This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json) Hash identifier: y9biHRO5NWTwSBW1DJG9KqRz7oXsJbolK36Lx86eTf8= Subject key identifier: 89:32:BC:40:0B:91:66:14:2B:92:AD:82:D9:B7:7F:CC:2F:06:47:6B Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Certificate serial: 019AF4D29CF929C588A93D78849F4707BA46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft Manifest number: 1773 Signing time: Sat 06 Dec 2025 18:00:34 +0000 Manifest this update: Sat 06 Dec 2025 18:00:34 +0000 Manifest next update: Sun 07 Dec 2025 18:00:34 +0000 Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: nud8GN4euEBW/5sHO9xSqSbJP65tmx9Hk1phcX92fX4=) 2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=) 3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=) 4: L76bfs9TWWZl8Bl96EFZVlzxzoE.roa (hash: +NZoC7IOVINwP2lksSDULnc4emaNPZnnMnAXhFL6IOo=) 5: Rbk5PVjqlkpGo1SxsQ_tSeJLPbo.roa (hash: BRLtcU6d3bxk4bV/7KHF4XZmiUFqH8jja8emVx8VywY=) 6: biONUDB1iLS86N-lmaqB6_yoBtQ.roa (hash: 5maaRfHknlsWIxQOJIJbyzAegwgxyX3Q4OIbKY62ook=) 7: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=) 8: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=) 9: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:d2:9c:f9:29:c5:88:a9:3d:78:84:9f:47:07:ba:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Validity Not Before: Dec 6 18:00:34 2025 GMT Not After : Dec 7 18:00:34 2025 GMT Subject: CN=8932bc400b9166142b92ad82d9b77fcc2f06476b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:db:c1:d8:df:e7:dc:24:c4:67:a8:0a:ff: b4:76:57:d8:95:ac:ee:a1:be:d1:9e:88:cd:58:a3: 85:35:54:c0:db:b5:08:93:23:40:81:2b:26:63:31: 71:42:55:b1:cc:7f:39:60:fa:41:06:ca:15:99:5b: 2d:2e:4b:43:8f:b8:6d:02:21:b1:66:ee:b8:88:57: 5d:e4:af:5a:ab:4d:93:59:68:6e:5d:1e:e8:8e:4f: b2:44:d0:7f:91:e9:60:ea:03:5f:c7:04:5a:a0:55: 23:0f:c7:64:9d:21:f2:df:aa:16:2c:33:c4:ce:31: 00:3d:41:0d:82:d1:92:ea:6d:e1:5c:3f:11:0f:b4: df:0f:b5:74:50:57:ae:43:c1:15:c3:7e:b7:57:8e: 21:27:65:65:c0:cf:56:60:62:ca:c7:42:09:36:57: eb:a7:01:e2:f5:ad:c4:61:01:9d:cc:31:12:24:79: c9:18:e3:de:12:3c:fc:86:b0:c5:b2:83:99:97:02: a7:62:44:d7:f7:01:64:b3:bf:58:42:cf:f0:68:68: 3d:e0:2b:8d:26:f2:8a:54:bd:58:bf:81:6d:e9:05: f9:a8:d6:3f:36:64:d9:78:fb:7e:d6:a8:78:5b:be: a1:cc:ef:e9:01:81:08:0d:88:9b:09:82:85:a0:08: 03:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:32:BC:40:0B:91:66:14:2B:92:AD:82:D9:B7:7F:CC:2F:06:47:6B X509v3 Authority Key Identifier: keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a0:9a:df:59:7e:0c:71:e8:b8:2b:5b:d1:6a:be:7a:17:f4: dc:61:36:c4:0e:eb:69:8f:2e:b7:5a:af:09:46:96:cf:8b:2d: d2:cb:5b:24:e7:31:21:34:c1:5b:2c:1d:0f:2d:30:fb:c8:37: 0a:95:16:6d:06:e8:67:14:96:8d:4e:e3:ac:c9:fc:15:b7:46: 33:38:a9:58:9c:bc:48:64:ef:9e:ca:97:3c:3b:e7:51:88:f0: 55:57:8f:6d:ce:2f:f3:04:c3:9c:74:a5:f0:c5:02:97:db:d0: e2:ca:81:f0:95:62:07:c4:c1:51:2c:1a:ef:80:27:df:20:43: a5:65:16:7a:49:71:d0:03:7c:99:41:5b:17:a7:18:a6:ff:9a: db:00:81:01:c5:83:52:67:fa:48:df:07:10:26:ee:e9:07:7e: 48:92:70:df:6e:d0:b4:d9:9c:9d:18:ed:27:b5:b3:0e:1b:e4: 6e:28:ce:bd:53:e3:0e:35:aa:ff:e8:e0:48:95:58:a6:fd:e4: 7a:e0:dd:de:5f:88:2d:ab:18:bb:b7:79:41:29:3e:e3:d3:4f: dc:18:55:a0:3d:2e:5c:41:28:cf:a1:b0:14:90:0b:a3:cc:ec: b5:63:af:0f:b8:b6:d8:f3:d7:b0:a9:b5:32:a4:1f:b3:e6:9c: d0:c0:d2:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr00pz5KcWIqT14hJ9HB7pGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4 MTNjNWYwHhcNMjUxMjA2MTgwMDM0WhcNMjUxMjA3MTgwMDM0WjAzMTEwLwYDVQQD Eyg4OTMyYmM0MDBiOTE2NjE0MmI5MmFkODJkOWI3N2ZjYzJmMDY0NzZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymPbwdjf59wkxGeoCv+0dlfYlazu ob7RnojNWKOFNVTA27UIkyNAgSsmYzFxQlWxzH85YPpBBsoVmVstLktDj7htAiGx Zu64iFdd5K9aq02TWWhuXR7ojk+yRNB/kelg6gNfxwRaoFUjD8dknSHy36oWLDPE zjEAPUENgtGS6m3hXD8RD7TfD7V0UFeuQ8EVw363V44hJ2VlwM9WYGLKx0IJNlfr pwHi9a3EYQGdzDESJHnJGOPeEjz8hrDFsoOZlwKnYkTX9wFks79YQs/waGg94CuN JvKKVL1Yv4Ft6QX5qNY/NmTZePt+1qh4W76hzO/pAYEIDYibCYKFoAgDVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIkyvEALkWYUK5Ktgtm3f8wvBkdrMB8GA1UdIwQY MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH6Ca31l+ DHHouCtb0Wq+ehf03GE2xA7raY8ut1qvCUaWz4st0stbJOcxITTBWywdDy0w+8g3 CpUWbQboZxSWjU7jrMn8FbdGMzipWJy8SGTvnsqXPDvnUYjwVVePbc4v8wTDnHSl 8MUCl9vQ4sqB8JViB8TBUSwa74An3yBDpWUWeklx0AN8mUFbF6cYpv+a2wCBAcWD Umf6SN8HECbu6Qd+SJJw327QtNmcnRjtJ7WzDhvkbijOvVPjDjWq/+jgSJVYpv3k euDd3l+ILasYu7d5QSk+49NP3BhVoD0uXEEoz6GwFJALo8zstWOvD7i22PPXsKm1 MqQfs+ac0MDSTA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:06:57 2025 by rpki-client