This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft File: F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft (raw, json) Hash identifier: S2JFNx4h8CwouyS90su8N+9elgOqwqqdQWwt30IH8eU= Subject key identifier: 99:EE:66:9C:D0:F2:06:9F:99:69:00:1A:7C:65:2C:4B:A1:4A:B5:CC Authority key identifier: 17:70:05:17:75:26:D6:68:E8:44:B2:A7:A5:A5:9A:C6:4A:49:56:52 Certificate issuer: /CN=177005177526d668e844b2a7a5a59ac64a495652 Certificate serial: 019B3043423FA4CF0C0105A380B5560749BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft Manifest number: 06DD Signing time: Thu 18 Dec 2025 07:01:12 +0000 Manifest this update: Thu 18 Dec 2025 07:01:12 +0000 Manifest next update: Fri 19 Dec 2025 07:01:12 +0000 Files and hashes: 1: F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl (hash: G/VAU8TpbJ8CU3OfjLf47IB/d1DreFBaKH02dTUuEkY=) 2: mF32KrmR7qkPWXVgQfXewbxtOHE.roa (hash: iXEGOcbHzPC+9l+k6XZzUAzgZY6fYnZW9+XlT/82/iA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:43:42:3f:a4:cf:0c:01:05:a3:80:b5:56:07:49:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=177005177526d668e844b2a7a5a59ac64a495652 Validity Not Before: Dec 18 07:01:12 2025 GMT Not After : Dec 19 07:01:12 2025 GMT Subject: CN=99ee669cd0f2069f9969001a7c652c4ba14ab5cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:04:bf:2e:c3:9f:8a:e2:bf:ff:f8:19:57:02: ea:7b:d1:00:a4:12:02:4d:1c:3b:e3:98:26:d8:05: 8a:d7:db:71:61:ba:28:c6:0f:16:cf:5e:e1:e3:b9: b0:bb:6d:08:2b:d3:d2:aa:52:33:f4:54:b5:36:f8: c5:47:6d:f9:37:eb:ce:37:26:e1:3a:72:1e:22:38: f5:97:ca:0e:da:cc:92:63:46:2d:2d:5f:dc:d1:fe: 43:80:5f:da:71:94:fa:c6:38:cd:ef:17:83:27:91: 9a:0f:2d:a2:4e:ad:b6:b0:e5:d4:3e:27:1f:fd:36: 67:6c:41:bc:1a:bd:a6:ca:20:21:29:4b:34:91:3c: b3:16:f0:a2:fa:f5:b7:37:aa:d9:0e:4e:f8:da:04: c7:81:12:e1:cb:6d:74:70:f2:7e:21:b8:c8:a8:9d: bf:5d:a7:ef:f1:82:7c:ec:ce:dc:58:55:37:3e:56: be:75:62:8f:cd:dd:38:13:e3:9d:e9:98:05:d6:d7: 7f:e8:d8:f8:58:99:ab:dd:6a:ca:f6:df:91:c8:bc: 43:b1:87:d2:9c:3f:ea:e8:93:ea:2e:e6:01:8f:53: 5a:a3:75:e5:a6:0b:c6:42:37:c8:e6:e2:91:ff:cd: b8:d3:33:79:80:c6:83:4a:12:87:54:05:a1:3f:2d: f3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EE:66:9C:D0:F2:06:9F:99:69:00:1A:7C:65:2C:4B:A1:4A:B5:CC X509v3 Authority Key Identifier: keyid:17:70:05:17:75:26:D6:68:E8:44:B2:A7:A5:A5:9A:C6:4A:49:56:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:b1:14:cf:0b:c3:c2:63:f6:a7:05:9a:14:06:75:c9:b1:37: 