This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft File: 3AWXDmUMKq8atqOjOoNzJGahUS4.mft (raw, json) Hash identifier: /wvNGsTvH9+TPEWfxjE/PyoxovPsqzcOnko6MVUI2Tg= Subject key identifier: CB:CA:54:74:F7:6F:41:1D:C1:EB:7B:9B:0C:84:AE:E0:27:91:90:68 Authority key identifier: DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E Certificate issuer: /CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e Certificate serial: 019AF23FAC8FB458AEE1E3F2D2AD865701E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 06:00:50 +0000 Manifest this update: Sat 06 Dec 2025 06:00:50 +0000 Manifest next update: Sun 07 Dec 2025 06:00:50 +0000 Files and hashes: 1: 3AWXDmUMKq8atqOjOoNzJGahUS4.crl (hash: F329CD1ijpxCmk70igmh5Wk1bbBNj66yH7MN6om3Qrc=) 2: FzwFRP4-A3VF1cOjtYqnBZUlK8Y.roa (hash: arVJNSKTx0owboHk87Pz6q3TsmBB0DVqu8a1mnGjuAI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:ac:8f:b4:58:ae:e1:e3:f2:d2:ad:86:57:01:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc05970e650c2aaf1ab6a3a33a83732466a1512e Validity Not Before: Dec 6 06:00:50 2025 GMT Not After : Dec 7 06:00:50 2025 GMT Subject: CN=cbca5474f76f411dc1eb7b9b0c84aee027919068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d0:2e:3a:b7:77:58:62:4d:1e:e8:1b:8f:98: 1a:ca:8e:24:5f:46:4a:51:eb:03:48:9c:d8:87:2e: 9d:e3:2b:03:28:75:86:68:22:65:65:34:c9:41:24: df:c7:4b:ab:2a:e2:38:d0:ba:52:37:b1:93:01:63: e5:4e:29:f2:4f:f3:bc:ad:8e:2f:af:ab:3b:cc:6f: 75:63:15:ff:7a:d1:0d:01:0a:46:fb:18:54:59:00: 11:9b:35:65:f4:08:73:a5:52:71:33:c8:83:9e:33: 4c:04:09:6c:71:01:42:df:8f:32:37:65:e2:02:fa: 46:27:0b:1e:a9:b3:f4:f8:5b:03:f8:ff:13:76:2e: ef:69:0f:11:d0:0c:cd:07:a0:e1:ea:93:0e:b2:e4: 5b:92:3f:5d:76:fe:6b:f2:92:2f:2e:51:c7:eb:fb: 6b:4a:e7:10:3f:57:31:a2:61:c6:0f:33:e7:9e:9d: 30:65:7b:58:c4:dc:55:4e:5d:ed:b0:50:38:79:ff: ab:16:66:94:18:2d:2d:1b:a6:47:6e:78:b2:49:ad: bc:d8:47:07:6e:07:e3:00:45:4c:61:64:8e:7b:4e: 4f:35:09:97:85:2b:c2:42:84:a3:52:7c:08:a7:50: 33:8b:04:26:a8:78:5d:72:29:eb:8c:e9:a1:d9:39: 2c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CA:54:74:F7:6F:41:1D:C1:EB:7B:9B:0C:84:AE:E0:27:91:90:68 X509v3 Authority Key Identifier: keyid:DC:05:97:0E:65:0C:2A:AF:1A:B6:A3:A3:3A:83:73:24:66:A1:51:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AWXDmUMKq8atqOjOoNzJGahUS4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3b9a48-8b63-4d3b-a3a9-67a540e297f0/1/3AWXDmUMKq8atqOjOoNzJGahUS4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:da:a2:b0:9d:36:a2:76:4b:91:60:db:67:41:76:b3:91:d5: c3:7c:23:f3:b1:0e:fa:fb:b8:34:72:19:c1:40:99:b9:86:82: 89:44:f9:aa:87:f4:d9:09:3f:a9:0c:06:3d:0a:3b:89:ef:b3: 43:24:d9:f8:41:a5:1f:f7:6a:90:39:19:17:60:77:22:dd:eb: 09:58:a8:19:22:26:3c:60:10:a5:bb:fd:35:63:3b:00:10:3a: c6:37:34:14:c8:af:48:bd:4f:6f:27:ab:de:f0:98:71:21:5c: ce:4b:04:1c:fc:c5:f7:b2:6f:b2:5f:c5:4d:0b:c3:1e:b5:c0: 6b:95:dd:6f:31:16:5e:f5:5d:4b:fc:9b:c7:1e:6b:9d:26:ff: 3f:64:9f:a8:a5:a7:f5:f5:47:8a:4e:f6:84:29:76:ed:75:d6: 83:7a:30:81:3f:0d:77:9b:61:6d:70:f9:eb:ba:7f:b0:cf:38: ac:9a:30:e3:69:bc:5d:76:c2:dc:dc:07:65:9f:4e:15:39:87: 4c:a9:d2:24:73:bd:ee:ea:41:12:ff:68:4d:b3:7e:8d:43:2d: b0:ff:cd:c3:19:c0:52:e4:2c:2d:de:01:70:62:96:79:63:ee: 58:ff:ef:97:20:7f:89:f3:0d:44:8f:66:f2:98:82:4a:fc:fd: 2f:ca:ab:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP6yPtFiu4ePy0q2GVwHjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjMDU5NzBlNjUwYzJhYWYxYWI2YTNhMzNhODM3MzI0NjZh MTUxMmUwHhcNMjUxMjA2MDYwMDUwWhcNMjUxMjA3MDYwMDUwWjAzMTEwLwYDVQQD EyhjYmNhNTQ3NGY3NmY0MTFkYzFlYjdiOWIwYzg0YWVlMDI3OTE5MDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9AuOrd3WGJNHugbj5gayo4kX0ZK UesDSJzYhy6d4ysDKHWGaCJlZTTJQSTfx0urKuI40LpSN7GTAWPlTinyT/O8rY4v r6s7zG91YxX/etENAQpG+xhUWQARmzVl9AhzpVJxM8iDnjNMBAlscQFC348yN2Xi AvpGJwseqbP0+FsD+P8Tdi7vaQ8R0AzNB6Dh6pMOsuRbkj9ddv5r8pIvLlHH6/tr SucQP1cxomHGDzPnnp0wZXtYxNxVTl3tsFA4ef+rFmaUGC0tG6ZHbniySa282EcH bgfjAEVMYWSOe05PNQmXhSvCQoSjUnwIp1AziwQmqHhdcinrjOmh2TksnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMvKVHT3b0Edwet7mwyEruAnkZBoMB8GA1UdIwQY MBaAFNwFlw5lDCqvGrajozqDcyRmoVEuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0FXWERtVU1LcThhdHFPak9vTnpKR2FoVVM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zYjlhNDgtOGI2My00ZDNiLWEzYTkt NjdhNTQwZTI5N2YwLzEvM0FXWERtVU1LcThhdHFPak9vTnpKR2FoVVM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zYjlhNDgtOGI2My00ZDNiLWEzYTktNjdhNTQwZTI5N2Yw LzEvM0FXWERtVU1LcThhdHFPak9vTnpKR2FoVVM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARtqisJ02 onZLkWDbZ0F2s5HVw3wj87EO+vu4NHIZwUCZuYaCiUT5qof02Qk/qQwGPQo7ie+z QyTZ+EGlH/dqkDkZF2B3It3rCVioGSImPGAQpbv9NWM7ABA6xjc0FMivSL1Pbyer 3vCYcSFczksEHPzF97Jvsl/FTQvDHrXAa5XdbzEWXvVdS/ybxx5rnSb/P2SfqKWn 9fVHik72hCl27XXWg3owgT8Nd5thbXD567p/sM84rJow42m8XXbC3NwHZZ9OFTmH TKnSJHO97upBEv9oTbN+jUMtsP/NwxnAUuQsLd4BcGKWeWPuWP/vlyB/ifMNRI9m 8piCSvz9L8qrSw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:23 2025 by rpki-client