This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft File: r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft (raw, json) Hash identifier: hv/QMCP9RIUNXGMxfM/O7ZGInSkB7Voi5+ZPpoSPcTA= Subject key identifier: 9F:D5:9E:CF:76:C6:0D:26:BA:05:EC:7F:17:1F:D7:8D:5F:A8:6A:F2 Authority key identifier: AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33 Certificate issuer: /CN=af782dae3d40caf2223262541c4054e62945d933 Certificate serial: 019B23632F1F9679FFF8C5B6C6566D7A41D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft Manifest number: 177B Signing time: Mon 15 Dec 2025 19:01:01 +0000 Manifest this update: Mon 15 Dec 2025 19:01:01 +0000 Manifest next update: Tue 16 Dec 2025 19:01:01 +0000 Files and hashes: 1: r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl (hash: R8Q2ik+tpwKOXG0w2Gb6XTGTjTHw8vHZJuZRZJW6aGI=) 2: zwiEAg55TtHyIaM_PRVFnX4DSAo.roa (hash: ylKaMThBpY1ZvZheIftHUUCXqnEHukLo3wFRWG0DpZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 19:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:63:2f:1f:96:79:ff:f8:c5:b6:c6:56:6d:7a:41:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af782dae3d40caf2223262541c4054e62945d933 Validity Not Before: Dec 15 19:01:01 2025 GMT Not After : Dec 16 19:01:01 2025 GMT Subject: CN=9fd59ecf76c60d26ba05ec7f171fd78d5fa86af2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ae:08:b2:f1:21:99:cb:e7:08:8a:20:5a:57: 75:22:49:7b:4c:3a:78:ef:9c:00:d2:4b:81:44:f6: 20:b3:9c:92:c7:4a:4f:99:35:0e:0a:01:29:45:ce: 47:b7:f3:46:da:e0:a0:8b:4f:30:46:b8:8d:c2:72: e2:34:58:00:47:06:21:ff:a5:ea:1f:68:fc:2d:bb: 80:55:10:d0:d3:55:e6:a7:ff:65:e7:58:b1:4f:3f: 81:f2:c2:26:37:e1:35:39:6f:82:1c:12:c7:f0:35: 9f:a4:56:d2:5a:83:65:18:75:3d:7b:cf:99:20:2d: b4:a8:a0:1e:cb:c2:c8:48:ed:75:b9:a3:25:8c:a3: 86:ff:f9:f5:88:1e:fb:c3:72:a5:38:07:61:6f:e9: f5:b2:6d:29:83:23:c6:59:79:cc:17:ed:79:00:06: 7c:79:07:e8:35:b7:6d:bf:dd:c2:04:70:60:4b:55: c6:c0:51:32:37:ae:49:bf:76:16:b6:7b:37:0f:cf: 2b:5f:e0:24:0f:5d:f8:74:01:dc:21:5e:56:f0:93: d8:6d:c6:f1:dc:74:ec:9c:dc:0f:20:9a:46:89:1d: 0b:a8:5e:c2:2f:b2:d5:28:25:69:2b:1a:12:7b:05: fa:9e:ba:15:04:bc:fd:d1:3c:6d:6f:28:e3:0e:a7: de:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D5:9E:CF:76:C6:0D:26:BA:05:EC:7F:17:1F:D7:8D:5F:A8:6A:F2 X509v3 Authority Key Identifier: keyid:AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:4c:69:cb:87:ef:10:6d:cc:98:81:c7:89:46:45:5a:b1:b2: 