This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json) Hash identifier: oSrg6nw97KgPLbA0jRQEFTQKmyNstyPvq9DWEvSZaww= Subject key identifier: 53:BF:32:18:57:D6:90:DF:77:EB:7A:11:68:DC:23:96:E3:9D:B2:39 Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b Certificate serial: 019B33E89D39BF0FE2978E940A4E4BB76765 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft Manifest number: 117E Signing time: Fri 19 Dec 2025 00:00:41 +0000 Manifest this update: Fri 19 Dec 2025 00:00:41 +0000 Manifest next update: Sat 20 Dec 2025 00:00:41 +0000 Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=) 2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: wKsGmYCyp1LkNLT1R6glw/p5dRxOvVB37rIZpo+CBhs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:9d:39:bf:0f:e2:97:8e:94:0a:4e:4b:b7:67:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b Validity Not Before: Dec 19 00:00:41 2025 GMT Not After : Dec 20 00:00:41 2025 GMT Subject: CN=53bf321857d690df77eb7a1168dc2396e39db239 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:01:ab:c0:20:6c:a4:e6:01:90:6d:ba:c6:04: f9:83:38:5b:07:6e:de:24:e1:f4:3f:88:a7:df:9d: 77:70:af:dc:2d:e9:e5:3e:72:05:39:a0:93:5b:31: 2d:6a:94:fc:52:5b:80:c4:5b:3b:e9:9c:4e:c1:ed: 50:27:f7:6e:44:e9:5d:27:e7:76:12:87:38:90:33: f6:16:8c:55:b9:84:c4:46:26:49:03:4b:20:83:9c: 22:12:52:94:dd:0c:68:7f:29:b4:ea:8f:cc:07:0f: 2b:ca:f0:cc:69:77:a9:77:45:01:d0:07:86:25:0b: a7:d2:2c:ef:88:db:73:37:4a:68:b2:74:82:aa:fa: b1:fe:50:98:fe:b6:f5:02:cc:a1:72:47:67:5b:08: 7b:dd:d6:6e:f7:70:7d:f9:5f:25:14:9e:45:54:b0: 77:f7:87:03:a9:18:13:ce:df:ef:d5:81:f4:e8:b5: bc:c2:70:92:7c:73:7f:fe:0c:5e:59:e5:d1:9f:e6: cb:b9:0b:44:a4:1c:e6:81:99:dd:ce:d1:46:5b:5b: ff:ed:6a:01:6a:26:d2:18:b4:fa:08:f1:ef:9c:32: 8a:57:b3:8b:68:bf:9c:29:ad:a0:bc:3e:a4:8d:cb: 6c:64:3b:e1:0e:6f:39:41:2e:06:48:f5:0b:d0:12: 4b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BF:32:18:57:D6:90:DF:77:EB:7A:11:68:DC:23:96:E3:9D:B2:39 X509v3 Authority Key Identifier: keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:90:86:9a:dc:47:a0:83:76:c6:f2:c1:71:17:d6:88:f7:b3: 28:e2:62:69:c2:ad:5d:5f:38:1e:45:25:b5:2a:d3:c9:72:3a: c6:22:4b:3b:5b:ba:2a:cc:66:93:e3:1b:63:fe:23:24:3c:44: 6b:58:41:b5:1d:c9:ab:50:8c:47:38:e4:5c:99:74:2c:4d:2b: 97:e2:1b:83:f8:c9:ec:8a:a5:64:c5:7e:3c:e3:65:5c:98:bd: cd:19:a3:bf:3d:24:8d:65:46:93:dc:be:b5:5e:e4:1c:8e:8f: 93:fe:6d:fa:ad:49:46:a9:d9:55:83:cf:a3:d6:15:27:79:b8: 33:59:6e:9c:0a:b3:6f:75:02:ed:29:0e:ab:84:6d:59:a8:36: 7f:2a:ec:5e:1d:47:11:ae:0f:dd:00:53:a9:54:2e:60:ad:58: c9:ba:b7:39:e2:85:57:62:b8:0d:c9:21:0d:64:8b:78:93:50: f1:34:29:75:37:58:cb:6b:ca:d8:61:2a:f9:dd:6b:ee:98:24: 30:e8:f6:36:bb:63:4f:8a:c3:3c:ca:ff:0b:74:2a:d5:92:74: 74:74:7a:99:e0:c5:84:f7:07:32:66:25:94:5d:24:57:b3:a9: 67:61:78:5b:c9:6b:c0:57:48:e9:a5:5b:22:f9:2d:ad:65:51: 11:0d:3e:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6J05vw/il46UCk5Lt2dlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3N2I4YWEwNjNmYzRmMmJiODRhOWY1NmEzYmZhMzhiMmFi ZWRmOWIwHhcNMjUxMjE5MDAwMDQxWhcNMjUxMjIwMDAwMDQxWjAzMTEwLwYDVQQD Eyg1M2JmMzIxODU3ZDY5MGRmNzdlYjdhMTE2OGRjMjM5NmUzOWRiMjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAGrwCBspOYBkG26xgT5gzhbB27e JOH0P4in3513cK/cLenlPnIFOaCTWzEtapT8UluAxFs76ZxOwe1QJ/duROldJ+d2 Eoc4kDP2FoxVuYTERiZJA0sgg5wiElKU3Qxofym06o/MBw8ryvDMaXepd0UB0AeG JQun0izviNtzN0posnSCqvqx/lCY/rb1AsyhckdnWwh73dZu93B9+V8lFJ5FVLB3 94cDqRgTzt/v1YH06LW8wnCSfHN//gxeWeXRn+bLuQtEpBzmgZndztFGW1v/7WoB aibSGLT6CPHvnDKKV7OLaL+cKa2gvD6kjctsZDvhDm85QS4GSPUL0BJL3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFO/MhhX1pDfd+t6EWjcI5bjnbI5MB8GA1UdIwQY MBaAFJd7iqBj/E8ruEqfVqO/o4sqvt+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUt N2VjNTEyM2JlMTYyLzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUtN2VjNTEyM2JlMTYy LzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABJCGmtxH oIN2xvLBcRfWiPezKOJiacKtXV84HkUltSrTyXI6xiJLO1u6Ksxmk+MbY/4jJDxE a1hBtR3Jq1CMRzjkXJl0LE0rl+Ibg/jJ7IqlZMV+PONlXJi9zRmjvz0kjWVGk9y+ tV7kHI6Pk/5t+q1JRqnZVYPPo9YVJ3m4M1lunAqzb3UC7SkOq4RtWag2fyrsXh1H Ea4P3QBTqVQuYK1Yybq3OeKFV2K4DckhDWSLeJNQ8TQpdTdYy2vK2GEq+d1r7pgk MOj2NrtjT4rDPMr/C3Qq1ZJ0dHR6meDFhPcHMmYllF0kV7OpZ2F4W8lrwFdI6aVb IvktrWVREQ0+hw== -----END CERTIFICATE-----Generated at Fri Dec 19 01:22:43 2025 by rpki-client