This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft File: 3-4r9D8hqBxJLG5qn8bwdNLwohc.mft (raw, json) Hash identifier: IMvDkdE1ZZYtKlf3AKDc04ZNA3+KfS6lAl+zR4YrsSs= Subject key identifier: F0:98:BE:64:A1:E5:AA:A7:F6:80:93:22:49:B0:4D:37:71:D1:17:C5 Authority key identifier: DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17 Certificate issuer: /CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217 Certificate serial: 019AF49C15B43148E26E9DF8D324E19D6812 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft Manifest number: 176E Signing time: Sat 06 Dec 2025 17:01:01 +0000 Manifest this update: Sat 06 Dec 2025 17:01:01 +0000 Manifest next update: Sun 07 Dec 2025 17:01:01 +0000 Files and hashes: 1: 3-4r9D8hqBxJLG5qn8bwdNLwohc.crl (hash: 4621qS4YiSH28yGF5Pp2k2FjDOLKOr384vnG4kXpTuA=) 2: K0TFEKD6Jt4eOFvjhXpLcR-sKAw.roa (hash: DiTuJ8zdptPdKEXMu7Rx5XzUhg/taulk9eNvKwAnd+E=) 3: Low4CRi4iGKYokty-NINmJn09rg.roa (hash: Mly1uM7PqUcjuRWWihLVa+ejMa5zwEjs5HqRkIM9ZCc=) 4: TUldFuXRlNkhcxG2k3pbkLp8w6k.roa (hash: u8w+hKuVRJcapFna3Gt95nB+zwn2rJ1IH60Do+ZSEr0=) 5: VFLtaw7ddcrkuS71SLZjd28hT9Y.roa (hash: wkImuoriz8/Wt+wr39TPtXLgxrVgYHqbWY2XyO00qX4=) 6: fWDdDEZ5-7TJ7ifcAQ9Kizx3VI0.roa (hash: 9iAjE9rwQQFIjLwRuw0Wl4wwOwQae4btRIJRt6LJVxE=) 7: iYMgW4EcYcU5AKm4CceLlPmJSsA.roa (hash: 7zWW49XDo1LsXGWIP2om4UTMjsubF7Ml4DbV3OJ7N00=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 17:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:15:b4:31:48:e2:6e:9d:f8:d3:24:e1:9d:68:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfee2bf43f21a81c492c6e6a9fc6f074d2f0a217 Validity Not Before: Dec 6 17:01:01 2025 GMT Not After : Dec 7 17:01:01 2025 GMT Subject: CN=f098be64a1e5aaa7f680932249b04d3771d117c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d9:48:9f:47:2c:c4:81:0d:3d:74:8c:a9:3d: 09:ed:88:4d:01:28:ee:9f:a6:4c:aa:d0:32:1c:86: 33:1b:49:7c:b0:62:c0:73:f3:16:1b:7b:63:60:27: e8:88:8a:64:bb:e7:81:6d:91:44:ed:73:82:19:66: 11:cb:0a:4e:4c:e9:a6:ab:98:cb:74:c2:5d:52:18: 12:d4:db:be:c2:79:b7:be:06:5c:17:87:63:40:31: 0e:48:58:c5:e2:c1:88:77:01:6d:d4:a3:b8:1d:ab: c0:87:d1:4d:fd:f2:a1:ed:88:fa:a6:64:97:dc:cb: 9f:c5:3c:d2:db:b8:d2:7b:bc:62:71:43:d3:d8:61: 84:43:ac:ea:60:e8:35:e7:27:5a:ab:97:69:d4:4c: 57:b4:ed:4f:ef:8d:76:29:62:11:c5:25:be:5b:fc: f3:c8:bf:b6:34:dc:4e:7f:2f:98:9e:1b:8b:d3:83: 2e:57:e9:19:32:a2:dc:a1:fc:61:cb:e1:d8:2e:2f: 4d:2a:7a:e3:f4:3d:d4:ce:c3:c5:eb:1a:0a:71:f8: ea:aa:8f:52:f2:73:2d:56:c7:a8:09:6f:17:80:39: 16:a6:96:8a:4a:ea:cb:2b:77:e0:cf:a7:e8:96:85: ce:7a:8a:06:19:a8:ee:52:b2:7f:49:72:65:04:2e: af:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:98:BE:64:A1:E5:AA:A7:F6:80:93:22:49:B0:4D:37:71:D1:17:C5 