This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft File: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft (raw, json) Hash identifier: 9uZcXX5wvTeGGQxzlFedmsyJBMfVvqo5v1f34D8dQHQ= Subject key identifier: 7B:B8:56:F3:BE:BD:A0:EC:EA:19:4B:01:D8:84:EC:4E:EE:C3:87:48 Authority key identifier: DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96 Certificate issuer: /CN=dc6baa601236ab9bea29f807a66920ed5656a196 Certificate serial: 019B33E8F87C9D3428459F162C99B35B75D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft Manifest number: 1782 Signing time: Fri 19 Dec 2025 00:01:04 +0000 Manifest this update: Fri 19 Dec 2025 00:01:04 +0000 Manifest next update: Sat 20 Dec 2025 00:01:04 +0000 Files and hashes: 1: 3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl (hash: UmaQcAMKb5Gi0zkPrDrAjz2GCZ+pSFP7mow6eKQaiZE=) 2: h-YJMMunIS0_gIZ5p26lgKRQyKc.roa (hash: bR5opkzZodiPK85GQ+pJiSPCVteQ0JuW261tZcQfTgc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:f8:7c:9d:34:28:45:9f:16:2c:99:b3:5b:75:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc6baa601236ab9bea29f807a66920ed5656a196 Validity Not Before: Dec 19 00:01:04 2025 GMT Not After : Dec 20 00:01:04 2025 GMT Subject: CN=7bb856f3bebda0ecea194b01d884ec4eeec38748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8b:69:f0:5a:65:7d:16:79:8f:16:41:22:ba: fb:77:d9:87:7e:da:fc:50:e7:06:11:ad:5b:8d:96: ed:b3:97:40:93:e5:01:5c:6f:53:4d:13:5c:01:f5: 2d:62:6a:b9:93:9b:3f:36:f5:c2:ae:75:0c:72:92: 4f:e0:02:b8:72:ce:04:69:98:31:7d:14:62:fe:3b: 49:66:e0:ad:e5:ee:0d:b7:e4:49:da:57:82:b5:42: 88:a0:df:9e:ec:ee:30:a8:5d:ad:cf:b1:2f:69:e5: 91:cd:cc:63:ae:6a:f6:d2:d3:a5:04:75:4b:52:14: 41:d6:2a:a4:4c:ea:2e:fd:e0:c3:28:41:19:e9:31: 6d:c8:7d:b6:3d:9c:62:30:d9:f1:a5:86:68:7b:27: ae:92:e7:7a:de:8b:0d:3d:32:0b:b0:16:ae:b0:bf: b8:f7:2f:e9:fe:61:7b:7e:57:2a:51:2a:79:cc:05: 6b:77:17:82:e2:a9:c3:a0:3a:e9:af:c4:fb:63:82: 84:77:84:6c:0f:30:de:20:eb:6f:25:a9:5d:df:65: e3:09:92:60:a6:73:5a:fe:c7:8a:b2:91:5f:4a:76: e8:a2:f4:62:6a:3a:ac:b8:ab:01:df:ff:a5:e6:8a: 28:a1:fa:f0:32:14:1c:0f:23:71:de:35:26:3b:2c: d5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B8:56:F3:BE:BD:A0:EC:EA:19:4B:01:D8:84:EC:4E:EE:C3:87:48 X509v3 Authority Key Identifier: keyid:DC:6B:AA:60:12:36:AB:9B:EA:29:F8:07:A6:69:20:ED:56:56:A1:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GuqYBI2q5vqKfgHpmkg7VZWoZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7bd2e3-f3c5-4955-b9a1-34a1237f1670/1/3GuqYBI2q5vqKfgHpmkg7VZWoZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:27:37:db:22:90:c8:2b:45:53:8a:7b:b4:e1:88:6a:66:ad: fd:66:8d:57:1d:b6:b5:52:8c:85:0c:27:bc:c2:75:c4:6c:c7: aa:8a:7c:09:4a:92:71:fc:6f:b9:6b:72:61:ca:84:ca:9c:4b: 41:e2:2c:df:fc:a7:28:ca:28:d5:30:0c:8c:04:28:7e:6a:bb: 69:5c:36:bd:e2:c9:11:28:ef:bf:ec:80:d8:63:f2:43:8c:16: 91:96:dd:93:e8:81:bb:bc:44:e4:18:62:31:58:11:56:1f:25: 29:7b:cf:84:f1:3f:b2:09:23:76:df:1f:3f:16:ee:1e:92:12: 9a:d1:e7:12:cd:d3:a8:5f:07:12:b1:02:83:86:72:05:0e:19: f7:91:8a:07:d5:76:98:14:59:da:8c:96:bf:15:b7:e4:5f:da: 64:d8:8c:3a:9b:ba:ca:6f:0d:1c:56:fe:59:81:f2:c6:a0:95: 50:ef:94:87:2c:f2:1d:be:16:b2:d0:24:22:9d:a4:4d:c4:30: d0:aa:35:f7:ff:c9:97:50:1c:d7:71:f0:0f:3a:69:58:00:97: 93:86:1e:53:cb:7a:97:e5:3a:af:a4:77:d6:2e:ce:83:df:11: 86:21:5b:43:04:0b:f5:72:81:ed:ee:29:57:65:21:f9:d0:2d: ce:03:ad:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6Ph8nTQoRZ8WLJmzW3XZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNmJhYTYwMTIzNmFiOWJlYTI5ZjgwN2E2NjkyMGVkNTY1 NmExOTYwHhcNMjUxMjE5MDAwMTA0WhcNMjUxMjIwMDAwMTA0WjAzMTEwLwYDVQQD Eyg3YmI4NTZmM2JlYmRhMGVjZWExOTRiMDFkODg0ZWM0ZWVlYzM4NzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Itp8FplfRZ5jxZBIrr7d9mHftr8 UOcGEa1bjZbts5dAk+UBXG9TTRNcAfUtYmq5k5s/NvXCrnUMcpJP4AK4cs4EaZgx fRRi/jtJZuCt5e4Nt+RJ2leCtUKIoN+e7O4wqF2tz7EvaeWRzcxjrmr20tOlBHVL UhRB1iqkTOou/eDDKEEZ6TFtyH22PZxiMNnxpYZoeyeukud63osNPTILsBausL+4 9y/p/mF7flcqUSp5zAVrdxeC4qnDoDrpr8T7Y4KEd4RsDzDeIOtvJald32XjCZJg pnNa/seKspFfSnboovRiajqsuKsB3/+l5oooofrwMhQcDyNx3jUmOyzVFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHu4VvO+vaDs6hlLAdiE7E7uw4dIMB8GA1UdIwQY MBaAFNxrqmASNqub6in4B6ZpIO1WVqGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83YmQyZTMtZjNjNS00OTU1LWI5YTEt MzRhMTIzN2YxNjcwLzEvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83YmQyZTMtZjNjNS00OTU1LWI5YTEtMzRhMTIzN2YxNjcw LzEvM0d1cVlCSTJxNXZxS2ZnSHBta2c3VlpXb1pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABCc32yKQ yCtFU4p7tOGIamat/WaNVx22tVKMhQwnvMJ1xGzHqop8CUqScfxvuWtyYcqEypxL QeIs3/ynKMoo1TAMjAQofmq7aVw2veLJESjvv+yA2GPyQ4wWkZbdk+iBu7xE5Bhi MVgRVh8lKXvPhPE/sgkjdt8fPxbuHpISmtHnEs3TqF8HErECg4ZyBQ4Z95GKB9V2 mBRZ2oyWvxW35F/aZNiMOpu6ym8NHFb+WYHyxqCVUO+UhyzyHb4WstAkIp2kTcQw 0Ko19//Jl1Ac13HwDzppWACXk4YeU8t6l+U6r6R31i7Og98RhiFbQwQL9XKB7e4p V2Uh+dAtzgOtLA== -----END CERTIFICATE-----Generated at Fri Dec 19 06:41:39 2025 by rpki-client