This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft File: 3iuimqARP6_TcNhl-0REmHtHMIo.mft (raw, json) Hash identifier: KI/JPpN4w/3EJIsrWyl7GSh9fpFj2dgi+LUo9yG4jeE= Subject key identifier: 97:F1:FB:BE:24:F5:17:52:BA:92:FD:5D:FE:40:78:F4:0A:89:DB:91 Authority key identifier: DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A Certificate issuer: /CN=de2ba29aa0113fafd370d865fb4444987b47308a Certificate serial: 019AF2400B778C50BDCB7E6757BD33531D95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft Manifest number: 0BCD Signing time: Sat 06 Dec 2025 06:01:14 +0000 Manifest this update: Sat 06 Dec 2025 06:01:14 +0000 Manifest next update: Sun 07 Dec 2025 06:01:14 +0000 Files and hashes: 1: 3iuimqARP6_TcNhl-0REmHtHMIo.crl (hash: fZmfUiUpW0fpXzXMWbtoG6o+pIeykyLVR3SsfjnDrJs=) 2: PMD1GlDLGk7gMbwF-9_w1YlsV4M.roa (hash: yxn0bsBf+yoGp2ebzQpXlOvhqAaQoPdbhmTGHyH8IaM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:0b:77:8c:50:bd:cb:7e:67:57:bd:33:53:1d:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de2ba29aa0113fafd370d865fb4444987b47308a Validity Not Before: Dec 6 06:01:14 2025 GMT Not After : Dec 7 06:01:14 2025 GMT Subject: CN=97f1fbbe24f51752ba92fd5dfe4078f40a89db91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:7a:a1:b8:05:52:b6:c3:45:07:e9:90:e4: 59:9a:e2:6a:d6:09:03:b1:49:ca:d1:5f:cb:5a:76: ae:35:df:62:b0:f7:c5:16:56:9a:11:82:1a:f4:c9: 6b:f9:83:06:22:e8:31:ca:82:74:11:95:aa:ae:4b: cc:02:59:81:25:bb:dd:a0:58:9d:95:ab:7e:9d:04: 65:14:5e:b5:8a:3f:35:eb:20:96:cf:5a:1d:40:65: 60:32:8d:4b:85:3e:1e:7c:48:3e:06:6c:47:28:40: 74:60:45:c5:59:1f:9b:ca:9d:f2:b0:17:91:28:14: 54:8b:73:f9:0c:3c:f9:b4:24:60:84:c5:be:2f:2e: b4:ed:f1:85:34:67:c6:01:b4:6b:17:c0:5d:a0:47: a6:eb:48:b8:68:b5:19:d5:5f:83:3a:ca:d3:e5:da: b1:77:7a:59:39:45:bf:60:1f:04:41:25:c9:27:8d: f5:0f:0c:2c:d8:a4:73:8e:91:31:e4:03:71:2f:6f: 64:d1:77:2d:38:54:25:38:73:3e:6c:67:c6:1b:3c: 63:27:5c:1e:27:5a:f7:3c:cd:b6:a8:b0:62:ce:45: af:d1:5e:60:de:bf:88:d5:44:bf:b8:e0:7b:87:3e: 82:b0:50:5b:98:d5:6d:6b:9f:75:40:bf:9c:b2:89: e7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F1:FB:BE:24:F5:17:52:BA:92:FD:5D:FE:40:78:F4:0A:89:DB:91 X509v3 Authority Key Identifier: keyid:DE:2B:A2:9A:A0:11:3F:AF:D3:70:D8:65:FB:44:44:98:7B:47:30:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3iuimqARP6_TcNhl-0REmHtHMIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97004b-b671-4f3d-8d50-d1a4a45fafbc/1/3iuimqARP6_TcNhl-0REmHtHMIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:42:7f:41:9d:e6:c5:2d:98:57:e6:04:04:22:12:da:04:b8: