This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft File: 3ikhmJ19kMZOuzVliDH-ao9JyTg.mft (raw, json) Hash identifier: qjix4OhFhQKOVZ7v4xSFNHdAjD6bC6euls8b2U1VZiw= Subject key identifier: 94:06:C4:B9:3F:4A:A7:9A:65:79:7D:61:75:6D:AF:26:4B:F3:1A:51 Authority key identifier: DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38 Certificate issuer: /CN=de2921989d7d90c64ebb35658831fe6a8f49c938 Certificate serial: 019AF38A0214CFE2944E5919E23FEF978E56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft Manifest number: 0BD3 Signing time: Sat 06 Dec 2025 12:01:39 +0000 Manifest this update: Sat 06 Dec 2025 12:01:39 +0000 Manifest next update: Sun 07 Dec 2025 12:01:39 +0000 Files and hashes: 1: 3ikhmJ19kMZOuzVliDH-ao9JyTg.crl (hash: 9pB+H39/JV4TXom4DRgSfapHFYQ24cBm3N69G6XyMnI=) 2: TOKJ7leUflS6UttAZzwZcKF4cuU.roa (hash: FbxsOsIky6908M3EghoAhEv3FVACCPzpDuJvnzX9foU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:8a:02:14:cf:e2:94:4e:59:19:e2:3f:ef:97:8e:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de2921989d7d90c64ebb35658831fe6a8f49c938 Validity Not Before: Dec 6 12:01:39 2025 GMT Not After : Dec 7 12:01:39 2025 GMT Subject: CN=9406c4b93f4aa79a65797d61756daf264bf31a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c8:b5:e0:f4:a5:fd:f6:9d:a4:66:0e:b9:70: ed:93:e8:58:f8:d8:9f:e3:c6:b7:53:fb:e5:ca:56: 4a:09:cf:62:f5:bb:d9:38:18:9f:f3:5c:b7:43:a7: b5:18:bf:42:9c:75:92:31:d4:de:d9:b9:0e:93:50: 49:d3:57:c4:e0:94:72:af:63:15:57:75:c4:34:da: 6c:79:d8:04:53:0b:b7:05:6c:28:4d:ce:ea:ea:20: 79:63:af:2d:19:aa:0e:cb:e7:25:15:a0:12:54:e8: 70:8b:d6:04:41:ae:3c:e5:49:50:e1:d7:d0:80:a5: 53:68:93:25:e6:c0:14:b3:33:15:5c:ba:c4:7c:94: 88:4a:88:f3:a0:73:05:10:44:5c:ee:5c:da:0c:a1: 8b:0c:8e:90:89:f4:a5:1f:3f:23:6c:2b:de:03:63: 1e:06:0a:94:0d:b2:80:09:5b:d5:1b:04:ec:98:02: 35:06:8f:d4:c1:8b:a5:66:39:80:51:85:0b:09:29: b7:2e:af:01:41:c6:9d:b1:63:33:6b:63:34:9f:1c: e8:c9:28:f5:9b:e5:ff:fd:cb:ab:ac:dc:07:e7:f1: 24:da:6e:50:e0:aa:f5:2e:35:09:04:59:9c:37:7d: 03:e8:10:f3:e8:99:d8:44:45:50:1e:eb:ff:07:f7: ad:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:06:C4:B9:3F:4A:A7:9A:65:79:7D:61:75:6D:AF:26:4B:F3:1A:51 X509v3 Authority Key Identifier: keyid:DE:29:21:98:9D:7D:90:C6:4E:BB:35:65:88:31:FE:6A:8F:49:C9:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ikhmJ19kMZOuzVliDH-ao9JyTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4b9ccf-7535-45dd-bd97-0b5ecb474f15/1/3ikhmJ19kMZOuzVliDH-ao9JyTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:5e:55:58:68:8f:5a:89:0b:21:ec:1b:e2:42:a7:20:bf:04: 