This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft File: 3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft (raw, json) Hash identifier: /dPZDVP8WLZgFLzEL7I2wL4R67bnM+Wisb3+F6SxwfY= Subject key identifier: 7E:BB:04:CC:8C:B5:16:F4:A7:4E:A6:CC:F6:7F:94:8B:7F:AE:13:BB Authority key identifier: DE:11:CC:6D:F1:33:66:FC:59:5A:6E:72:ED:03:C5:38:00:79:2B:4B Certificate issuer: /CN=de11cc6df13366fc595a6e72ed03c53800792b4b Certificate serial: 019B23D0CB6FE331888DEEFA28EA22872B2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft Manifest number: 0EDE Signing time: Mon 15 Dec 2025 21:00:44 +0000 Manifest this update: Mon 15 Dec 2025 21:00:44 +0000 Manifest next update: Tue 16 Dec 2025 21:00:44 +0000 Files and hashes: 1: 3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl (hash: moy1G4pqwOoGoQvCZ0F8obL8OcgMFal5wKxiU3apXQY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 21:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d0:cb:6f:e3:31:88:8d:ee:fa:28:ea:22:87:2b:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de11cc6df13366fc595a6e72ed03c53800792b4b Validity Not Before: Dec 15 21:00:44 2025 GMT Not After : Dec 16 21:00:44 2025 GMT Subject: CN=7ebb04cc8cb516f4a74ea6ccf67f948b7fae13bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:13:7f:1e:2a:54:68:c2:57:a7:9b:73:71:db: 08:c4:4b:12:51:f4:2d:86:67:da:9d:07:c9:c4:58: 8e:14:34:a0:60:6e:a5:84:34:7e:0a:d9:41:a7:c0: 5a:13:d1:a8:87:8d:3f:1b:84:9b:25:57:4c:6d:3a: 5a:25:e5:26:12:f6:e9:1e:34:2c:0b:53:ad:6b:f0: cf:ec:75:ae:9e:7b:e2:39:ca:01:3b:b1:3d:45:1f: 3c:d4:95:3e:80:5e:27:a2:16:3d:01:6b:e0:8d:0c: 28:35:fe:5d:d8:05:3b:78:ce:19:5f:0f:a9:9b:f5: f4:05:f2:4c:92:64:12:f2:7b:06:11:90:e5:28:7c: de:fb:2b:49:76:e0:ae:80:1b:a0:58:63:b1:a4:6d: cc:b7:d4:0b:48:2a:93:cd:ed:91:53:78:b0:d0:9f: 0c:a6:93:62:c3:45:94:8c:f4:0f:5a:ea:93:2c:19: 81:92:eb:f0:e6:25:9a:91:e1:bc:3e:bb:17:64:f5: 93:61:25:ee:2f:7c:53:ce:91:d3:4c:f1:4b:bb:27: 6b:78:44:5b:63:0d:5d:99:60:29:53:5e:4a:69:f1: 4a:73:18:cd:b7:ac:25:5a:08:15:c8:f3:75:8d:c4: 12:f9:31:31:6d:70:31:a7:8a:9a:60:0d:e8:e9:07: ff:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BB:04:CC:8C:B5:16:F4:A7:4E:A6:CC:F6:7F:94:8B:7F:AE:13:BB X509v3 Authority Key Identifier: keyid:DE:11:CC:6D:F1:33:66:FC:59:5A:6E:72:ED:03:C5:38:00:79:2B:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:e6:56:80:bd:70:b1:7c:d2:f1:5c:7b:58:cd:f3:6f:87:c1: 