This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft File: 3RiOwuSayUWFJFtLh0Whu3oc3GY.mft (raw, json) Hash identifier: b/m1Wo5teWjiUaWgA9Amqcva0uhML5Akzio5yITBQ5Y= Subject key identifier: 95:C7:00:C3:51:D0:71:FB:C0:7F:C1:BF:84:80:F6:D8:D0:F2:7C:FF Authority key identifier: DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66 Certificate issuer: /CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66 Certificate serial: 019AF12E19AFDE8102F127400878C3D2C61B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft Manifest number: 09D3 Signing time: Sat 06 Dec 2025 01:02:01 +0000 Manifest this update: Sat 06 Dec 2025 01:02:01 +0000 Manifest next update: Sun 07 Dec 2025 01:02:01 +0000 Files and hashes: 1: 3RiOwuSayUWFJFtLh0Whu3oc3GY.crl (hash: NmZeSdIoFVVcAen5OFoIV4YrZy7rKvaCDM409pQ+Tsw=) 2: pDLly0sn53PLZlgmqVTYD5L2Et0.roa (hash: MLKk0AIXSDvV1SnhwkIbUGP+qcSM6FHopsKcU6yMV74=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:19:af:de:81:02:f1:27:40:08:78:c3:d2:c6:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd188ec2e49ac94585245b4b8745a1bb7a1cdc66 Validity Not Before: Dec 6 01:02:01 2025 GMT Not After : Dec 7 01:02:01 2025 GMT Subject: CN=95c700c351d071fbc07fc1bf8480f6d8d0f27cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:df:84:22:e8:d4:23:c3:c0:75:f8:cd:92:f2: d6:bb:f5:b0:a9:2d:72:b5:6c:57:ab:a2:f2:d7:7a: 25:fc:11:70:da:4a:78:78:ee:fd:6b:5e:44:00:6b: 4d:cc:3e:dc:ff:75:14:2a:21:84:b3:23:a1:00:23: d8:ba:2b:d1:d7:30:6c:5f:29:0a:27:69:16:62:29: 25:c1:d4:90:52:ec:ec:22:e9:9f:27:06:61:72:90: 31:1e:a4:c8:1f:0b:59:7b:f7:3f:a8:8c:ef:65:d3: 1a:c9:52:ac:a3:ed:e0:bf:c4:66:8e:05:9c:80:28: af:db:e7:06:27:22:f3:98:87:d7:ee:f2:84:7b:33: 92:8c:70:67:a4:80:cb:e6:33:99:ae:d7:c6:2f:1f: 83:51:d1:38:04:44:97:80:3d:53:ed:8f:bf:0b:2e: 9d:9d:15:60:01:c6:03:76:6a:0e:40:be:3c:d1:6b: 1b:b6:f4:b8:aa:e0:c6:24:5c:c5:4d:5e:9f:17:49: 97:d9:a4:be:82:a5:0d:23:de:ef:31:4c:0a:b7:90: 16:44:18:d6:4a:5c:da:eb:78:c1:55:a1:08:b4:66: 0b:ef:4f:48:f9:38:1e:18:42:7f:7b:67:09:05:d2: e0:d5:04:8a:a6:3f:da:f5:e7:0b:67:58:c9:06:59: 09:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C7:00:C3:51:D0:71:FB:C0:7F:C1:BF:84:80:F6:D8:D0:F2:7C:FF X509v3 Authority Key Identifier: keyid:DD:18:8E:C2:E4:9A:C9:45:85:24:5B:4B:87:45:A1:BB:7A:1C:DC:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RiOwuSayUWFJFtLh0Whu3oc3GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a41edb-9df5-40f9-9ece-b59198b9155d/1/3RiOwuSayUWFJFtLh0Whu3oc3GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:17:3c:94:ff:01:9b:94:0f:4d:a4:ce:1e:91:08:d5:81:ee: 