This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft File: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft (raw, json) Hash identifier: Ft+hOesFr7MNLCe+FXnIXbYx1f0FUodLzGEy6jQypoY= Subject key identifier: 7F:E4:BF:68:7C:28:C0:6C:0B:19:9B:0A:FB:73:43:0A:B9:B5:A8:52 Authority key identifier: DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16 Certificate issuer: /CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16 Certificate serial: 019B22873AA810ACD38F0D8B9FF678DC46F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft Manifest number: 12BE Signing time: Mon 15 Dec 2025 15:00:46 +0000 Manifest this update: Mon 15 Dec 2025 15:00:46 +0000 Manifest next update: Tue 16 Dec 2025 15:00:46 +0000 Files and hashes: 1: 3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl (hash: rGOv4n10lJryzOugtbjQ8KFPfFbz8/9nMEFvB8eElw8=) 2: _Kt_ylx952g7HZhxMZibU4U_S9U.roa (hash: BRXKGTpDPGrVqoVy2fXV55G1/RGVRY4TQXSqB3YxXnw=) 3: bJ6OkDBz35azmUeGZSSY8SRMI4Y.roa (hash: y21BnaoaGpgbQvC0jOtfGrk+wq3H1xWVUYMR7XJq8OU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:87:3a:a8:10:ac:d3:8f:0d:8b:9f:f6:78:dc:46:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd725c4d0953e7ecf46f37e14fca14fd09a12d16 Validity Not Before: Dec 15 15:00:46 2025 GMT Not After : Dec 16 15:00:46 2025 GMT Subject: CN=7fe4bf687c28c06c0b199b0afb73430ab9b5a852 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:da:36:e6:1d:b8:7b:37:43:06:73:4b:d4: 9e:37:99:0a:71:cf:a8:ad:f7:dd:bb:60:fd:02:34: 34:2d:dd:85:8f:da:d6:21:3d:fb:b0:77:31:39:ad: 1b:93:46:27:10:de:cc:19:a0:c1:ec:03:fa:a7:85: c2:6b:91:7f:8c:61:d4:de:57:27:68:f3:68:d2:59: 1e:87:e1:58:a2:53:33:24:c2:f3:cc:15:bf:1e:4e: c9:07:52:c0:7f:7e:29:3b:2f:3a:6d:2f:a1:f3:8e: 12:89:df:e2:49:57:67:47:40:da:cd:e7:7a:58:3f: a3:a1:13:72:f5:2d:47:4a:24:2b:1a:f4:30:4e:e8: 52:d7:64:be:bc:57:a9:80:00:55:03:86:0c:2b:df: ac:19:b1:be:6e:5e:ca:92:0f:22:cc:b8:ea:93:fd: c7:08:56:ca:b0:9a:18:f6:53:42:70:89:32:e9:b1: 81:8c:a5:b1:8c:96:09:c6:12:33:6a:07:9b:b2:a9: 1b:3e:61:26:3c:f7:21:c1:d0:c1:4d:42:12:c2:b7: 0c:2c:ca:82:c2:c3:90:b1:e1:cf:60:b7:d4:f4:8f: 60:e8:ab:8b:27:49:1e:47:c8:46:06:40:da:7f:9d: bb:a5:c3:8e:8a:0a:ba:7d:f3:85:9e:dd:25:63:97: fe:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E4:BF:68:7C:28:C0:6C:0B:19:9B:0A:FB:73:43:0A:B9:B5:A8:52 X509v3 Authority Key Identifier: keyid:DD:72:5C:4D:09:53:E7:EC:F4:6F:37:E1:4F:CA:14:FD:09:A1:2D:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XJcTQlT5-z0bzfhT8oU_QmhLRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/aaa6e3-f054-48e7-8246-8f20cb734488/1/3XJcTQlT5-z0bzfhT8oU_QmhLRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:bd:e1:d7:89:25:7d:fe:d1:c2:e3:f0:a2:d7:df:6a:8f:ab: 