This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft File: 3fCc-W5fyHTuk5CXxWUci9hC5q0.mft (raw, json) Hash identifier: qRaXHKF5e80CDQiSnoq+v7gVv9oKbk6Gb+QdM01vTmA= Subject key identifier: 2F:56:DA:93:E7:EE:A7:1D:85:19:1C:F7:43:EE:B4:82:79:02:6F:75 Authority key identifier: DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD Certificate issuer: /CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad Certificate serial: 019B0E9298A45E9D5B7ED33B5859B7EA7738 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft Manifest number: 04A3 Signing time: Thu 11 Dec 2025 18:00:46 +0000 Manifest this update: Thu 11 Dec 2025 18:00:46 +0000 Manifest next update: Fri 12 Dec 2025 18:00:46 +0000 Files and hashes: 1: 3fCc-W5fyHTuk5CXxWUci9hC5q0.crl (hash: n65bx8J/bkqwSdrB7/+k5a34c0FdqnGjtAOSP9x8AS4=) 2: 4QrqTeH17AXNTy8pbTdrujVUbQI.roa (hash: FZeq9SJr8r+vs6lCOy39Gvb+wDR+3HmqIg9DlvmdZfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 18:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:92:98:a4:5e:9d:5b:7e:d3:3b:58:59:b7:ea:77:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddf09cf96e5fc874ee939097c5651c8bd842e6ad Validity Not Before: Dec 11 18:00:46 2025 GMT Not After : Dec 12 18:00:46 2025 GMT Subject: CN=2f56da93e7eea71d85191cf743eeb48279026f75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:52:84:e0:0f:4a:0d:36:c6:47:ca:a2:f7:76: 4f:34:73:44:2e:f7:a4:af:69:7a:e2:77:69:3a:af: 2c:1f:32:b4:b3:80:55:96:f1:29:79:d2:11:ba:29: bb:fc:cb:fd:2b:0e:26:63:a6:78:9f:04:5e:34:94: 42:b5:d7:27:ad:bf:db:32:16:90:59:a0:b2:83:f3: c6:d6:89:60:95:b2:61:33:32:81:2e:ac:64:32:fa: d1:4c:34:b4:d3:4d:81:67:3d:28:49:83:08:05:21: 54:3b:b4:f7:1f:1a:88:c7:ac:33:0d:e7:cd:51:e5: 99:8e:37:df:fa:10:86:df:55:b0:d8:27:73:df:ba: ef:38:d0:56:26:05:47:76:4e:be:36:04:fe:4c:a5: fb:77:86:0d:9e:67:d1:73:85:76:80:a1:3b:ad:76: f3:47:d9:ee:2c:61:42:cc:74:5e:68:d2:1f:33:9e: d4:f1:6a:02:8a:a7:5d:5f:aa:ca:aa:aa:53:06:7d: b5:de:6f:6b:73:a4:4e:7d:9f:32:86:5c:3c:ad:d1: db:dd:91:22:fd:95:57:5a:ca:e6:16:48:70:cf:e8: a4:24:4b:b9:f3:51:22:ba:54:a4:ee:3e:d9:1e:62: 38:8c:82:84:ec:95:8a:7b:d6:0a:2e:da:42:ff:ac: 3d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:56:DA:93:E7:EE:A7:1D:85:19:1C:F7:43:EE:B4:82:79:02:6F:75 X509v3 Authority Key Identifier: keyid:DD:F0:9C:F9:6E:5F:C8:74:EE:93:90:97:C5:65:1C:8B:D8:42:E6:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fCc-W5fyHTuk5CXxWUci9hC5q0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/0079e8-c246-4c38-9052-673670e6ef09/1/3fCc-W5fyHTuk5CXxWUci9hC5q0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:d9:b6:91:b7:bb:c1:15:46:37:44:1a:96:3f:13:89:d6:f6: e1:3c:1c:b7:41:e5:cb:02:2f:4c:b4:be:4a:5c:4a:69:cf:13: de:b9:67:1c:9f:40:c7:f3:28:39:23:1e:a0:f3:b9:4f:ca:03: a9:81:65:cd:6c:b8:09:c4:74:ce:7f:1b:ea:9b:5d:67:4d:dd: 24:66:af:fd:77:ba:86:09:23:4c:cb:5d:74:a9:38:ef:4c:72: d8:a9:ea:ed:52:d6:9e:bf:15:4f:66:72:cd:1f:c5:03:b3:37: 36:b2:85:3b:9a:57:e2:a9:57:62:66:03:71:78:df:bf:85:c5: e3:c4:b4:7e:b1:91:71:d5:0b:9b:a4:7c:b5:b5:df:62:69:d4: 75:bb:6b:f6:56:af:e5:63:47:f4:32:d6:47:b8:c3:57:d9:7f: e1:e1:09:3f:d2:46:72:79:fa:69:13:61:94:ba:c1:af:f5:7a: 5d:d3:09:16:1a:ff:6c:a0:6e:d9:05:c9:66:e7:39:58:3d:5e: b6:90:70:41:0d:97:56:cc:64:41:d9:f5:92:09:73:56:d2:07: f6:f9:78:ea:60:28:a2:1e:03:90:9a:b1:de:45:5f:4a:5c:41: e4:3e:5e:40:82:39:02:8b:4c:27:74:0e:5c:fd:8c:af:1f:ca: ed:08:4e:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOkpikXp1bftM7WFm36nc4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkZjA5Y2Y5NmU1ZmM4NzRlZTkzOTA5N2M1NjUxYzhiZDg0 MmU2YWQwHhcNMjUxMjExMTgwMDQ2WhcNMjUxMjEyMTgwMDQ2WjAzMTEwLwYDVQQD EygyZjU2ZGE5M2U3ZWVhNzFkODUxOTFjZjc0M2VlYjQ4Mjc5MDI2Zjc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVKE4A9KDTbGR8qi93ZPNHNELvek r2l64ndpOq8sHzK0s4BVlvEpedIRuim7/Mv9Kw4mY6Z4nwReNJRCtdcnrb/bMhaQ WaCyg/PG1olglbJhMzKBLqxkMvrRTDS0002BZz0oSYMIBSFUO7T3HxqIx6wzDefN UeWZjjff+hCG31Ww2Cdz37rvONBWJgVHdk6+NgT+TKX7d4YNnmfRc4V2gKE7rXbz R9nuLGFCzHReaNIfM57U8WoCiqddX6rKqqpTBn213m9rc6ROfZ8yhlw8rdHb3ZEi /ZVXWsrmFkhwz+ikJEu581EiulSk7j7ZHmI4jIKE7JWKe9YKLtpC/6w9LQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC9W2pPn7qcdhRkc90PutIJ5Am91MB8GA1UdIwQY MBaAFN3wnPluX8h07pOQl8VlHIvYQuatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2ZDYy1XNWZ5SFR1azVDWHhXVWNpOWhDNXEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8wMDc5ZTgtYzI0Ni00YzM4LTkwNTIt NjczNjcwZTZlZjA5LzEvM2ZDYy1XNWZ5SFR1azVDWHhXVWNpOWhDNXEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8wMDc5ZTgtYzI0Ni00YzM4LTkwNTItNjczNjcwZTZlZjA5 LzEvM2ZDYy1XNWZ5SFR1azVDWHhXVWNpOWhDNXEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiNm2kbe7 wRVGN0Qalj8Tidb24Twct0HlywIvTLS+SlxKac8T3rlnHJ9Ax/MoOSMeoPO5T8oD qYFlzWy4CcR0zn8b6ptdZ03dJGav/Xe6hgkjTMtddKk470xy2Knq7VLWnr8VT2Zy zR/FA7M3NrKFO5pX4qlXYmYDcXjfv4XF48S0frGRcdULm6R8tbXfYmnUdbtr9lav 5WNH9DLWR7jDV9l/4eEJP9JGcnn6aRNhlLrBr/V6XdMJFhr/bKBu2QXJZuc5WD1e tpBwQQ2XVsxkQdn1kglzVtIH9vl46mAooh4DkJqx3kVfSlxB5D5eQII5AotMJ3QO XP2Mrx/K7QhOlg== -----END CERTIFICATE-----Generated at Fri Dec 12 00:30:19 2025 by rpki-client