This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft File: 3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft (raw, json) Hash identifier: JmRAdzW5/MO0zR3udp+iGfG3D2E8V7GJEbvhci0muJA= Subject key identifier: 51:6A:DA:A0:90:0B:A2:CE:0E:B2:2C:16:66:1E:71:95:D4:7C:F7:0C Authority key identifier: DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4 Certificate issuer: /CN=dc6917645d9d220435f91c7e46c8110cf89acbe4 Certificate serial: 019AF19B0BB81AFDADFB20EACB8A8B68A37F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft Manifest number: 0F42 Signing time: Sat 06 Dec 2025 03:01:01 +0000 Manifest this update: Sat 06 Dec 2025 03:01:01 +0000 Manifest next update: Sun 07 Dec 2025 03:01:01 +0000 Files and hashes: 1: 3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl (hash: iv9NQ2729+48jU+CalkqHnZbylf33YtaknJv2AAK1d4=) 2: C9mugrtzW_-CpWlbrAzn7HLndJs.roa (hash: us/IF6tfe4s5IdJAAyc5z0B0e23waKBVaik+zvz/TyQ=) 3: yll503ISaq2wNzfEAk_Qb_MtGbg.roa (hash: LYtS+Gvc0u0aK5E+MP2oP4ZNnIbSc6rSwiTMseFfpYs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:0b:b8:1a:fd:ad:fb:20:ea:cb:8a:8b:68:a3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc6917645d9d220435f91c7e46c8110cf89acbe4 Validity Not Before: Dec 6 03:01:01 2025 GMT Not After : Dec 7 03:01:01 2025 GMT Subject: CN=516adaa0900ba2ce0eb22c16661e7195d47cf70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:61:af:95:42:05:a2:54:d9:61:36:fa:51:50: e9:6d:24:5f:79:58:ce:68:70:b5:b9:de:2b:cd:69: ba:bd:fd:c2:e0:b7:7b:34:3b:26:5c:ed:ad:4c:4a: d3:3d:c5:6c:c1:8a:9c:2b:a9:c0:80:60:da:de:cd: 95:98:5e:92:60:f9:69:0a:35:14:21:87:49:37:62: d2:07:0e:54:93:ce:a3:d1:f3:7e:4a:c5:87:8c:1b: 99:da:74:4b:57:8e:46:b4:68:58:42:ec:8a:07:a6: 25:14:5e:1b:4b:09:a5:02:58:11:86:8d:27:78:a5: f5:8a:93:86:b2:c2:32:75:67:a2:c2:aa:03:66:d5: a4:8b:e3:ca:f3:38:57:02:5a:84:50:7d:73:cb:15: d5:a7:15:76:9c:11:67:33:03:e2:fb:2b:4e:93:5e: 38:d6:97:f1:4e:ec:e7:18:e2:7c:7f:71:e0:70:be: 32:3b:e6:49:e5:48:d8:cb:5b:4d:4c:9f:67:ac:5d: 13:df:27:40:bc:12:69:5a:6e:35:63:83:61:08:95: 90:77:02:6f:9a:83:34:2b:08:cd:64:22:8c:f5:22: 5c:97:7b:db:3c:69:d3:bd:7a:fb:a6:f9:e4:d2:0b: 06:7a:4c:c9:28:1e:a3:83:27:95:80:ad:7c:95:87: d8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6A:DA:A0:90:0B:A2:CE:0E:B2:2C:16:66:1E:71:95:D4:7C:F7:0C X509v3 Authority Key Identifier: keyid:DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:b2:2b:3b:fd:b9:85:06:b0:56:08:d6:a8:d5:6f:60:29:4e: 