This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft File: a3bJMU-szahJARCzTnmUbdjrrTo.mft (raw, json) Hash identifier: sXLUQZJGaXjKYUH6LC62IDk15GLpvqnf4+rvWyoWnms= Subject key identifier: FD:05:9F:4C:B4:68:BE:34:F6:4B:17:37:56:51:CA:C5:FD:9F:8A:51 Authority key identifier: 6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A Certificate issuer: /CN=6b76c9314faccda8490110b34e79946dd8ebad3a Certificate serial: 019AF12E3AF48A81BBE1DC3488F10EC43126 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft Manifest number: 0E42 Signing time: Sat 06 Dec 2025 01:02:10 +0000 Manifest this update: Sat 06 Dec 2025 01:02:10 +0000 Manifest next update: Sun 07 Dec 2025 01:02:10 +0000 Files and hashes: 1: GQ4okKYObDE-j1xycURkWS4ZSu4.roa (hash: WJRKBv0neQmanj6UIle0b8oMi28WgQBdTYQH6BO3sRs=) 2: a3bJMU-szahJARCzTnmUbdjrrTo.crl (hash: /BSP/8Su52BEOSk2M/gp+EEiuTu/Y1SFRMlkPOsuJH8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:3a:f4:8a:81:bb:e1:dc:34:88:f1:0e:c4:31:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b76c9314faccda8490110b34e79946dd8ebad3a Validity Not Before: Dec 6 01:02:10 2025 GMT Not After : Dec 7 01:02:10 2025 GMT Subject: CN=fd059f4cb468be34f64b17375651cac5fd9f8a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d6:b9:99:c5:73:8b:5a:c9:c5:86:12:ea:c0: d0:a4:df:ea:aa:a9:fd:5d:8c:c8:bf:0c:1c:76:29: 67:b4:11:f7:59:5c:a6:5f:ed:90:5c:d8:b6:80:5f: 2f:41:ae:1d:00:e1:47:36:0e:29:98:51:d6:a3:1d: e1:fa:11:49:06:1a:f6:73:42:9e:a7:d2:35:3c:10: 44:3a:a0:dc:eb:67:93:b4:fe:59:78:3d:ab:3a:0b: 72:07:ac:a5:93:dc:85:41:fb:05:33:36:fb:b3:f2: 33:96:97:99:07:11:b2:3b:31:27:33:95:09:07:db: b2:0f:7f:65:33:a4:c7:52:5e:a5:c7:4a:bd:8c:0c: 84:26:e1:f9:f9:6e:08:d9:d0:fe:8d:29:c8:c3:32: 0f:c9:9a:13:8c:e8:d6:17:c9:56:1d:df:49:83:65: 7d:de:9e:1e:7b:dd:9d:68:9c:a1:19:f7:bc:d2:e3: d6:7f:94:db:bf:fa:cc:cb:06:f1:a2:bb:48:8b:bd: c7:6c:73:dc:3d:e8:d9:19:cc:5d:c7:a0:5d:7a:43: 40:39:bb:89:27:f5:17:fa:28:9c:fd:20:a8:21:72: d6:b2:ad:68:54:5d:c6:ca:d8:96:99:d3:bf:65:b5: eb:56:1b:47:76:26:36:b6:52:15:22:a8:1c:2e:3f: 04:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:05:9F:4C:B4:68:BE:34:F6:4B:17:37:56:51:CA:C5:FD:9F:8A:51 X509v3 Authority Key Identifier: keyid:6B:76:C9:31:4F:AC:CD:A8:49:01:10:B3:4E:79:94:6D:D8:EB:AD:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3bJMU-szahJARCzTnmUbdjrrTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3ad453-4dff-443a-bf61-881c10c4f704/1/a3bJMU-szahJARCzTnmUbdjrrTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:2f:e7:48:54:ca:c5:9b:78:12:bc:8f:1f:53:fa:53:ac:db: bd:9f:f2:d6:19:97:b3:3d:70:09:42:09:cd:d5:6b:9f:36:9f: f4:d2:87:e7:22:86:20:ec:71:33:01:bb:8e:aa:30:b4:25:37: 39:c4:3c:59:5c:1a:ca:66:9c:a1:23:97:d6:7d:c1:94:7c:f6: c7:03:4b:19:e9:1d:8b:2c:ea:a9:82:2c:31:9b:f9:1f:05:a2: fe:e1:f9:4a:e3:0f:47:42:d7:e1:4a:aa:41:26:31:6c:52:bb: 30:d8:46:4e:f3:74:09:7f:2b:f2:da:ef:31:b1:f9:dd:b7:d3: c9:bb:a2:02:27:5e:a7:da:cd:db:e8:a6:d1:08:89:3f:01:10: a0:f2:67:5b:7e:bc:99:2c:fe:df:91:e1:c9:f8:af:22:ff:0f: 52:3e:30:27:f2:e7:e0:8d:75:ba:8e:71:e2:59:38:f1:1c:45: 66:5c:20:27:0d:97:cb:94:fb:25:5e:2a:e0:1e:0a:ab:c1:69: e2:fc:fc:12:73:ca:65:06:d7:77:51:50:33:df:36:fe:c5:5a: d7:77:7f:37:d8:c7:62:27:70:56:19:f2:d3:54:59:2a:8c:d0: f3:21:07:ac:ab:66:88:7f:80:eb:6f:69:9c:c6:87:de:fd:e3: 00:f4:b2:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLjr0ioG74dw0iPEOxDEmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNzZjOTMxNGZhY2NkYTg0OTAxMTBiMzRlNzk5NDZkZDhl YmFkM2EwHhcNMjUxMjA2MDEwMjEwWhcNMjUxMjA3MDEwMjEwWjAzMTEwLwYDVQQD EyhmZDA1OWY0Y2I0NjhiZTM0ZjY0YjE3Mzc1NjUxY2FjNWZkOWY4YTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9a5mcVzi1rJxYYS6sDQpN/qqqn9 XYzIvwwcdilntBH3WVymX+2QXNi2gF8vQa4dAOFHNg4pmFHWox3h+hFJBhr2c0Ke p9I1PBBEOqDc62eTtP5ZeD2rOgtyB6ylk9yFQfsFMzb7s/IzlpeZBxGyOzEnM5UJ B9uyD39lM6THUl6lx0q9jAyEJuH5+W4I2dD+jSnIwzIPyZoTjOjWF8lWHd9Jg2V9 3p4ee92daJyhGfe80uPWf5Tbv/rMywbxortIi73HbHPcPejZGcxdx6BdekNAObuJ J/UX+iic/SCoIXLWsq1oVF3GytiWmdO/ZbXrVhtHdiY2tlIVIqgcLj8EawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0Fn0y0aL409ksXN1ZRysX9n4pRMB8GA1UdIwQY MBaAFGt2yTFPrM2oSQEQs055lG3Y6606MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTNiSk1VLXN6YWhKQVJDelRubVViZGpyclRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8zYWQ0NTMtNGRmZi00NDNhLWJmNjEt ODgxYzEwYzRmNzA0LzEvYTNiSk1VLXN6YWhKQVJDelRubVViZGpyclRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8zYWQ0NTMtNGRmZi00NDNhLWJmNjEtODgxYzEwYzRmNzA0 LzEvYTNiSk1VLXN6YWhKQVJDelRubVViZGpyclRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAny/nSFTK xZt4EryPH1P6U6zbvZ/y1hmXsz1wCUIJzdVrnzaf9NKH5yKGIOxxMwG7jqowtCU3 OcQ8WVwaymacoSOX1n3BlHz2xwNLGekdiyzqqYIsMZv5HwWi/uH5SuMPR0LX4Uqq QSYxbFK7MNhGTvN0CX8r8trvMbH53bfTybuiAidep9rN2+im0QiJPwEQoPJnW368 mSz+35HhyfivIv8PUj4wJ/Ln4I11uo5x4lk48RxFZlwgJw2Xy5T7JV4q4B4Kq8Fp 4vz8EnPKZQbXd1FQM982/sVa13d/N9jHYidwVhny01RZKozQ8yEHrKtmiH+A629p nMaH3v3jAPSyag== -----END CERTIFICATE-----Generated at Sat Dec 6 09:25:27 2025 by rpki-client