This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft File: 3g2da2l8ochlcMJWhi5oWLR5nIU.mft (raw, json) Hash identifier: DJAddk0R3bIVSrM4h764aFAhP5wm1y8ftlqSOJr2iaw= Subject key identifier: B8:B3:80:21:80:CA:B9:3C:EE:30:CF:55:23:81:C3:52:5F:58:12:47 Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85 Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85 Certificate serial: 019AF49C02B3D6C764CCFC09B31B92AFBBE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft Manifest number: 1769 Signing time: Sat 06 Dec 2025 17:00:56 +0000 Manifest this update: Sat 06 Dec 2025 17:00:56 +0000 Manifest next update: Sun 07 Dec 2025 17:00:56 +0000 Files and hashes: 1: 3g2da2l8ochlcMJWhi5oWLR5nIU.crl (hash: uJ6RdElYe2d6oXGhV08eqzqMzh+p5pLYJCXZJTPRrG8=) 2: CURhnBTebRtFbuqIF-dFXdwxOsI.roa (hash: N2c5XcgW+AQpVpLwLHbjy6S9Vm1RjK7GXpDlAsFZpfk=) 3: EUX35BVNkJsUjFXuBk75OVm9PCc.roa (hash: K2j+jUDEk3zskvvRatSmoYAxHWdNXJq7sEJx+OMyHQQ=) 4: EpSf_xGsxic86z10zbwqzKmasW8.roa (hash: eSnnnz/WKP7V/MJyjND4ey6FBA8RQok1qLjk+ng6oW4=) 5: P2rbCazRzAecS6cq7qBlJh3ulhk.roa (hash: eS1swdw4PwPA3JuCzPIM9DRGgb8q7vXujdInn+mWiHc=) 6: mld6HE3RapKTIrTK3ARnJwX6Nfo.roa (hash: QckW2u4tae0vEXpqjOByW8q7ybuT0MKIf8YyQZ8Ec7k=) 7: pX4EUgeDNNWi24hGb7Vs1LSwVFU.roa (hash: 8qojOgWb70IVU0ElW5/Sut6REATPavh52G81zhsEHj4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:02:b3:d6:c7:64:cc:fc:09:b3:1b:92:af:bb:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85 Validity Not Before: Dec 6 17:00:56 2025 GMT Not After : Dec 7 17:00:56 2025 GMT Subject: CN=b8b3802180cab93cee30cf552381c3525f581247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:38:28:c8:cd:ad:2e:39:f0:a7:7d:8f:a1:49: 5b:dd:d1:8b:78:1b:b7:8c:fc:f5:f8:2e:a9:0e:64: d2:c0:24:23:90:08:b5:85:1b:d8:b3:7e:2f:f6:f9: be:86:ea:da:e8:53:81:8d:43:cc:8d:88:96:d9:02: 74:f4:1d:8b:62:99:bd:f8:7f:74:4d:5a:37:f2:b3: 3d:0f:27:8d:9a:0a:92:b7:da:ab:7b:96:25:cc:5b: 6f:74:02:8f:c1:1c:dc:c7:4d:83:98:68:3e:9c:33: 08:b5:2c:83:e3:66:98:82:0a:f7:95:a7:30:10:0e: 02:5f:55:ba:54:28:af:06:33:20:4a:16:d4:59:6c: 0a:2a:d8:4d:f4:d6:78:77:b0:54:32:18:0d:f4:bb: 71:64:0d:93:0a:d5:d8:5f:74:9e:54:35:ca:fd:d9: e5:41:6f:fb:b3:73:e2:fb:a3:58:f7:8e:9d:4b:56: 92:55:f0:c9:60:fe:06:b4:08:82:ce:87:36:a5:17: 05:91:5c:85:64:7a:17:2a:cc:19:a7:1e:69:55:9f: ce:6f:2e:d7:f9:4d:f3:e9:c1:60:7e:90:8c:c8:41: 42:24:b1:5b:5a:51:c8:ad:e6:8f:6b:4b:05:68:85: d6:52:51:d0:c4:02:84:7e:cf:25:aa:a2:25:26:4b: 