18:2e:f5:38:09:f7:13:f2:61:a0:3b:e6:0b:a5:19:08:b5:03: d2:45:64:bd:22:0f:c1:81:b7:67:46:b7:39:91:57:1b:e3:69: 32:95:33:4d:64:65:bf:23:94:a5:ab:d2:5d:dd:11:78:f1:76: f7:f4:04:35:83:58:4b:1b:c9:58:41:b3:ef:25:48:76:e7:98: 84:a8:89:e0:ba:80:c7:b4:b9:96:c2:eb:00:32:08:4b:d9:c1: 2f:11:de:cf:80:3e:ce:3d:6c:ba:de:d6:35:bf:fc:c6:61:75: e8:8d:fb:3f:59:89:26:08:26:2c:7a:8e:6f:f7:74:94:c6:6e: 84:fe:5c:cc:eb:99:b2:ea:04:48:f0:9d:62:a8:0a:06:5a:19: 4a:82:06:ad:d5:b8:64:8e:26:c4:7b:eb:40:01:60:b4:de:a0: aa:be:52:d5:45:96:c7:47:df:47:74:b4:76:a2:fe:40:15:24: d7:28:46:2e:1b:45:fc:63:78:2a:e5:15:35:a0:fa:c9:ce:54: a7:6f:c3:f9:51:53:69:6f:b4:08:90:ec:5d:2a:9e:28:90:22: da:ca:60:7e:a5:e0:67:8a:09:95:fe:ad:13:0a:90:59:a7:96: db:35:99:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmwu4Gv2t+yDqy4qLaKN/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNjkxNzY0NWQ5ZDIyMDQzNWY5MWM3ZTQ2YzgxMTBjZjg5 YWNiZTQwHhcNMjUxMjA2MDMwMTAxWhcNMjUxMjA3MDMwMTAxWjAzMTEwLwYDVQQD Eyg1MTZhZGFhMDkwMGJhMmNlMGViMjJjMTY2NjFlNzE5NWQ0N2NmNzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGGvlUIFolTZYTb6UVDpbSRfeVjO aHC1ud4rzWm6vf3C4Ld7NDsmXO2tTErTPcVswYqcK6nAgGDa3s2VmF6SYPlpCjUU IYdJN2LSBw5Uk86j0fN+SsWHjBuZ2nRLV45GtGhYQuyKB6YlFF4bSwmlAlgRho0n eKX1ipOGssIydWeiwqoDZtWki+PK8zhXAlqEUH1zyxXVpxV2nBFnMwPi+ytOk144 1pfxTuznGOJ8f3HgcL4yO+ZJ5UjYy1tNTJ9nrF0T3ydAvBJpWm41Y4NhCJWQdwJv moM0KwjNZCKM9SJcl3vbPGnTvXr7pvnk0gsGekzJKB6jgyeVgK18lYfYYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFFq2qCQC6LODrIsFmYecZXUfPcMMB8GA1UdIwQY MBaAFNxpF2RdnSIENfkcfkbIEQz4msvkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0drWFpGMmRJZ1ExLVJ4LVJzZ1JEUGlheS1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zNTQ0YTctZDU1Ni00NzAxLTk1N2Et NDI4YmU5MDA4ZmJhLzEvM0drWFpGMmRJZ1ExLVJ4LVJzZ1JEUGlheS1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8zNTQ0YTctZDU1Ni00NzAxLTk1N2EtNDI4YmU5MDA4ZmJh LzEvM0drWFpGMmRJZ1ExLVJ4LVJzZ1JEUGlheS1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN7IrO/25 hQawVgjWqNVvYClOGC71OAn3E/JhoDvmC6UZCLUD0kVkvSIPwYG3Z0a3OZFXG+Np MpUzTWRlvyOUpavSXd0RePF29/QENYNYSxvJWEGz7yVIdueYhKiJ4LqAx7S5lsLr ADIIS9nBLxHez4A+zj1sut7WNb/8xmF16I37P1mJJggmLHqOb/d0lMZuhP5czOuZ suoESPCdYqgKBloZSoIGrdW4ZI4mxHvrQAFgtN6gqr5S1UWWx0ffR3S0dqL+QBUk 1yhGLhtF/GN4KuUVNaD6yc5Up2/D+VFTaW+0CJDsXSqeKJAi2spgfqXgZ4oJlf6t EwqQWaeW2zWZug== -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:40 2025 by rpki-client