This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft File: 3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json) Hash identifier: 1wbW1FRf7s2X/4IM+ozYxiCnL+bsPG9bSA+MAzx1TQc= Subject key identifier: 47:09:06:C6:CF:9A:F4:7D:51:B4:D0:01:D2:56:69:C7:C3:55:7B:31 Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C Certificate issuer: /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c Certificate serial: 019B19165663ECA18E7FE247BD09F276AA71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft Manifest number: 177F Signing time: Sat 13 Dec 2025 19:00:52 +0000 Manifest this update: Sat 13 Dec 2025 19:00:52 +0000 Manifest next update: Sun 14 Dec 2025 19:00:52 +0000 Files and hashes: 1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 3TNT/holNKDe75P/b2DSzcpIZM+9Y3cdVqI6EH1GaMo=) 2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=) 3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=) 4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 19:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:16:56:63:ec:a1:8e:7f:e2:47:bd:09:f2:76:aa:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c Validity Not Before: Dec 13 19:00:52 2025 GMT Not After : Dec 14 19:00:52 2025 GMT Subject: CN=470906c6cf9af47d51b4d001d25669c7c3557b31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ed:a3:09:3e:0c:2f:5b:18:2d:49:80:4d:ec: 6d:fd:b2:b4:18:74:c1:4f:64:86:6a:1d:f7:d3:14: d4:bc:07:a3:af:b1:9a:3f:f3:e5:60:45:83:c9:69: c5:ce:62:b6:94:44:54:f5:f7:c3:d4:88:8b:d8:89: 45:8c:90:f3:81:96:72:41:a8:8b:d3:c8:07:dc:03: ff:b8:cd:e9:72:c3:88:71:99:fe:86:31:1a:f5:39: 76:df:d0:79:ee:47:ea:e1:3b:4c:ae:27:a5:91:99: de:1d:60:c5:c7:bc:6d:84:47:32:1a:dd:99:dd:a2: 6f:60:74:0e:6f:06:5c:3e:e4:33:7a:d7:f4:e3:bd: 2b:ea:cd:56:83:71:9c:a2:11:cd:73:81:e6:2d:13: 73:2e:7f:f5:35:de:72:6f:fb:87:cf:44:6f:82:2e: 1b:5b:40:9f:f9:96:0d:eb:03:e5:4e:d9:a2:2a:db: 4a:6d:33:33:b4:2c:55:7f:e2:74:fa:ce:c1:56:a4: c3:db:2a:40:7a:5c:db:24:b4:40:b7:4e:25:0c:9e: c2:52:38:44:46:14:cb:ec:51:bb:0d:c8:37:d2:fd: 56:ca:01:a0:8c:11:3a:30:d4:ba:e7:0b:26:69:e4: 0f:25:00:76:56:63:28:f4:11:4d:1e:18:df:0e:8d: 44:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:09:06:C6:CF:9A:F4:7D:51:B4:D0:01:D2:56:69:C7:C3:55:7B:31 X509v3 Authority Key Identifier: keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:3b:f1:4d:40:0a:c2:56:62:c2:a4:39:91:44:0f:b1:95:02: ae:4a:1c:c6:38:3f:db:75:36:16:fa:32:51:20:b4:6f:b9:1a: a2:a2:75:86:5e:1c:0d:e0:52:b0:7c:87:e3:84:d4:d2:f9:ca: ce:0b:54:c4:59:57:99:95:ac:db:c1:35:4f:5c:9d:ae:cf:b0: b6:d4:4c:c3:43:6a:47:7d:d4:aa:8b:fb:42:97:15:be:45:24: bd:52:89:f6:ac:8a:73:2a:55:ba:7a:b0:4a:4f:01:4a:52:04: 0e:3c:29:96:ab:98:81:70:41:89:48:23:8f:e5:43:ec:a9:0b: 48:75:f6:c5:01:04:55:de:fe:7a:57:fa:96:e4:4e:1c:b7:17: c5:58:3e:a1:9f:d3:a7:32:47:29:3d:90:76:5e:b3:70:ba:ff: f1:88:4f:19:7a:c7:0f:8d:57:e4:cf:8b:45:af:85:31:b5:4c: 3c:49:44:3e:1c:7f:00:1c:2b:77:3f:d4:4f:95:1b:82:aa:93: 88:5c:2c:67:ca:62:a3:01:cc:70:8c:2f:15:35:91:ff:c5:b6: a6:f4:ca:d2:91:11:b7:c7:45:bb:9e:2e:8e:46:22:17:0f:73: 4d:bc:30:f7:a4:cd:29:cd:e0:a3:4f:1e:55:7b:2a:70:79:7f: c1:cf:22:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZFlZj7KGOf+JHvQnydqpxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjY2IyZDVmYjI1Mzg1MmYxODIzYzY1NDM0ZThmMjc2ZDA0 ZTRlMGMwHhcNMjUxMjEzMTkwMDUyWhcNMjUxMjE0MTkwMDUyWjAzMTEwLwYDVQQD Eyg0NzA5MDZjNmNmOWFmNDdkNTFiNGQwMDFkMjU2NjljN2MzNTU3YjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAre2jCT4ML1sYLUmAText/bK0GHTB T2SGah330xTUvAejr7GaP/PlYEWDyWnFzmK2lERU9ffD1IiL2IlFjJDzgZZyQaiL 08gH3AP/uM3pcsOIcZn+hjEa9Tl239B57kfq4TtMrielkZneHWDFx7xthEcyGt2Z 3aJvYHQObwZcPuQzetf0470r6s1Wg3GcohHNc4HmLRNzLn/1Nd5yb/uHz0Rvgi4b W0Cf+ZYN6wPlTtmiKttKbTMztCxVf+J0+s7BVqTD2ypAelzbJLRAt04lDJ7CUjhE RhTL7FG7Dcg30v1WygGgjBE6MNS65wsmaeQPJQB2VmMo9BFNHhjfDo1EQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEcJBsbPmvR9UbTQAdJWacfDVXsxMB8GA1UdIwQY MBaAFNzLLV+yU4UvGCPGVDTo8nbQTk4MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM01zdFg3SlRoUzhZSThaVU5PanlkdEJPVGd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83YzFjMjktY2EwMi00OTBiLWFhODQt ZTFhOGE2ZjFkNTlhLzEvM01zdFg3SlRoUzhZSThaVU5PanlkdEJPVGd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS83YzFjMjktY2EwMi00OTBiLWFhODQtZTFhOGE2ZjFkNTlh LzEvM01zdFg3SlRoUzhZSThaVU5PanlkdEJPVGd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaTvxTUAK wlZiwqQ5kUQPsZUCrkocxjg/23U2FvoyUSC0b7kaoqJ1hl4cDeBSsHyH44TU0vnK zgtUxFlXmZWs28E1T1ydrs+wttRMw0NqR33Uqov7QpcVvkUkvVKJ9qyKcypVunqw Sk8BSlIEDjwplquYgXBBiUgjj+VD7KkLSHX2xQEEVd7+elf6luROHLcXxVg+oZ/T pzJHKT2Qdl6zcLr/8YhPGXrHD41X5M+LRa+FMbVMPElEPhx/ABwrdz/UT5UbgqqT iFwsZ8piowHMcIwvFTWR/8W2pvTK0pERt8dFu54ujkYiFw9zTbww96TNKc3go08e VXsqcHl/wc8iIw== -----END CERTIFICATE-----Generated at Sun Dec 14 03:44:41 2025 by rpki-client