This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft File: 3DC4_dBG72WGgJfwNrinyFVyqtA.mft (raw, json) Hash identifier: flgTesGjNYRDzYZ8f8zoVAJi2vXxES7uC30CGpENzKQ= Subject key identifier: BE:C4:E1:BE:1C:7B:14:97:01:2E:65:51:D9:28:2B:BE:A7:14:34:40 Authority key identifier: DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0 Certificate issuer: /CN=dc30b8fdd046ef65868097f036b8a7c85572aad0 Certificate serial: 019AF19AA078C0EC4745290BF723A96753A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 03:00:33 +0000 Manifest this update: Sat 06 Dec 2025 03:00:33 +0000 Manifest next update: Sun 07 Dec 2025 03:00:33 +0000 Files and hashes: 1: 3DC4_dBG72WGgJfwNrinyFVyqtA.crl (hash: txBy0E4oS9abPxc8x6KO9kM/9nQE7hPaofTPBDDfOhA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:a0:78:c0:ec:47:45:29:0b:f7:23:a9:67:53:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc30b8fdd046ef65868097f036b8a7c85572aad0 Validity Not Before: Dec 6 03:00:33 2025 GMT Not After : Dec 7 03:00:33 2025 GMT Subject: CN=bec4e1be1c7b1497012e6551d9282bbea7143440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cd:b1:2c:a0:13:a3:6d:76:a9:76:fb:29:90: a7:03:b3:e5:06:49:41:11:82:8f:c2:91:04:29:2c: c5:30:88:37:d8:eb:0c:dc:8d:01:44:65:4d:2e:68: 81:0a:f8:ce:24:9c:8b:f8:d5:3b:f9:31:09:05:e2: 1a:6e:08:81:4a:ee:2c:e9:a1:2f:ba:eb:be:17:9b: 5c:1d:e1:a0:aa:c6:d3:5d:16:e9:83:43:11:ba:73: 85:68:11:55:be:a5:68:9f:0b:a9:3d:88:b1:67:1e: 1f:f0:b4:c2:eb:91:22:74:67:7d:6b:89:8f:a6:30: 3b:61:aa:b5:e4:67:99:5a:ca:8b:79:c3:1f:00:34: 37:29:34:21:0f:39:81:d4:c5:d3:c5:c8:18:f5:19: a1:47:48:f3:7f:15:5d:ae:b3:ef:e0:c9:c0:76:76: e6:af:77:72:07:e0:93:06:74:4f:44:53:8e:0b:42: 1c:88:6e:04:7c:34:f9:b5:26:6d:ad:7e:ba:ea:ec: 60:10:35:e7:c3:15:2d:31:6e:21:84:7b:c5:04:83: 42:8c:e6:4b:71:73:ac:8e:c6:bf:ce:13:3f:71:52: 66:8d:74:8b:46:8c:28:18:1b:91:10:ea:b6:f1:d0: 49:09:df:1e:aa:9f:c8:69:42:94:85:a2:81:12:09: b7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C4:E1:BE:1C:7B:14:97:01:2E:65:51:D9:28:2B:BE:A7:14:34:40 X509v3 Authority Key Identifier: keyid:DC:30:B8:FD:D0:46:EF:65:86:80:97:F0:36:B8:A7:C8:55:72:AA:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DC4_dBG72WGgJfwNrinyFVyqtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/53933c-d1b8-4362-9e1f-29a0aa6c4ad1/1/3DC4_dBG72WGgJfwNrinyFVyqtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:39:b8:02:32:ef:42:2b:41:5a:18:5d:35:68:16:ee:20:92: 