26:fc:05:1b:9d:f1:2a:67:29:4d:01:4e:27:e7:c0:1c:c5:4a: a0:bc:24:5b:2e:88:00:fa:e7:7e:33:13:d1:d3:64:1f:77:58: 7e:b6:8c:34:de:b7:47:d0:5e:a3:da:39:8a:62:e0:9a:1b:dd: 79:79:ff:65:f5:d3:2e:94:a1:95:c2:fa:f5:ce:71:91:54:1c: 00:0c:1e:0a:a2:86:20:39:c3:9d:c3:8c:48:97:40:a9:cd:68: df:d4:6c:c5:35:32:f5:a1:5f:82:a1:1a:48:3b:81:63:65:b4: d2:18:75:47:be:ae:7a:a8:d3:e1:2c:7c:2e:05:85:9b:0a:a7: bd:c4:27:3d:32:a6:87:4e:e6:0e:5f:74:b0:57:e1:6e:d2:b7: 8b:84:70:48:e1:d3:5c:80:66:75:79:73:1e:6c:84:a7:42:fe: 72:31:4b:2e:09:6a:71:33:3b:d8:05:0d:db:cc:a0:d6:f4:76: 71:4b:d7:64:bc:f6:3b:30:9b:ff:b0:1b:9d:87:f3:c8:aa:63: 75:36:d5:c6:39:b8:68:48:6e:cb:da:55:81:d6:e0:62:47:ca: 5b:77:1a:08:f3:15:fd:77:3d:19:64:6b:f9:a4:85:66:b2:b8: 1b:23:01:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLhmv3oEC8SdACHjD0sYbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMTg4ZWMyZTQ5YWM5NDU4NTI0NWI0Yjg3NDVhMWJiN2Ex Y2RjNjYwHhcNMjUxMjA2MDEwMjAxWhcNMjUxMjA3MDEwMjAxWjAzMTEwLwYDVQQD Eyg5NWM3MDBjMzUxZDA3MWZiYzA3ZmMxYmY4NDgwZjZkOGQwZjI3Y2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmN+EIujUI8PAdfjNkvLWu/WwqS1y tWxXq6Ly13ol/BFw2kp4eO79a15EAGtNzD7c/3UUKiGEsyOhACPYuivR1zBsXykK J2kWYiklwdSQUuzsIumfJwZhcpAxHqTIHwtZe/c/qIzvZdMayVKso+3gv8RmjgWc gCiv2+cGJyLzmIfX7vKEezOSjHBnpIDL5jOZrtfGLx+DUdE4BESXgD1T7Y+/Cy6d nRVgAcYDdmoOQL480WsbtvS4quDGJFzFTV6fF0mX2aS+gqUNI97vMUwKt5AWRBjW Slza63jBVaEItGYL709I+TgeGEJ/e2cJBdLg1QSKpj/a9ecLZ1jJBlkJiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJXHAMNR0HH7wH/Bv4SA9tjQ8nz/MB8GA1UdIwQY MBaAFN0YjsLkmslFhSRbS4dFobt6HNxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2Ut YjU5MTk4YjkxNTVkLzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9hNDFlZGItOWRmNS00MGY5LTllY2UtYjU5MTk4YjkxNTVk LzEvM1JpT3d1U2F5VVdGSkZ0TGgwV2h1M29jM0dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfRc8lP8B m5QPTaTOHpEI1YHuJvwFG53xKmcpTQFOJ+fAHMVKoLwkWy6IAPrnfjMT0dNkH3dY fraMNN63R9Beo9o5imLgmhvdeXn/ZfXTLpShlcL69c5xkVQcAAweCqKGIDnDncOM SJdAqc1o39RsxTUy9aFfgqEaSDuBY2W00hh1R76ueqjT4Sx8LgWFmwqnvcQnPTKm h07mDl90sFfhbtK3i4RwSOHTXIBmdXlzHmyEp0L+cjFLLglqcTM72AUN28yg1vR2 cUvXZLz2OzCb/7AbnYfzyKpjdTbVxjm4aEhuy9pVgdbgYkfKW3caCPMV/Xc9GWRr +aSFZrK4GyMBpg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:36:51 2025 by rpki-client