87:20:58:07:b2:43:17:3d:91:fe:16:dc:77:a0:8f:a1:70:a0: 1b:7e:92:86:77:0b:1e:db:6b:a6:35:a8:d2:d0:cd:24:a4:32: 30:c9:5a:88:65:75:b4:f2:0a:7f:22:5f:8a:85:d6:4a:d3:31: 28:ff:29:22:de:11:b7:eb:b0:2a:d1:ce:60:98:3f:c0:07:cb: 43:92:d3:25:12:1f:1d:95:88:ed:37:a3:dd:46:73:6e:e8:cd: 9e:fe:f2:10:93:53:62:33:10:b8:28:ea:99:8a:21:2e:ca:7e: ad:20:9f:5b:8b:07:76:36:57:0d:f3:46:85:47:5f:7a:ee:aa: 30:2c:6f:07:46:df:0b:d0:7c:46:80:b8:14:63:65:cd:2d:fb: 1b:aa:87:59:c1:5c:72:27:e2:7b:12:34:49:c6:4e:26:ac:1b: 97:2d:8a:df:ed:06:d4:fc:49:36:5a:74:04:30:48:53:5d:bd: fa:5b:24:8b:56:83:1e:b7:00:a1:af:87:06:d9:0e:61:65:08: 99:9f:88:7e:cc:2a:79:c1:e4:6a:31:f7:e2:55:e4:be:68:7e: 67:61:fd:3e:ed:2a:aa:2a:36:0b:e0:fe:f9:b2:6e:58:e8:b9: a3:83:86:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswQ0I/pM8MAQWjgLVWB0m8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzAwNTE3NzUyNmQ2NjhlODQ0YjJhN2E1YTU5YWM2NGE0 OTU2NTIwHhcNMjUxMjE4MDcwMTEyWhcNMjUxMjE5MDcwMTEyWjAzMTEwLwYDVQQD Eyg5OWVlNjY5Y2QwZjIwNjlmOTk2OTAwMWE3YzY1MmM0YmExNGFiNWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwS/LsOfiuK///gZVwLqe9EApBIC TRw745gm2AWK19txYbooxg8Wz17h47mwu20IK9PSqlIz9FS1NvjFR235N+vONybh OnIeIjj1l8oO2sySY0YtLV/c0f5DgF/acZT6xjjN7xeDJ5GaDy2iTq22sOXUPicf /TZnbEG8Gr2myiAhKUs0kTyzFvCi+vW3N6rZDk742gTHgRLhy210cPJ+IbjIqJ2/ Xafv8YJ87M7cWFU3Pla+dWKPzd04E+Od6ZgF1td/6Nj4WJmr3WrK9t+RyLxDsYfS nD/q6JPqLuYBj1Nao3XlpgvGQjfI5uKR/8240zN5gMaDShKHVAWhPy3zTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJnuZpzQ8gafmWkAGnxlLEuhSrXMMB8GA1UdIwQY MBaAFBdwBRd1JtZo6ESyp6WlmsZKSVZSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNBRkYzVW0xbWpvUkxLbnBhV2F4a3BKVmxJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8zYWYxNTMtZWQwZC00OWMwLTk5ZGYt MGNkZWZiZmM3ODdhLzEvRjNBRkYzVW0xbWpvUkxLbnBhV2F4a3BKVmxJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8zYWYxNTMtZWQwZC00OWMwLTk5ZGYtMGNkZWZiZmM3ODdh LzEvRjNBRkYzVW0xbWpvUkxLbnBhV2F4a3BKVmxJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGLEUzwvD wmP2pwWaFAZ1ybE3hyBYB7JDFz2R/hbcd6CPoXCgG36ShncLHttrpjWo0tDNJKQy MMlaiGV1tPIKfyJfioXWStMxKP8pIt4Rt+uwKtHOYJg/wAfLQ5LTJRIfHZWI7Tej 3UZzbujNnv7yEJNTYjMQuCjqmYohLsp+rSCfW4sHdjZXDfNGhUdfeu6qMCxvB0bf C9B8RoC4FGNlzS37G6qHWcFccifiexI0ScZOJqwbly2K3+0G1PxJNlp0BDBIU129 +lski1aDHrcAoa+HBtkOYWUImZ+IfswqecHkajH34lXkvmh+Z2H9Pu0qqio2C+D+ +bJuWOi5o4OG2A== -----END CERTIFICATE-----Generated at Thu Dec 18 09:28:18 2025 by rpki-client