This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft File: r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft (raw, json) Hash identifier: OmGqo+q/DjQoMNFqENMINj/11dmHfUBbaluTJjTYK/s= Subject key identifier: DC:5D:4C:28:0D:B5:0B:43:05:00:DB:95:25:5D:A3:6E:D4:E1:CF:A5 Authority key identifier: AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33 Certificate issuer: /CN=af782dae3d40caf2223262541c4054e62945d933 Certificate serial: 019B34C602A44B0D889CBD1F33FC6E69FDED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 04:02:30 +0000 Manifest this update: Fri 19 Dec 2025 04:02:30 +0000 Manifest next update: Sat 20 Dec 2025 04:02:30 +0000 Files and hashes: 1: r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl (hash: KvzRgDNTMRNvl6oEswPay4Ro2DzO0bZQJgPgOkmg3Gg=) 2: zwiEAg55TtHyIaM_PRVFnX4DSAo.roa (hash: ylKaMThBpY1ZvZheIftHUUCXqnEHukLo3wFRWG0DpZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:02:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c6:02:a4:4b:0d:88:9c:bd:1f:33:fc:6e:69:fd:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af782dae3d40caf2223262541c4054e62945d933 Validity Not Before: Dec 19 04:02:30 2025 GMT Not After : Dec 20 04:02:30 2025 GMT Subject: CN=dc5d4c280db50b430500db95255da36ed4e1cfa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b0:7f:2c:c0:9b:97:ac:41:29:13:00:20:6d: 23:e2:ea:c5:69:9d:0b:41:3c:f7:38:b1:0d:d1:04: 1d:a0:62:6c:65:64:9d:ab:29:38:c6:1d:8e:97:d9: f7:00:d6:a5:cc:6b:50:78:a5:7b:37:25:ac:df:2a: cd:85:91:4c:45:4d:ff:1f:fd:d5:c6:06:88:b3:bd: 9c:4d:f2:88:6d:0f:3c:30:88:7f:ad:36:d7:84:00: 64:63:64:81:35:e6:98:af:53:a9:b4:97:7b:71:91: f0:6d:92:6b:73:1e:87:46:da:73:cb:00:ca:5b:04: 71:3a:83:94:c4:5c:07:6e:b4:5e:c1:c6:f5:32:f3: 4e:bc:a0:86:36:2b:b8:ae:e1:8b:2e:ba:d5:a1:25: ef:4e:3f:e7:b2:86:38:94:13:70:26:78:61:4a:13: d1:8b:92:66:82:13:e6:df:ad:af:b5:d3:50:2a:24: 18:47:5f:77:78:b0:24:a0:2f:41:fb:34:19:70:81: a0:24:67:6e:9e:27:19:21:d8:f3:a3:e7:83:e2:57: d1:9f:a8:58:cd:a4:df:b5:64:d5:f0:1f:dc:13:1c: 0a:e3:c5:2e:b5:d6:e0:6a:cf:40:a2:70:9c:e8:52: 75:96:b0:80:40:8c:69:9e:22:73:eb:c9:ce:64:ac: 4c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:5D:4C:28:0D:B5:0B:43:05:00:DB:95:25:5D:A3:6E:D4:E1:CF:A5 X509v3 Authority Key Identifier: keyid:AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:83:17:12:97:17:09:cd:cf:2c:a6:f3:dc:7b:46:80:2a:9f: ef:23:95:65:44:97:89:39:a5:ae:fd:f2:3f:84:5c:de:34:07: 21:32:2d:94:c4:3e:9d:55:b4:92:d1:ae:dc:9c:70:60:bf:f1: 2d:3b:09:90:56:e0:5e:cc:c9:1e:f4:8c:2c:45:1c:07:6e:49: f8:2e:92:8c:cd:e2:70:cb:7b:37:5d:7c:38:d3:74:f6:0e:35: 73:32:e0:fd:89:d2:42:71:f6:87:5b:e7:47:4e:97:1d:94:95: 3c:10:ec:99:9b:7a:67:0b:c5:25:b4:cf:fd:6b:f3:15:39:a7: 0b:2d:74:14:68:c1:5a:97:90:13:b5:13:d9:33:89:c7:18:f3: c4:c5:e2:f3:7a:14:f7:33:33:7e:a7:1b:f6:27:e6:45:c8:63: 58:be:c3:f9:8c:1f:58:b5:5c:4f:3a:fc:57:67:e0:09:a6:d8: e1:bd:97:a5:6e:87:42:8d:11:a3:81:7c:37:00:27:c5:da:11: 0b:0e:14:57:49:72:8b:ae:71:7f:b9:55:75:ec:71:23:ec:ac: 44:32:81:db:5b:85:fe:4c:c9:02:bf:5c:a1:19:77:54:6b:b1: 9a:81:22:23:c5:de:a2:1f:26:79:9c:ce:cc:23:72:54:75:4d: b7:6d:56:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xgKkSw2InL0fM/xuaf3tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNzgyZGFlM2Q0MGNhZjIyMjMyNjI1NDFjNDA1NGU2Mjk0 NWQ5MzMwHhcNMjUxMjE5MDQwMjMwWhcNMjUxMjIwMDQwMjMwWjAzMTEwLwYDVQQD EyhkYzVkNGMyODBkYjUwYjQzMDUwMGRiOTUyNTVkYTM2ZWQ0ZTFjZmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrB/LMCbl6xBKRMAIG0j4urFaZ0L QTz3OLEN0QQdoGJsZWSdqyk4xh2Ol9n3ANalzGtQeKV7NyWs3yrNhZFMRU3/H/3V xgaIs72cTfKIbQ88MIh/rTbXhABkY2SBNeaYr1OptJd7cZHwbZJrcx6HRtpzywDK WwRxOoOUxFwHbrRewcb1MvNOvKCGNiu4ruGLLrrVoSXvTj/nsoY4lBNwJnhhShPR i5JmghPm362vtdNQKiQYR193eLAkoC9B+zQZcIGgJGdunicZIdjzo+eD4lfRn6hY zaTftWTV8B/cExwK48Uutdbgas9AonCc6FJ1lrCAQIxpniJz68nOZKxMpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNxdTCgNtQtDBQDblSVdo27U4c+lMB8GA1UdIwQY MBaAFK94La49QMryIjJiVBxAVOYpRdkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjNndHJqMUF5dklpTW1KVUhFQlU1aWxGMlRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kZWU4MzMtZmU1Yi00YzEwLWJiZWMt ZjAxMjVkMDJlMjYyLzEvcjNndHJqMUF5dklpTW1KVUhFQlU1aWxGMlRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9kZWU4MzMtZmU1Yi00YzEwLWJiZWMtZjAxMjVkMDJlMjYy LzEvcjNndHJqMUF5dklpTW1KVUhFQlU1aWxGMlRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhoMXEpcX Cc3PLKbz3HtGgCqf7yOVZUSXiTmlrv3yP4Rc3jQHITItlMQ+nVW0ktGu3JxwYL/x LTsJkFbgXszJHvSMLEUcB25J+C6SjM3icMt7N118ONN09g41czLg/YnSQnH2h1vn R06XHZSVPBDsmZt6ZwvFJbTP/WvzFTmnCy10FGjBWpeQE7UT2TOJxxjzxMXi83oU 9zMzfqcb9ifmRchjWL7D+YwfWLVcTzr8V2fgCabY4b2XpW6HQo0Ro4F8NwAnxdoR Cw4UV0lyi65xf7lVdexxI+ysRDKB21uF/kzJAr9coRl3VGuxmoEiI8Xeoh8meZzO zCNyVHVNt21WNw== -----END CERTIFICATE-----Generated at Fri Dec 19 13:12:18 2025 by rpki-client