2e:35:5a:56:83:7d:6a:76:29:13:0b:7b:f9:d5:b3:7c:d1:e8: bf:0d:93:88:74:62:73:b5:0f:b2:8a:7b:14:12:21:f2:bc:37: 9d:a5:79:54:5e:bf:ba:75:9a:22:ed:fa:8a:5f:37:fb:e1:cb: 02:b9:4c:a9:d8:f0:d2:9e:39:f0:21:4a:e3:5b:97:77:41:98: 3d:8e:83:be:04:ff:20:0c:4b:d0:b1:92:b5:dc:a9:13:8a:0b: af:ae:73:cf:6e:24:ed:6e:28:92:3e:1e:1b:a2:68:82:4a:3f: 12:ab:b4:96:6a:2d:b2:f0:35:a4:3c:08:c9:88:aa:fc:51:da: 73:81:76:c9:13:3e:3d:5c:37:8b:2b:bf:9e:1c:47:78:34:e7: eb:a8:c1:43:d6:47:a3:7f:79:93:a4:f4:96:a5:f0:6e:70:53: 47:7c:9a:10:78:05:49:1b:51:d7:3f:3c:89:33:26:61:13:1e: 6d:a3:c1:65:77:c2:eb:aa:66:bd:31:f2:d9:1f:c3:30:6f:ba: bd:80:13:d1:e4:fa:98:ef:8d:2f:ad:51:ce:a7:cc:7f:30:88: d5:83:67:94:a2:f5:6a:1a:2d:7e:44:62:ac:e5:20:bc:6d:b5: 7f:f8:56:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0Mtv4zGIje76KOoihystMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMTFjYzZkZjEzMzY2ZmM1OTVhNmU3MmVkMDNjNTM4MDA3 OTJiNGIwHhcNMjUxMjE1MjEwMDQ0WhcNMjUxMjE2MjEwMDQ0WjAzMTEwLwYDVQQD Eyg3ZWJiMDRjYzhjYjUxNmY0YTc0ZWE2Y2NmNjdmOTQ4YjdmYWUxM2JiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9BN/HipUaMJXp5tzcdsIxEsSUfQt hmfanQfJxFiOFDSgYG6lhDR+CtlBp8BaE9Goh40/G4SbJVdMbTpaJeUmEvbpHjQs C1Ota/DP7HWunnviOcoBO7E9RR881JU+gF4nohY9AWvgjQwoNf5d2AU7eM4ZXw+p m/X0BfJMkmQS8nsGEZDlKHze+ytJduCugBugWGOxpG3Mt9QLSCqTze2RU3iw0J8M ppNiw0WUjPQPWuqTLBmBkuvw5iWakeG8PrsXZPWTYSXuL3xTzpHTTPFLuydreERb Yw1dmWApU15KafFKcxjNt6wlWggVyPN1jcQS+TExbXAxp4qaYA3o6Qf/eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH67BMyMtRb0p06mzPZ/lIt/rhO7MB8GA1UdIwQY MBaAFN4RzG3xM2b8WVpucu0DxTgAeStLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2hITWJmRXpadnhaV201eTdRUEZPQUI1SzBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9jNjQ5NGQtZmM2Ni00NTNjLWJjODMt ZTZjNGRmNDZmMDRkLzEvM2hITWJmRXpadnhaV201eTdRUEZPQUI1SzBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9jNjQ5NGQtZmM2Ni00NTNjLWJjODMtZTZjNGRmNDZmMDRk LzEvM2hITWJmRXpadnhaV201eTdRUEZPQUI1SzBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkuZWgL1w sXzS8Vx7WM3zb4fBLjVaVoN9anYpEwt7+dWzfNHovw2TiHRic7UPsop7FBIh8rw3 naV5VF6/unWaIu36il83++HLArlMqdjw0p458CFK41uXd0GYPY6DvgT/IAxL0LGS tdypE4oLr65zz24k7W4okj4eG6Jogko/Equ0lmotsvA1pDwIyYiq/FHac4F2yRM+ PVw3iyu/nhxHeDTn66jBQ9ZHo395k6T0lqXwbnBTR3yaEHgFSRtR1z88iTMmYRMe baPBZXfC66pmvTHy2R/DMG+6vYAT0eT6mO+NL61RzqfMfzCI1YNnlKL1ahotfkRi rOUgvG21f/hWNg== -----END CERTIFICATE-----Generated at Tue Dec 16 04:57:49 2025 by rpki-client