This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json) Hash identifier: NY4gRCEK6Ax0YJQvfo/EM5h7koM4ymtSbP6Ff1qN/xA= Subject key identifier: 1F:34:36:DF:04:D8:0F:51:42:AA:A9:68:08:23:D3:2C:A2:C6:20:8B Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b Certificate serial: 019AF3C03333E0585DF697C78F110DD80404 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft Manifest number: 16D1 Signing time: Sat 06 Dec 2025 13:00:50 +0000 Manifest this update: Sat 06 Dec 2025 13:00:50 +0000 Manifest next update: Sun 07 Dec 2025 13:00:50 +0000 Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: Z/1g9rmKYXyb7DM0RtiASaOq05rh3GXl7GhHksGyImw=) 2: 42kA1PGA8no_1otOl8ofpG12v3U.roa (hash: xUXq/2K3klfSiQDOaLNutcuHJyhv84PrwrhgM3PQUAM=) 3: LkJec_DKJKY3truWJ2sI8NcpsVM.roa (hash: b6Bvufz+fttjZflFNHVPDFRMwRxNIOBdrZIhpdVt6mI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:33:33:e0:58:5d:f6:97:c7:8f:11:0d:d8:04:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b Validity Not Before: Dec 6 13:00:50 2025 GMT Not After : Dec 7 13:00:50 2025 GMT Subject: CN=1f3436df04d80f5142aaa9680823d32ca2c6208b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c4:99:4a:07:d3:72:d2:52:f3:03:a7:98:18: 31:c6:9a:1f:e2:9d:cf:1e:e2:a7:1f:5c:a2:fe:f4: 70:6c:9d:9d:bb:ba:27:a1:48:1d:9a:3d:b0:ea:bc: 6e:cd:ef:f8:f7:e9:e3:1c:88:13:5e:80:d5:6e:99: fe:44:5e:94:15:06:78:14:02:6f:e7:c3:ca:d0:f9: fa:07:5b:f3:59:12:92:4e:df:5a:4e:ff:45:21:88: 67:8b:a5:04:89:d8:43:73:d8:9e:f1:07:25:91:5c: d4:db:d9:7e:fe:b0:59:46:4e:88:0b:a8:f5:3a:b8: e5:46:d0:f0:b8:aa:2a:c6:b4:18:8f:ac:50:80:dc: 9c:2b:de:f7:f5:3e:e5:57:ec:6f:b3:40:5f:c2:1c: 06:6e:bc:d0:0c:3f:9e:47:f0:a8:19:5f:67:da:56: 8a:a9:c6:43:46:bf:28:7f:31:c9:ee:72:79:1a:d7: a5:97:68:46:66:fb:75:f9:1f:c3:22:78:67:07:6c: 13:29:34:57:db:a3:bf:69:d0:38:56:d6:0f:05:0a: e6:6e:e3:14:93:29:a8:39:fd:9a:d6:18:00:47:c7: bc:a9:2e:4a:8b:d2:a2:b4:67:4e:57:a6:f7:15:c4: 3b:f1:6c:a1:e9:90:83:bf:ba:bb:92:12:c1:48:ec: 04:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:34:36:DF:04:D8:0F:51:42:AA:A9:68:08:23:D3:2C:A2:C6:20:8B X509v3 Authority Key Identifier: keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:1c:10:17:1d:c4:72:b0:6d:6c:c8:8f:f1:3c:42:ac:17:7e: 70:53:8f:2d:f7:0d:39:99:b5:7e:74:12:54:93:2b:0a:ee:66: eb:92:db:cd:35:1c:e0:5c:b4:45:78:b6:bf:6f:9e:13:7c:25: ce:67:29:a4:52:47:34:be:35:59:69:05:58:97:da:5e:01:9d: 8a:9a:df:ab:31:33:99:80:85:55:6c:96:ff:71:ba:46:73:b6: e1:30:75:25:80:85:68:44:52:ba:c1:85:9e:ff:38:ab:14:4e: b9:43:86:cf:b3:54:4f:39:a4:45:90:2e:e2:e7:3f:5e:a5:b1: fc:e0:cf:d3:c3:a5:e3:c3:6c:af:75:87:8c:2a:68:f8:00:b1: 3f:d3:bc:72:53:f6:39:42:89:bc:ff:e7:91:45:09:24:82:94: e9:fa:e2:88:0d:73:c0:93:22:e1:7c:d6:9b:dc:58:e8:84:41: 93:b9:b5:98:c0:38:95:98:af:bb:6a:b1:d2:2f:f7:36:65:8e: 72:de:30:32:60:ec:66:a3:5a:44:59:1d:8a:a5:83:6e:13:d4: d2:85:0a:a9:1f:3a:e3:1c:08:80:33:d5:6f:26:49:ca:52:cd: ea:6c:1c:67:b3:3d:c5:8e:48:58:9f:69:53:81:15:bc:0b:d6: 44:51:ef:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwDMz4Fhd9pfHjxEN2AQEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNTNmNjNmMTNhMGM5NTJhMDc5ZjQ1NzhhMTBlZGJmNmUz YWE1OGIwHhcNMjUxMjA2MTMwMDUwWhcNMjUxMjA3MTMwMDUwWjAzMTEwLwYDVQQD EygxZjM0MzZkZjA0ZDgwZjUxNDJhYWE5NjgwODIzZDMyY2EyYzYyMDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2MSZSgfTctJS8wOnmBgxxpof4p3P HuKnH1yi/vRwbJ2du7onoUgdmj2w6rxuze/49+njHIgTXoDVbpn+RF6UFQZ4FAJv 58PK0Pn6B1vzWRKSTt9aTv9FIYhni6UEidhDc9ie8QclkVzU29l+/rBZRk6IC6j1 OrjlRtDwuKoqxrQYj6xQgNycK9739T7lV+xvs0BfwhwGbrzQDD+eR/CoGV9n2laK qcZDRr8ofzHJ7nJ5Gtell2hGZvt1+R/DInhnB2wTKTRX26O/adA4VtYPBQrmbuMU kymoOf2a1hgAR8e8qS5Ki9KitGdOV6b3FcQ78Wyh6ZCDv7q7khLBSOwEcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB80Nt8E2A9RQqqpaAgj0yyixiCLMB8GA1UdIwQY MBaAFN1T9j8ToMlSoHn0V4oQ7b9uOqWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYt NWNkZmExMTdhZWM2LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYtNWNkZmExMTdhZWM2 LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABxwQFx3E crBtbMiP8TxCrBd+cFOPLfcNOZm1fnQSVJMrCu5m65LbzTUc4Fy0RXi2v2+eE3wl zmcppFJHNL41WWkFWJfaXgGdiprfqzEzmYCFVWyW/3G6RnO24TB1JYCFaERSusGF nv84qxROuUOGz7NUTzmkRZAu4uc/XqWx/ODP08Ol48Nsr3WHjCpo+ACxP9O8clP2 OUKJvP/nkUUJJIKU6friiA1zwJMi4XzWm9xY6IRBk7m1mMA4lZivu2qx0i/3NmWO ct4wMmDsZqNaRFkdiqWDbhPU0oUKqR864xwIgDPVbyZJylLN6mwcZ7M9xY5IWJ9p U4EVvAvWRFHvfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:02:49 2025 by rpki-client