84:80:90:d2:5b:61:d0:5c:0f:24:89:3e:1c:1d:20:28:e8:fe: f7:1e:69:9a:45:47:e1:f2:4f:b7:b4:a0:75:e7:2f:6b:50:cd: c1:02:72:3f:09:e0:49:cb:9b:4b:d2:51:ec:35:43:b8:ae:92: e3:3c:f5:73:e9:ee:ed:8e:94:82:c0:58:ac:2d:49:6a:de:f7: 1b:c2:62:f9:ce:4d:34:1c:2e:0c:63:dc:17:75:d2:56:50:49: 40:6f:8e:25:a6:36:11:7f:bc:ae:c2:d7:d6:dd:c1:60:79:47: 58:42:36:70:1c:d6:cb:66:cc:c4:31:07:d6:0e:09:db:88:eb: a9:d2:7a:46:d5:3c:91:c1:0f:da:40:33:ec:99:22:c5:01:c3: 2c:8a:f2:0d:c5:97:b0:92:94:a3:42:76:15:a3:fa:bf:79:ae: ac:2a:18:26:16:49:07:a5:f6:f7:0a:ca:65:b2:85:93:95:37: fa:9b:1d:3e:a7:cc:a9:75:7d:79:c6:f9:1c:bc:cb:a9:5c:6f: 41:bc:6b:c5:f1:b9:8a:94:65:41:85:43:41:04:be:39:07:3d: c7:f9:a0:4a:ca:bd:e5:72:ee:a4:5d:0a:89:12:4a:01:5c:9f: 1d:93:a9:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsjYy8flnn/+MW2xlZtekHZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNzgyZGFlM2Q0MGNhZjIyMjMyNjI1NDFjNDA1NGU2Mjk0 NWQ5MzMwHhcNMjUxMjE1MTkwMTAxWhcNMjUxMjE2MTkwMTAxWjAzMTEwLwYDVQQD Eyg5ZmQ1OWVjZjc2YzYwZDI2YmEwNWVjN2YxNzFmZDc4ZDVmYTg2YWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3K4IsvEhmcvnCIogWld1Ikl7TDp4 75wA0kuBRPYgs5ySx0pPmTUOCgEpRc5Ht/NG2uCgi08wRriNwnLiNFgARwYh/6Xq H2j8LbuAVRDQ01Xmp/9l51ixTz+B8sImN+E1OW+CHBLH8DWfpFbSWoNlGHU9e8+Z IC20qKAey8LISO11uaMljKOG//n1iB77w3KlOAdhb+n1sm0pgyPGWXnMF+15AAZ8 eQfoNbdtv93CBHBgS1XGwFEyN65Jv3YWtns3D88rX+AkD134dAHcIV5W8JPYbcbx 3HTsnNwPIJpGiR0LqF7CL7LVKCVpKxoSewX6nroVBLz90TxtbyjjDqfelwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ/Vns92xg0mugXsfxcf141fqGryMB8GA1UdIwQY MBaAFK94La49QMryIjJiVBxAVOYpRdkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjNndHJqMUF5dklpTW1KVUhFQlU1aWxGMlRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kZWU4MzMtZmU1Yi00YzEwLWJiZWMt ZjAxMjVkMDJlMjYyLzEvcjNndHJqMUF5dklpTW1KVUhFQlU1aWxGMlRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9kZWU4MzMtZmU1Yi00YzEwLWJiZWMtZjAxMjVkMDJlMjYy LzEvcjNndHJqMUF5dklpTW1KVUhFQlU1aWxGMlRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM0xpy4fv EG3MmIHHiUZFWrGyhICQ0lth0FwPJIk+HB0gKOj+9x5pmkVH4fJPt7Sgdecva1DN wQJyPwngScubS9JR7DVDuK6S4zz1c+nu7Y6UgsBYrC1Jat73G8Ji+c5NNBwuDGPc F3XSVlBJQG+OJaY2EX+8rsLX1t3BYHlHWEI2cBzWy2bMxDEH1g4J24jrqdJ6RtU8 kcEP2kAz7JkixQHDLIryDcWXsJKUo0J2FaP6v3murCoYJhZJB6X29wrKZbKFk5U3 +psdPqfMqXV9ecb5HLzLqVxvQbxrxfG5ipRlQYVDQQS+OQc9x/mgSsq95XLupF0K iRJKAVyfHZOpeQ== -----END CERTIFICATE-----Generated at Tue Dec 16 04:00:05 2025 by rpki-client