This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft File: _32KebrU-YPQxJiVr1DqigPrxw0.mft (raw, json) Hash identifier: fXVy1oi2RCnTKX3GLLNo3O+WZUNTDYyh7NutsVOHjI8= Subject key identifier: 08:E7:F2:05:9F:17:A9:1B:BB:36:FD:C1:43:7A:9A:1F:A2:BF:04:01 Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d Certificate serial: 019B066BE9CDCEA3D254045E619A3CE7E60B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft Manifest number: 0E1C Signing time: Wed 10 Dec 2025 04:01:34 +0000 Manifest this update: Wed 10 Dec 2025 04:01:34 +0000 Manifest next update: Thu 11 Dec 2025 04:01:34 +0000 Files and hashes: 1: 8LrCpJVZw00cB6v7Jxmu5danMVM.roa (hash: LkYRg4fRX+WYVMtQ+HSrUSifp72hGXmKbB4Mx1yLYEo=) 2: EEy6gJAmhpmEpToeahyxI211nao.roa (hash: bt34cvtSMhR5oe2u5pXbiTmmRNH/yvwh2lEhx2KoETw=) 3: _32KebrU-YPQxJiVr1DqigPrxw0.crl (hash: A0GIDvDIssxT3ZpLdsWyd7UxS8IiW925Pvb/rx1qU4Y=) 4: is_2p9c72i9SqdHOdQECHoEj2KI.roa (hash: 68Pbkuya3pT0PDgvbPhuXTcECYTodGaR9wl/fj5QS8g=) 5: x_Wqcrl6lMASnCTH86yZWYCmrJo.roa (hash: 01Zo1iYysFTI+XplluiZNnYjCDVhj/Hk3jpPa/LikZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:06:6b:e9:cd:ce:a3:d2:54:04:5e:61:9a:3c:e7:e6:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d Validity Not Before: Dec 10 04:01:34 2025 GMT Not After : Dec 11 04:01:34 2025 GMT Subject: CN=08e7f2059f17a91bbb36fdc1437a9a1fa2bf0401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b1:48:ce:86:2a:82:b7:59:7d:e9:0e:cb:81: a2:db:6d:47:b2:d4:2c:17:27:6e:b9:7a:c8:2a:a1: 3c:eb:6e:f3:79:e8:e1:92:28:f4:4c:37:73:01:4b: ce:8e:e3:f5:3e:e3:46:a2:95:6c:80:0c:9b:f9:62: 6b:28:ac:61:51:ab:29:89:83:3d:bc:3d:4e:90:22: ef:03:73:cb:8d:51:f0:30:f5:7e:b6:83:d2:ed:e5: ff:6d:c1:5f:fc:68:01:31:de:b5:8a:09:a5:57:6b: a1:8a:53:d0:e3:7e:de:68:5d:eb:4e:f8:11:fa:96: 1e:8a:06:d2:6b:ca:7d:3e:92:c1:bd:34:03:dd:d9: 3a:50:dd:af:a9:2b:72:82:61:b9:d1:d3:4d:52:e6: 1b:cc:e4:fc:aa:e8:f0:5b:fb:b2:cc:6b:f9:a7:57: ed:88:f0:38:18:7b:18:79:56:9b:94:c9:da:95:d6: 41:6d:dc:38:ae:63:84:fb:34:4f:b4:f5:24:ed:4f: c1:de:e9:0b:e4:da:56:55:6e:a2:7f:d5:e9:2c:21: 7d:fd:ff:1f:6f:d0:10:2e:fe:28:56:92:09:8c:36: 22:37:bb:95:4f:48:54:fc:8a:ab:75:e8:87:76:a6: 33:df:a5:6f:24:bc:c9:d2:37:47:b7:56:97:ca:35: 85:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E7:F2:05:9F:17:A9:1B:BB:36:FD:C1:43:7A:9A:1F:A2:BF:04:01 X509v3 Authority Key Identifier: keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:33:3a:96:98:86:f7:b4:72:99:fb:62:3c:db:5a:8f:60:e7: 