This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft File: af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft (raw, json) Hash identifier: 6uaAZsGUq8mvzd7ol5lFUw110gIcG1AD6meCUrleY40= Subject key identifier: 79:C6:D9:C7:43:B0:B9:5A:60:7B:74:2F:9F:07:B4:DA:33:46:10:5F Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc Certificate serial: 019AF54092468B0AF99D6111A212CB2651CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 20:00:40 +0000 Manifest this update: Sat 06 Dec 2025 20:00:40 +0000 Manifest next update: Sun 07 Dec 2025 20:00:40 +0000 Files and hashes: 1: Ceo-HVPoWV3_2SxJvVUz90MzCXU.roa (hash: hrbJxLsRN5MK/3GlRfITM4zehXoSXHDnVzwmbM92S3A=) 2: af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl (hash: zk0IjmmdBQMpAhoAVohmhtlGwC/cqM54Q204Ey6BPnw=) 3: u-uD5eJkyZwHdvCGzRD30UcsPdQ.roa (hash: 972IpaBLO7W9fM3TeJorAGTATEI6lVsjC4rz1G6aPgA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:40:92:46:8b:0a:f9:9d:61:11:a2:12:cb:26:51:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc Validity Not Before: Dec 6 20:00:40 2025 GMT Not After : Dec 7 20:00:40 2025 GMT Subject: CN=79c6d9c743b0b95a607b742f9f07b4da3346105f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:db:54:05:59:73:9e:03:d6:90:59:a2:b2:33: c6:0e:49:53:e6:5d:35:61:d3:8e:d3:b8:b3:c7:f4: b7:56:d3:66:d3:3e:98:3f:ee:f8:3f:6e:17:e8:33: 13:42:ad:93:b6:75:35:a1:81:52:88:ba:4c:6d:fe: 77:6c:f0:57:c9:00:0d:c6:45:14:d3:0f:4b:c4:28: 76:0e:57:34:43:d9:d8:48:0b:73:70:bd:62:a3:df: a1:94:e4:b4:4b:c8:f5:a6:d8:5a:a2:6b:00:c2:2f: 2c:96:f2:83:07:dd:9d:b1:59:f0:e1:ab:ac:c8:f4: 4b:97:ca:5e:a7:f1:39:40:73:82:ac:41:60:12:08: c6:a1:72:dd:6d:58:90:4b:4b:b3:a6:4c:9a:96:af: 08:03:f4:4d:5e:be:0f:7e:c8:1b:c4:66:28:d4:1a: 5a:dc:ea:f8:57:74:b3:f4:a3:e8:62:25:c4:b5:8a: 8e:2c:54:5e:d5:c2:f7:05:8a:b1:3b:d2:17:8c:ca: 15:06:91:04:f5:23:f0:2e:15:1b:ac:90:6c:8f:58: 2a:dd:8d:51:a5:81:26:6d:ce:c7:7e:f2:6f:8c:40: e7:53:f8:74:f7:36:bf:47:f6:84:84:3f:1f:69:8c: 88:07:4a:07:95:8a:02:9f:ba:6d:4a:3b:c1:54:14: 75:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C6:D9:C7:43:B0:B9:5A:60:7B:74:2F:9F:07:B4:DA:33:46:10:5F X509v3 Authority Key Identifier: keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:e6:52:74:71:bf:56:60:fb:71:56:29:2b:a2:b0:79:53:03: 13:f5:cf:f5:ec:51:dc:6c:21:5b:7a:ec:b9:1d:8f:38:87:66: c6:d2:b6:96:49:4f:a7:a3:8c:78:e7:4c:06:1b:92:0b:b4:65: 23:d5:88:a7:85:73:05:57:3b:85:14:76:85:08:9b:8a:6a:ee: 53:03:4c:fc:c6:5e:ef:cb:60:aa:d4:3d:38:d7:8c:c1:8e:d1: 1c:25:e8:93:cf:c3:51:30:c3:b5:54:43:a5:97:20:07:7e:20: 47:8d:f7:ad:11:db:65:91:97:cf:b7:8f:8f:60:3c:a9:08:28: a8:50:3e:b9:e4:90:2c:55:dc:c1:3c:66:a1:66:0f:ec:e1:b9: 06:5d:e5:e1:3d:63:28:d9:64:a9:b1:fe:8b:78:54:03:d7:d9: c0:41:47:99:f7:5a:e3:7d:76:08:df:94:16:05:fb:51:b6:b4: 74:7d:f2:3d:e9:7c:34:a1:84:cf:ee:28:69:3a:d0:24:6b:67: 04:46:41:73:f6:cb:d0:bb:93:70:0f:d9:ea:66:ac:5a:07:ee: 03:eb:e4:75:b7:4b:6c:1d:26:67:d3:ed:d9:16:e0:49:30:29: 58:78:88:35:d4:a1:c0:2f:c9:33:a8:8f:f1:2d:02:34:e7:c9: 45:06:1e:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QJJGiwr5nWERohLLJlHPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY5ZmRmZTgyNDlmOTQzYWFiYWQxODgxZmNhNTgzNjYxM2E2 YTY3YmMwHhcNMjUxMjA2MjAwMDQwWhcNMjUxMjA3MjAwMDQwWjAzMTEwLwYDVQQD Eyg3OWM2ZDljNzQzYjBiOTVhNjA3Yjc0MmY5ZjA3YjRkYTMzNDYxMDVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq9tUBVlzngPWkFmisjPGDklT5l01 YdOO07izx/S3VtNm0z6YP+74P24X6DMTQq2TtnU1oYFSiLpMbf53bPBXyQANxkUU 0w9LxCh2Dlc0Q9nYSAtzcL1io9+hlOS0S8j1pthaomsAwi8slvKDB92dsVnw4aus yPRLl8pep/E5QHOCrEFgEgjGoXLdbViQS0uzpkyalq8IA/RNXr4PfsgbxGYo1Bpa 3Or4V3Sz9KPoYiXEtYqOLFRe1cL3BYqxO9IXjMoVBpEE9SPwLhUbrJBsj1gq3Y1R pYEmbc7HfvJvjEDnU/h09za/R/aEhD8faYyIB0oHlYoCn7ptSjvBVBR11QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHnG2cdDsLlaYHt0L58HtNozRhBfMB8GA1UdIwQY MBaAFGn9/oJJ+UOqutGIH8pYNmE6ame8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTIt NzFkOGI4ODUwODUzLzEvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9jY2Y3NzctOTQ2NS00YTJlLTgxMTItNzFkOGI4ODUwODUz LzEvYWYzLWdrbjVRNnE2MFlnZnlsZzJZVHBxWjd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbeZSdHG/ VmD7cVYpK6KweVMDE/XP9exR3GwhW3rsuR2POIdmxtK2lklPp6OMeOdMBhuSC7Rl I9WIp4VzBVc7hRR2hQibimruUwNM/MZe78tgqtQ9ONeMwY7RHCXok8/DUTDDtVRD pZcgB34gR433rRHbZZGXz7ePj2A8qQgoqFA+ueSQLFXcwTxmoWYP7OG5Bl3l4T1j KNlkqbH+i3hUA9fZwEFHmfda4312CN+UFgX7Uba0dH3yPel8NKGEz+4oaTrQJGtn BEZBc/bL0LuTcA/Z6masWgfuA+vkdbdLbB0mZ9Pt2RbgSTApWHiINdShwC/JM6iP 8S0CNOfJRQYeQg== -----END CERTIFICATE-----Generated at Sun Dec 7 03:45:09 2025 by rpki-client