This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json) Hash identifier: akoqE4gM5fJggKRG3oRRUSAjCNhgBnF1eS5RblHrjeM= Subject key identifier: A6:09:75:A5:9C:5D:E6:A4:98:F1:58:C1:1F:E7:CC:62:ED:73:AD:C7 Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53 Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53 Certificate serial: 019AF2AD60B3BDF1F5DC7D48E10EE53EA6D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 08:00:39 +0000 Manifest this update: Sat 06 Dec 2025 08:00:39 +0000 Manifest next update: Sun 07 Dec 2025 08:00:39 +0000 Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=) 2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: MEs4kGg/fNXMJoGfjtODIDXz5OtnGRXGjCDNMZBTu0o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:60:b3:bd:f1:f5:dc:7d:48:e1:0e:e5:3e:a6:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53 Validity Not Before: Dec 6 08:00:39 2025 GMT Not After : Dec 7 08:00:39 2025 GMT Subject: CN=a60975a59c5de6a498f158c11fe7cc62ed73adc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a7:26:d3:e0:01:5e:1e:44:e6:e8:f4:78:dc: e1:9b:ec:02:48:f5:58:64:c7:59:1b:2a:c7:af:cf: 87:a6:93:b1:ca:81:20:ba:67:34:c6:3a:48:13:59: 73:30:b7:0c:aa:df:28:d3:5b:cb:2d:d4:12:4c:c2: 50:79:0e:fd:e3:d0:03:d3:32:98:8b:76:68:08:20: c3:e9:ab:d2:8b:76:9b:f5:67:1e:22:48:d4:91:93: 77:64:21:18:cd:8d:6c:7b:14:09:bf:56:a9:08:26: 22:5c:69:ab:bc:a2:f2:65:4a:b2:e7:c5:5d:59:49: 7c:da:22:1b:ba:3e:e9:05:77:e9:f6:84:bc:8b:e3: a8:c2:ee:b1:61:93:17:67:e2:27:ba:e9:4a:4c:68: d8:13:c6:5a:0c:99:c4:e1:51:93:e8:5b:53:9d:bf: e8:2d:66:06:6e:fc:95:01:77:61:83:20:26:f1:7f: 0c:01:a7:64:58:16:2a:f2:51:00:57:89:a0:81:1e: 0f:f7:b5:02:b9:f7:f8:e8:99:0f:70:1c:d1:8f:7d: 54:9b:06:4f:20:a0:b8:77:12:84:88:ed:d3:d5:93: b8:18:7f:bd:1e:dd:d5:30:74:37:a6:2d:52:12:2e: 49:8e:3a:b7:91:8d:60:e2:09:27:8e:ee:c1:7b:b6: 84:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:09:75:A5:9C:5D:E6:A4:98:F1:58:C1:1F:E7:CC:62:ED:73:AD:C7 X509v3 Authority Key Identifier: keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:7f:42:dc:4c:1a:fd:e6:ac:6c:9a:8e:f4:db:f9:92:99:58: d9:cf:6f:d7:ab:63:4d:0a:07:e2:d4:01:bf:62:f3:37:cb:bb: 70:c3:bb:de:d0:4f:70:77:1c:5b:fa:54:62:83:a8:5c:0c:c0: db:da:65:8a:c0:83:35:d9:d1:f6:c8:b7:2e:4b:20:15:c8:f4: 06:aa:59:1b:47:10:fc:7f:5d:92:9b:bf:a9:6f:74:6c:e5:7f: 90:29:62:8e:4a:60:13:ab:59:44:82:dc:56:16:9a:42:84:49: 6b:bc:33:d9:af:a4:5c:55:72:75:53:d7:7e:58:7c:41:e4:be: c0:fe:bc:0b:7a:e2:93:3d:6a:07:1a:33:aa:f5:77:d9:e7:6b: 93:e1:18:d6:95:24:08:a2:97:b3:54:07:60:49:4d:92:0d:c6: 30:ca:c8:82:b1:39:7b:16:cc:0b:9c:e4:ab:5c:4f:e0:35:c3: c3:f8:39:8a:81:a6:58:e4:b0:63:47:72:80:97:56:5d:f1:24: d4:ca:d5:5b:7d:de:a7:c4:4d:ae:d7:84:b0:da:18:72:a4:50: 8b:d5:fc:1b:a8:65:68:a3:b9:d1:c4:e1:74:a1:87:09:27:d0: bb:0d:4c:78:38:59:0f:6e:1a:43:96:af:93:95:74:1a:74:b7: a7:a6:c7:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrWCzvfH13H1I4Q7lPqbSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3N2FhZDMwN2FkMzMwZWJiOGNmNDRlYzIxMzg5YTE3MDQz NmZkNTMwHhcNMjUxMjA2MDgwMDM5WhcNMjUxMjA3MDgwMDM5WjAzMTEwLwYDVQQD EyhhNjA5NzVhNTljNWRlNmE0OThmMTU4YzExZmU3Y2M2MmVkNzNhZGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqcm0+ABXh5E5uj0eNzhm+wCSPVY ZMdZGyrHr8+HppOxyoEgumc0xjpIE1lzMLcMqt8o01vLLdQSTMJQeQ7949AD0zKY i3ZoCCDD6avSi3ab9WceIkjUkZN3ZCEYzY1sexQJv1apCCYiXGmrvKLyZUqy58Vd WUl82iIbuj7pBXfp9oS8i+Oowu6xYZMXZ+InuulKTGjYE8ZaDJnE4VGT6FtTnb/o LWYGbvyVAXdhgyAm8X8MAadkWBYq8lEAV4mggR4P97UCuff46JkPcBzRj31UmwZP IKC4dxKEiO3T1ZO4GH+9Ht3VMHQ3pi1SEi5Jjjq3kY1g4gknju7Be7aEkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKYJdaWcXeakmPFYwR/nzGLtc63HMB8GA1UdIwQY MBaAFId6rTB60zDruM9E7CE4mhcENv1TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUt NTA4MDk5YzEzM2JiLzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS85YWUyMjEtYzEwMS00OTdmLTkxZmUtNTA4MDk5YzEzM2Ji LzEvaDNxdE1IclRNT3U0ejBUc0lUaWFGd1EyX1ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnX9C3Ewa /easbJqO9Nv5kplY2c9v16tjTQoH4tQBv2LzN8u7cMO73tBPcHccW/pUYoOoXAzA 29plisCDNdnR9si3LksgFcj0BqpZG0cQ/H9dkpu/qW90bOV/kClijkpgE6tZRILc VhaaQoRJa7wz2a+kXFVydVPXflh8QeS+wP68C3rikz1qBxozqvV32edrk+EY1pUk CKKXs1QHYElNkg3GMMrIgrE5exbMC5zkq1xP4DXDw/g5ioGmWOSwY0dygJdWXfEk 1MrVW33ep8RNrteEsNoYcqRQi9X8G6hlaKO50cThdKGHCSfQuw1MeDhZD24aQ5av k5V0GnS3p6bHJg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:41:50 2025 by rpki-client