72:61:fc:62:44:be:d4:1e:35:4e:72:85:68:dc:7a:8f:2a:f9: 15:44:30:a0:0a:1b:51:6e:ba:5e:ba:9a:d6:00:75:4c:60:1b: 3c:90:b6:a9:88:c5:61:1d:48:f6:6e:b6:22:9d:86:40:2c:48: e5:53:51:b9:70:25:e8:2b:ac:0c:6b:a3:13:fd:d4:8f:c8:e1: 47:39:bc:9f:e1:50:05:9b:e0:ea:e4:63:63:9c:67:22:a2:4b: ae:32:23:e6:d5:10:7d:78:fb:11:1a:45:50:d8:16:7d:96:9c: 0b:6f:e6:ce:22:8e:2c:31:00:83:92:00:8c:36:9e:73:29:46: cb:05:9f:19:d4:45:c3:87:1c:80:ad:7f:f9:2c:82:93:a2:f7: 78:37:89:36:1b:5d:37:a0:55:92:e2:2c:58:22:34:7c:10:9e: a9:43:d7:22:f3:ad:53:62:76:91:f9:aa:31:3c:3e:15:a9:01: 8b:9a:fc:db:31:83:dc:8f:57:81:98:3e:1a:e1:f3:74:ce:5a: 46:0e:96:67:a3:61:20:e6:7d:3e:d8:a2:a3:82:2d:f5:ee:ba: a7:3b:4d:29:6a:22:7d:3b:47:72:c2:4a:33:d2:60:fe:8b:7e: df:bb:08:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzigIUz+KUTlkZ4j/vl45WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMjkyMTk4OWQ3ZDkwYzY0ZWJiMzU2NTg4MzFmZTZhOGY0 OWM5MzgwHhcNMjUxMjA2MTIwMTM5WhcNMjUxMjA3MTIwMTM5WjAzMTEwLwYDVQQD Eyg5NDA2YzRiOTNmNGFhNzlhNjU3OTdkNjE3NTZkYWYyNjRiZjMxYTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA18i14PSl/fadpGYOuXDtk+hY+Nif 48a3U/vlylZKCc9i9bvZOBif81y3Q6e1GL9CnHWSMdTe2bkOk1BJ01fE4JRyr2MV V3XENNpsedgEUwu3BWwoTc7q6iB5Y68tGaoOy+clFaASVOhwi9YEQa485UlQ4dfQ gKVTaJMl5sAUszMVXLrEfJSISojzoHMFEERc7lzaDKGLDI6QifSlHz8jbCveA2Me BgqUDbKACVvVGwTsmAI1Bo/UwYulZjmAUYULCSm3Lq8BQcadsWMza2M0nxzoySj1 m+X//currNwH5/Ek2m5Q4Kr1LjUJBFmcN30D6BDz6JnYREVQHuv/B/etjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQGxLk/SqeaZXl9YXVtryZL8xpRMB8GA1UdIwQY MBaAFN4pIZidfZDGTrs1ZYgx/mqPSck4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTct MGI1ZWNiNDc0ZjE1LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS80YjljY2YtNzUzNS00NWRkLWJkOTctMGI1ZWNiNDc0ZjE1 LzEvM2lraG1KMTlrTVpPdXpWbGlESC1hbzlKeVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY15VWGiP WokLIewb4kKnIL8EcmH8YkS+1B41TnKFaNx6jyr5FUQwoAobUW66Xrqa1gB1TGAb PJC2qYjFYR1I9m62Ip2GQCxI5VNRuXAl6CusDGujE/3Uj8jhRzm8n+FQBZvg6uRj Y5xnIqJLrjIj5tUQfXj7ERpFUNgWfZacC2/mziKOLDEAg5IAjDaecylGywWfGdRF w4ccgK1/+SyCk6L3eDeJNhtdN6BVkuIsWCI0fBCeqUPXIvOtU2J2kfmqMTw+FakB i5r82zGD3I9XgZg+GuHzdM5aRg6WZ6NhIOZ9Ptiio4It9e66pztNKWoifTtHcsJK M9Jg/ot+37sIrQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:28:34 2025 by rpki-client