This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft File: dzW3DconD8uOS5CStyADZBOPXfE.mft (raw, json) Hash identifier: YiKGU7arCwV2q/fyJEFB/H7cWxvKEkRu7mEec1erAlI= Subject key identifier: B3:37:05:FC:58:CA:9C:26:48:5A:C7:3A:A2:49:E5:20:78:3D:F2:1F Authority key identifier: 77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1 Certificate issuer: /CN=7735b70dca270fcb8e4b9092b7200364138f5df1 Certificate serial: 019AF35262920BF86D7EC1CF5B56A6BDE57A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 11:00:53 +0000 Manifest this update: Sat 06 Dec 2025 11:00:53 +0000 Manifest next update: Sun 07 Dec 2025 11:00:53 +0000 Files and hashes: 1: cpO-3YGSbutgQmx_vuZqosXyZC0.roa (hash: oUU6w2RYiSZAkqy6t99fzpKQ3+UD5p93LlQ8mpQ7YRk=) 2: dzW3DconD8uOS5CStyADZBOPXfE.crl (hash: 1pWJunQJ2znxLf0+jPuR38wRK/0SBaWNs1jsTB2HN6I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:62:92:0b:f8:6d:7e:c1:cf:5b:56:a6:bd:e5:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7735b70dca270fcb8e4b9092b7200364138f5df1 Validity Not Before: Dec 6 11:00:53 2025 GMT Not After : Dec 7 11:00:53 2025 GMT Subject: CN=b33705fc58ca9c26485ac73aa249e520783df21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:cf:c9:1f:bc:5d:9c:eb:a0:1c:a7:77:ff: 8a:17:2e:33:11:22:74:d4:96:b7:8a:4f:73:4c:ce: 05:15:d4:31:b0:ee:f7:d3:ec:d7:7f:d8:3a:ac:43: d5:17:89:0c:3a:93:73:7b:dd:80:de:a1:04:59:bb: e0:c4:e8:02:5a:a0:6b:fc:4c:e8:a0:38:64:4b:24: db:88:84:37:96:3a:4f:cd:44:4d:17:07:3b:a6:60: bc:30:d6:03:a9:4f:70:20:34:90:f2:37:f1:33:96: b4:f0:ac:03:0a:8d:16:d8:88:55:2b:f1:40:02:71: 6f:00:0f:62:f8:f9:16:93:8e:0d:1e:02:72:ab:e1: d4:29:7a:65:82:99:a6:9b:ed:b9:22:95:dd:4a:96: 1c:d0:29:5c:01:98:d1:b3:09:31:07:b3:02:73:e2: ec:2d:02:e9:a7:d1:4d:3e:c3:c2:fe:57:37:e1:5d: d8:3c:00:e3:8e:0a:59:3e:b3:68:14:ec:9f:82:e4: d8:02:c5:41:1e:18:95:ff:32:0e:d7:c4:28:ee:a2: 89:ed:57:84:45:13:01:35:48:af:b7:e2:b9:a0:16: 1b:32:96:1e:2d:fe:2a:de:f8:dd:0b:c4:d1:22:c8: ae:f1:68:0a:39:72:ef:f3:e2:58:1b:4e:3f:73:45: f4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:37:05:FC:58:CA:9C:26:48:5A:C7:3A:A2:49:E5:20:78:3D:F2:1F X509v3 Authority Key Identifier: keyid:77:35:B7:0D:CA:27:0F:CB:8E:4B:90:92:B7:20:03:64:13:8F:5D:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dzW3DconD8uOS5CStyADZBOPXfE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dfbce8-5437-49d7-a7f9-c6ddeb494735/1/dzW3DconD8uOS5CStyADZBOPXfE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:ac:60:1c:27:81:4c:73:24:07:6e:81:0a:52:82:f6:9d:d1: 