90:c5:5e:41:22:4e:d8:c0:3f:c5:fb:67:28:c6:7e:d1:fd:67: 51:60:87:9d:91:7d:2d:4b:2b:ca:9e:78:2d:4d:68:f1:0a:8c: af:26:33:b9:84:a6:5f:dd:ec:9f:be:9f:a3:e7:53:74:19:45: d4:e2:bc:f8:e4:93:83:1a:0b:11:33:7f:7e:47:1a:18:36:40: d9:d8:9a:ff:f2:98:7f:c0:2c:9d:08:20:ce:d9:e4:f2:61:cf: 4e:07:61:85:ca:6b:bd:63:b0:a6:6c:03:35:e9:2d:48:a5:f7: 6f:06:c9:1b:06:e8:8c:d6:50:ea:c3:3c:03:96:71:c1:ad:0a: bb:4a:8a:eb:4f:51:41:95:4f:b2:4b:43:9b:e9:d6:b5:01:e6: cf:33:1c:1d:f6:23:1b:9d:a3:43:7a:71:bb:eb:b3:aa:3b:28: 71:ca:27:e7:8e:0a:ce:76:f3:fc:5b:0a:33:5c:45:ab:72:c3: d3:9a:50:6e:01:a7:99:05:77:96:ee:ef:33:78:c0:24:9e:8c: 44:d6:80:d5:db:08:5d:33:63:16:37:20:7c:27:f3:20:cd:1c: 42:d6:50:4d:e0:f8:10:c1:fb:b8:94:7b:68:b1:b8:78:18:69: 36:5e:40:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmqB4wOxHRSkL9yOpZ1OgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzBiOGZkZDA0NmVmNjU4NjgwOTdmMDM2YjhhN2M4NTU3 MmFhZDAwHhcNMjUxMjA2MDMwMDMzWhcNMjUxMjA3MDMwMDMzWjAzMTEwLwYDVQQD EyhiZWM0ZTFiZTFjN2IxNDk3MDEyZTY1NTFkOTI4MmJiZWE3MTQzNDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0s2xLKATo212qXb7KZCnA7PlBklB EYKPwpEEKSzFMIg32OsM3I0BRGVNLmiBCvjOJJyL+NU7+TEJBeIabgiBSu4s6aEv uuu+F5tcHeGgqsbTXRbpg0MRunOFaBFVvqVonwupPYixZx4f8LTC65EidGd9a4mP pjA7Yaq15GeZWsqLecMfADQ3KTQhDzmB1MXTxcgY9RmhR0jzfxVdrrPv4MnAdnbm r3dyB+CTBnRPRFOOC0IciG4EfDT5tSZtrX666uxgEDXnwxUtMW4hhHvFBINCjOZL cXOsjsa/zhM/cVJmjXSLRowoGBuREOq28dBJCd8eqp/IaUKUhaKBEgm3BwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7E4b4cexSXAS5lUdkoK76nFDRAMB8GA1UdIwQY MBaAFNwwuP3QRu9lhoCX8Da4p8hVcqrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYt MjlhMGFhNmM0YWQxLzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS81MzkzM2MtZDFiOC00MzYyLTllMWYtMjlhMGFhNmM0YWQx LzEvM0RDNF9kQkc3MldHZ0pmd05yaW55RlZ5cXRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuzm4AjLv QitBWhhdNWgW7iCSkMVeQSJO2MA/xftnKMZ+0f1nUWCHnZF9LUsryp54LU1o8QqM ryYzuYSmX93sn76fo+dTdBlF1OK8+OSTgxoLETN/fkcaGDZA2dia//KYf8AsnQgg ztnk8mHPTgdhhcprvWOwpmwDNektSKX3bwbJGwbojNZQ6sM8A5Zxwa0Ku0qK609R QZVPsktDm+nWtQHmzzMcHfYjG52jQ3pxu+uzqjsoccon544Kznbz/FsKM1xFq3LD 05pQbgGnmQV3lu7vM3jAJJ6MRNaA1dsIXTNjFjcgfCfzIM0cQtZQTeD4EMH7uJR7 aLG4eBhpNl5Akw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:35 2025 by rpki-client