ab:19:bc:99:85:f6:7b:6e:29:64:e1:7e:15:8b:45:4e:10:46: 9f:ed:e0:54:40:41:e9:5a:87:36:77:92:3c:bd:ff:e4:cb:3a: 95:18:5f:87:f1:73:78:b2:20:13:52:26:ab:15:28:f6:79:24: 50:9f:81:27:71:c1:2b:3d:eb:9f:4f:2e:f2:8b:15:e6:66:41: 67:50:e2:0d:e2:19:da:cf:86:67:d0:ee:21:4e:a5:76:29:ed: e1:a6:44:ba:1a:57:68:f6:80:eb:72:e8:dc:4e:b5:bf:ae:40: 09:ea:9b:ec:d5:96:7b:13:b0:71:f0:ad:3e:49:f0:08:6b:b8: d3:51:93:94:7b:99:ba:59:ef:0d:d0:ee:e6:cc:01:7b:b9:3c: b6:4e:0f:b3:29:8e:2e:52:6b:e8:a7:39:39:b0:98:fe:84:0f: 2d:94:f5:42:52:68:9a:a8:f7:69:19:c7:31:01:ea:b2:cb:3f: 75:bc:a8:63:e8:d6:51:50:3d:91:62:ad:20:ae:55:1c:75:57: dc:80:cc:19:80:ea:a8:dd:4a:29:ca:90:06:60:91:26:56:69: 2b:7f:49:f4:e1:7c:a3:2e:ba:9b:69:17:32:1c:a0:0f:8e:49: 7f:84:da:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQAt3jFC9y35nV70zUx2VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMmJhMjlhYTAxMTNmYWZkMzcwZDg2NWZiNDQ0NDk4N2I0 NzMwOGEwHhcNMjUxMjA2MDYwMTE0WhcNMjUxMjA3MDYwMTE0WjAzMTEwLwYDVQQD Eyg5N2YxZmJiZTI0ZjUxNzUyYmE5MmZkNWRmZTQwNzhmNDBhODlkYjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEJ6obgFUrbDRQfpkORZmuJq1gkD sUnK0V/LWnauNd9isPfFFlaaEYIa9Mlr+YMGIugxyoJ0EZWqrkvMAlmBJbvdoFid lat+nQRlFF61ij816yCWz1odQGVgMo1LhT4efEg+BmxHKEB0YEXFWR+byp3ysBeR KBRUi3P5DDz5tCRghMW+Ly607fGFNGfGAbRrF8BdoEem60i4aLUZ1V+DOsrT5dqx d3pZOUW/YB8EQSXJJ431Dwws2KRzjpEx5ANxL29k0XctOFQlOHM+bGfGGzxjJ1we J1r3PM22qLBizkWv0V5g3r+I1US/uOB7hz6CsFBbmNVta591QL+csonnNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJfx+74k9RdSupL9Xf5AePQKiduRMB8GA1UdIwQY MBaAFN4ropqgET+v03DYZftERJh7RzCKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAt ZDFhNGE0NWZhZmJjLzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS85NzAwNGItYjY3MS00ZjNkLThkNTAtZDFhNGE0NWZhZmJj LzEvM2l1aW1xQVJQNl9UY05obC0wUkVtSHRITUlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAikJ/QZ3m xS2YV+YEBCIS2gS4qxm8mYX2e24pZOF+FYtFThBGn+3gVEBB6VqHNneSPL3/5Ms6 lRhfh/FzeLIgE1ImqxUo9nkkUJ+BJ3HBKz3rn08u8osV5mZBZ1DiDeIZ2s+GZ9Du IU6ldint4aZEuhpXaPaA63Lo3E61v65ACeqb7NWWexOwcfCtPknwCGu401GTlHuZ ulnvDdDu5swBe7k8tk4PsymOLlJr6Kc5ObCY/oQPLZT1QlJomqj3aRnHMQHqsss/ dbyoY+jWUVA9kWKtIK5VHHVX3IDMGYDqqN1KKcqQBmCRJlZpK39J9OF8oy66m2kX MhygD45Jf4Tawg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:32:05 2025 by rpki-client