:62:4b:85:ff:93:01:44:24:a3: 8e:68:a4:4b:83:23:79:29:ff:c6:30:97:a6:d9:85: 90:2e:22:d3:e5:dd:0f:03:09:40:46:36:78:fc:7d: 6c:56:bd:f1:94:0c:aa:2a:13:9e:2a:99:83:64:58: c6:88:f3:01:0e:a1:31:a5:35:3b:c2:ea:fe:98:a5: b6:e0:1a:e5:4e:dc:47:d4:c4:c0:40:4a:e8:3f:03: 42:06:ac:d8:23:56:24:66:94:f9:40:59:0a:ce:34: 11:11:b9:ce:fa:1f:33:82:4f:78:42:0e:90:71:cd: de:80:23:ee:33:6e:b4:82:c4:22:11:56:0b:37:9a: 39:a9:5f:da:1d:a1:d8:91:9b:c2:04:ea:52:d2:e1: 68:12:8b:c0:20:64:1c:41:14:aa:d6:04:39:c9:74: 3a:e2:c7:c9:6e:2d:2c:17:f5:6e:ac:4f:50:a5:4c: 31:62:85:6a:3d:e9:6b:34:3b:51:db:a3:a7:11:27: b5:7a:92:26:50:28:c9:fb:e9:fb:69:f5:14:f5:b3: 62:ec:28:05:da:37:78:5c:c8:db:19:26:f8:93:26: 8e:17:67:a6:c4:e2:b8:0f:a4:fd:93:21:0c:cd:43: 0c:b0:c5:08:fc:82:bd:a5:94:07:4a:b9:68:99:56: fe:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:20:5D:BC:4A:75:1D:8E:B0:65:84:8E:AB:F2:21:DB:A0:CC:51:E3 X509v3 Authority Key Identifier: keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:bf:ad:02:6d:3d:d5:53:00:7b:78:f7:af:3c:f3:0f:f3:3c: 5f:2a:13:2b:37:09:0a:9a:4d:93:be:15:41:41:c9:a9:c1:71: 24:b1:fb:4e:ed:bb:88:2a:06:43:7c:32:e0:54:47:89:3f:9d: a2:bf:07:df:fd:82:09:67:5c:f2:7a:1e:b6:b7:b9:c5:18:1d: bf:e1:01:9d:8b:d9:d8:f9:7b:4c:56:1e:9f:de:3c:4d:31:6a: 11:f1:ee:06:f8:42:13:5c:85:fb:18:88:38:e0:c6:9f:7a:ec: 1a:0f:0e:de:09:d5:8a:3f:b8:21:2d:65:7f:11:c2:bc:2c:34: cb:2c:da:ee:81:57:cc:2d:b2:75:88:37:4c:ce:af:c5:c0:20: ad:a4:67:63:2c:50:c6:8a:2d:93:77:28:18:e8:8f:21:46:41: 99:14:e5:a2:ca:4d:85:46:8c:53:28:9e:fc:49:36:fa:cc:0d: bd:ba:64:ac:b0:31:bd:0a:06:2c:ec:a1:79:bc:e6:b2:66:06: ff:3a:e8:de:30:10:f7:4c:d3:a4:bf:5f:80:36:e6:db:b8:96: 41:30:7d:14:bc:31:21:10:b2:3d:f1:f2:b9:ac:7b:3a:cc:14: d2:cf:5d:4e:73:ab:d2:4c:52:5d:5e:a8:ed:96:25:01:ff:d6: 67:e1:c3:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLYBQJzF9fFz2REAWUxXLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNjZkOGI5ZDM4ZDViYjE5Y2ZhMGM0NjQ0YjQ1MjkzZDFl OGI2ZmEwHhcNMjUxMjA2MDEwMTIyWhcNMjUxMjA3MDEwMTIyWjAzMTEwLwYDVQQD Eyg1MjIwNWRiYzRhNzUxZDhlYjA2NTg0OGVhYmYyMjFkYmEwY2M1MWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtU/sq/RiS4X/kwFEJKOOaKRLgyN5 Kf/GMJem2YWQLiLT5d0PAwlARjZ4/H1sVr3xlAyqKhOeKpmDZFjGiPMBDqExpTU7 wur+mKW24BrlTtxH1MTAQEroPwNCBqzYI1YkZpT5QFkKzjQREbnO+h8zgk94Qg6Q cc3egCPuM260gsQiEVYLN5o5qV/aHaHYkZvCBOpS0uFoEovAIGQcQRSq1gQ5yXQ6 4sfJbi0sF/VurE9QpUwxYoVqPelrNDtR26OnESe1epImUCjJ++n7afUU9bNi7CgF 2jd4XMjbGSb4kyaOF2emxOK4D6T9kyEMzUMMsMUI/IK9pZQHSrlomVb+3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIgXbxKdR2OsGWEjqvyIdugzFHjMB8GA1UdIwQY MBaAFNxm2LnTjVuxnPoMRkS0UpPR6Lb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUt NDc3MWQxYTRkZGYwLzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8xNGY2ODQtMDQ1My00NjI1LTk2NmUtNDc3MWQxYTRkZGYw LzEvM0diWXVkT05XN0djLWd4R1JMUlNrOUhvdHZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYb+tAm09 1VMAe3j3rzzzD/M8XyoTKzcJCppNk74VQUHJqcFxJLH7Tu27iCoGQ3wy4FRHiT+d or8H3/2CCWdc8noetre5xRgdv+EBnYvZ2Pl7TFYen948TTFqEfHuBvhCE1yF+xiI OODGn3rsGg8O3gnVij+4IS1lfxHCvCw0yyza7oFXzC2ydYg3TM6vxcAgraRnYyxQ xootk3coGOiPIUZBmRTlospNhUaMUyie/Ek2+swNvbpkrLAxvQoGLOyhebzmsmYG /zro3jAQ90zTpL9fgDbm27iWQTB9FLwxIRCyPfHyuax7OswU0s9dTnOr0kxSXV6o 7ZYlAf/WZ+HDZw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:11:33 2025 by rpki-client