4e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B3:80:21:80:CA:B9:3C:EE:30:CF:55:23:81:C3:52:5F:58:12:47 X509v3 Authority Key Identifier: keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:b5:9f:9f:cd:c5:ec:13:c7:a7:11:f9:e8:0c:bf:d7:4f:17: b2:25:18:1e:ca:53:15:bf:15:60:c7:df:45:f8:93:4a:52:0f: 63:9b:23:56:c9:7b:3c:82:ca:7f:91:66:b5:75:41:6e:8f:50: b4:32:26:cf:48:6f:c5:c7:72:97:34:a5:20:f3:d9:96:57:52: ec:c3:26:52:67:c2:39:c2:da:6d:f1:47:0d:62:9c:cb:f7:07: 7f:ef:8d:31:eb:c3:ce:7f:89:66:de:ac:68:83:a6:a7:ba:e3: 42:1b:7e:9e:cd:e3:6a:15:23:26:96:1b:42:c7:6d:a7:bf:bb: a9:d1:e2:c0:d4:6e:d1:79:e2:c5:cc:46:50:a7:70:3b:08:75: 4f:bf:7a:dd:fe:db:af:51:c6:63:7f:62:21:0a:8a:ba:af:79: 52:8a:c9:d8:50:82:7a:af:45:3d:58:b3:dc:92:4b:72:6b:c5: 53:4e:fd:c3:79:0b:be:9a:3c:35:81:13:73:0e:f9:52:64:4a: 7a:72:f8:d6:bd:65:b5:64:fb:fd:3d:63:56:b0:68:fd:26:9d: 12:fa:14:60:03:39:84:e9:ec:3d:13:1b:84:79:e1:10:a5:6b: 4c:54:a2:f2:dd:7c:d8:0e:d4:c1:30:05:33:42:df:54:38:e8: ee:b6:27:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nAKz1sdkzPwJsxuSr7voMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMGQ5ZDZiNjk3Y2ExYzg2NTcwYzI1Njg2MmU2ODU4YjQ3 OTljODUwHhcNMjUxMjA2MTcwMDU2WhcNMjUxMjA3MTcwMDU2WjAzMTEwLwYDVQQD EyhiOGIzODAyMTgwY2FiOTNjZWUzMGNmNTUyMzgxYzM1MjVmNTgxMjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8DgoyM2tLjnwp32PoUlb3dGLeBu3 jPz1+C6pDmTSwCQjkAi1hRvYs34v9vm+hura6FOBjUPMjYiW2QJ09B2LYpm9+H90 TVo38rM9DyeNmgqSt9qre5YlzFtvdAKPwRzcx02DmGg+nDMItSyD42aYggr3lacw EA4CX1W6VCivBjMgShbUWWwKKthN9NZ4d7BUMhgN9LtxZA2TCtXYX3SeVDXK/dnl QW/7s3Pi+6NY946dS1aSVfDJYP4GtAiCzoc2pRcFkVyFZHoXKswZpx5pVZ/Oby7X +U3z6cFgfpCMyEFCJLFbWlHIreaPa0sFaIXWUlHQxAKEfs8lqqIlJktOewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLizgCGAyrk87jDPVSOBw1JfWBJHMB8GA1UdIwQY MBaAFN4NnWtpfKHIZXDCVoYuaFi0eZyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYt MDFjYmZjMGU5NGU3LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYtMDFjYmZjMGU5NGU3 LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAArWfn83F 7BPHpxH56Ay/108XsiUYHspTFb8VYMffRfiTSlIPY5sjVsl7PILKf5FmtXVBbo9Q tDImz0hvxcdylzSlIPPZlldS7MMmUmfCOcLabfFHDWKcy/cHf++NMevDzn+JZt6s aIOmp7rjQht+ns3jahUjJpYbQsdtp7+7qdHiwNRu0XnixcxGUKdwOwh1T7963f7b r1HGY39iIQqKuq95UorJ2FCCeq9FPViz3JJLcmvFU079w3kLvpo8NYETcw75UmRK enL41r1ltWT7/T1jVrBo/SadEvoUYAM5hOnsPRMbhHnhEKVrTFSi8t182A7UwTAF M0LfVDjo7rYnhw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:41:51 2025 by rpki-client