This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft File: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft (raw, json) Hash identifier: JF2kO+kmTSJAqBpBkBkQUyzowaxIOpF1Z1UUvrPcL7U= Subject key identifier: 75:0D:DA:AB:17:C7:0D:CF:B5:C0:B0:75:B6:FC:85:DE:ED:E9:50:1B Authority key identifier: FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC Certificate issuer: /CN=fb751302af7b5cd6bef3717b68367e02b617d2dc Certificate serial: 019B59AC739C58EFE3339720F9D296B97111 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft Manifest number: 11E3 Signing time: Fri 26 Dec 2025 08:00:31 +0000 Manifest this update: Fri 26 Dec 2025 08:00:31 +0000 Manifest next update: Sat 27 Dec 2025 08:00:31 +0000 Files and hashes: 1: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl (hash: DwYcrGj7H46kr/LvYYvMJOOvh0/g+u+QiGxc7ZImKnA=) 2: Qqhw1hFjAH2cjMyIzDFuLuhBB38.roa (hash: N8UT7eSxYsrDW5XIIE4cv48SYlBhyKYdxt2C78AnGxs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:73:9c:58:ef:e3:33:97:20:f9:d2:96:b9:71:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fb751302af7b5cd6bef3717b68367e02b617d2dc Validity Not Before: Dec 26 08:00:31 2025 GMT Not After : Dec 27 08:00:31 2025 GMT Subject: CN=750ddaab17c70dcfb5c0b075b6fc85deede9501b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:39:a9:12:76:ac:95:ca:77:58:06:f4:26:7f: 5f:8c:d7:4c:eb:cd:c3:8d:ac:8b:9f:d7:f4:0d:8a: c4:a8:db:a0:df:b1:6a:93:57:95:ee:f2:c1:37:20: 2a:5c:a2:59:85:31:68:b5:97:96:d6:ac:c5:7c:bf: 3f:06:bf:27:52:aa:10:9c:4e:e0:c5:98:1d:f1:dd: 38:4c:0a:05:b6:af:ce:81:0d:c4:f8:ff:65:c2:b0: d0:22:fe:d7:99:47:1c:6a:4c:1a:c3:03:2c:56:2f: 6a:bc:fc:3c:7d:8f:16:b4:93:7a:1f:72:5f:cd:19: 45:bd:66:7f:74:af:d8:f0:f5:1c:6c:00:dd:94:30: e9:5b:a6:b4:88:3f:0f:4e:37:de:2f:5c:56:bb:96: 23:8d:47:65:8d:51:6f:37:1f:ad:4d:d7:a9:00:63: c0:c7:eb:51:7e:52:28:21:5c:18:88:60:de:e6:d6: 19:62:63:1e:d5:ba:c4:8c:f9:3c:b2:c3:2a:f5:e7: 80:b6:eb:e4:1b:ae:f8:d5:f7:5c:c7:52:59:89:08: 10:95:e9:49:f4:f5:c8:1a:28:b2:78:ad:3a:84:37: 6e:42:9d:1c:cc:b2:bb:f3:bb:d2:ee:21:31:91:94: 71:1f:4a:44:9b:2d:94:a0:d3:49:98:f0:9d:93:f6: eb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0D:DA:AB:17:C7:0D:CF:B5:C0:B0:75:B6:FC:85:DE:ED:E9:50:1B X509v3 Authority Key Identifier: keyid:FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:cd:63:4d:32:fa:9c:d5:8d:74:2d:55:69:a3:5c:b2:16:02: 32:9c:de:84:b4:5e:2c:ee:96:84:60:1b:66:96:8d:ec:e2:7f: f8:88:2f:64:1f:c9:86:51:35:b0:5b:46:ea:42:71:65:2a:50: 72:61:56:d4:14:5c:f1:91:46:ce:e8:46:73:7b:0d:e9:e2:f6: 3c:a7:fa:08:26:51:f8:c0:05:6d:27:d6:a1:e6:ae:6e:40:8d: b0:44:7a:49:f1:62:6f:e7:66:99:3d:50:2a:6d:09:5f:56:88: 77:76:3c:11:e4:72:41:a6:8d:a8:aa:ae:6b:18:06:54:71:10: b2:a0:10:27:0b:2f:90:02:89:23:43:63:1f:93:7a:3e:4c:39: fd:0a:d3:bd:a2:7e:db:5b:9b:64:ea:b8:7d:06:0a:6a:64:24: 11:a8:2f:93:b2:cb:b3:21:9c:ed:dd:0b:e9:f5:d1:9f:9b:29: 4f:2c:ec:54:c4:31:39:02:2a:db:c8:9b:e4:65:31:0f:db:9a: c9:4d:c7:ca:1a:04:26:b0:43:2a:37:19:4a:49:90:49:3b:79: 8e:d0:c0:3e:af:90:e1:58:30:41:b1:d9:3c:3e:e9:92:57:28: 35:fb:9e:9f:f2:d9:86:2e:87:fa:af:00:65:b9:8f:d4:38:2b: 27:7b:6a:e6 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZtZrHOcWO/jM5cg+dKWuXERMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiNzUxMzAyYWY3YjVjZDZiZWYzNzE3YjY4MzY3ZTAyYjYx N2QyZGMwHhcNMjUxMjI2MDgwMDMxWhcNMjUxMjI3MDgwMDMxWjAzMTEwLwYDVQQD Eyg3NTBkZGFhYjE3YzcwZGNmYjVjMGIwNzViNmZjODVkZWVkZTk1MDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjmpEnaslcp3WAb0Jn9fjNdM683D jayLn9f0DYrEqNug37Fqk1eV7vLBNyAqXKJZhTFotZeW1qzFfL8/Br8nUqoQnE7g xZgd8d04TAoFtq/OgQ3E+P9lwrDQIv7XmUccakwawwMsVi9qvPw8fY8WtJN6H3Jf zRlFvWZ/dK/Y8PUcbADdlDDpW6a0iD8PTjfeL1xWu5YjjUdljVFvNx+tTdepAGPA x+tRflIoIVwYiGDe5tYZYmMe1brEjPk8ssMq9eeAtuvkG6741fdcx1JZiQgQlelJ 9PXIGiiyeK06hDduQp0czLK787vS7iExkZRxH0pEmy2UoNNJmPCdk/br3wIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFHUN2qsXxw3PtcCwdbb8hd7t6VAbMB8GA1UdIwQY MBaAFPt1EwKve1zWvvNxe2g2fgK2F9LcMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS0zVVRBcTk3WE5hLTgzRjdhRFotQXJZWDB0dy5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjUvNWQ0MDA0LWFhYzAtNGVhZC1hNTgw LWM2NjRiNGU4NmFiNS8xLzEtM1VUQXE5N1hOYS04M0Y3YURaLUFyWVgwdHcubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2I1LzVkNDAwNC1hYWMwLTRlYWQtYTU4MC1jNjY0YjRlODZh YjUvMS8xLTNVVEFxOTdYTmEtODNGN2FEWi1BcllYMHR3LmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASM1j TTL6nNWNdC1VaaNcshYCMpzehLReLO6WhGAbZpaN7OJ/+IgvZB/JhlE1sFtG6kJx ZSpQcmFW1BRc8ZFGzuhGc3sN6eL2PKf6CCZR+MAFbSfWoeaubkCNsER6SfFib+dm mT1QKm0JX1aId3Y8EeRyQaaNqKquaxgGVHEQsqAQJwsvkAKJI0NjH5N6Pkw5/QrT vaJ+21ubZOq4fQYKamQkEagvk7LLsyGc7d0L6fXRn5spTyzsVMQxOQIq28ib5GUx D9uayU3HyhoEJrBDKjcZSkmQSTt5jtDAPq+Q4VgwQbHZPD7pklcoNfuen/LZhi6H +q8AZbmP1DgrJ3tq5g== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:28 2025 by rpki-client