This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft File: 3kVs200UA0XD3K6_x2NNTnzcuRM.mft (raw, json) Hash identifier: K8LDU4gOZ4wDaEdzFDRpq8A9h28yVjUc9JUXzRmeb1A= Subject key identifier: A4:B0:E2:E9:E2:4E:49:4C:05:26:0F:2E:75:79:E0:B1:7F:48:3E:2D Authority key identifier: DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13 Certificate issuer: /CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913 Certificate serial: 019AF31D24EBA84FFA6B448A3D921FA2B4D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft Manifest number: 176C Signing time: Sat 06 Dec 2025 10:02:44 +0000 Manifest this update: Sat 06 Dec 2025 10:02:44 +0000 Manifest next update: Sun 07 Dec 2025 10:02:44 +0000 Files and hashes: 1: 0wxplS04ynQiI1r3ArdsiKBCEOI.roa (hash: WDNF73KtUANe5OGg5Z8hCbK6QAlz8jWNq6iQlKA1l4A=) 2: 3kVs200UA0XD3K6_x2NNTnzcuRM.crl (hash: oQnwEdHHTdYfPSYQ0qk+k2DvgIPAT/KaGSk1zUT8Wfo=) 3: JIEsiChTD9veiUWmlJ3B4QQpFuc.roa (hash: G8sz8HlJFis3zSSNKaXy4CKewTagYcW3tdUbj5SB5rw=) 4: erY5eOsE13MYDYGdz-7KiRAOTog.roa (hash: NmXI2cVM6emkr8oTXJbXMbKgJl7gRO9hnwaW3QZ2P/k=) 5: g4ZCPviGonmRGPJlO9nSng_S-lo.roa (hash: NBfLnaWFnRjJb4HXfFDgN4fD3VeUZZnkBAnPok8zBDM=) 6: pt0lS1m3NLfN-ZlG6LR_u92_6So.roa (hash: 5VENDpQR+7VNnLE+YBum+RFRq29jqQtAdKpAJMhSuxQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:24:eb:a8:4f:fa:6b:44:8a:3d:92:1f:a2:b4:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de456cdb4d140345c3dcaebfc7634d4e7cdcb913 Validity Not Before: Dec 6 10:02:44 2025 GMT Not After : Dec 7 10:02:44 2025 GMT Subject: CN=a4b0e2e9e24e494c05260f2e7579e0b17f483e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3c:43:b1:53:a3:0c:53:a4:e5:21:01:c1:45: 63:f2:a8:ac:16:42:53:5e:55:1e:a8:1e:b4:aa:a9: f9:c1:5e:91:96:71:0d:fb:38:51:52:77:85:25:16: a6:90:a6:78:36:03:e9:d9:11:c1:7c:c0:f5:49:b7: a6:8a:36:31:15:b9:3c:63:6f:27:14:a3:44:cc:da: 1e:09:8c:4c:c7:97:04:86:05:fa:d6:a5:8c:a2:c9: 69:90:37:26:e6:e3:22:60:ff:c7:a5:9e:53:08:70: 8c:32:26:54:c4:15:87:88:e2:07:fb:16:85:28:cb: df:93:53:92:71:a5:5d:3f:3a:6f:79:95:94:02:6c: 1d:57:47:c0:e0:e3:d5:f9:af:f8:7b:39:3f:00:d3: 23:32:9c:56:fc:a6:e1:24:11:e6:cb:51:fe:81:77: d9:28:58:d4:6f:db:65:90:9f:b9:bc:06:e2:b5:1e: 55:6e:7e:f4:5c:d5:c0:3d:52:a3:cc:1f:96:08:41: ad:f0:2a:47:97:52:27:85:78:0c:86:2e:88:5d:3d: 86:46:30:8d:58:f5:8b:97:ed:0d:c2:5b:76:6c:8c: 33:a1:a2:d5:c3:52:90:7a:42:52:17:64:b5:42:4a: b9:b1:60:4f:c1:fd:84:da:17:68:fa:eb:d3:3f:b9: 2a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B0:E2:E9:E2:4E:49:4C:05:26:0F:2E:75:79:E0:B1:7F:48:3E:2D X509v3 Authority Key Identifier: