This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: RpPHRgPCMy1O3FV5TBf6kmtl0OdXHtvOhGTJOVoiC/k= Subject key identifier: 21:BB:E4:F8:5F:4F:CC:8A:78:FF:27:C1:B2:E6:89:E0:E0:7D:2C:ED Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 019AF209BA111316D3CBDB9C92EAF05C192F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 16D4 Signing time: Sat 06 Dec 2025 05:01:54 +0000 Manifest this update: Sat 06 Dec 2025 05:01:54 +0000 Manifest next update: Sun 07 Dec 2025 05:01:54 +0000 Files and hashes: 1: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: QpVM+aGkSYISDLeBixChOVyKq+57OGKOW6N2otjhRMo=) 2: 41fVJkrPbHKQA079D4QVuoSoMHA.roa (hash: sr+TybZqUtIImaDgTqztSGD1XE6oloq4BZ2M4Xpg+u0=) 3: 4pf6JhZ2ZrbzDs3KIhxGjElBlaw.roa (hash: vXT1uBYUu9e7P+u/IiXkrVdl2Zw3UbzSeW2UWFK34Jw=) 4: 6klSWkjjUTbGuPtDfN8cALab9cs.roa (hash: sdgQjkXScGhQKnR4al8+skMwfxtoqagBTslhZkfSKNY=) 5: B3w7E9gvZEzFwMrG99Xq-T1MEBw.roa (hash: X2c/+qNKKXp5+FBng9aKxlFFZbDBWHiqkfhHgQbP6bg=) 6: C2H1BSmYMIrZggVB3V-MZ8CR5SY.roa (hash: MAmDjDLmFQyW+O4vZbG4q4tWTwrvQlayeoQlXr+Fu/8=) 7: DJ2HKm_1c1O48zC-cc12FURV1-w.roa (hash: odPYR1sTJx4nskAcxBKfAydZplTxWpbfAnjmQhPzJX8=) 8: GmlPqmYgpg61oCrtTG9RzmgTZRQ.roa (hash: lOFhsoN8S3GIIvzatAuS7mkyT16CCVPA77MjKa8aWWc=) 9: RZCNuFYkMVfet6khSeCWtqT4r3s.roa (hash: bz5sfARWaL0oWhzQTAMOexVtHrjfBeAF+vBi8eYpl/U=) 10: Sn1YHf-JTelJa8AbFEu9eCrJc-Y.roa (hash: 4RQ4/nSSdbUjaSMtOe+F2ienAydzSYTXwrbRmuUcEJY=) 11: UE3TFsD19f6wQr0gTHDaiwhGdqA.roa (hash: h9a9K3MMF0WQfDnzSvLb5P+n54cp7dIKew88pGDYldk=) 12: VicyF_0e_bvvcn0fKM8q40zu1n8.roa (hash: C5AQCG/2PEYP519Z6IOs4YDYOnLl0s41qulpvbJvJ4g=) 13: _HxOSGDLp42EFmYvwzkWMgsUDRc.roa (hash: ld3Ed4rdMoSUbT+R2+5BJt8zZUTSFFBqMJ22iFdBG+s=) 14: cHLxjuzlgoGDINIVaFsru4PZ9BE.roa (hash: o3eUI2kqgbIKISwJ6D+XZ6uUN50wRiiahX5yY1sTPn4=) 15: lknEfiAWsTgVxunxpJ4Cim6vi_Y.roa (hash: 9nT6QBaPn6YGSLcfszLUc2cPb60rXG8wS9MlLTeVBhw=) 16: mdB3D_zcc3ZMQewiv3J0UZ_sUlo.roa (hash: NsB59ITpkzoeK9pRuPozIMWrvt6Lae+60ChrUSCRg50=) 17: mjTSWLEuvIRJ-mDUVhSblHWE7N4.roa (hash: rmzWSKN3Yb/xA6p/q8UxEXQjDhun2rkoNnE76zOjZHo=) 18: pxtXnWk-oYZ7Qby89ddSCgu91ts.roa (hash: RB8UdezmP543bft1AFoJ1CEu6eopqGc7lCF9jSa1eTc=) 19: q74_W6xdG6goIDi1c08_8gJ6uTE.roa (hash: pxdR0KPAM6OXX14ayHaIWzZB+fjREFkJhs6uGstYGhI=) 20: r3Ck7fpoOKp57Mk1jJgw8XHWAxg.roa (hash: jDsvxvKf5uFW/4bW6b3NOwjRJy48sDgwtQTJJofZqGM=) 21: v99_kaWjoTKnpnOcBogb8Emjk4M.roa (hash: unshnZnS3tg5XPSrGj9Iy+gxnhESQoD/3z5Y8oIxogo=) 22: y38_fk_dl6De5uovg7WKuAzPolA.roa (hash: PsHTMj/SkJczqFC8znjT596YhybynG/bm1yXYsS6Cxs=) 23: z6d9djVL2RnXuevi6Ot8E8e62tc.roa (hash: o9Kh9fFp+5NbfQXFw6W0ABs1khVR+g751jXSLlxLU4c=) 24: zUeLco_9U8ifNR5PMJI3zpijW74.roa (hash: 3lduL1beP27BPGmbMBwONs6g5YeSTXx0lXyH1JulpN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:ba:11:13:16:d3:cb:db:9c:92:ea:f0:5c:19:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: Dec 6 05:01:54 2025 GMT Not After : Dec 7 05:01:54 2025 GMT Subject: CN=21bbe4f85f4fcc8a78ff27c1b2e689e0e07d2ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:cb:42:0d:22:0f:e8:a3:1f:ac:bf:60:a3: 