This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json) Hash identifier: gaDJ87VBFZ5nYrXU5Vm1P+GRPifrZaVMJvodEjpJ+fA= Subject key identifier: B8:D6:0C:A7:C1:54:BC:26:37:08:4F:17:62:0C:27:F5:22:28:9A:F7 Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0 Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0 Certificate serial: 019B48832243EE74E672609781E6DEA080D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft Manifest number: 1722 Signing time: Tue 23 Dec 2025 00:01:52 +0000 Manifest this update: Tue 23 Dec 2025 00:01:52 +0000 Manifest next update: Wed 24 Dec 2025 00:01:52 +0000 Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: vfgl/fPZphyunVo6NQV+0eTpc7aK0UiqikfZ0DKyGTs=) 2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:83:22:43:ee:74:e6:72:60:97:81:e6:de:a0:80:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0 Validity Not Before: Dec 23 00:01:52 2025 GMT Not After : Dec 24 00:01:52 2025 GMT Subject: CN=b8d60ca7c154bc2637084f17620c27f522289af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:14:00:7a:dd:13:56:0b:df:9a:b8:d2:9b:7c: a4:2d:2d:06:bd:da:95:98:e1:5d:67:38:aa:53:4a: b7:69:93:9b:65:a2:62:42:24:84:db:e7:ed:1b:1b: 26:7f:3a:9c:3d:e9:d2:57:64:6f:bb:a7:83:26:47: d3:a5:0e:a4:8a:82:b1:0e:9d:ca:05:43:f0:c7:ac: bb:a5:85:78:7f:89:c3:1a:aa:37:73:d2:91:5e:9e: 91:d3:fb:4b:81:84:b8:0c:bf:d0:3e:32:9c:62:85: cc:f2:3f:14:b5:a0:02:af:b9:3b:6f:b7:ca:d3:0a: fd:83:9d:e7:a8:66:2d:03:2f:18:08:1e:c7:a7:94: 09:e9:51:b2:12:1b:2c:02:7f:d4:3a:2a:4d:d1:c2: 44:3b:87:01:05:a2:98:78:bd:31:c6:e5:70:2d:bf: 04:31:7b:a2:5c:8f:3d:cd:db:fa:4d:4d:b6:51:b3: 72:65:ed:ef:42:1b:52:16:31:34:44:47:db:9c:58: 6d:6b:6d:28:23:12:37:6e:29:f1:a3:3d:03:97:d5: 61:b8:43:1d:00:78:b9:6c:a7:45:c8:c8:a9:d4:d5: 18:9a:f8:d1:ca:d0:e7:e1:17:4f:81:5b:fa:7f:ab: 74:db:75:2e:1a:2f:f8:67:1d:ea:73:5f:c9:2d:6e: c8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D6:0C:A7:C1:54:BC:26:37:08:4F:17:62:0C:27:F5:22:28:9A:F7 X509v3 Authority Key Identifier: keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:a9:19:64:e2:19:3a:a8:28:d9:03:d0:0f:43:65:41:b6:dc: e1:5f:e9:26:b0:5c:48:bc:b9:c3:54:79:5e:21:2f:70:a8:0a: 69:34:c5:94:b8:7f:d9:4d:04:16:42:06:d7:65:04:97:b6:7b: 18:5f:e8:06:20:d7:8a:3d:a3:ff:6e:d7:79:96:dc:bf:1a:1d: f6:be:22:6c:6c:b2:a6:9b:00:f5:f4:49:a6:81:3d:38:48:77: e9:8f:71:33:cb:ca:ee:d3:cf:4d:5d:da:e3:32:13:33:8d:97: 01:92:16:87:d8:02:97:3d:26:6c:0b:c0:dd:4d:80:b6:d2:a7: 31:f4:5c:a9:a2:7d:24:50:32:f9:2e:21:52:1f:0d:66:ff:68: 2b:ea:aa:8d:c0:48:46:87:ca:05:98:db:d4:04:75:fe:f7:26: 3b:ac:73:7a:24:2a:e2:a1:a6:cf:79:99:b9:a0:5b:af:ed:18: 0d:65:32:f0:a7:3e:16:3f:4c:0c:ac:a3:d3:17:c9:33:98:4a: 09:3f:9f:e8:0c:0e:0e:38:1d:f1:5a:f6:15:eb:2c:1c:f8:85: 8e:6c:ab:52:75:a0:d9:27:69:bf:77:60:77:77:39:ce:f9:04: 85:6d:9d:5e:a9:81:66:5e:1f:c9:6e:34:d6:8f:f0:87:11:77: 2a:df:31:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIgyJD7nTmcmCXgebeoIDXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMTY5OTUyZjk3ZjQ5NGNmZTBmNmI1NDI3Y2E1NmU4MTBj MDVjZTAwHhcNMjUxMjIzMDAwMTUyWhcNMjUxMjI0MDAwMTUyWjAzMTEwLwYDVQQD EyhiOGQ2MGNhN2MxNTRiYzI2MzcwODRmMTc2MjBjMjdmNTIyMjg5YWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RQAet0TVgvfmrjSm3ykLS0GvdqV mOFdZziqU0q3aZObZaJiQiSE2+ftGxsmfzqcPenSV2Rvu6eDJkfTpQ6kioKxDp3K BUPwx6y7pYV4f4nDGqo3c9KRXp6R0/tLgYS4DL/QPjKcYoXM8j8UtaACr7k7b7fK 0wr9g53nqGYtAy8YCB7Hp5QJ6VGyEhssAn/UOipN0cJEO4cBBaKYeL0xxuVwLb8E MXuiXI89zdv6TU22UbNyZe3vQhtSFjE0REfbnFhta20oIxI3binxoz0Dl9VhuEMd AHi5bKdFyMip1NUYmvjRytDn4RdPgVv6f6t023UuGi/4Zx3qc1/JLW7IqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLjWDKfBVLwmNwhPF2IMJ/UiKJr3MB8GA1UdIwQY MBaAFN4WmVL5f0lM/g9rVCfKVugQwFzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEt MGY0YjI4Yjg4NmY3LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEtMGY0YjI4Yjg4NmY3 LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoqkZZOIZ Oqgo2QPQD0NlQbbc4V/pJrBcSLy5w1R5XiEvcKgKaTTFlLh/2U0EFkIG12UEl7Z7 GF/oBiDXij2j/27XeZbcvxod9r4ibGyyppsA9fRJpoE9OEh36Y9xM8vK7tPPTV3a 4zITM42XAZIWh9gClz0mbAvA3U2AttKnMfRcqaJ9JFAy+S4hUh8NZv9oK+qqjcBI RofKBZjb1AR1/vcmO6xzeiQq4qGmz3mZuaBbr+0YDWUy8Kc+Fj9MDKyj0xfJM5hK CT+f6AwODjgd8Vr2FessHPiFjmyrUnWg2Sdpv3dgd3c5zvkEhW2dXqmBZl4fyW40 1o/whxF3Kt8xoA== -----END CERTIFICATE-----Generated at Tue Dec 23 06:05:29 2025 by rpki-client