This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft File: 3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json) Hash identifier: j/QbWwzVAiosxwHBQvnUmdrhq/nIGeW+ZMhgYPrtm7s= Subject key identifier: 5C:F8:73:86:F3:28:CE:99:84:51:7A:AF:DF:E2:4A:6A:CA:92:FA:F5 Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6 Certificate issuer: /CN=dd0b663c45d7bc2724d168485087581e14448fb6 Certificate serial: 019B243E809173823B494AF8B747A48A987C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft Manifest number: 177B Signing time: Mon 15 Dec 2025 23:00:34 +0000 Manifest this update: Mon 15 Dec 2025 23:00:34 +0000 Manifest next update: Tue 16 Dec 2025 23:00:34 +0000 Files and hashes: 1: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: JnaFLAWcCvq41RzNlfG8cICoI6OkeV/Gr/BKTlcHHQM=) 2: I9GqI9GxRbg5gyNw2oYeQXtgJJg.roa (hash: IdZbo1C2DnUJiJSpOjjTPKnvp3frNBJygc4FMjTeWHU=) 3: OJHrSjDn0A0xOyeisC7fOP_zy4g.roa (hash: 4mrlovUy+cBI29r4SEJkRQxz3HoEwjM6nDvfGvlxWBU=) 4: ie70DJhDrGYxNNPSAG6BpAZrtxY.roa (hash: HiOIeBO8KrrORXl70BQK8AAzSZ8zCob2hQpjThQB7t8=) 5: tr4Wz-5rQhPo47mTFs_LgvHDl8s.roa (hash: PZGVkTuh77FvBlVCnDa38AVdteMzJ1COvOQXzBoIS0k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:3e:80:91:73:82:3b:49:4a:f8:b7:47:a4:8a:98:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6 Validity Not Before: Dec 15 23:00:34 2025 GMT Not After : Dec 16 23:00:34 2025 GMT Subject: CN=5cf87386f328ce9984517aafdfe24a6aca92faf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3d:b1:4f:10:2f:76:a8:a8:d7:61:46:01:4c: 01:d3:f7:53:e0:77:44:c7:bf:f2:ad:4b:c4:52:27: de:57:70:ca:70:30:8b:3a:06:08:bd:96:09:58:f2: 95:7b:71:37:0b:47:5d:73:cb:7d:09:c0:5d:9e:70: ed:79:46:16:db:3c:db:11:bc:76:c3:f4:71:c1:48: 74:88:ae:0f:eb:49:c6:24:46:88:30:ab:42:71:28: c0:3e:c2:ba:8e:6f:15:e4:e0:09:05:fc:e9:ee:32: 8c:54:ef:f8:04:b6:6e:d8:7e:0e:2e:8b:93:3e:dd: e8:d1:ac:46:32:7d:e1:2a:a6:f4:cc:b1:d2:6b:1e: 88:35:4c:46:e4:63:e5:69:31:74:48:5b:59:28:c9: 43:c7:90:fd:21:fb:43:e6:db:ed:0f:f0:8f:a4:65: 1d:a5:73:14:8d:3e:e5:cb:72:46:65:dd:66:f2:8c: 96:80:b2:79:bb:b3:d7:d0:f4:6a:3f:84:e8:7b:ad: 93:f6:f1:19:3f:b7:42:fe:c6:ae:47:89:36:c6:63: 4f:c2:fb:d4:51:84:ea:51:b9:d0:1c:6e:c0:45:10: a4:82:4f:1c:25:38:b2:53:dd:b3:95:1c:78:03:8e: 11:1f:17:0b:d1:64:7c:9a:04:9d:63:3b:54:c8:f1: 6c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F8:73:86:F3:28:CE:99:84:51:7A:AF:DF:E2:4A:6A:CA:92:FA:F5 