This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json) Hash identifier: PL6XkFjnhz9QsaJEODHxnIMGQingbXH6oSPnVKKDdh4= Subject key identifier: 89:4E:C4:03:55:96:0E:43:8E:20:72:33:17:92:39:38:10:74:EE:7F Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85 Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585 Certificate serial: 019B33E92A6D6384439F2962FA88D6B818F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 00:01:17 +0000 Manifest this update: Fri 19 Dec 2025 00:01:17 +0000 Manifest next update: Sat 20 Dec 2025 00:01:17 +0000 Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: hkwe8NAGBTZHPDSnq/SQqXF3whAu+IW0ebMfjI/USaQ=) 2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e9:2a:6d:63:84:43:9f:29:62:fa:88:d6:b8:18:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585 Validity Not Before: Dec 19 00:01:17 2025 GMT Not After : Dec 20 00:01:17 2025 GMT Subject: CN=894ec40355960e438e207233179239381074ee7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:ed:e4:23:e4:f0:7d:f5:95:b8:a3:a1:28: 23:2f:d6:7d:5c:bd:22:e1:fb:b1:af:de:10:c2:0e: fa:53:16:b5:5f:52:17:03:3c:f7:09:96:e6:95:fb: 21:a5:54:ae:60:b7:92:da:3f:48:56:66:c2:d0:f4: c1:84:0a:03:29:e2:3d:4e:fe:af:ed:35:28:af:64: e5:b6:22:38:2b:56:a8:bc:87:53:37:9a:a6:45:8a: 62:12:f5:18:de:cd:42:27:e0:f7:0f:9a:27:b1:9b: 70:46:12:cc:5d:e1:ad:5f:57:5f:a7:c7:76:45:e5: 26:da:0f:b7:e3:72:1c:6b:84:13:0c:27:9b:f6:7b: b8:a0:d6:62:db:12:ba:96:38:83:f1:e9:ca:1f:48: 25:d7:cd:c8:04:ea:e8:d3:ae:10:72:a7:fb:f0:1e: c1:0b:cf:24:7e:46:27:24:ec:25:dd:69:f0:d3:a3: 8a:6d:34:0c:12:b8:66:07:ce:a7:10:2a:06:52:4a: 53:d0:a0:95:e4:a3:ff:08:fa:bb:70:a4:93:07:b8: ca:6c:91:73:b4:33:3f:0f:40:5f:48:6d:e9:50:b8: ee:a3:f8:28:4a:e1:29:d6:2b:12:83:fa:43:40:08: 72:c0:c0:90:0b:28:67:1d:99:8d:8f:bb:43:61:ec: cb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4E:C4:03:55:96:0E:43:8E:20:72:33:17:92:39:38:10:74:EE:7F X509v3 Authority Key Identifier: keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:40:72:f8:a3:0b:4c:e3:61:07:a5:f6:73:22:b9:a0:e7:cd: ed:6c:b1:1b:f3:65:b2:bc:de:44:a8:ef:13:71:1a:b5:7a:20: d1:5a:4e:35:18:3c:f0:80:7b:4d:2d:69:6d:e0:56:b1:94:b5: 77:37:49:c2:b2:a2:17:65:a7:ae:7b:b7:6d:28:c5:4c:21:a3: 31:ac:16:6b:df:36:e9:fa:68:a9:65:d7:6a:26:c9:8d:f3:ef: 88:72:5f:d1:2f:9f:69:6a:21:0e:8d:c6:cd:7a:98:58:94:1b: 3e:98:d2:a3:46:a7:27:53:f5:81:72:e2:ff:60:3b:0f:25:c5: 20:44:17:54:77:69:b9:0f:c8:12:14:d2:cd:dd:3e:33:74:6e: 75:ab:0c:f9:6e:9f:20:ae:9a:f1:a9:50:4a:fb:a5:d8:14:e8: d8:50:fc:f6:e1:1c:9a:f4:40:25:2f:97:9d:5e:37:2a:d7:ae: 14:50:7b:18:46:a3:47:48:0e:0c:33:54:4d:d5:58:ec:cb:e7: c4:fc:e1:b8:42:6c:c2:ca:0e:dd:e8:fd:f7:e3:d7:3e:66:3e: 2e:13:10:80:b3:34:05:9e:fc:52:56:23:e5:1d:f8:f0:b4:ce: e2:46:b7:88:f3:7d:fc:e0:b2:ae:6e:47:b4:43:ea:a6:1e:5a: 3e:5b:a9:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6SptY4RDnyli+ojWuBj0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlOGRkNDM5MjhlZGZiMTIwMGVmYmM2MmM0NDFmOWNkMjkw NDg1ODUwHhcNMjUxMjE5MDAwMTE3WhcNMjUxMjIwMDAwMTE3WjAzMTEwLwYDVQQD Eyg4OTRlYzQwMzU1OTYwZTQzOGUyMDcyMzMxNzkyMzkzODEwNzRlZTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCDt5CPk8H31lbijoSgjL9Z9XL0i 4fuxr94Qwg76Uxa1X1IXAzz3CZbmlfshpVSuYLeS2j9IVmbC0PTBhAoDKeI9Tv6v 7TUor2TltiI4K1aovIdTN5qmRYpiEvUY3s1CJ+D3D5onsZtwRhLMXeGtX1dfp8d2 ReUm2g+343Ica4QTDCeb9nu4oNZi2xK6ljiD8enKH0gl183IBOro064Qcqf78B7B C88kfkYnJOwl3Wnw06OKbTQMErhmB86nECoGUkpT0KCV5KP/CPq7cKSTB7jKbJFz tDM/D0BfSG3pULjuo/goSuEp1isSg/pDQAhywMCQCyhnHZmNj7tDYezLOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIlOxANVlg5DjiByMxeSOTgQdO5/MB8GA1UdIwQY MBaAFD6N1Dko7fsSAO+8YsRB+c0pBIWFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mN2VjYjctZmY2ZC00NWUwLTk4ZDYt Yzc3YmFlM2QzZWQxLzEvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9mN2VjYjctZmY2ZC00NWUwLTk4ZDYtYzc3YmFlM2QzZWQx LzEvUG8zVU9TanQteElBNzd4aXhFSDV6U2tFaFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXEBy+KML TONhB6X2cyK5oOfN7WyxG/NlsrzeRKjvE3EatXog0VpONRg88IB7TS1pbeBWsZS1 dzdJwrKiF2Wnrnu3bSjFTCGjMawWa9826fpoqWXXaibJjfPviHJf0S+faWohDo3G zXqYWJQbPpjSo0anJ1P1gXLi/2A7DyXFIEQXVHdpuQ/IEhTSzd0+M3RudasM+W6f IK6a8alQSvul2BTo2FD89uEcmvRAJS+XnV43KteuFFB7GEajR0gODDNUTdVY7Mvn xPzhuEJswsoO3ej99+PXPmY+LhMQgLM0BZ78UlYj5R348LTO4ka3iPN9/OCyrm5H tEPqph5aPlupsg== -----END CERTIFICATE-----Generated at Fri Dec 19 07:25:39 2025 by rpki-client