This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json) Hash identifier: MJ+aBzvROAvwsOZZkZ01HOCSOO3AlBnWpTQKuPAXpxg= Subject key identifier: 18:E2:A8:0D:7C:D5:7A:6F:C3:5E:5A:60:88:0A:EF:A7:01:5E:41:17 Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Certificate serial: 019AF42E05A543D20EA6E75306C142F63998 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft Manifest number: 1777 Signing time: Sat 06 Dec 2025 15:00:48 +0000 Manifest this update: Sat 06 Dec 2025 15:00:48 +0000 Manifest next update: Sun 07 Dec 2025 15:00:48 +0000 Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: tYo3/O9F7MbRBO12TBDYj193D6vTe1USJAzVeuMPwrg=) 2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=) 3: DPsq0OHf8MVPtjf1meByn-PM7Q0.roa (hash: oRmxnthJtArJCnDUTkrTLD5StLSleGnIBmGT013Rl5I=) 4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=) 5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:05:a5:43:d2:0e:a6:e7:53:06:c1:42:f6:39:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Validity Not Before: Dec 6 15:00:48 2025 GMT Not After : Dec 7 15:00:48 2025 GMT Subject: CN=18e2a80d7cd57a6fc35e5a60880aefa7015e4117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:31:66:ce:b2:d2:cb:9c:1f:08:56:5a:e7:fd: 64:cb:19:6f:45:88:24:4f:b3:70:a3:9b:3e:53:43: ce:17:a4:88:af:1e:24:5c:06:ff:93:bd:fd:06:7a: 0b:d0:4b:ee:7f:68:99:63:bd:09:e5:4c:7a:2b:d9: a9:c3:d8:15:4c:c0:8d:c1:74:a7:44:dd:8b:64:3c: 7f:c3:3d:bf:5a:ff:21:c3:46:fb:cf:6b:a9:d0:bf: 31:df:52:fb:1c:bc:56:0d:36:b3:d1:e2:d5:73:be: 7d:b6:c6:4e:03:cd:2e:a1:c0:75:9b:15:f8:5f:af: ba:28:3d:13:59:42:0d:9c:ad:1e:31:01:53:72:91: a1:12:c7:e1:dd:8d:4e:5e:b2:3c:af:63:ae:e9:ae: c8:84:8f:5a:c9:c9:2f:40:2e:7c:95:2e:bb:d0:43: 0d:ef:3a:67:f4:d0:22:e5:dc:41:84:a4:7c:9f:ef: 6d:db:67:23:5c:0c:1e:15:b6:20:a2:79:68:2c:f6: 59:5e:a9:66:47:b4:fb:f3:84:fa:d9:77:36:e8:f8: 3e:36:f5:7a:77:d6:03:7d:26:5c:6f:75:93:6b:cb: cd:7f:01:fb:70:24:14:0b:48:39:b1:f8:a3:06:c6: fe:d9:72:86:a4:aa:21:59:39:d8:80:86:51:e2:c0: 0d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E2:A8:0D:7C:D5:7A:6F:C3:5E:5A:60:88:0A:EF:A7:01:5E:41:17 X509v3 Authority Key Identifier: keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:7e:d4:c9:c1:b7:45:f1:ac:30:d7:be:3f:5e:74:26:54:4c: 6d:34:ca:a7:fe:09:a5:14:5f:31:df:25:62:d4:8d:e5:02:a4: 5d:73:c6:f5:b4:cc:5c:33:5e:3a:7b:e2:50:3b:ba:db:3d:ff: ae:d4:22:cf:78:2a:35:63:be:8e:c9:df:a0:2d:8d:fa:0a:a9: cd:4c:ea:b7:ae:e1:53:4c:04:50:bf:60:51:10:ef:5e:d2:fd: e6:86:21:48:24:e6:20:ef:1e:d3:09:88:96:08:a3:c2:85:79: 57:2d:af:65:7f:f1:8b:e5:c8:56:19:76:cd:e6:71:84:2d:a2: 78:59:43:48:25:35:f6:e7:4c:7e:f7:fe:70:fc:cf:67:3e:ca: fe:7e:29:ea:9d:b8:96:de:3d:03:d5:3f:84:e2:8d:7a:2d:dd: c8:8e:09:7a:bb:f1:05:1f:0c:b6:70:af:5c:94:22:d5:2d:2b: c4:d0:01:bd:77:7f:77:93:14:83:c8:55:f0:b5:31:e0:8f:da: e3:18:5a:e7:ab:4b:a3:9a:e5:a7:f2:53:77:6c:c2:8f:46:2b: 57:3e:bc:f7:e6:8b:52:a5:52:e0:a2:5d:69:e6:79:86:13:69: 4c:70:09:ea:54:dd:1e:76:7b:1e:cc:09:95:7b:ce:07:92:4e: dd:dd:de:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LgWlQ9IOpudTBsFC9jmYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2 ZGNmMTAwHhcNMjUxMjA2MTUwMDQ4WhcNMjUxMjA3MTUwMDQ4WjAzMTEwLwYDVQQD EygxOGUyYTgwZDdjZDU3YTZmYzM1ZTVhNjA4ODBhZWZhNzAxNWU0MTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2TFmzrLSy5wfCFZa5/1kyxlvRYgk T7Nwo5s+U0POF6SIrx4kXAb/k739BnoL0Evuf2iZY70J5Ux6K9mpw9gVTMCNwXSn RN2LZDx/wz2/Wv8hw0b7z2up0L8x31L7HLxWDTaz0eLVc759tsZOA80uocB1mxX4 X6+6KD0TWUINnK0eMQFTcpGhEsfh3Y1OXrI8r2Ou6a7IhI9ayckvQC58lS670EMN 7zpn9NAi5dxBhKR8n+9t22cjXAweFbYgonloLPZZXqlmR7T784T62Xc26Pg+NvV6 d9YDfSZcb3WTa8vNfwH7cCQUC0g5sfijBsb+2XKGpKohWTnYgIZR4sANowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjiqA181Xpvw15aYIgK76cBXkEXMB8GA1UdIwQY MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt ODVhOTU1ZjIxNjNiLzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACn7UycG3 RfGsMNe+P150JlRMbTTKp/4JpRRfMd8lYtSN5QKkXXPG9bTMXDNeOnviUDu62z3/ rtQiz3gqNWO+jsnfoC2N+gqpzUzqt67hU0wEUL9gURDvXtL95oYhSCTmIO8e0wmI lgijwoV5Vy2vZX/xi+XIVhl2zeZxhC2ieFlDSCU19udMfvf+cPzPZz7K/n4p6p24 lt49A9U/hOKNei3dyI4JervxBR8MtnCvXJQi1S0rxNABvXd/d5MUg8hV8LUx4I/a 4xha56tLo5rlp/JTd2zCj0YrVz689+aLUqVS4KJdaeZ5hhNpTHAJ6lTdHnZ7HswJ lXvOB5JO3d3eeg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:03:10 2025 by rpki-client