X509v3 Authority Key Identifier: keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:17:de:d6:00:07:7e:d7:09:22:2c:6d:e1:b2:65:47:48:2a: 13:ec:03:7a:9f:ba:16:d7:45:f0:12:b0:a0:db:60:32:06:10: da:e1:5a:25:ad:0d:25:4d:50:17:6b:66:e2:5e:c2:2a:34:0c: 7e:70:ea:a6:b2:bb:e6:fc:74:d6:2c:7c:4b:bc:66:fb:84:87: 73:21:dc:2c:5f:81:6c:a0:be:63:78:9d:81:8c:6f:10:d6:82: e5:df:cd:19:bc:c1:c7:4a:03:45:9a:f9:6d:6b:ff:c4:09:14: 3f:97:f9:ec:fe:53:83:04:79:55:30:0e:c2:17:7e:36:36:f7: dd:dc:c9:53:89:40:76:c9:f7:57:f4:16:3a:8f:45:39:16:95: 0e:34:0f:66:2e:65:b6:ad:96:67:ac:3b:0d:13:2d:11:26:bc: 71:c8:4a:71:e8:60:4d:42:44:1d:01:44:da:c0:36:ba:a5:1c: 50:2d:64:db:18:40:f7:88:b9:47:29:49:0e:63:9b:f4:e8:b9: 84:ae:02:a6:6d:0f:5a:34:c5:71:20:7b:a5:38:74:a0:00:2c: 15:b0:33:a1:c6:1e:70:22:14:0f:6f:fb:58:6c:bd:ee:05:dc: 77:c2:56:be:27:4f:7e:a4:79:46:40:89:92:58:b5:95:b4:ce: c5:30:93:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskPoCRc4I7SUr4t0ekiph8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMGI2NjNjNDVkN2JjMjcyNGQxNjg0ODUwODc1ODFlMTQ0 NDhmYjYwHhcNMjUxMjE1MjMwMDM0WhcNMjUxMjE2MjMwMDM0WjAzMTEwLwYDVQQD Eyg1Y2Y4NzM4NmYzMjhjZTk5ODQ1MTdhYWZkZmUyNGE2YWNhOTJmYWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwj2xTxAvdqio12FGAUwB0/dT4HdE x7/yrUvEUifeV3DKcDCLOgYIvZYJWPKVe3E3C0ddc8t9CcBdnnDteUYW2zzbEbx2 w/RxwUh0iK4P60nGJEaIMKtCcSjAPsK6jm8V5OAJBfzp7jKMVO/4BLZu2H4OLouT Pt3o0axGMn3hKqb0zLHSax6INUxG5GPlaTF0SFtZKMlDx5D9IftD5tvtD/CPpGUd pXMUjT7ly3JGZd1m8oyWgLJ5u7PX0PRqP4Toe62T9vEZP7dC/sauR4k2xmNPwvvU UYTqUbnQHG7ARRCkgk8cJTiyU92zlRx4A44RHxcL0WR8mgSdYztUyPFsHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFz4c4bzKM6ZhFF6r9/iSmrKkvr1MB8GA1UdIwQY MBaAFN0LZjxF17wnJNFoSFCHWB4URI+2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQt M2I5ZTNjOGEyZmNhLzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQtM2I5ZTNjOGEyZmNh LzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAixfe1gAH ftcJIixt4bJlR0gqE+wDep+6FtdF8BKwoNtgMgYQ2uFaJa0NJU1QF2tm4l7CKjQM fnDqprK75vx01ix8S7xm+4SHcyHcLF+BbKC+Y3idgYxvENaC5d/NGbzBx0oDRZr5 bWv/xAkUP5f57P5TgwR5VTAOwhd+Njb33dzJU4lAdsn3V/QWOo9FORaVDjQPZi5l tq2WZ6w7DRMtESa8cchKcehgTUJEHQFE2sA2uqUcUC1k2xhA94i5RylJDmOb9Oi5 hK4Cpm0PWjTFcSB7pTh0oAAsFbAzocYecCIUD2/7WGy97gXcd8JWvidPfqR5RkCJ kli1lbTOxTCT0Q== -----END CERTIFICATE-----Generated at Tue Dec 16 05:00:26 2025 by rpki-client