This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft File: 3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft (raw, json) Hash identifier: 9xa1wDMiH2MI5sfR/O/MgIY/f97muTKA8BbSigLqDGU= Subject key identifier: 80:45:FC:3A:90:65:8E:3A:4C:CA:0E:A6:0F:F1:16:D3:EF:84:1A:D0 Authority key identifier: DD:39:9E:49:41:89:F6:91:A5:ED:64:F3:BE:3A:6A:3B:50:22:50:91 Certificate issuer: /CN=dd399e494189f691a5ed64f3be3a6a3b50225091 Certificate serial: 019AF1D1E08E4D9F2BEF121261958BD613BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft Manifest number: 06CE Signing time: Sat 06 Dec 2025 04:00:54 +0000 Manifest this update: Sat 06 Dec 2025 04:00:54 +0000 Manifest next update: Sun 07 Dec 2025 04:00:54 +0000 Files and hashes: 1: 3TmeSUGJ9pGl7WTzvjpqO1AiUJE.crl (hash: oguvnbmWOxquE6adpOBGxCsECyvCVHZhx1EDyZv8XeA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.crl rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft rsync://rpki.ripe.net/repository/DEFAULT/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:e0:8e:4d:9f:2b:ef:12:12:61:95:8b:d6:13:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd399e494189f691a5ed64f3be3a6a3b50225091 Validity Not Before: Dec 6 04:00:54 2025 GMT Not After : Dec 7 04:00:54 2025 GMT Subject: CN=8045fc3a90658e3a4cca0ea60ff116d3ef841ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:25:e1:82:d0:a1:69:29:fc:5b:d5:e5:39:ac: a7:31:01:bd:fa:b4:f5:46:89:74:8b:22:8f:d2:46: a0:ff:a5:a4:a2:31:da:5d:8f:fa:db:3c:dc:a8:5b: b2:eb:22:e5:63:bf:e0:87:5b:81:aa:57:e9:7f:71: 2e:bb:a6:82:01:27:b6:e1:48:62:3c:97:4f:4a:36: 8a:cf:93:66:93:09:c9:d2:3c:a8:53:22:a5:eb:38: 24:84:c1:3d:73:3f:1e:28:50:d4:36:c8:db:aa:27: 11:0c:e5:4b:f8:c5:47:da:37:fc:ea:63:85:f2:c2: bf:47:72:45:c2:99:59:25:5d:65:e4:29:d2:0a:6a: c5:5d:84:84:ed:b0:a1:87:88:6d:3d:0c:99:b9:3b: e5:60:66:7d:b0:2f:ad:25:d2:02:19:d1:49:89:c8: 72:3c:8e:10:16:85:53:5d:8c:e6:f0:83:80:8d:ed: bc:e1:2c:83:52:70:3e:55:29:32:3b:71:38:ee:21: f9:db:91:ac:8b:4c:83:fe:4c:00:f2:c5:db:a3:c6: df:f2:a3:94:cf:92:de:3c:74:50:b7:fb:e7:cb:c4: 92:2d:22:b8:e5:aa:ef:01:d2:ed:74:7a:ea:bb:9b: 51:7b:a4:82:09:6f:b4:ba:be:3a:11:6b:37:1e:d0: 36:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:45:FC:3A:90:65:8E:3A:4C:CA:0E:A6:0F:F1:16:D3:EF:84:1A:D0 X509v3 Authority Key Identifier: keyid:DD:39:9E:49:41:89:F6:91:A5:ED:64:F3:BE:3A:6A:3B:50:22:50:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/27ba68-f178-4991-96a7-442a03b7f084/1/3TmeSUGJ9pGl7WTzvjpqO1AiUJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:94:b2:c9:41:71:07:33:3b:52:a8:1a:8d:b8:01:bb:f8:4a: 