This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft File: 3RWKDaAyZt8UTImntuNadhxJmPc.mft (raw, json) Hash identifier: Klu3MEdmEqzbjDj4IKqxNMNg0FdBSTn086gTu5qydJ4= Subject key identifier: 01:4C:50:18:25:0C:EC:A4:48:E8:7F:4C:42:91:00:75:68:54:2D:47 Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7 Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7 Certificate serial: 019AF0BF5D17D37D9263A2239E1B54346F32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft Manifest number: 045A Signing time: Fri 05 Dec 2025 23:01:04 +0000 Manifest this update: Fri 05 Dec 2025 23:01:04 +0000 Manifest next update: Sat 06 Dec 2025 23:01:04 +0000 Files and hashes: 1: 3RWKDaAyZt8UTImntuNadhxJmPc.crl (hash: VTNmaDNS2dzTfjPk/l3Z5civvYPC9nsyxocEM2G/Rnk=) 2: hjp9r4jkfdcWh8tb4IbJ8JLqvhg.roa (hash: rpnDBu2YggoyGIw/C4Ub9AMkAXEhq0st1VH7UXhjugk=) 3: oyehTC9fC3RxVNTxQ-3Nace4xCo.roa (hash: 6amsBM8Jkzid3Hbf3NCrvWV5lgaxarQNmZ7omOl4H1Y=) 4: tWWoO6Q9xW9qzxs1LTkk9o7qkwc.roa (hash: dIS2lAatvIYTUHXvxYqBBEq9rurmrnQiuE0cglSeBdY=) 5: zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa (hash: JzeLYwYOJtUYF4eEhrs8y3e0iaiCpHB7RqKZXjFT6qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:5d:17:d3:7d:92:63:a2:23:9e:1b:54:34:6f:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7 Validity Not Before: Dec 5 23:01:04 2025 GMT Not After : Dec 6 23:01:04 2025 GMT Subject: CN=014c5018250ceca448e87f4c4291007568542d47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9d:c6:e3:40:36:df:28:84:6d:49:32:05:da: a4:fb:e0:66:63:0e:d0:e5:a1:04:5d:54:05:91:a6: 68:5b:d3:33:ac:d1:0c:36:ff:49:2c:77:95:4f:de: d3:6c:e8:a4:ad:6c:56:ca:04:55:72:b3:12:80:40: d3:92:0b:7a:30:c4:b1:15:72:64:c3:0e:98:05:db: dd:4b:73:e3:92:e1:f1:30:a6:4c:4b:64:b5:84:4e: 43:aa:71:f6:93:fd:48:cc:04:11:f8:c5:5f:08:a4: 1a:be:0c:16:1d:44:8c:fb:b7:4f:a3:a7:a0:63:e0: 9f:00:34:16:3f:13:d8:c9:f4:7c:23:1d:69:95:a1: 2e:1a:da:c2:66:4c:db:a2:0d:f3:78:cc:71:d6:09: 03:97:da:37:f5:a2:d4:cc:da:4b:f5:4e:14:90:82: e0:9a:e4:c9:c3:18:2f:b3:c1:37:1c:4a:8c:2c:de: cb:de:bb:e0:c1:09:aa:43:a4:a9:db:49:b2:ba:10: 50:90:66:da:20:32:7d:84:3e:4e:37:98:f3:0c:d3: 5f:5a:a9:57:22:ce:c7:c7:be:e0:c9:8f:49:29:59: ae:ef:d0:f9:41:59:63:c3:48:69:dc:c7:4b:14:2c: 53:c6:4c:05:2d:b9:af:9b:9c:48:f9:d9:44:88:e7: 6a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:4C:50:18:25:0C:EC:A4:48:E8:7F:4C:42:91:00:75:68:54:2D:47 X509v3 Authority Key Identifier: keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:30:33:cf:12:59:53:02:83:8f:e1:db:af:1a:3b:7f:32:b0: 61:bb:09:34:cc:fc:7e:35:85:17:88:3d:8d:00:d5:76:c4:01: a3:da:36:68:12:71:37:d5:fd:ce:d2:8a:64:05:cd:df:63:97: 8c:8a:27:4c:34:e6:ad:88:57:96:3e:d4:83:02:97:04:33:b5: d2:8d:66:14:69:63:ab:97:c3:01:b5:00:5b:77:81:79:c4:db: 1f:c8:0c:03:52:d4:cb:4a:6a:c3:34:4d:c8:e8:65:1b:4e:f2: a0:3a:69:a4:87:79:49:69:80:2f:f3:c4:11:1b:3a:a3:37:34: fa:a2:4f:00:3e:c2:2e:e4:96:d8:a2:13:ce:b2:20:c5:34:31: b8:4d:15:5d:e6:0f:1d:4e:08:c5:87:e3:a3:91:e5:ad:fe:5f: 4c:fb:63:27:8c:f6:1b:1f:4b:86:a9:f7:00:94:66:80:c4:16: b0:7d:c2:b3:2d:8d:c4:99:4c:3a:34:87:8c:31:fa:2e:a8:1e: d6:d4:75:aa:47:e0:38:e7:10:a4:48:04:41:c6:98:a1:c7:79: bb:96:89:e5:b7:79:b9:0e:fa:66:fb:bb:86:53:19:8a:8e:c0: e5:21:b8:ca:43:45:7c:60:00:12:d0:ea:13:41:b9:eb:ab:86: 00:3e:76:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv10X032SY6IjnhtUNG8yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMTU4YTBkYTAzMjY2ZGYxNDRjODlhN2I2ZTM1YTc2MWM0 OTk4ZjcwHhcNMjUxMjA1MjMwMTA0WhcNMjUxMjA2MjMwMTA0WjAzMTEwLwYDVQQD EygwMTRjNTAxODI1MGNlY2E0NDhlODdmNGM0MjkxMDA3NTY4NTQyZDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkp3G40A23yiEbUkyBdqk++BmYw7Q 5aEEXVQFkaZoW9MzrNEMNv9JLHeVT97TbOikrWxWygRVcrMSgEDTkgt6MMSxFXJk ww6YBdvdS3PjkuHxMKZMS2S1hE5DqnH2k/1IzAQR+MVfCKQavgwWHUSM+7dPo6eg Y+CfADQWPxPYyfR8Ix1plaEuGtrCZkzbog3zeMxx1gkDl9o39aLUzNpL9U4UkILg muTJwxgvs8E3HEqMLN7L3rvgwQmqQ6Sp20myuhBQkGbaIDJ9hD5ON5jzDNNfWqlX Is7Hx77gyY9JKVmu79D5QVljw0hp3MdLFCxTxkwFLbmvm5xI+dlEiOdqiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAFMUBglDOykSOh/TEKRAHVoVC1HMB8GA1UdIwQY MBaAFN0Vig2gMmbfFEyJp7bjWnYcSZj3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1JXS0RhQXladDhVVEltbnR1TmFkaHhKbVBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8wYjU1YWItYWNjOC00MWRhLTljODAt ZThmMjBhYWRkZTk5LzEvM1JXS0RhQXladDhVVEltbnR1TmFkaHhKbVBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8wYjU1YWItYWNjOC00MWRhLTljODAtZThmMjBhYWRkZTk5 LzEvM1JXS0RhQXladDhVVEltbnR1TmFkaHhKbVBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0zAzzxJZ UwKDj+Hbrxo7fzKwYbsJNMz8fjWFF4g9jQDVdsQBo9o2aBJxN9X9ztKKZAXN32OX jIonTDTmrYhXlj7UgwKXBDO10o1mFGljq5fDAbUAW3eBecTbH8gMA1LUy0pqwzRN yOhlG07yoDpppId5SWmAL/PEERs6ozc0+qJPAD7CLuSW2KITzrIgxTQxuE0VXeYP HU4IxYfjo5Hlrf5fTPtjJ4z2Gx9Lhqn3AJRmgMQWsH3Csy2NxJlMOjSHjDH6Lqge 1tR1qkfgOOcQpEgEQcaYocd5u5aJ5bd5uQ76Zvu7hlMZio7A5SG4ykNFfGAAEtDq E0G566uGAD52zQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:07 2025 by rpki-client