keyid:DE:45:6C:DB:4D:14:03:45:C3:DC:AE:BF:C7:63:4D:4E:7C:DC:B9:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kVs200UA0XD3K6_x2NNTnzcuRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/20cb33-e2bf-46aa-abfa-928e7bc69570/1/3kVs200UA0XD3K6_x2NNTnzcuRM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:9a:4e:ed:d7:78:cb:aa:a0:05:47:6d:31:4d:7c:19:ba:c7: 6f:7b:16:7e:58:5e:3f:b4:43:54:92:94:dd:f1:4a:7b:6a:1b: f9:8e:6e:c1:10:4e:2d:63:51:6a:7f:89:3b:70:91:49:53:86: 95:44:d3:40:94:58:95:63:96:51:61:5f:eb:0f:78:26:16:4e: 65:bf:d4:f0:64:c4:76:3f:8b:e8:23:ed:c5:c2:7b:c9:83:5e: db:9a:a3:de:08:56:bb:ed:b5:88:69:28:0f:8a:67:27:f7:02: cf:f8:fe:89:1c:c7:19:4b:51:10:84:0a:b2:86:5c:ff:34:96: e6:b2:6c:7f:b4:42:30:2c:45:c4:c6:60:67:a6:a4:d5:3c:63: f3:07:8e:eb:73:b4:3c:c3:ac:7c:c0:d9:27:70:eb:51:5b:90: 0c:0d:85:e0:c6:2b:16:0c:36:27:5e:39:c9:f4:f9:9e:ff:9a: 02:24:9d:02:c4:0f:69:d3:d8:7d:9f:44:cb:fb:ed:09:c1:16: 10:4e:79:fd:8d:9b:5d:d7:da:22:a7:2a:c4:2d:dc:af:22:62: 0c:64:77:a9:1d:0d:47:a9:90:66:f7:bd:d1:7f:ac:0d:a9:45: 98:9f:e3:0f:2b:98:cf:4b:40:ca:9b:55:e3:38:f5:66:cf:83: 46:48:5e:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHSTrqE/6a0SKPZIforTXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlNDU2Y2RiNGQxNDAzNDVjM2RjYWViZmM3NjM0ZDRlN2Nk Y2I5MTMwHhcNMjUxMjA2MTAwMjQ0WhcNMjUxMjA3MTAwMjQ0WjAzMTEwLwYDVQQD EyhhNGIwZTJlOWUyNGU0OTRjMDUyNjBmMmU3NTc5ZTBiMTdmNDgzZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjxDsVOjDFOk5SEBwUVj8qisFkJT XlUeqB60qqn5wV6RlnEN+zhRUneFJRamkKZ4NgPp2RHBfMD1SbemijYxFbk8Y28n FKNEzNoeCYxMx5cEhgX61qWMoslpkDcm5uMiYP/HpZ5TCHCMMiZUxBWHiOIH+xaF KMvfk1OScaVdPzpveZWUAmwdV0fA4OPV+a/4ezk/ANMjMpxW/KbhJBHmy1H+gXfZ KFjUb9tlkJ+5vAbitR5Vbn70XNXAPVKjzB+WCEGt8CpHl1InhXgMhi6IXT2GRjCN WPWLl+0Nwlt2bIwzoaLVw1KQekJSF2S1Qkq5sWBPwf2E2hdo+uvTP7kq8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKSw4uniTklMBSYPLnV54LF/SD4tMB8GA1UdIwQY MBaAFN5FbNtNFANFw9yuv8djTU583LkTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2tWczIwMFVBMFhEM0s2X3gyTk5UbnpjdVJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yMGNiMzMtZTJiZi00NmFhLWFiZmEt OTI4ZTdiYzY5NTcwLzEvM2tWczIwMFVBMFhEM0s2X3gyTk5UbnpjdVJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8yMGNiMzMtZTJiZi00NmFhLWFiZmEtOTI4ZTdiYzY5NTcw LzEvM2tWczIwMFVBMFhEM0s2X3gyTk5UbnpjdVJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZpO7dd4 y6qgBUdtMU18GbrHb3sWflheP7RDVJKU3fFKe2ob+Y5uwRBOLWNRan+JO3CRSVOG lUTTQJRYlWOWUWFf6w94JhZOZb/U8GTEdj+L6CPtxcJ7yYNe25qj3ghWu+21iGko D4pnJ/cCz/j+iRzHGUtREIQKsoZc/zSW5rJsf7RCMCxFxMZgZ6ak1Txj8weO63O0 PMOsfMDZJ3DrUVuQDA2F4MYrFgw2J145yfT5nv+aAiSdAsQPadPYfZ9Ey/vtCcEW EE55/Y2bXdfaIqcqxC3cryJiDGR3qR0NR6mQZve90X+sDalFmJ/jDyuYz0tAyptV 4zj1Zs+DRkhetg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:58:34 2025 by rpki-client