93:1c:2a:a4:0c:80:1b:55:2e:60:4b:cd:ce:de:88:8f:86:8f: d6:08:1b:27:3e:fc:98:38:52:b7:95:12:9a:74:36:aa:bb:e2: 4a:5b:f4:75:f3:34:30:27:cf:c5:66:5e:0a:69:03:ca:30:eb: a1:b7:ea:fd:b1:24:31:98:be:a9:24:5f:92:a3:2e:9c:ce:41: 0d:0f:81:37:e6:a9:b5:a2:e6:70:43:56:a2:6b:ed:dc:5b:9a: 2e:35:49:6e:da:df:60:1f:af:f0:49:2c:3d:45:42:55:5c:9b: 97:87:73:61:a5:c1:a5:be:45:db:6b:99:d3:00:1a:ed:e9:ec: e1:0c:b4:f7:1f:e8:a1:9a:38:12:fb:b1:4c:cc:93:e6:6e:f1: 50:7e:b1:f3:8f:58:4f:1b:c5:e1:e5:9f:f1:d6:a4:86:1f:ea: 8a:95:8b:0e:ab:90:63:5e:a9:af:c5:45:eb:3b:cc:be:85:65: 39:96:88:11:73:a3:c2:6b:ee:00:5f:e4:65:b7:49:92:69:5d: 78:21:ae:13:05:f9:ca:f0:0a:2f:cb:2f:a7:85:27:c4:6d:7d: e4:7f:85:67:87:7a:57:93:fc:4a:ff:c4:c5:bf:fd:0c:20:0d: a5:4e:87:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0eCOTZ8r7xISYZWL1hO6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMzk5ZTQ5NDE4OWY2OTFhNWVkNjRmM2JlM2E2YTNiNTAy MjUwOTEwHhcNMjUxMjA2MDQwMDU0WhcNMjUxMjA3MDQwMDU0WjAzMTEwLwYDVQQD Eyg4MDQ1ZmMzYTkwNjU4ZTNhNGNjYTBlYTYwZmYxMTZkM2VmODQxYWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiXhgtChaSn8W9XlOaynMQG9+rT1 Rol0iyKP0kag/6WkojHaXY/62zzcqFuy6yLlY7/gh1uBqlfpf3Euu6aCASe24Uhi PJdPSjaKz5NmkwnJ0jyoUyKl6zgkhME9cz8eKFDUNsjbqicRDOVL+MVH2jf86mOF 8sK/R3JFwplZJV1l5CnSCmrFXYSE7bChh4htPQyZuTvlYGZ9sC+tJdICGdFJichy PI4QFoVTXYzm8IOAje284SyDUnA+VSkyO3E47iH525Gsi0yD/kwA8sXbo8bf8qOU z5LePHRQt/vny8SSLSK45arvAdLtdHrqu5tRe6SCCW+0ur46EWs3HtA2rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIBF/DqQZY46TMoOpg/xFtPvhBrQMB8GA1UdIwQY MBaAFN05nklBifaRpe1k8746ajtQIlCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1RtZVNVR0o5cEdsN1dUenZqcHFPMUFpVUpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yN2JhNjgtZjE3OC00OTkxLTk2YTct NDQyYTAzYjdmMDg0LzEvM1RtZVNVR0o5cEdsN1dUenZqcHFPMUFpVUpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yN2JhNjgtZjE3OC00OTkxLTk2YTctNDQyYTAzYjdmMDg0 LzEvM1RtZVNVR0o5cEdsN1dUenZqcHFPMUFpVUpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiZSyyUFx BzM7UqgajbgBu/hKkxwqpAyAG1UuYEvNzt6Ij4aP1ggbJz78mDhSt5USmnQ2qrvi Slv0dfM0MCfPxWZeCmkDyjDrobfq/bEkMZi+qSRfkqMunM5BDQ+BN+aptaLmcENW omvt3FuaLjVJbtrfYB+v8EksPUVCVVybl4dzYaXBpb5F22uZ0wAa7ens4Qy09x/o oZo4EvuxTMyT5m7xUH6x849YTxvF4eWf8dakhh/qipWLDquQY16pr8VF6zvMvoVl OZaIEXOjwmvuAF/kZbdJkmldeCGuEwX5yvAKL8svp4UnxG195H+FZ4d6V5P8Sv/E xb/9DCANpU6H4Q== -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:54 2025 by rpki-client