This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json) Hash identifier: NZLvJR8fdiYFFJwihD2/+i5VnHx9cChgnwusgEQAeBQ= Subject key identifier: AA:C8:B8:E2:11:AD:C2:79:98:BE:76:BF:52:8A:23:39:F2:99:E6:1A Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50 Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150 Certificate serial: 019AF163DB53309E0B86548F7F4829FD7972 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 02:00:44 +0000 Manifest this update: Sat 06 Dec 2025 02:00:44 +0000 Manifest next update: Sun 07 Dec 2025 02:00:44 +0000 Files and hashes: 1: 8SQTxy_p8cY9en9UR93vjFnnH74.roa (hash: LPCNfHY24fbVR2x4GxfhYD0c8Fxi97g9FBcWFfU2h/o=) 2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: zIoDMMon5oBRPEmFmcQ37YyZNnxfaX8gzrUYEy6v0xE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:db:53:30:9e:0b:86:54:8f:7f:48:29:fd:79:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150 Validity Not Before: Dec 6 02:00:44 2025 GMT Not After : Dec 7 02:00:44 2025 GMT Subject: CN=aac8b8e211adc27998be76bf528a2339f299e61a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ea:50:82:29:e2:a2:c2:64:b7:1c:c5:c4:86: f2:ca:f3:ce:ed:88:35:5a:4e:eb:2b:b5:5b:4e:71: f6:2b:61:d5:61:39:31:c2:5a:1d:4f:dc:16:79:a0: 3e:ba:a8:ad:5b:2e:98:ea:28:7c:75:82:b1:d0:96: 3d:35:1e:dc:9d:0e:79:df:36:6f:14:cf:2a:9a:0c: a5:c2:5f:39:54:85:9e:25:99:cd:bc:46:ec:00:74: cc:a5:dd:03:1c:1b:4a:a5:72:01:5c:5a:4c:e9:2f: 75:3d:13:75:41:46:67:a8:36:7a:75:a3:75:ab:1c: 6d:b2:25:5c:d3:08:94:c9:5a:46:a7:e7:b7:7d:88: 06:4d:d1:9c:bb:5f:a1:70:56:8b:89:1a:7d:74:12: 02:db:09:e9:c4:ec:6e:bc:e3:36:dd:d2:6e:71:46: 46:cf:0c:82:f2:c6:38:e3:1c:74:4b:dd:f6:af:45: 8f:b1:72:63:5e:b4:14:d5:0e:1d:78:fa:59:12:8a: f0:8d:c2:72:46:f8:ef:fa:25:84:af:04:36:d6:b3: 60:2c:9b:1a:41:f5:5b:99:df:fd:6c:21:0f:3d:1f: ba:f8:40:ee:85:3f:2d:18:a6:7d:04:e7:55:33:61: f5:ab:ef:c3:40:b1:b1:61:99:c4:6c:2c:45:ab:1c: c4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C8:B8:E2:11:AD:C2:79:98:BE:76:BF:52:8A:23:39:F2:99:E6:1A X509v3 Authority Key Identifier: keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:b3:66:30:a2:d4:15:ab:57:ed:e9:c4:61:c1:ab:87:42:99: 94:65:91:22:f0:13:33:fa:84:6b:30:ba:f8:45:12:f5:a9:85: da:9d:fb:7f:c1:17:69:96:0c:c7:e1:bf:1e:7f:fc:1e:ce:c1: 6b:35:69:a7:c2:f6:87:2c:75:37:1c:5c:a4:46:e2:d9:28:ea: 2b:25:08:28:dc:00:19:25:7e:52:2d:0e:3c:fe:0f:dc:06:24: 94:a5:53:2c:0e:55:93:3a:c5:5d:b5:53:29:b1:f8:e9:10:d1: c0:45:ea:6f:95:2f:a7:7e:82:23:9d:d3:f4:aa:ce:8b:84:0f: 96:95:f5:71:d0:ff:1b:b6:ef:bd:91:7f:fd:6c:fe:be:9f:93: 75:53:d9:da:b4:ff:44:9b:1e:7f:ec:4f:85:ed:0c:61:ef:06: 6b:44:1c:c7:51:ac:22:72:bb:3d:d7:0c:bb:6f:99:d4:fd:a9: ad:0b:13:52:d8:21:ec:19:e8:e0:3c:33:2d:70:ff:9d:1b:9d: 31:75:60:ee:7d:2c:37:9b:ff:a7:80:0d:21:d2:fe:1a:16:75: 65:1d:fe:cb:b5:10:0d:24:5e:00:7e:9f:9e:99:0c:c0:ad:71: ff:9b:fd:13:c8:24:3b:f9:5a:22:5d:17:94:38:ac:55:6d:82: 4c:1d:51:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY9tTMJ4LhlSPf0gp/XlyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmNzhlYTQ2Y2MyMWQ0NWVkNjEyNjhkNGE5ZjU2NzMyYzg1 ZTIxNTAwHhcNMjUxMjA2MDIwMDQ0WhcNMjUxMjA3MDIwMDQ0WjAzMTEwLwYDVQQD EyhhYWM4YjhlMjExYWRjMjc5OThiZTc2YmY1MjhhMjMzOWYyOTllNjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+pQginiosJktxzFxIbyyvPO7Yg1 Wk7rK7VbTnH2K2HVYTkxwlodT9wWeaA+uqitWy6Y6ih8dYKx0JY9NR7cnQ553zZv FM8qmgylwl85VIWeJZnNvEbsAHTMpd0DHBtKpXIBXFpM6S91PRN1QUZnqDZ6daN1 qxxtsiVc0wiUyVpGp+e3fYgGTdGcu1+hcFaLiRp9dBIC2wnpxOxuvOM23dJucUZG zwyC8sY44xx0S932r0WPsXJjXrQU1Q4dePpZEorwjcJyRvjv+iWErwQ21rNgLJsa QfVbmd/9bCEPPR+6+EDuhT8tGKZ9BOdVM2H1q+/DQLGxYZnEbCxFqxzEMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKrIuOIRrcJ5mL52v1KKIznymeYaMB8GA1UdIwQY MBaAFA946kbMIdRe1hJo1Kn1ZzLIXiFQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMt MDMyYjNiNjE0ZGQ4LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8wMjE5YzEtYTU1MS00YjkxLTljYTMtMDMyYjNiNjE0ZGQ4 LzEvRDNqcVJzd2gxRjdXRW1qVXFmVm5Nc2hlSVZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaLNmMKLU FatX7enEYcGrh0KZlGWRIvATM/qEazC6+EUS9amF2p37f8EXaZYMx+G/Hn/8Hs7B azVpp8L2hyx1NxxcpEbi2SjqKyUIKNwAGSV+Ui0OPP4P3AYklKVTLA5VkzrFXbVT KbH46RDRwEXqb5Uvp36CI53T9KrOi4QPlpX1cdD/G7bvvZF//Wz+vp+TdVPZ2rT/ RJsef+xPhe0MYe8Ga0Qcx1GsInK7PdcMu2+Z1P2prQsTUtgh7Bno4DwzLXD/nRud MXVg7n0sN5v/p4ANIdL+GhZ1ZR3+y7UQDSReAH6fnpkMwK1x/5v9E8gkO/laIl0X lDisVW2CTB1R2w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:15:29 2025 by rpki-client