7a:12:73:c6:ec:f4:c5:a8:34:ea:c2:5d:e3:a1:21:be:66:72: 46:15:0c:39:fd:0b:f2:d7:2f:7d:c7:e9:14:01:b6:be:2a:99: c7:97:5a:4c:a9:26:d0:54:13:93:1a:c4:20:3c:d8:ea:95:e7: 0e:f6:4f:0b:45:a7:a5:4d:8f:77:f8:ef:1d:dc:b5:e3:d9:ed: 3b:67:c4:f7:89:90:1a:77:5d:37:a6:74:d2:a8:8f:e3:98:d5: 04:5b:19:40:87:98:2d:b9:61:84:71:a1:57:45:78:57:4b:f4: 25:30:cc:67:b9:77:60:47:f3:0d:9d:44:f5:b0:57:33:10:5a: d2:6f:59:f4:0e:61:a0:e8:b0:aa:0a:fe:38:fb:e0:a4:68:f7: a5:8e:9e:39:07:35:65:31:04:b0:5f:9f:3a:db:16:ba:d0:1e: 80:82:25:23:8d:21:8f:95:a0:a7:98:b6:dc:5a:f6:71:bb:47: c2:ca:12:4f:b5:c1:bb:d6:36:25:7d:55:bb:64:14:46:fe:94: 64:c6:bd:d8:f3:52:94:97:88:8c:2e:73:91:52:29:f5:90:7e: f6:f0:fe:86:bc:c9:a5:63:a4:85:4b:58:fc:3d:46:e2:2d:47: 53:f5:4e:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUmKSC/htfsHPW1amveV6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MzViNzBkY2EyNzBmY2I4ZTRiOTA5MmI3MjAwMzY0MTM4 ZjVkZjEwHhcNMjUxMjA2MTEwMDUzWhcNMjUxMjA3MTEwMDUzWjAzMTEwLwYDVQQD EyhiMzM3MDVmYzU4Y2E5YzI2NDg1YWM3M2FhMjQ5ZTUyMDc4M2RmMjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmjPyR+8XZzroBynd/+KFy4zESJ0 1Ja3ik9zTM4FFdQxsO730+zXf9g6rEPVF4kMOpNze92A3qEEWbvgxOgCWqBr/Ezo oDhkSyTbiIQ3ljpPzURNFwc7pmC8MNYDqU9wIDSQ8jfxM5a08KwDCo0W2IhVK/FA AnFvAA9i+PkWk44NHgJyq+HUKXplgpmmm+25IpXdSpYc0ClcAZjRswkxB7MCc+Ls LQLpp9FNPsPC/lc34V3YPADjjgpZPrNoFOyfguTYAsVBHhiV/zIO18Qo7qKJ7VeE RRMBNUivt+K5oBYbMpYeLf4q3vjdC8TRIsiu8WgKOXLv8+JYG04/c0X0tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLM3BfxYypwmSFrHOqJJ5SB4PfIfMB8GA1UdIwQY MBaAFHc1tw3KJw/LjkuQkrcgA2QTj13xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3Zjkt YzZkZGViNDk0NzM1LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS9kZmJjZTgtNTQzNy00OWQ3LWE3ZjktYzZkZGViNDk0NzM1 LzEvZHpXM0Rjb25EOHVPUzVDU3R5QURaQk9QWGZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzKxgHCeB THMkB26BClKC9p3RehJzxuz0xag06sJd46EhvmZyRhUMOf0L8tcvfcfpFAG2viqZ x5daTKkm0FQTkxrEIDzY6pXnDvZPC0WnpU2Pd/jvHdy149ntO2fE94mQGnddN6Z0 0qiP45jVBFsZQIeYLblhhHGhV0V4V0v0JTDMZ7l3YEfzDZ1E9bBXMxBa0m9Z9A5h oOiwqgr+OPvgpGj3pY6eOQc1ZTEEsF+fOtsWutAegIIlI40hj5Wgp5i23Fr2cbtH wsoST7XBu9Y2JX1Vu2QURv6UZMa92PNSlJeIjC5zkVIp9ZB+9vD+hrzJpWOkhUtY /D1G4i1HU/VO2g== -----END CERTIFICATE-----Generated at Sat Dec 6 20:36:10 2025 by rpki-client