This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft File: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft (raw, json) Hash identifier: EV2zPD+2q/qTZUZ5hDQtR3WejctrSY7JUJKtNa82XTU= Subject key identifier: 5B:53:12:A2:A9:D0:05:67:17:63:EB:F9:06:B8:C0:6F:A0:A5:8E:D1 Authority key identifier: DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E Certificate issuer: /CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e Certificate serial: 019AF16419FEC324084E70252CF16550C0B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft Manifest number: 0A7F Signing time: Sat 06 Dec 2025 02:01:00 +0000 Manifest this update: Sat 06 Dec 2025 02:01:00 +0000 Manifest next update: Sun 07 Dec 2025 02:01:00 +0000 Files and hashes: 1: 3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl (hash: Je64arkqb+CDB+jCUU5J67cXv0O40yiYwfpKp2G9cfI=) 2: vrZbrmq-YLZHy_jTQFADJGPxi-I.roa (hash: SoRxaIEIcm9lF/KB/PtX621zexUgH5AtUpObYQIQZW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:19:fe:c3:24:08:4e:70:25:2c:f1:65:50:c0:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddf20a0685b6fe9754ca22486775b2d8a7e9c11e Validity Not Before: Dec 6 02:01:00 2025 GMT Not After : Dec 7 02:01:00 2025 GMT Subject: CN=5b5312a2a9d005671763ebf906b8c06fa0a58ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:a1:55:80:6a:08:f9:f6:f7:6f:1a:55:28:ed: 01:d0:95:6c:2e:96:9d:e4:3b:c8:86:09:21:c9:6e: 69:98:63:d0:01:1a:45:5f:0c:ac:37:76:e2:b0:2e: e5:03:99:e2:01:c2:c0:3d:8a:4a:42:e0:ea:7b:00: 51:a7:55:c0:20:ab:69:52:96:fb:92:4d:ca:f8:e9: 9d:50:da:91:63:47:23:be:26:ba:72:91:70:e4:b3: ad:5c:09:69:aa:24:c3:47:05:5e:d2:89:2b:b8:63: 95:8a:36:46:96:40:fb:40:96:58:e9:c0:b8:06:f5: c5:c2:66:47:0d:f5:42:f7:98:d4:e6:67:59:37:09: 83:8b:6e:cf:c7:03:88:f0:1e:a7:24:95:1d:2c:46: 27:45:d1:86:b7:05:4a:14:f8:d1:af:ed:e5:92:5a: 3a:02:15:f9:1d:a6:92:9c:57:73:b8:b2:a4:bb:b8: 1d:21:bb:2e:f5:56:66:3f:b0:df:5f:7e:a8:eb:77: b8:91:9f:7e:78:42:53:15:f3:e2:00:db:53:69:68: fa:bb:ab:15:96:fe:8e:58:0f:4c:f4:d3:03:eb:93: d3:a0:40:ac:e2:63:47:c5:8a:9b:4f:ab:fd:8b:c5: 0d:1d:bd:ed:72:53:39:d2:dc:af:05:86:3d:f2:70: b8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:53:12:A2:A9:D0:05:67:17:63:EB:F9:06:B8:C0:6F:A0:A5:8E:D1 X509v3 Authority Key Identifier: keyid:DD:F2:0A:06:85:B6:FE:97:54:CA:22:48:67:75:B2:D8:A7:E9:C1:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/594c78-4bd0-43d8-814f-58349f740e96/1/3fIKBoW2_pdUyiJIZ3Wy2KfpwR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:e0:58:ae:0c:b1:33:27:e8:d9:e8:17:d4:87:b5:df:3c:b7: 