75:25:00:6c:5b:13:cd:2a:b7:d0:f1:8a:02:9a:3a: a7:35:68:b8:fe:c2:53:6a:d8:02:3d:d6:80:89:73: 97:5b:81:d8:3f:fb:75:fa:79:1e:a4:08:3f:31:55: 89:ff:de:28:36:5a:8d:98:cf:d0:46:e6:5d:5a:f3: 8f:ce:60:37:33:33:16:4e:89:8b:f9:8d:47:88:e8: 11:82:78:54:16:0d:1e:4e:3f:77:27:df:5f:ae:c0: 20:b4:37:12:7f:b1:ab:84:f1:dc:b3:ad:6c:3e:56: ee:64:1d:e1:19:d3:18:27:d0:f2:67:46:d2:07:e5: f5:a4:da:4f:e5:1d:fa:39:d0:6a:bc:e0:98:b3:1a: 78:92:f2:90:48:07:34:e7:7e:20:6d:e0:2c:1f:2d: b6:db:a1:97:b4:a5:23:30:97:46:bc:56:c6:f4:9a: 60:85:b9:b1:62:11:18:61:da:8d:3d:7b:6c:37:88: e2:eb:ce:98:46:47:c9:d0:53:fe:3c:a0:ad:a9:b1: 93:9e:f0:61:16:29:64:ac:51:d3:ca:6d:d4:0f:8f: c8:a2:6e:55:04:82:cb:0b:86:f0:e3:56:c5:ce:a2: 9a:c4:9c:23:0a:04:03:e9:85:42:2e:af:96:f3:35: 4f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BB:E4:F8:5F:4F:CC:8A:78:FF:27:C1:B2:E6:89:E0:E0:7D:2C:ED X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:07:4b:dd:af:c7:d1:fe:0e:31:7e:30:31:9e:c2:55:c1:5a: 91:d8:2f:e8:46:34:bd:e2:86:5f:36:1b:24:c6:10:96:95:fa: 16:6a:36:90:4b:75:d8:89:31:9f:69:dc:af:2c:cf:cd:2c:45: 3f:27:ca:fa:87:d0:7d:af:2c:83:34:42:94:d9:19:55:f4:fa: 14:00:19:0a:36:c4:22:dd:55:1e:d8:bd:7e:8b:ba:fd:fd:03: cb:cb:67:a3:29:7d:b2:bb:fe:fc:bf:68:ed:a3:2f:98:56:ff: 8d:e3:81:51:4b:7d:47:cb:ac:94:8a:dd:82:6a:12:7f:10:bb: 5d:12:d3:37:83:4a:36:61:b7:2f:75:48:32:d7:4d:2e:0d:20: 17:62:be:bd:de:1d:69:da:82:c5:2e:ea:94:57:ea:ce:cd:a2: 73:bc:2f:15:b6:2e:1d:52:64:d8:58:c3:d7:2b:a9:3f:19:96: d8:c4:d9:16:36:00:a9:fe:0a:44:7f:94:0a:5f:07:df:8f:8a: aa:ce:b9:c2:f8:fb:26:61:9f:a5:8c:c7:6a:81:9f:6d:a8:17: 2d:16:ce:98:33:42:06:f1:43:89:10:81:5d:0b:27:47:a9:05: 0c:0e:7e:ca:14:25:cb:11:b1:e2:c8:cd:37:cb:02:af:d7:25: ba:4d:93:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCboRExbTy9uckurwXBkvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjUxMjA2MDUwMTU0WhcNMjUxMjA3MDUwMTU0WjAzMTEwLwYDVQQD EygyMWJiZTRmODVmNGZjYzhhNzhmZjI3YzFiMmU2ODllMGUwN2QyY2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+HLQg0iD+ijH6y/YKN1JQBsWxPN KrfQ8YoCmjqnNWi4/sJTatgCPdaAiXOXW4HYP/t1+nkepAg/MVWJ/94oNlqNmM/Q RuZdWvOPzmA3MzMWTomL+Y1HiOgRgnhUFg0eTj93J99frsAgtDcSf7GrhPHcs61s PlbuZB3hGdMYJ9DyZ0bSB+X1pNpP5R36OdBqvOCYsxp4kvKQSAc0534gbeAsHy22 26GXtKUjMJdGvFbG9JpghbmxYhEYYdqNPXtsN4ji686YRkfJ0FP+PKCtqbGTnvBh FilkrFHTym3UD4/Iom5VBILLC4bw41bFzqKaxJwjCgQD6YVCLq+W8zVPLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCG75PhfT8yKeP8nwbLmieDgfSztMB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKAdL3a/H 0f4OMX4wMZ7CVcFakdgv6EY0veKGXzYbJMYQlpX6Fmo2kEt12Ikxn2ncryzPzSxF PyfK+ofQfa8sgzRClNkZVfT6FAAZCjbEIt1VHti9fou6/f0Dy8tnoyl9srv+/L9o 7aMvmFb/jeOBUUt9R8uslIrdgmoSfxC7XRLTN4NKNmG3L3VIMtdNLg0gF2K+vd4d adqCxS7qlFfqzs2ic7wvFbYuHVJk2FjD1yupPxmW2MTZFjYAqf4KRH+UCl8H34+K qs65wvj7JmGfpYzHaoGfbagXLRbOmDNCBvFDiRCBXQsnR6kFDA5+yhQlyxGx4sjN N8sCr9cluk2T6g== -----END CERTIFICATE-----Generated at Sat Dec 6 08:14:26 2025 by rpki-client