This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/a57036-fa4b-4714-8340-63f679d7ee1d/1/3liIYKFLOUpzUSmEKu-tGnBKMoc.mft File: 3liIYKFLOUpzUSmEKu-tGnBKMoc.mft (raw, json) Hash identifier: OyJhijkt/SOpNjHhorb8uaBCO7b+Ej7gMdcbuVi14bg= Subject key identifier: 7F:AB:57:78:5B:D0:0D:F3:67:72:1C:6B:83:0B:A0:95:D3:06:99:DB Authority key identifier: DE:58:88:60:A1:4B:39:4A:73:51:29:84:2A:EF:AD:1A:70:4A:32:87 Certificate issuer: /CN=de588860a14b394a735129842aefad1a704a3287 Certificate serial: 019AF088A1E653BFAB2D20E5D6CD19871C5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3liIYKFLOUpzUSmEKu-tGnBKMoc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/a57036-fa4b-4714-8340-63f679d7ee1d/1/3liIYKFLOUpzUSmEKu-tGnBKMoc.mft Manifest number: 7A Signing time: Fri 05 Dec 2025 22:01:17 +0000 Manifest this update: Fri 05 Dec 2025 22:01:17 +0000 Manifest next update: Sat 06 Dec 2025 22:01:17 +0000 Files and hashes: 1: 3liIYKFLOUpzUSmEKu-tGnBKMoc.crl (hash: LpP6e5blFrWtZrCXNi/CnDKuu7Ahn82KbW2DPky92mg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/a57036-fa4b-4714-8340-63f679d7ee1d/1/3liIYKFLOUpzUSmEKu-tGnBKMoc.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/a57036-fa4b-4714-8340-63f679d7ee1d/1/3liIYKFLOUpzUSmEKu-tGnBKMoc.mft rsync://rpki.ripe.net/repository/DEFAULT/3liIYKFLOUpzUSmEKu-tGnBKMoc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:a1:e6:53:bf:ab:2d:20:e5:d6:cd:19:87:1c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de588860a14b394a735129842aefad1a704a3287 Validity Not Before: Dec 5 22:01:17 2025 GMT Not After : Dec 6 22:01:17 2025 GMT Subject: CN=7fab57785bd00df367721c6b830ba095d30699db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3c:ec:bf:28:d4:f0:76:8f:23:fd:90:97:fc: 74:34:a1:b4:61:82:e4:b1:60:b7:cb:17:6c:aa:2a: 53:77:32:de:4a:be:d4:91:1f:5c:85:61:77:cf:a8: 09:d6:de:b3:fe:e0:f6:84:9f:a0:cf:bc:cf:f6:f0: 8f:b2:14:fa:3a:6a:fb:dc:a2:69:e5:5b:58:9e:f4: da:4b:e4:93:55:83:fd:49:4d:d5:a5:56:23:00:37: 1e:52:76:9a:63:08:33:68:59:21:d3:e4:b4:db:2d: a9:88:13:9a:56:b7:73:26:0c:4e:b8:d1:cb:53:ef: 5c:ae:56:37:43:7a:e2:7d:74:16:ae:8f:93:90:82: 96:44:3d:8c:b1:21:1f:12:da:ee:47:41:db:26:9f: b0:3e:66:69:6f:cc:f7:87:e4:d1:3e:fa:6f:c3:f8: 54:5b:50:e8:ed:00:19:41:19:e2:c0:c8:3f:17:31: ed:9d:fa:7d:92:09:3a:bb:b2:f6:64:02:33:df:e4: cc:15:28:39:bf:a4:4d:cb:30:87:75:2b:5a:ba:64: dd:cf:ba:ed:90:12:63:48:f2:94:d2:1c:98:97:5a: 70:e9:ee:13:ae:7d:1b:3b:98:b8:35:5a:13:e6:e9: e8:1d:11:6e:03:c3:81:1c:e1:9c:b8:10:0d:31:2b: e6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AB:57:78:5B:D0:0D:F3:67:72:1C:6B:83:0B:A0:95:D3:06:99:DB X509v3 Authority Key Identifier: keyid:DE:58:88:60:A1:4B:39:4A:73:51:29:84:2A:EF:AD:1A:70:4A:32:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3liIYKFLOUpzUSmEKu-tGnBKMoc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/a57036-fa4b-4714-8340-63f679d7ee1d/1/3liIYKFLOUpzUSmEKu-tGnBKMoc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/a57036-fa4b-4714-8340-63f679d7ee1d/1/3liIYKFLOUpzUSmEKu-tGnBKMoc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:b1:87:f3:32:6e:81:89:95:84:db:62:b5:c5:47:13:99:fb: 46:86:bf:eb:31:0c:80:44:81:2b:59:96:23:51:d0:47:82:5f: 3a:bf:8a:47:a4:f5:1e:16:5e:bc:b4:a4:1b:ac:7d:ca:e8:53: 96:f9:89:8f:da:a1:41:ff:6a:4c:4d:bb:1e:61:f2:4e:59:d4: d6:09:ef:b3:c9:b2:83:0e:ec:43:f6:ef:02:b7:54:7a:9d:9d: 16:31:2a:dc:f5:fe:ec:ae:58:58:0a:56:a6:dd:11:3c:1f:5c: 45:07:63:79:38:9a:c9:ff:e2:4c:a6:ac:4e:69:8a:15:4f:b7: af:26:f3:63:ff:a7:95:4d:ea:b9:db:07:f1:cf:7d:0e:b5:4e: 79:ef:54:f1:67:c5:58:c2:43:c5:22:f6:37:d9:43:09:86:65: f5:30:43:d4:e1:a6:7f:11:a9:bf:6a:aa:e7:57:98:b3:14:15: 40:6d:43:5c:17:dd:2a:8f:60:d1:a4:8b:e0:bc:8c:3f:72:89: 04:a0:e6:b7:62:70:f7:91:c9:59:3f:86:e1:05:5c:0e:6e:35: 74:26:3a:b3:ec:56:b2:e5:ab:8c:f7:41:a4:ba:10:b9:d7:cb: d9:a2:ad:33:83:4d:9b:ed:46:9e:0c:f5:ec:0e:e2:7b:14:b0: 37:4b:75:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiKHmU7+rLSDl1s0ZhxxcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlNTg4ODYwYTE0YjM5NGE3MzUxMjk4NDJhZWZhZDFhNzA0 YTMyODcwHhcNMjUxMjA1MjIwMTE3WhcNMjUxMjA2MjIwMTE3WjAzMTEwLwYDVQQD Eyg3ZmFiNTc3ODViZDAwZGYzNjc3MjFjNmI4MzBiYTA5NWQzMDY5OWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTzsvyjU8HaPI/2Ql/x0NKG0YYLk sWC3yxdsqipTdzLeSr7UkR9chWF3z6gJ1t6z/uD2hJ+gz7zP9vCPshT6Omr73KJp 5VtYnvTaS+STVYP9SU3VpVYjADceUnaaYwgzaFkh0+S02y2piBOaVrdzJgxOuNHL U+9crlY3Q3rifXQWro+TkIKWRD2MsSEfEtruR0HbJp+wPmZpb8z3h+TRPvpvw/hU W1Do7QAZQRniwMg/FzHtnfp9kgk6u7L2ZAIz3+TMFSg5v6RNyzCHdStaumTdz7rt kBJjSPKU0hyYl1pw6e4Trn0bO5i4NVoT5unoHRFuA8OBHOGcuBANMSvmuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+rV3hb0A3zZ3Ica4MLoJXTBpnbMB8GA1UdIwQY MBaAFN5YiGChSzlKc1EphCrvrRpwSjKHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2xpSVlLRkxPVXB6VVNtRUt1LXRHbkJLTW9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hNTcwMzYtZmE0Yi00NzE0LTgzNDAt NjNmNjc5ZDdlZTFkLzEvM2xpSVlLRkxPVXB6VVNtRUt1LXRHbkJLTW9jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hNTcwMzYtZmE0Yi00NzE0LTgzNDAtNjNmNjc5ZDdlZTFk LzEvM2xpSVlLRkxPVXB6VVNtRUt1LXRHbkJLTW9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG7GH8zJu gYmVhNtitcVHE5n7Roa/6zEMgESBK1mWI1HQR4JfOr+KR6T1HhZevLSkG6x9yuhT lvmJj9qhQf9qTE27HmHyTlnU1gnvs8mygw7sQ/bvArdUep2dFjEq3PX+7K5YWApW pt0RPB9cRQdjeTiayf/iTKasTmmKFU+3rybzY/+nlU3qudsH8c99DrVOee9U8WfF WMJDxSL2N9lDCYZl9TBD1OGmfxGpv2qq51eYsxQVQG1DXBfdKo9g0aSL4LyMP3KJ BKDmt2Jw95HJWT+G4QVcDm41dCY6s+xWsuWrjPdBpLoQudfL2aKtM4NNm+1Gngz1 7A7iexSwN0t1Qw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:03:05 2025 by rpki-client