This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json) Hash identifier: 3YPn0fuw/EzelQvyQPWI+ffUoS0sZ/n1cOl7q4SjmbE= Subject key identifier: D0:91:74:25:74:FF:A0:CA:9A:C0:ED:B3:C6:D9:35:5C:06:DC:DE:70 Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Certificate serial: 019AF19BB57BC6D6EEF34D54CCF497F81CED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft Manifest number: 0460 Signing time: Sat 06 Dec 2025 03:01:44 +0000 Manifest this update: Sat 06 Dec 2025 03:01:44 +0000 Manifest next update: Sun 07 Dec 2025 03:01:44 +0000 Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=) 2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: 2hJhphGYnIAYnf/zULRa99U/XOm5TaVVfx20LjAgXkk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:b5:7b:c6:d6:ee:f3:4d:54:cc:f4:97:f8:1c:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3 Validity Not Before: Dec 6 03:01:44 2025 GMT Not After : Dec 7 03:01:44 2025 GMT Subject: CN=d091742574ffa0ca9ac0edb3c6d9355c06dcde70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:41:04:db:48:5f:2e:3d:4a:1c:38:10:c3:9e: 3b:96:de:96:bc:2d:35:cc:33:92:b8:74:e7:2b:72: 0a:4a:68:7d:3e:10:f6:c3:4d:56:29:7c:dd:49:b3: 99:06:09:30:ac:08:91:4c:96:7a:dd:44:b3:df:3a: 7f:cf:c9:74:6a:86:f8:cc:b2:a0:36:24:a1:6c:4a: 21:25:89:3e:2d:40:90:b6:a0:d3:ed:c6:d9:56:8e: 25:95:e7:3c:a0:8b:73:20:27:1a:ec:6e:21:45:4f: a7:a3:b0:64:6c:2a:33:99:7d:b5:e3:95:60:25:cd: 11:01:b4:2c:47:56:4a:b1:d9:ab:31:4f:26:fd:8e: 5b:c3:c2:3c:7e:0a:84:95:f9:52:22:8d:be:f7:ad: 16:be:c3:ec:a4:e0:84:b6:2d:9f:ec:a7:bb:65:12: 8f:1b:90:97:4b:c0:78:cb:f1:9b:02:d5:38:04:b7: a7:7a:c8:75:18:0b:72:ea:9f:f9:3c:38:33:e4:86: ec:c7:32:77:ec:c5:9a:99:44:f1:ba:31:be:7e:87: 95:f7:82:ca:a7:ba:28:d0:87:c5:bd:d5:f8:3f:5a: 6a:cf:b7:5e:6c:07:0a:b3:74:72:eb:ef:69:27:ad: 8d:77:71:80:ac:66:d8:cf:db:42:f0:59:e7:8e:74: 6f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:91:74:25:74:FF:A0:CA:9A:C0:ED:B3:C6:D9:35:5C:06:DC:DE:70 X509v3 Authority Key Identifier: keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:cd:99:2c:60:c1:21:24:38:5e:76:8e:33:a0:38:a4:0d:2c: 0d:e3:4b:8b:b2:ea:d6:01:76:df:4f:50:13:50:6e:0d:94:73: 35:ff:c4:d4:b1:9e:6b:dc:1b:56:cb:a4:9b:79:3c:a3:4e:c2: 77:27:ef:98:fa:06:0a:c7:96:16:e4:0f:43:64:6d:38:fe:14: 48:f1:48:86:c9:d4:74:da:a9:33:32:f8:07:88:87:16:bc:29: f3:47:b5:81:f4:b2:2e:23:db:c5:3c:60:a2:ee:08:37:c6:67: 44:ae:91:60:67:ea:22:a8:40:27:6f:00:bd:40:c2:4c:cd:61: 7c:6d:12:d9:d2:d8:5a:8c:28:c1:33:3f:96:ac:ef:e2:47:f0: 5e:23:ab:e8:98:04:08:88:42:65:e9:fe:42:38:5f:d7:3d:ab: 13:94:fb:ec:a6:36:e7:c7:d8:c1:9b:61:1d:b5:dd:cf:fa:79: 7b:da:f9:32:13:9a:f2:38:89:fe:f5:59:b0:bd:00:f8:77:a2: 84:eb:3e:9b:dd:c3:48:65:c5:24:2d:ac:b9:f0:cf:37:b3:73: 5b:b5:e8:e0:4b:bc:c4:07:c6:79:18:44:14:4b:9e:09:d6:99: fa:8d:25:c7:d0:5f:14:a3:d1:3e:b8:90:19:36:ee:79:48:87: b5:be:42:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm7V7xtbu801UzPSX+BztMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzN2ZlNjRkNjg0OGY4MDEyMGFiZTY5NWUzMWZhYzQ5Y2E1 ZDA3ZjMwHhcNMjUxMjA2MDMwMTQ0WhcNMjUxMjA3MDMwMTQ0WjAzMTEwLwYDVQQD EyhkMDkxNzQyNTc0ZmZhMGNhOWFjMGVkYjNjNmQ5MzU1YzA2ZGNkZTcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEEE20hfLj1KHDgQw547lt6WvC01 zDOSuHTnK3IKSmh9PhD2w01WKXzdSbOZBgkwrAiRTJZ63USz3zp/z8l0aob4zLKg NiShbEohJYk+LUCQtqDT7cbZVo4llec8oItzICca7G4hRU+no7BkbCozmX2145Vg Jc0RAbQsR1ZKsdmrMU8m/Y5bw8I8fgqElflSIo2+960WvsPspOCEti2f7Ke7ZRKP G5CXS8B4y/GbAtU4BLenesh1GAty6p/5PDgz5IbsxzJ37MWamUTxujG+foeV94LK p7oo0IfFvdX4P1pqz7debAcKs3Ry6+9pJ62Nd3GArGbYz9tC8FnnjnRvbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNCRdCV0/6DKmsDts8bZNVwG3N5wMB8GA1UdIwQY MBaAFCN/5k1oSPgBIKvmleMfrEnKXQfzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMt ZmQyMTM3MjJiZmY5LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS83MGMzOWYtNTEzMS00MDAyLWIxZmMtZmQyMTM3MjJiZmY5 LzEvSTNfbVRXaEktQUVncS1hVjR4LXNTY3BkQl9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPc2ZLGDB ISQ4XnaOM6A4pA0sDeNLi7Lq1gF2309QE1BuDZRzNf/E1LGea9wbVsukm3k8o07C dyfvmPoGCseWFuQPQ2RtOP4USPFIhsnUdNqpMzL4B4iHFrwp80e1gfSyLiPbxTxg ou4IN8ZnRK6RYGfqIqhAJ28AvUDCTM1hfG0S2dLYWowowTM/lqzv4kfwXiOr6JgE CIhCZen+Qjhf1z2rE5T77KY258fYwZthHbXdz/p5e9r5MhOa8jiJ/vVZsL0A+Hei hOs+m93DSGXFJC2sufDPN7NzW7Xo4Eu8xAfGeRhEFEueCdaZ+o0lx9BfFKPRPriQ GTbueUiHtb5Crg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:45:31 2025 by rpki-client