This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft File: 3EFBHpPiXV7GUJlWmxtcX63Brj0.mft (raw, json) Hash identifier: IQ4Z5tu3oNvknpOXsWRlZHyFSgE+/fowYTtc9ShTYCo= Subject key identifier: B7:CE:18:47:04:22:2E:E9:47:69:E5:3E:02:59:40:04:5C:C8:8F:30 Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d Certificate serial: 019AF1D20FC2B6125D7577D176813139A566 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft Manifest number: 132B Signing time: Sat 06 Dec 2025 04:01:06 +0000 Manifest this update: Sat 06 Dec 2025 04:01:06 +0000 Manifest next update: Sun 07 Dec 2025 04:01:06 +0000 Files and hashes: 1: 3EFBHpPiXV7GUJlWmxtcX63Brj0.crl (hash: V5QWMQ09D3sftjjXoXvUf24WeVp1lfFblBb3MQIXXlA=) 2: I5wQnrgvMCaYn9C8yDvoLQWI0Fs.roa (hash: LLp7jSaPRxKkmfQPCgmC3oWPlWcodXukIf+OL2Y6Xy4=) 3: h62oWk5e6sS8zDCwC47t23u4hGk.roa (hash: KIOG5EX7T8Dsm3c4MU4hyZU5pek+PylPfC7rdsiyJoY=) 4: jGoTTL_48yWV-ohs_hgmOjEwT4E.roa (hash: Q0KSsruo9YLV5d/ARziN3CSGqP5OR6gQhOox+XP9FnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:0f:c2:b6:12:5d:75:77:d1:76:81:31:39:a5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d Validity Not Before: Dec 6 04:01:06 2025 GMT Not After : Dec 7 04:01:06 2025 GMT Subject: CN=b7ce184704222ee94769e53e025940045cc88f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:02:54:22:b6:0d:c3:48:78:63:78:ba:87:d4: 6c:b1:4a:22:0f:94:c0:62:bb:cc:14:27:13:3c:67: a7:99:67:35:3e:07:25:51:e7:d6:dd:27:aa:51:6f: ad:16:31:62:88:8b:32:9e:8a:1e:56:b9:66:8d:fd: d3:ae:7d:8f:57:ed:67:64:ae:3e:5f:9b:44:c4:ce: c9:32:f6:31:48:42:18:2e:7d:f0:91:87:f0:01:11: 30:9c:85:1f:8d:87:cb:f3:d1:84:4d:75:0c:7f:d5: 0f:86:8b:0f:bd:c5:b7:67:3b:24:25:9e:09:24:3b: 79:80:54:71:88:3f:aa:88:81:79:81:76:75:4f:1f: b9:f8:d5:69:df:05:f4:c2:e7:0a:97:72:56:58:10: c7:17:bd:d7:23:ed:e2:ff:d4:89:5b:a8:1f:71:6d: 24:9b:54:f7:32:15:0f:c3:5f:de:9b:8e:0a:d7:4f: f4:38:f0:82:83:43:e5:19:61:fb:e2:c8:6d:90:37: 87:6b:4a:06:6e:26:a1:1e:2d:62:ce:a8:9f:6a:27: 94:38:f1:ec:ee:78:d0:3a:66:26:77:47:b2:4d:f9: a2:9b:41:40:dc:53:f0:d9:3c:63:55:a2:a7:66:3a: e6:6d:48:25:51:0a:5e:33:08:2d:4a:00:ef:93:cd: 86:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CE:18:47:04:22:2E:E9:47:69:E5:3E:02:59:40:04:5C:C8:8F:30 X509v3 Authority Key Identifier: keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:5d:44:26:26:12:59:0c:7a:12:64:0a:97:6d:8d:bd:1b:a0: 2c:bf:33:6d:f0:34:05:91:09:fd:09:22:7f:ae:76:ac:0b:57: 