This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft File: 3j4BZ79YLOzkjWxtApqCzeJyqdU.mft (raw, json) Hash identifier: VxNihLTEL9B20c74IASWRe2MGLP7MWSPLrMHDYTFNCk= Subject key identifier: F3:E3:4A:E5:6B:D6:2F:A8:82:25:A8:05:55:30:5D:02:5F:74:30:3C Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5 Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5 Certificate serial: 019AF68A21351F491B5AEB2DF612CC1A71D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft Manifest number: 16F7 Signing time: Sun 07 Dec 2025 02:00:38 +0000 Manifest this update: Sun 07 Dec 2025 02:00:38 +0000 Manifest next update: Mon 08 Dec 2025 02:00:38 +0000 Files and hashes: 1: 3j4BZ79YLOzkjWxtApqCzeJyqdU.crl (hash: ZPP6euMU2w/vEmJQcS3TmVu++sURfTZCAeIH7gQxJ5o=) 2: WK3H-x4lvtSz5PAYVzf83jx6Xhg.roa (hash: IHyV2nIBoBadJ+LZrUqe4zccqPuVek6+/UVCrBQ/9jA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:21:35:1f:49:1b:5a:eb:2d:f6:12:cc:1a:71:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5 Validity Not Before: Dec 7 02:00:38 2025 GMT Not After : Dec 8 02:00:38 2025 GMT Subject: CN=f3e34ae56bd62fa88225a80555305d025f74303c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:23:76:33:88:26:aa:68:51:9b:47:5c:27:28: b8:8c:c0:be:19:98:90:3d:ed:90:2f:1a:f8:e2:36: 9c:e4:c7:2e:94:c2:8f:8f:98:74:ee:3b:64:90:6c: 95:9e:53:ed:c1:bf:e5:06:e4:73:3d:0b:26:bd:1c: d8:97:8f:d2:b0:2b:c0:4f:b0:6d:ef:87:92:23:e3: e1:8f:00:8c:21:e9:5b:bc:8b:3f:d8:70:30:87:f2: 91:b8:29:0c:87:34:5a:b5:4e:38:2a:f7:03:d6:28: ed:1f:22:37:af:b9:a4:18:07:d0:02:cf:b9:20:46: b7:13:2d:8f:ce:e6:78:80:83:f3:43:bc:c6:c9:aa: ff:eb:27:86:d5:b7:34:f5:95:25:9d:26:cb:a5:ce: 20:f9:70:89:45:48:35:d3:e8:09:36:cd:32:98:63: 32:14:de:0b:b4:97:ae:b6:bd:27:1c:65:39:5b:6c: f5:58:d7:cf:c1:d9:cc:48:78:bb:df:69:56:4e:e0: 5d:74:d2:38:f3:91:8f:7b:8a:8d:73:0a:5f:75:6b: fe:cc:80:04:e1:be:05:92:9b:e9:ae:65:9c:73:18: a3:b9:e8:ce:cd:41:37:85:12:ca:84:ca:fa:30:70: a2:28:4d:fb:1a:03:49:21:b6:2a:8e:47:4d:c8:cb: 4f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E3:4A:E5:6B:D6:2F:A8:82:25:A8:05:55:30:5D:02:5F:74:30:3C X509v3 Authority Key Identifier: keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:93:f3:8c:be:87:f2:17:39:65:ed:fd:7a:95:43:1a:68:c5: 50:c3:e0:57:22:ed:56:92:c0:38:e8:f0:64:36:54:0e:06:70: 0a:3d:b2:cf:ad:72:ec:62:e4:fc:b9:6c:50:c1:e2:9c:f3:63: d4:64:8b:a1:7d:53:ec:b9:a6:7a:b4:21:18:b8:3c:07:59:d9: e7:9c:b9:43:17:9b:5b:df:8d:51:39:0e:86:3e:d6:68:4d:d9: f8:48:b8:84:fa:cb:f5:a3:c5:bd:75:5e:fe:ba:05:67:ce:23: a8:93:9a:49:93:80:02:e5:88:3c:db:4a:f2:ba:96:e2:d3:cb: db:d9:89:cc:fe:60:3c:a9:c7:0b:56:6c:87:3e:86:d1:a0:42: 23:b9:f9:af:1c:2c:53:c5:a6:ef:1f:9f:59:0a:e3:06:44:0d: 8d:e5:85:c6:fd:ba:02:96:66:c3:49:86:67:81:d4:f2:a3:72: 8e:a5:23:ed:45:03:96:f6:4c:8d:20:46:40:59:1e:c5:9b:9d: 4e:ae:06:c0:bd:aa:87:4a:42:02:e4:84:99:54:ab:fb:24:a2: dd:9f:dc:0d:1a:24:08:67:b7:9f:a2:fc:a3:ff:94:40:ab:16: 17:d7:1a:58:24:c6:22:aa:42:c7:5e:29:10:b2:0e:d8:a8:69: 28:c5:31:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2iiE1H0kbWust9hLMGnHTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlM2UwMTY3YmY1ODJjZWNlNDhkNmM2ZDAyOWE4MmNkZTI3 MmE5ZDUwHhcNMjUxMjA3MDIwMDM4WhcNMjUxMjA4MDIwMDM4WjAzMTEwLwYDVQQD EyhmM2UzNGFlNTZiZDYyZmE4ODIyNWE4MDU1NTMwNWQwMjVmNzQzMDNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSN2M4gmqmhRm0dcJyi4jMC+GZiQ Pe2QLxr44jac5MculMKPj5h07jtkkGyVnlPtwb/lBuRzPQsmvRzYl4/SsCvAT7Bt 74eSI+PhjwCMIelbvIs/2HAwh/KRuCkMhzRatU44KvcD1ijtHyI3r7mkGAfQAs+5 IEa3Ey2PzuZ4gIPzQ7zGyar/6yeG1bc09ZUlnSbLpc4g+XCJRUg10+gJNs0ymGMy FN4LtJeutr0nHGU5W2z1WNfPwdnMSHi732lWTuBddNI485GPe4qNcwpfdWv+zIAE 4b4FkpvprmWccxijuejOzUE3hRLKhMr6MHCiKE37GgNJIbYqjkdNyMtPcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPPjSuVr1i+ogiWoBVUwXQJfdDA8MB8GA1UdIwQY MBaAFN4+AWe/WCzs5I1sbQKags3icqnVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2o0Qlo3OVlMT3prald4dEFwcUN6ZUp5cWRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS9hNzE1Y2UtNDEwZC00MzkwLThlOGMt OGIyMzc5ZWJhMTNlLzEvM2o0Qlo3OVlMT3prald4dEFwcUN6ZUp5cWRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS9hNzE1Y2UtNDEwZC00MzkwLThlOGMtOGIyMzc5ZWJhMTNl LzEvM2o0Qlo3OVlMT3prald4dEFwcUN6ZUp5cWRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZPzjL6H 8hc5Ze39epVDGmjFUMPgVyLtVpLAOOjwZDZUDgZwCj2yz61y7GLk/LlsUMHinPNj 1GSLoX1T7LmmerQhGLg8B1nZ55y5QxebW9+NUTkOhj7WaE3Z+Ei4hPrL9aPFvXVe /roFZ84jqJOaSZOAAuWIPNtK8rqW4tPL29mJzP5gPKnHC1Zshz6G0aBCI7n5rxws U8Wm7x+fWQrjBkQNjeWFxv26ApZmw0mGZ4HU8qNyjqUj7UUDlvZMjSBGQFkexZud Tq4GwL2qh0pCAuSEmVSr+ySi3Z/cDRokCGe3n6L8o/+UQKsWF9caWCTGIqpCx14p ELIO2KhpKMUx+w== -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:42 2025 by rpki-client