This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json) Hash identifier: K+HVeNBjL4NOb/3maq2xfKODhzr5BN1otfCR/ovfP8E= Subject key identifier: 51:F9:AC:5A:AD:E8:98:C0:1D:DA:03:FA:20:45:31:08:50:22:11:37 Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b Certificate serial: 019B345677E3B0366CB77D1FC17680F8A4B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft Manifest number: 0B95 Signing time: Fri 19 Dec 2025 02:00:40 +0000 Manifest this update: Fri 19 Dec 2025 02:00:40 +0000 Manifest next update: Sat 20 Dec 2025 02:00:40 +0000 Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: A5zb+GAkY4fqUF4yxeoEwRlkmYxhw6SKbT4tbr7IF1o=) 2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:77:e3:b0:36:6c:b7:7d:1f:c1:76:80:f8:a4:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b Validity Not Before: Dec 19 02:00:40 2025 GMT Not After : Dec 20 02:00:40 2025 GMT Subject: CN=51f9ac5aade898c01dda03fa2045310850221137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:23:03:3e:f5:22:d4:a2:f8:10:4b:6e:e6:2a: d5:27:31:7e:13:5f:16:b5:20:81:f8:0c:68:58:75: cc:1d:6d:eb:07:63:92:c1:1c:d4:ec:d9:ac:cf:4c: 95:89:31:60:6f:d0:3f:82:a2:d7:00:73:a9:58:b1: d1:44:a4:6b:de:75:75:60:14:d2:77:e2:4e:70:49: 9d:ea:fa:14:0c:89:3e:03:ed:7b:77:b1:0e:6f:bd: e1:25:34:03:3d:49:33:22:75:05:69:f3:f5:29:6c: 91:f4:07:9f:37:3c:90:62:34:cf:35:79:0d:86:9e: ac:8c:c0:69:a4:42:6b:54:e4:16:ae:4d:d4:78:88: 16:af:a4:2c:f1:dc:62:15:79:69:9e:fa:c3:8f:81: 95:d9:48:59:58:5f:42:b5:30:48:9e:67:09:27:f6: 53:44:87:91:a1:96:a7:6f:f2:4b:63:be:6e:af:e4: b8:ba:95:bf:82:37:f2:0a:9a:34:ae:9a:fb:a4:46: 12:b3:33:6d:01:64:a3:6f:e2:ae:49:cf:1d:71:2b: ca:f3:11:1c:16:32:4c:d5:6d:33:52:6d:fc:d6:91: 57:37:fe:e1:62:da:af:02:b5:a8:c0:37:b4:01:69: 43:61:68:28:5d:34:9f:3f:cc:ec:75:1b:86:7d:44: 3e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F9:AC:5A:AD:E8:98:C0:1D:DA:03:FA:20:45:31:08:50:22:11:37 X509v3 Authority Key Identifier: keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:6c:00:3d:3f:30:af:89:ea:f2:18:46:bb:a7:5e:6e:48:b5: 60:eb:0d:8f:53:b6:a9:89:28:31:70:4e:ae:1c:59:f4:b0:70: 31:9a:0a:07:0b:92:c0:18:06:e8:95:1e:ee:cb:cc:0a:2e:e2: 27:02:f6:13:29:99:6b:b5:11:dc:1e:0e:ec:1a:77:b8:ca:39: 14:59:e7:24:9b:98:66:1e:c3:90:ec:fc:d5:56:cd:26:55:0b: 73:a9:64:c8:3a:bb:29:6c:5a:aa:59:6b:d1:16:92:16:50:4a: 5e:29:3b:8b:79:c0:b2:2f:5a:91:da:fb:ee:44:7b:86:fa:5c: 32:98:0d:c3:95:e7:cf:de:c1:99:ae:18:16:98:aa:d4:34:8c: fe:13:c5:22:26:57:9b:48:48:f5:cd:16:93:8f:27:01:50:09: d9:17:07:4c:22:5a:6f:72:b2:07:db:8b:69:20:32:4f:97:2a: ea:d5:7d:f4:31:fa:30:15:48:2a:71:83:14:b5:26:65:dd:f3: 01:8c:5f:5b:39:ad:06:a0:1e:a1:e6:22:b7:d2:e6:d7:3a:56: a2:8b:f8:1c:9f:ed:3f:34:31:27:c5:0d:31:63:53:a1:7f:61: e1:fc:66:29:0f:11:f6:d1:fc:90:6f:4a:96:dc:3a:bd:0a:64: 54:fd:49:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0VnfjsDZst30fwXaA+KSzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNWIyMjRiNjU5M2U1NTgwMzhhOWU0MGU2NjBjNzcxNDI3 NTVjMWIwHhcNMjUxMjE5MDIwMDQwWhcNMjUxMjIwMDIwMDQwWjAzMTEwLwYDVQQD Eyg1MWY5YWM1YWFkZTg5OGMwMWRkYTAzZmEyMDQ1MzEwODUwMjIxMTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCMDPvUi1KL4EEtu5irVJzF+E18W tSCB+AxoWHXMHW3rB2OSwRzU7Nmsz0yViTFgb9A/gqLXAHOpWLHRRKRr3nV1YBTS d+JOcEmd6voUDIk+A+17d7EOb73hJTQDPUkzInUFafP1KWyR9AefNzyQYjTPNXkN hp6sjMBppEJrVOQWrk3UeIgWr6Qs8dxiFXlpnvrDj4GV2UhZWF9CtTBInmcJJ/ZT RIeRoZanb/JLY75ur+S4upW/gjfyCpo0rpr7pEYSszNtAWSjb+KuSc8dcSvK8xEc FjJM1W0zUm381pFXN/7hYtqvArWowDe0AWlDYWgoXTSfP8zsdRuGfUQ+GQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFH5rFqt6JjAHdoD+iBFMQhQIhE3MB8GA1UdIwQY MBaAFN1bIktlk+VYA4qeQOZgx3FCdVwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMt MzBiYmZjMDg1NWU0LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi82NTJkZmUtYWNhZS00MjQzLWJmMzMtMzBiYmZjMDg1NWU0 LzEvM1ZzaVMyV1Q1VmdEaXA1QTVtREhjVUoxWEJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkWwAPT8w r4nq8hhGu6debki1YOsNj1O2qYkoMXBOrhxZ9LBwMZoKBwuSwBgG6JUe7svMCi7i JwL2EymZa7UR3B4O7Bp3uMo5FFnnJJuYZh7DkOz81VbNJlULc6lkyDq7KWxaqllr 0RaSFlBKXik7i3nAsi9akdr77kR7hvpcMpgNw5Xnz97Bma4YFpiq1DSM/hPFIiZX m0hI9c0Wk48nAVAJ2RcHTCJab3KyB9uLaSAyT5cq6tV99DH6MBVIKnGDFLUmZd3z AYxfWzmtBqAeoeYit9Lm1zpWoov4HJ/tPzQxJ8UNMWNToX9h4fxmKQ8R9tH8kG9K ltw6vQpkVP1Jyg== -----END CERTIFICATE-----Generated at Fri Dec 19 04:55:45 2025 by rpki-client