This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json) Hash identifier: 8NiwhtpUDvqm+gmOuqWXIbzTnF8h9eL1pCG6VXth5Qw= Subject key identifier: 39:E0:F8:47:D6:2B:25:B5:DB:24:28:DD:3F:55:58:E9:34:9E:12:18 Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b Certificate serial: 019AF23F80410B20AF96FB802B3ECBF19F71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft Manifest number: 115C Signing time: Sat 06 Dec 2025 06:00:39 +0000 Manifest this update: Sat 06 Dec 2025 06:00:39 +0000 Manifest next update: Sun 07 Dec 2025 06:00:39 +0000 Files and hashes: 1: 8lcVMAvDHKFVWpkIvW003vZxmno.roa (hash: b9AoL9a4Iwp34m1O6gUmOqwjFvFHDHYDPCqNWBeuTCY=) 2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: M97hvX9iOKnD3lsEp1dt4bQKqfSrGhZimUo1BxXqbCg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:80:41:0b:20:af:96:fb:80:2b:3e:cb:f1:9f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b Validity Not Before: Dec 6 06:00:39 2025 GMT Not After : Dec 7 06:00:39 2025 GMT Subject: CN=39e0f847d62b25b5db2428dd3f5558e9349e1218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dc:67:6d:15:b9:24:e0:3d:4a:af:68:1f:05: 03:f4:4e:9b:13:1c:cc:65:80:21:35:c5:b6:54:08: 1a:7f:f5:cd:bd:c2:0d:7b:1e:ff:54:f1:ff:16:97: 36:a5:7c:45:ee:51:64:d7:3b:75:63:a9:b3:23:ab: b9:c7:f2:8b:c0:77:48:45:ed:55:0c:c9:d1:6c:dc: 34:88:14:be:d8:b3:c2:cb:03:cc:98:26:4c:8d:84: 99:b0:79:2f:87:a9:79:b8:3d:07:6d:87:c2:8f:68: a8:db:ff:39:2a:d5:7e:bd:0f:b9:b9:3e:f1:c9:c4: 0a:91:bc:87:24:1a:34:56:8f:60:95:22:dc:fc:ad: 59:05:69:da:d0:f6:e5:c9:ca:38:64:9a:cd:ab:1c: 36:e2:b7:3d:f1:be:a4:ed:f0:73:ef:c5:8a:02:4e: a6:af:1c:3d:b0:ff:58:39:71:5d:4a:19:f9:cc:67: 6b:53:3e:15:e1:c2:d0:b8:52:ae:43:1e:a8:0e:58: 33:e9:ef:5c:57:85:8a:65:7a:40:38:9c:63:c7:b7: 2d:1d:d5:b7:af:2d:22:e8:8a:22:39:8b:bc:0a:b6: e0:1d:0e:23:89:38:6c:e6:e0:7c:69:eb:25:f5:b8: 6c:10:ab:0f:32:a4:81:30:a9:c0:78:80:ce:89:4b: e7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E0:F8:47:D6:2B:25:B5:DB:24:28:DD:3F:55:58:E9:34:9E:12:18 X509v3 Authority Key Identifier: keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:cc:32:19:ad:fb:68:20:3c:0b:e9:a1:12:ad:0f:82:5d:51: 50:e3:d4:e3:e3:d9:cf:b1:ba:ce:1c:05:0c:1b:78:cc:f5:85: 6e:48:c6:f9:66:00:bb:79:f3:90:6b:77:30:f8:26:11:b7:c0: b6:b1:1d:9d:80:23:8d:c5:23:d7:b9:0a:28:7e:e3:a8:34:45: 30:9f:a6:04:c8:a0:83:c2:14:01:2d:4d:d4:c6:b9:4f:c7:4a: 95:57:50:1c:d4:ea:7b:db:37:f5:27:25:6f:c8:8c:98:67:95: e4:8b:9d:9c:11:4b:09:40:16:e5:1f:8d:f9:fe:53:e6:a2:b7: 84:fa:19:c0:b1:8b:ae:7b:d8:70:98:4e:73:1f:81:dc:b6:e8: 03:df:03:fe:f7:de:1e:4b:17:29:29:dc:a9:8f:72:34:e1:38: 35:fb:e3:8f:b8:5c:1a:03:c5:4c:95:90:35:0e:a2:68:05:74: 42:55:7f:d1:3c:74:25:ab:04:68:7f:c2:26:f1:3f:51:f4:0e: 6d:01:48:d2:a2:31:47:eb:bc:8a:d0:4f:be:2c:48:cd:11:88: 93:5e:3a:5e:9a:b7:7f:d0:e3:a5:46:77:6a:0f:0f:b9:44:f0: a6:35:f0:ce:f8:62:22:02:80:b1:5e:83:53:40:3c:07:3f:cb: 00:a5:d1:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP4BBCyCvlvuAKz7L8Z9xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3N2I4YWEwNjNmYzRmMmJiODRhOWY1NmEzYmZhMzhiMmFi ZWRmOWIwHhcNMjUxMjA2MDYwMDM5WhcNMjUxMjA3MDYwMDM5WjAzMTEwLwYDVQQD EygzOWUwZjg0N2Q2MmIyNWI1ZGIyNDI4ZGQzZjU1NThlOTM0OWUxMjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydxnbRW5JOA9Sq9oHwUD9E6bExzM ZYAhNcW2VAgaf/XNvcINex7/VPH/Fpc2pXxF7lFk1zt1Y6mzI6u5x/KLwHdIRe1V DMnRbNw0iBS+2LPCywPMmCZMjYSZsHkvh6l5uD0HbYfCj2io2/85KtV+vQ+5uT7x ycQKkbyHJBo0Vo9glSLc/K1ZBWna0Pblyco4ZJrNqxw24rc98b6k7fBz78WKAk6m rxw9sP9YOXFdShn5zGdrUz4V4cLQuFKuQx6oDlgz6e9cV4WKZXpAOJxjx7ctHdW3 ry0i6IoiOYu8CrbgHQ4jiThs5uB8aesl9bhsEKsPMqSBMKnAeIDOiUvnFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDng+EfWKyW12yQo3T9VWOk0nhIYMB8GA1UdIwQY MBaAFJd7iqBj/E8ruEqfVqO/o4sqvt+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUt N2VjNTEyM2JlMTYyLzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9iZDU5ZDktNjkwYS00ZmUyLWIyOTUtN2VjNTEyM2JlMTYy LzEvbDN1S29HUDhUeXU0U3A5V283LWppeXEtMzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAncwyGa37 aCA8C+mhEq0Pgl1RUOPU4+PZz7G6zhwFDBt4zPWFbkjG+WYAu3nzkGt3MPgmEbfA trEdnYAjjcUj17kKKH7jqDRFMJ+mBMigg8IUAS1N1Ma5T8dKlVdQHNTqe9s39Scl b8iMmGeV5IudnBFLCUAW5R+N+f5T5qK3hPoZwLGLrnvYcJhOcx+B3LboA98D/vfe HksXKSncqY9yNOE4Nfvjj7hcGgPFTJWQNQ6iaAV0QlV/0Tx0JasEaH/CJvE/UfQO bQFI0qIxR+u8itBPvixIzRGIk146Xpq3f9DjpUZ3ag8PuUTwpjXwzvhiIgKAsV6D U0A8Bz/LAKXRiQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:11:31 2025 by rpki-client