9d:f8:0e:54:71:25:67:e6:81:6e:69:62:70:eb:39:f4:94:a8: 6f:a0:83:94:28:85:ec:69:a9:48:ee:95:05:a2:46:d9:1a:45: ed:17:23:95:39:b3:ba:90:44:bc:6d:58:1c:ff:63:aa:bd:5f: 3e:6e:77:38:73:10:d9:c4:89:70:ed:c2:ab:a7:45:6e:db:e0: ea:f2:54:6b:94:2e:8e:0d:fc:16:f3:d1:e1:11:64:59:53:ad: 0d:7e:1a:82:41:95:2e:92:22:a4:e3:17:74:89:3e:fa:93:8e: d9:f4:4e:0d:a3:0e:31:12:5b:5f:59:c2:0e:ab:82:36:5c:8c: ef:2a:47:ca:5b:16:9d:50:6a:5a:bc:31:f8:92:31:d4:05:1d: 5f:0e:d0:4b:95:06:d4:33:f2:6f:58:72:3a:b5:d7:d0:e0:b7: 9e:44:e5:97:ac:50:ce:63:5b:a6:7f:a3:36:bc:6a:75:2f:e5: b4:3f:7b:2a:a1:d4:b1:63:9a:7a:39:b2:a5:57:32:9c:29:58: ae:83:74:86:51:29:78:0a:20:0a:68:71:4f:ca:9d:22:06:e3: c8:50:5f:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0g/CthJddXfRdoExOaVmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNDE0MTFlOTNlMjVkNWVjNjUwOTk1NjliMWI1YzVmYWRj MWFlM2QwHhcNMjUxMjA2MDQwMTA2WhcNMjUxMjA3MDQwMTA2WjAzMTEwLwYDVQQD EyhiN2NlMTg0NzA0MjIyZWU5NDc2OWU1M2UwMjU5NDAwNDVjYzg4ZjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQJUIrYNw0h4Y3i6h9RssUoiD5TA YrvMFCcTPGenmWc1PgclUefW3SeqUW+tFjFiiIsynooeVrlmjf3Trn2PV+1nZK4+ X5tExM7JMvYxSEIYLn3wkYfwAREwnIUfjYfL89GETXUMf9UPhosPvcW3ZzskJZ4J JDt5gFRxiD+qiIF5gXZ1Tx+5+NVp3wX0wucKl3JWWBDHF73XI+3i/9SJW6gfcW0k m1T3MhUPw1/em44K10/0OPCCg0PlGWH74shtkDeHa0oGbiahHi1izqifaieUOPHs 7njQOmYmd0eyTfmim0FA3FPw2TxjVaKnZjrmbUglUQpeMwgtSgDvk82GewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLfOGEcEIi7pR2nlPgJZQARcyI8wMB8GA1UdIwQY MBaAFNxBQR6T4l1exlCZVpsbXF+twa49MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0VGQkhwUGlYVjdHVUpsV214dGNYNjNCcmowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8zZDQ3MzEtOGNmMy00MzI3LWFlNmEt NTEzODdkMTYwYmE5LzEvM0VGQkhwUGlYVjdHVUpsV214dGNYNjNCcmowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8zZDQ3MzEtOGNmMy00MzI3LWFlNmEtNTEzODdkMTYwYmE5 LzEvM0VGQkhwUGlYVjdHVUpsV214dGNYNjNCcmowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjV1EJiYS WQx6EmQKl22NvRugLL8zbfA0BZEJ/Qkif652rAtXnfgOVHElZ+aBbmlicOs59JSo b6CDlCiF7GmpSO6VBaJG2RpF7RcjlTmzupBEvG1YHP9jqr1fPm53OHMQ2cSJcO3C q6dFbtvg6vJUa5Qujg38FvPR4RFkWVOtDX4agkGVLpIipOMXdIk++pOO2fRODaMO MRJbX1nCDquCNlyM7ypHylsWnVBqWrwx+JIx1AUdXw7QS5UG1DPyb1hyOrXX0OC3 nkTll6xQzmNbpn+jNrxqdS/ltD97KqHUsWOaejmypVcynClYroN0hlEpeAogCmhx T8qdIgbjyFBfng== -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:50 2025 by rpki-client