This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json) Hash identifier: m1vZbGx9hhMz1/MO+OgLRjOVf0VZqpy9FDmNMY3tHlg= Subject key identifier: C1:7D:8A:69:35:02:84:AA:4C:51:44:13:72:87:32:27:C4:A8:1B:FB Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b Certificate serial: 019AF68A7E487342EFAD1DB99CC5895634C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft Manifest number: 0B75 Signing time: Sun 07 Dec 2025 02:01:02 +0000 Manifest this update: Sun 07 Dec 2025 02:01:02 +0000 Manifest next update: Mon 08 Dec 2025 02:01:02 +0000 Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: zGJBFZjwHonevV9DTjYrlvkJT/iGGV4ZqC7d22FNhX8=) 2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:7e:48:73:42:ef:ad:1d:b9:9c:c5:89:56:34:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b Validity Not Before: Dec 7 02:01:02 2025 GMT Not After : Dec 8 02:01:02 2025 GMT Subject: CN=c17d8a69350284aa4c51441372873227c4a81bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:5d:6d:45:9f:d8:d8:36:53:f1:16:ac:53:48: 28:cd:1b:a3:35:68:7f:57:18:ad:67:2d:26:af:27: 92:d7:26:68:61:af:51:58:6c:e7:38:6e:99:ca:1e: de:de:fc:ce:bd:7e:9d:97:38:83:04:47:76:4f:bd: 03:5f:93:d0:06:cc:38:0d:7f:5c:b4:eb:a1:fb:be: 91:38:0b:09:66:91:c7:36:46:8c:2b:f1:57:bf:94: 54:f3:3d:eb:f3:84:30:be:50:ea:af:fe:54:f8:9a: f1:b0:51:cd:bd:8e:ef:9f:13:1a:ec:c8:ea:37:6f: 85:e4:b2:4e:a8:bb:8f:a6:11:57:07:99:17:36:35: 6b:10:28:bc:92:05:af:7a:55:e3:46:d8:56:99:33: a8:42:f8:2b:f3:7a:0c:1c:db:ca:a4:22:76:eb:7c: 1c:03:37:9a:c2:23:12:a3:80:c3:2b:9a:94:a9:b5: 83:93:c1:84:67:01:8c:b7:43:55:1d:3a:2e:cd:52: e0:6d:b6:b2:92:0a:2a:75:24:ea:a2:8d:f5:1e:5a: 82:b5:0c:f9:cb:d9:60:b9:d4:a4:bb:bf:1e:2c:25: a8:b6:0b:a6:65:56:88:25:27:3d:f8:d2:e5:29:02: 33:6d:36:a5:ce:de:13:ce:c1:aa:47:9e:c8:02:21: cc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7D:8A:69:35:02:84:AA:4C:51:44:13:72:87:32:27:C4:A8:1B:FB X509v3 Authority Key Identifier: keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7f:4c:bd:ca:e6:6e:d3:84:d6:80:7a:a7:bd:ea:26:58:08: fe:19:80:08:5e:05:17:8a:87:dd:07:83:b1:42:bf:15:ba:54: 0f:55:de:22:9e:a1:52:5c:1a:57:0b:51:d8:98:47:59:18:74: 23:05:ea:c3:16:26:b1:f1:0e:d2:a9:1c:47:c6:bb:67:b4:2a: 25:21:ab:5c:c9:c2:9c:08:ea:a0:ef:25:de:4d:0d:94:bf:0b: 4c:20:78:2f:4a:f4:0b:93:f6:82:eb:bf:6f:5f:50:b0:ae:1e: dc:b1:35:2a:75:35:7a:4f:25:a8:b5:80:c4:91:fc:67:13:3a: 55:d2:f1:7c:93:cf:c9:81:c3:85:55:08:35:aa:97:ad:5e:d9: 9a:ec:fd:65:7b:f4:5a:32:9c:6b:97:5e:17:cb:11:ad:62:5a: fb:1f:55:4d:82:9e:44:dd:20:33:24:e8:2c:b4:df:21:99:ff: e7:ee:21:70:62:99:0c:22:33:08:c3:e0:da:1d:85:3b:0b:e9: 9e:4f:b9:de:de:4d:60:58:38:4f:3e:a0:40:cc:3c:a0:7d:55: e2:95:e6:1e:b8:f0:99:9b:b4:88:99:ee:bf:b4:18:cd:db:ac: 77:4f:ed:ab:ea:5b:85:26:aa:17:d1:18:47:8f:d4:62:8d:3e: 99:38:d2:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2in5Ic0LvrR25nMWJVjTBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNWIyMjRiNjU5M2U1NTgwMzhhOWU0MGU2NjBjNzcxNDI3 NTVjMWIwHhcNMjUxMjA3MDIwMTAyWhcNMjUxMjA4MDIwMTAyWjAzMTEwLwYDVQQD EyhjMTdkOGE2OTM1MDI4NGFhNGM1MTQ0MTM3Mjg3MzIyN2M0YTgxYmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhV1tRZ/Y2DZT8RasU0gozRujNWh/ VxitZy0mryeS1yZoYa9RWGznOG6Zyh7e3vzOvX6dlziDBEd2T70DX5PQBsw4DX9c tOuh+76ROAsJZpHHNkaMK/FXv5RU8z3r84QwvlDqr/5U+JrxsFHNvY7vnxMa7Mjq N2+F5LJOqLuPphFXB5kXNjVrECi8kgWvelXjRthWmTOoQvgr83oMHNvKpCJ263wc AzeawiMSo4DDK5qUqbWDk8GEZwGMt0NVHTouzVLgbbaykgoqdSTqoo31HlqCtQz5 y9lgudSku78eLCWotgumZVaIJSc9+NLlKQIzbTalzt4TzsGqR57IAiHMWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMF9imk1AoSqTFFEE3KHMifEqBv7MB8GA1UdIwQY MBaAFN1bIktlk+VYA4qeQOZgx3FCdVwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMt MzBiYmZjMDg1NWU0LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMtMzBiYmZjMDg1NWU0 LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATn9Mvcrm btOE1oB6p73qJlgI/hmACF4FF4qH3QeDsUK/FbpUD1XeIp6hUlwaVwtR2JhHWRh0 IwXqwxYmsfEO0qkcR8a7Z7QqJSGrXMnCnAjqoO8l3k0NlL8LTCB4L0r0C5P2guu/ b19QsK4e3LE1KnU1ek8lqLWAxJH8ZxM6VdLxfJPPyYHDhVUINaqXrV7Zmuz9ZXv0 WjKca5deF8sRrWJa+x9VTYKeRN0gMyToLLTfIZn/5+4hcGKZDCIzCMPg2h2FOwvp nk+53t5NYFg4Tz6gQMw8oH1V4pXmHrjwmZu0iJnuv7QYzdusd0/tq+pbhSaqF9EY R4/UYo0+mTjS6Q== -----END CERTIFICATE-----Generated at Sun Dec 7 04:09:33 2025 by rpki-client