11:b0:7a:6e:9d:55:53:49:a3:9e:2b:73:b9:7c:d3:90:00:89: 47:8c:0d:9d:12:6f:77:42:db:ae:16:d7:ae:6e:d9:3a:8d:c2: 11:c9:8d:ab:8d:b4:99:1b:c9:64:d3:d4:34:bd:fd:c3:21:98: 48:e5:f3:7d:4a:14:33:8d:48:19:d2:f0:b9:04:27:0c:c7:93: b4:21:67:b7:4f:61:7d:1f:2c:3c:b0:d5:91:36:f9:e5:03:f3: 24:a7:c1:04:42:89:77:c3:8b:ae:aa:fa:6c:a2:47:db:22:0d: 06:c1:5c:b1:f2:22:4e:ee:90:fd:fa:7f:6a:df:2e:9f:0b:cd: 81:7e:3c:d0:be:51:55:4c:1e:65:e0:8a:e8:37:f6:b0:87:eb: 6c:60:4c:71:d1:85:6a:54:8c:04:f9:98:a1:43:9d:75:9a:08: c2:b8:98:30:48:0e:aa:aa:ba:02:9f:1c:27:5c:e3:32:1f:23: 73:0d:79:25:8f:26:8f:0e:c9:b9:8f:41:8c:99:74:22:6e:14: 62:53:50:cb:98:e1:58:8b:63:53:d5:20:bd:8f:15:ac:d4:28: f3:4a:36:a5:b5:1a:cb:40:ec:51:ec:f0:19:49:fa:a4:88:81: 19:b3:0a:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZBn+wyQITnAlLPFlUMCyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkZjIwYTA2ODViNmZlOTc1NGNhMjI0ODY3NzViMmQ4YTdl OWMxMWUwHhcNMjUxMjA2MDIwMTAwWhcNMjUxMjA3MDIwMTAwWjAzMTEwLwYDVQQD Eyg1YjUzMTJhMmE5ZDAwNTY3MTc2M2ViZjkwNmI4YzA2ZmEwYTU4ZWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiaFVgGoI+fb3bxpVKO0B0JVsLpad 5DvIhgkhyW5pmGPQARpFXwysN3bisC7lA5niAcLAPYpKQuDqewBRp1XAIKtpUpb7 kk3K+OmdUNqRY0cjvia6cpFw5LOtXAlpqiTDRwVe0okruGOVijZGlkD7QJZY6cC4 BvXFwmZHDfVC95jU5mdZNwmDi27PxwOI8B6nJJUdLEYnRdGGtwVKFPjRr+3lklo6 AhX5HaaSnFdzuLKku7gdIbsu9VZmP7DfX36o63e4kZ9+eEJTFfPiANtTaWj6u6sV lv6OWA9M9NMD65PToECs4mNHxYqbT6v9i8UNHb3tclM50tyvBYY98nC4gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFtTEqKp0AVnF2Pr+Qa4wG+gpY7RMB8GA1UdIwQY MBaAFN3yCgaFtv6XVMoiSGd1stin6cEeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2ZJS0JvVzJfcGRVeWlKSVozV3kyS2Zwd1I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS81OTRjNzgtNGJkMC00M2Q4LTgxNGYt NTgzNDlmNzQwZTk2LzEvM2ZJS0JvVzJfcGRVeWlKSVozV3kyS2Zwd1I0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS81OTRjNzgtNGJkMC00M2Q4LTgxNGYtNTgzNDlmNzQwZTk2 LzEvM2ZJS0JvVzJfcGRVeWlKSVozV3kyS2Zwd1I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeuBYrgyx Myfo2egX1Ie13zy3EbB6bp1VU0mjnitzuXzTkACJR4wNnRJvd0LbrhbXrm7ZOo3C EcmNq420mRvJZNPUNL39wyGYSOXzfUoUM41IGdLwuQQnDMeTtCFnt09hfR8sPLDV kTb55QPzJKfBBEKJd8OLrqr6bKJH2yINBsFcsfIiTu6Q/fp/at8unwvNgX480L5R VUweZeCK6Df2sIfrbGBMcdGFalSMBPmYoUOddZoIwriYMEgOqqq6Ap8cJ1zjMh8j cw15JY8mjw7JuY9BjJl0Im4UYlNQy5jhWItjU9UgvY8VrNQo80o2pbUay0DsUezw GUn6pIiBGbMKRw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:36:52 2025 by rpki-client