32:3f:08:68:e1:de:7f:72:32:d3:7f:44:9a:cf:b1:57:11:81: 32:07:76:17:4b:17:f9:83:13:3f:5c:d8:5e:d5:75:3e:11:4b: dc:2b:b6:2b:00:88:e3:0d:70:d6:8b:dd:41:51:56:94:ab:f2: 46:37:f7:ea:76:90:76:06:30:e1:21:4c:fd:dc:65:af:f3:87: 61:41:55:73:e5:42:e3:31:a1:70:08:a5:63:85:53:90:ac:05: 51:2b:7b:f6:2f:34:6f:2e:3c:96:51:c1:c9:64:69:d9:49:1e: 98:b3:f2:be:ec:b9:15:31:02:1e:4b:83:ce:12:72:bb:28:c5: f6:92:fa:79:28:c0:8b:e4:8e:76:5c:69:4d:d9:c6:b1:bb:c5: 13:da:ea:2d:45:58:02:31:12:42:53:8b:b9:7b:77:ac:b8:84: 14:34:49:9c:54:4e:70:1a:96:50:f4:d9:72:91:e9:6e:86:c0: a0:d3:6a:42:5f:3a:9e:05:92:1e:ac:c3:2e:66:b0:29:77:58: 9a:31:3a:46:3f:91:80:e1:76:d0:11:7f:d7:96:61:d8:d0:62: 4c:61:99:94:2b:4f:92:f6:ca:e5:0a:79:52:b2:df:d0:f4:e4: c9:13:f8:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsihzqoEKzTjw2Ln/Z43EbxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNzI1YzRkMDk1M2U3ZWNmNDZmMzdlMTRmY2ExNGZkMDlh MTJkMTYwHhcNMjUxMjE1MTUwMDQ2WhcNMjUxMjE2MTUwMDQ2WjAzMTEwLwYDVQQD Eyg3ZmU0YmY2ODdjMjhjMDZjMGIxOTliMGFmYjczNDMwYWI5YjVhODUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JPaNuYduHs3QwZzS9SeN5kKcc+o rffdu2D9AjQ0Ld2Fj9rWIT37sHcxOa0bk0YnEN7MGaDB7AP6p4XCa5F/jGHU3lcn aPNo0lkeh+FYolMzJMLzzBW/Hk7JB1LAf34pOy86bS+h844Sid/iSVdnR0Dazed6 WD+joRNy9S1HSiQrGvQwTuhS12S+vFepgABVA4YMK9+sGbG+bl7Kkg8izLjqk/3H CFbKsJoY9lNCcIky6bGBjKWxjJYJxhIzagebsqkbPmEmPPchwdDBTUISwrcMLMqC wsOQseHPYLfU9I9g6KuLJ0keR8hGBkDaf527pcOOigq6ffOFnt0lY5f+JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH/kv2h8KMBsCxmbCvtzQwq5tahSMB8GA1UdIwQY MBaAFN1yXE0JU+fs9G834U/KFP0JoS0WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1hKY1RRbFQ1LXowYnpmaFQ4b1VfUW1oTFJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9hYWE2ZTMtZjA1NC00OGU3LTgyNDYt OGYyMGNiNzM0NDg4LzEvM1hKY1RRbFQ1LXowYnpmaFQ4b1VfUW1oTFJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9hYWE2ZTMtZjA1NC00OGU3LTgyNDYtOGYyMGNiNzM0NDg4 LzEvM1hKY1RRbFQ1LXowYnpmaFQ4b1VfUW1oTFJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACL3h14kl ff7RwuPwotffao+rMj8IaOHef3Iy039Ems+xVxGBMgd2F0sX+YMTP1zYXtV1PhFL 3Cu2KwCI4w1w1ovdQVFWlKvyRjf36naQdgYw4SFM/dxlr/OHYUFVc+VC4zGhcAil Y4VTkKwFUSt79i80by48llHByWRp2UkemLPyvuy5FTECHkuDzhJyuyjF9pL6eSjA i+SOdlxpTdnGsbvFE9rqLUVYAjESQlOLuXt3rLiEFDRJnFROcBqWUPTZcpHpbobA oNNqQl86ngWSHqzDLmawKXdYmjE6Rj+RgOF20BF/15Zh2NBiTGGZlCtPkvbK5Qp5 UrLf0PTkyRP4Hg== -----END CERTIFICATE-----Generated at Mon Dec 15 23:30:10 2025 by rpki-client