X509v3 Authority Key Identifier: keyid:DF:EE:2B:F4:3F:21:A8:1C:49:2C:6E:6A:9F:C6:F0:74:D2:F0:A2:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3-4r9D8hqBxJLG5qn8bwdNLwohc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/3b3be0-54a7-410f-9d12-28d78eb9f2dc/1/3-4r9D8hqBxJLG5qn8bwdNLwohc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:c7:f3:c1:0b:0e:15:6e:cf:9e:2e:8b:46:64:5c:5b:a8:e2: 22:cf:9d:58:0d:fe:17:62:ab:16:b7:c9:ac:56:00:a7:fd:3a: f5:22:03:0d:97:cd:a7:b2:ba:8d:83:ca:c4:c3:71:9e:39:9e: a7:c1:55:54:15:2b:a5:ef:61:3d:b5:b6:3f:1c:a6:93:ee:d9: f0:14:2e:12:80:27:0d:16:ef:7a:69:c1:4c:20:83:2b:f9:de: f6:05:c1:c2:89:d0:0c:ce:38:92:67:13:44:6b:6b:5a:78:90: 32:09:c8:f6:cf:4d:8c:ab:0e:be:bb:2c:9e:ff:ab:45:25:31: 0a:3f:c1:7e:f8:81:8e:4d:f8:75:ca:de:09:6e:64:ed:27:a5: c4:98:49:7a:28:31:a9:c8:c8:25:ea:3d:17:a1:5b:6c:5b:2e: 9c:96:18:76:a1:12:34:a6:89:30:43:fa:c0:69:62:8a:38:73: b2:26:4c:ec:23:25:2d:09:c3:91:25:ac:88:1a:89:a4:82:5d: 30:da:70:0c:f3:d6:6e:b6:9e:50:44:52:0d:82:4f:ce:2f:17: d5:d4:e4:b5:05:d5:16:91:e5:61:4f:5d:08:e4:b0:a6:9a:d6: c8:d2:97:8c:e7:9a:e7:ab:ac:81:89:97:13:76:8c:d6:b0:49: 5b:97:a3:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nBW0MUjibp340yThnWgSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmZWUyYmY0M2YyMWE4MWM0OTJjNmU2YTlmYzZmMDc0ZDJm MGEyMTcwHhcNMjUxMjA2MTcwMTAxWhcNMjUxMjA3MTcwMTAxWjAzMTEwLwYDVQQD EyhmMDk4YmU2NGExZTVhYWE3ZjY4MDkzMjI0OWIwNGQzNzcxZDExN2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNlIn0csxIENPXSMqT0J7YhNASju n6ZMqtAyHIYzG0l8sGLAc/MWG3tjYCfoiIpku+eBbZFE7XOCGWYRywpOTOmmq5jL dMJdUhgS1Nu+wnm3vgZcF4djQDEOSFjF4sGIdwFt1KO4HavAh9FN/fKh7Yj6pmSX 3MufxTzS27jSe7xicUPT2GGEQ6zqYOg15ydaq5dp1ExXtO1P7412KWIRxSW+W/zz yL+2NNxOfy+YnhuL04MuV+kZMqLcofxhy+HYLi9NKnrj9D3UzsPF6xoKcfjqqo9S 8nMtVseoCW8XgDkWppaKSurLK3fgz6foloXOeooGGajuUrJ/SXJlBC6vfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPCYvmSh5aqn9oCTIkmwTTdx0RfFMB8GA1UdIwQY MBaAFN/uK/Q/IagcSSxuap/G8HTS8KIXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTIt MjhkNzhlYjlmMmRjLzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8zYjNiZTAtNTRhNy00MTBmLTlkMTItMjhkNzhlYjlmMmRj LzEvMy00cjlEOGhxQnhKTEc1cW44YndkTkx3b2hjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPsfzwQsO FW7Pni6LRmRcW6jiIs+dWA3+F2KrFrfJrFYAp/069SIDDZfNp7K6jYPKxMNxnjme p8FVVBUrpe9hPbW2Pxymk+7Z8BQuEoAnDRbvemnBTCCDK/ne9gXBwonQDM44kmcT RGtrWniQMgnI9s9NjKsOvrssnv+rRSUxCj/BfviBjk34dcreCW5k7SelxJhJeigx qcjIJeo9F6FbbFsunJYYdqESNKaJMEP6wGliijhzsiZM7CMlLQnDkSWsiBqJpIJd MNpwDPPWbraeUERSDYJPzi8X1dTktQXVFpHlYU9dCOSwpprWyNKXjOea56usgYmX E3aM1rBJW5ejGA== -----END CERTIFICATE-----Generated at Sun Dec 7 00:30:28 2025 by rpki-client