This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft File: 3DhEUAcx1V-JiN3phVnP7QswmrY.mft (raw, json) Hash identifier: +L3LOgw5vZZZ7Bo8/yNF7pazxY1KSI+z5X3LK+pD0GE= Subject key identifier: BA:24:09:03:20:5D:0D:00:8C:DB:A4:D1:18:F5:D3:85:03:06:93:21 Authority key identifier: DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6 Certificate issuer: /CN=dc3844500731d55f8988dde98559cfed0b309ab6 Certificate serial: 019AF2771AB3AA6AAC98AE9A8DB43AB33FBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft Manifest number: 025D Signing time: Sat 06 Dec 2025 07:01:23 +0000 Manifest this update: Sat 06 Dec 2025 07:01:23 +0000 Manifest next update: Sun 07 Dec 2025 07:01:23 +0000 Files and hashes: 1: 3DhEUAcx1V-JiN3phVnP7QswmrY.crl (hash: D83p5V7cOD6EaSDewS094DdG/OR/syPq4sKuSp4trJU=) 2: 4YPbiAtEI4aIVwSYoOB9atG5l_o.roa (hash: 5G9M3UH6Px38TdWKWNsZTcUTomaq2supA1BUuPBFOUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:1a:b3:aa:6a:ac:98:ae:9a:8d:b4:3a:b3:3f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc3844500731d55f8988dde98559cfed0b309ab6 Validity Not Before: Dec 6 07:01:23 2025 GMT Not After : Dec 7 07:01:23 2025 GMT Subject: CN=ba240903205d0d008cdba4d118f5d38503069321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e7:ba:c7:a6:32:2f:6a:fe:a5:3e:df:72:c4: cf:a5:63:ee:c4:aa:ec:c6:57:06:b4:92:84:ca:4c: 51:bf:87:8d:de:08:f7:75:e7:4f:02:0d:66:d7:1c: d4:ad:a1:31:3f:bf:31:18:fd:b4:1d:b5:ef:61:c0: 0f:85:b6:37:b7:48:7d:b2:e0:fe:44:67:19:8f:52: 7f:76:8b:b7:06:ea:b6:85:19:6a:f3:e0:ba:91:bd: 4d:0d:19:61:e9:c7:a2:41:b9:84:f2:cc:98:33:c3: 7b:3f:ba:82:28:8f:b0:f1:67:be:6f:85:89:83:7f: 1e:e7:20:fc:12:20:00:7d:83:ed:bd:84:13:84:47: 68:5f:0b:19:f9:2d:c3:c3:cb:a4:83:8c:eb:48:85: 2e:17:d9:5d:ff:5a:b8:d5:88:3b:ac:0a:15:e4:b9: 9f:0f:2d:a3:21:78:e9:8a:75:d6:a2:79:1b:e0:b5: fe:d0:07:76:37:7b:e6:16:30:35:5c:f8:38:d6:cd: 14:56:c5:82:0e:04:33:f4:08:d3:c2:7c:a9:d5:d1: 31:a3:23:60:6d:91:fb:9f:84:28:c7:89:39:be:bf: bb:b3:75:7d:8a:4c:bd:e1:80:1d:88:9c:49:62:38: 56:35:d6:8e:b5:07:a0:2b:da:6b:3c:6e:01:6a:1a: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:24:09:03:20:5D:0D:00:8C:DB:A4:D1:18:F5:D3:85:03:06:93:21 X509v3 Authority Key Identifier: keyid:DC:38:44:50:07:31:D5:5F:89:88:DD:E9:85:59:CF:ED:0B:30:9A:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DhEUAcx1V-JiN3phVnP7QswmrY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bffc72-bb6d-4998-a10b-6ff8c37db1a8/1/3DhEUAcx1V-JiN3phVnP7QswmrY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:d6:4b:91:01:dd:30:c0:c0:bc:3c:3e:43:9b:01:96:c1:b4: d3:5f:7f:8a:16:c3:2c:07:9f:e6:a8:30:88:f1:e5:26:28:a8: 5d:5d:06:d2:c9:e6:c9:a5:6a:90:f3:89:cf:d1:46:9a:0d:8c: fe:dc:c7:e5:ca:c7:eb:e3:b5:fe:66:7e:44:4d:40:99:cd:75: 72:77:8a:84:ad:2b:9a:ff:1d:b2:c7:c8:78:1f:9f:ea:a3:7a: 32:25:f3:f1:bf:b6:d5:dc:b7:ab:b8:c4:1b:04:70:23:d1:70: e0:15:6c:18:7c:8f:4a:48:1e:32:1c:d2:7e:0d:64:98:a4:dd: a7:f4:d7:a9:17:6c:fc:a5:09:5b:b0:36:de:ce:4e:f0:48:89: 9c:d7:6c:82:0a:a0:33:99:19:6d:b9:b9:a8:65:13:df:34:eb: 1d:85:85:e6:bf:bd:a0:74:33:8b:9b:16:87:b8:12:78:4b:ea: 3a:3c:23:10:8f:2e:e5:d5:7b:0c:48:f3:fc:5e:de:14:93:18: 8c:42:8b:2b:a5:25:0b:85:e4:6f:e2:1d:28:03:08:4d:d8:11: 51:21:58:e6:66:f6:0f:ac:73:5e:79:98:3f:98:42:77:9b:b9: aa:b4:7a:36:3d:ed:d9:7d:e7:2f:df:8b:d4:e1:8f:d9:b8:ac: 32:f2:65:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydxqzqmqsmK6ajbQ6sz+7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMzg0NDUwMDczMWQ1NWY4OTg4ZGRlOTg1NTljZmVkMGIz MDlhYjYwHhcNMjUxMjA2MDcwMTIzWhcNMjUxMjA3MDcwMTIzWjAzMTEwLwYDVQQD EyhiYTI0MDkwMzIwNWQwZDAwOGNkYmE0ZDExOGY1ZDM4NTAzMDY5MzIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuee6x6YyL2r+pT7fcsTPpWPuxKrs xlcGtJKEykxRv4eN3gj3dedPAg1m1xzUraExP78xGP20HbXvYcAPhbY3t0h9suD+ RGcZj1J/dou3Buq2hRlq8+C6kb1NDRlh6ceiQbmE8syYM8N7P7qCKI+w8We+b4WJ g38e5yD8EiAAfYPtvYQThEdoXwsZ+S3Dw8ukg4zrSIUuF9ld/1q41Yg7rAoV5Lmf Dy2jIXjpinXWonkb4LX+0Ad2N3vmFjA1XPg41s0UVsWCDgQz9AjTwnyp1dExoyNg bZH7n4Qox4k5vr+7s3V9iky94YAdiJxJYjhWNdaOtQegK9prPG4Bahpf4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLokCQMgXQ0AjNuk0Rj104UDBpMhMB8GA1UdIwQY MBaAFNw4RFAHMdVfiYjd6YVZz+0LMJq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9iZmZjNzItYmI2ZC00OTk4LWExMGIt NmZmOGMzN2RiMWE4LzEvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9iZmZjNzItYmI2ZC00OTk4LWExMGItNmZmOGMzN2RiMWE4 LzEvM0RoRVVBY3gxVi1KaU4zcGhWblA3UXN3bXJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaNZLkQHd MMDAvDw+Q5sBlsG0019/ihbDLAef5qgwiPHlJiioXV0G0snmyaVqkPOJz9FGmg2M /tzH5crH6+O1/mZ+RE1Amc11cneKhK0rmv8dssfIeB+f6qN6MiXz8b+21dy3q7jE GwRwI9Fw4BVsGHyPSkgeMhzSfg1kmKTdp/TXqRds/KUJW7A23s5O8EiJnNdsggqg M5kZbbm5qGUT3zTrHYWF5r+9oHQzi5sWh7gSeEvqOjwjEI8u5dV7DEjz/F7eFJMY jEKLK6UlC4Xkb+IdKAMITdgRUSFY5mb2D6xzXnmYP5hCd5u5qrR6Nj3t2X3nL9+L 1OGP2bisMvJlQQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:20:25 2025 by rpki-client