08:4f:e1:f6:b7:fd:5c:c4:be:97:ab:ad:3a:aa:f6:bd:2a:1e: 2d:2a:0b:65:85:4c:3d:a0:83:2f:af:1f:33:93:cc:af:b9:c9: 5e:d3:5b:25:8b:25:b0:4f:92:af:61:88:27:06:ff:60:5d:17: 07:34:fd:6f:bf:8e:df:90:f9:2f:e8:a2:0e:52:16:37:bc:ae: db:ca:33:d5:18:8d:a3:ab:9b:a8:90:df:64:34:23:5b:07:65: 5d:c8:0b:84:3d:b4:73:91:e2:c8:66:c5:64:6c:98:a6:e9:ff: f5:ad:15:9a:f6:bf:c2:fd:43:8f:c4:81:60:e5:32:46:cc:f6: a5:78:9a:b8:fe:41:49:a4:08:a9:60:83:c5:38:fa:5e:fc:f3: 11:cc:ec:c6:43:40:65:be:0d:6c:4a:17:56:d8:a4:9a:28:73: 34:b1:d3:18:a1:24:fd:13:78:fe:93:c8:b3:72:25:98:44:1b: 00:9a:52:da:a0:f5:2d:58:b1:3a:23:10:61:5d:4d:79:e9:bb: 48:2a:22:16:99:0d:f4:91:d2:52:33:be:92:5a:03:8f:b0:e6: 4c:69:9d:1e:99:e5:92:da:8f:1c:46:c5:a2:5f:0b:48:52:ed: ab:55:0e:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsGa+nNzqPSVAReYZo85+YLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmN2Q4YTc5YmFkNGY5ODNkMGM0OTg5NWFmNTBlYThhMDNl YmM3MGQwHhcNMjUxMjEwMDQwMTM0WhcNMjUxMjExMDQwMTM0WjAzMTEwLwYDVQQD EygwOGU3ZjIwNTlmMTdhOTFiYmIzNmZkYzE0MzdhOWExZmEyYmYwNDAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7FIzoYqgrdZfekOy4Gi221HstQs FyduuXrIKqE8627zeejhkij0TDdzAUvOjuP1PuNGopVsgAyb+WJrKKxhUaspiYM9 vD1OkCLvA3PLjVHwMPV+toPS7eX/bcFf/GgBMd61igmlV2uhilPQ437eaF3rTvgR +pYeigbSa8p9PpLBvTQD3dk6UN2vqStygmG50dNNUuYbzOT8qujwW/uyzGv5p1ft iPA4GHsYeVablMnaldZBbdw4rmOE+zRPtPUk7U/B3ukL5NpWVW6if9XpLCF9/f8f b9AQLv4oVpIJjDYiN7uVT0hU/IqrdeiHdqYz36VvJLzJ0jdHt1aXyjWFUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAjn8gWfF6kbuzb9wUN6mh+ivwQBMB8GA1UdIwQY MBaAFP99inm61PmD0MSYla9Q6ooD68cNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzMyS2ViclUtWVBReEppVnIxRHFpZ1ByeHcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NDI0ZWYtNjhhYS00YjcwLWIyY2Mt MDg3M2UzOTk0ZDBlLzEvXzMyS2ViclUtWVBReEppVnIxRHFpZ1ByeHcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi80NDI0ZWYtNjhhYS00YjcwLWIyY2MtMDg3M2UzOTk0ZDBl LzEvXzMyS2ViclUtWVBReEppVnIxRHFpZ1ByeHcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEzM6lpiG 97RymftiPNtaj2DnCE/h9rf9XMS+l6utOqr2vSoeLSoLZYVMPaCDL68fM5PMr7nJ XtNbJYslsE+Sr2GIJwb/YF0XBzT9b7+O35D5L+iiDlIWN7yu28oz1RiNo6ubqJDf ZDQjWwdlXcgLhD20c5HiyGbFZGyYpun/9a0Vmva/wv1Dj8SBYOUyRsz2pXiauP5B SaQIqWCDxTj6XvzzEczsxkNAZb4NbEoXVtikmihzNLHTGKEk/RN4/pPIs3IlmEQb AJpS2qD1LVixOiMQYV1Neem7SCoiFpkN9JHSUjO+kloDj7DmTGmdHpnlktqPHEbF ol8LSFLtq1UOTw== -----END CERTIFICATE-----Generated at Wed Dec 10 07:57:18 2025 by rpki-client