This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json) Hash identifier: UgcReY2MKAxfggGujR1TizhKT7ZiedCVnCLhGzXzw4g= Subject key identifier: ED:71:50:D1:5F:BD:6F:D2:BA:3E:23:F3:28:E9:4C:4B:30:B3:74:FA Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Certificate serial: 019B0445B16EB7B16FD0243D8CD59C62603F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft Manifest number: 177B Signing time: Tue 09 Dec 2025 18:00:34 +0000 Manifest this update: Tue 09 Dec 2025 18:00:34 +0000 Manifest next update: Wed 10 Dec 2025 18:00:34 +0000 Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: wtvROOZz5Rp6gWk16ACfxJbArTTpjEtWZHgN7gjK2Ps=) 2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=) 3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=) 4: L76bfs9TWWZl8Bl96EFZVlzxzoE.roa (hash: +NZoC7IOVINwP2lksSDULnc4emaNPZnnMnAXhFL6IOo=) 5: Rbk5PVjqlkpGo1SxsQ_tSeJLPbo.roa (hash: BRLtcU6d3bxk4bV/7KHF4XZmiUFqH8jja8emVx8VywY=) 6: biONUDB1iLS86N-lmaqB6_yoBtQ.roa (hash: 5maaRfHknlsWIxQOJIJbyzAegwgxyX3Q4OIbKY62ook=) 7: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=) 8: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=) 9: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Dec 2025 18:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:04:45:b1:6e:b7:b1:6f:d0:24:3d:8c:d5:9c:62:60:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Validity Not Before: Dec 9 18:00:34 2025 GMT Not After : Dec 10 18:00:34 2025 GMT Subject: CN=ed7150d15fbd6fd2ba3e23f328e94c4b30b374fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a9:fc:f5:d0:90:c7:4d:33:d7:6f:13:e3:00: cf:c6:dd:65:72:45:4c:d3:aa:d8:07:da:7a:ae:4e: 13:75:c0:25:5b:7e:7b:16:0c:3c:e6:ae:f4:e4:ce: 43:48:68:9f:93:a1:76:b1:00:30:b0:b9:f9:62:a8: 70:48:83:c5:f5:f4:c4:08:bf:21:2d:34:06:a4:22: 43:7c:1e:b3:6f:d0:ea:29:e6:fa:72:16:c5:b1:1a: de:4a:46:9f:c6:6b:70:2b:d7:7f:b4:0f:b3:8f:3a: 71:ca:8c:e9:8c:82:1f:1c:66:4c:62:7d:fb:ba:82: c3:07:5e:2b:29:86:ce:13:67:88:da:2d:c4:f5:8e: ec:5f:2d:7f:31:1c:c4:39:22:2d:07:c7:31:16:7a: 0a:dd:4d:6c:00:1d:6e:7c:e2:b5:a4:db:74:3a:16: d2:71:51:25:5d:88:56:cb:e5:4c:be:05:cf:2d:cc: 06:b3:09:62:d3:26:f1:7b:b7:70:6d:59:a8:6f:fc: a3:5d:d5:a7:51:ad:97:8a:55:c4:47:d9:71:70:fc: f6:ff:2f:df:32:05:1a:43:2f:06:9a:ac:69:e3:2e: 9f:20:3e:60:91:e8:99:f5:88:0b:e4:23:77:83:df: f1:6a:aa:9b:4b:60:cb:60:14:7d:78:a4:0a:9d:1e: 92:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:71:50:D1:5F:BD:6F:D2:BA:3E:23:F3:28:E9:4C:4B:30:B3:74:FA X509v3 Authority Key Identifier: keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:4e:be:eb:e0:cc:0f:18:5f:a2:d4:a0:81:43:d0:ad:5f:f0: db:60:e5:71:88:4d:b8:00:aa:3f:fa:1a:a5:7d:21:2d:25:35: f4:2d:62:e2:c0:c4:92:40:d6:33:bd:79:e1:4d:d5:67:1d:3e: 8d:b7:5a:0c:ce:cd:eb:48:f0:d4:f4:b4:7c:f4:db:d6:8d:16: 63:47:a4:b8:10:49:1b:9f:8b:a9:8c:5c:18:c1:c2:1a:d5:0a: d1:f8:75:df:46:27:16:8e:d8:97:d7:f6:57:ff:87:e0:8d:5e: e0:b0:d7:25:74:92:94:80:02:e5:cb:9e:5b:db:2f:d3:fd:37: 1c:5f:22:29:ae:d3:4e:83:54:b2:2b:4f:57:72:7b:4b:c3:92: 40:a4:bc:28:b7:6e:d6:aa:3d:44:5b:b4:01:2a:4b:42:6f:20: 64:bb:b7:1f:e4:07:8c:37:13:3b:93:a5:85:f6:99:24:8e:da: 04:12:d0:1a:ce:61:e0:bc:69:50:4a:54:0b:fb:9f:c3:7c:a6: 86:b9:41:a3:1b:40:8c:54:96:16:df:12:2f:cf:a8:81:fe:1d: 6b:8f:33:3a:95:01:1c:12:8b:9e:37:71:94:4c:e7:94:40:b2: 72:9e:ca:31:42:1e:66:a7:55:99:de:17:f2:85:7d:88:ff:06: 53:25:9c:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsERbFut7Fv0CQ9jNWcYmA/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4 MTNjNWYwHhcNMjUxMjA5MTgwMDM0WhcNMjUxMjEwMTgwMDM0WjAzMTEwLwYDVQQD EyhlZDcxNTBkMTVmYmQ2ZmQyYmEzZTIzZjMyOGU5NGM0YjMwYjM3NGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqn89dCQx00z128T4wDPxt1lckVM 06rYB9p6rk4TdcAlW357Fgw85q705M5DSGifk6F2sQAwsLn5YqhwSIPF9fTECL8h LTQGpCJDfB6zb9DqKeb6chbFsRreSkafxmtwK9d/tA+zjzpxyozpjIIfHGZMYn37 uoLDB14rKYbOE2eI2i3E9Y7sXy1/MRzEOSItB8cxFnoK3U1sAB1ufOK1pNt0OhbS cVElXYhWy+VMvgXPLcwGswli0ybxe7dwbVmob/yjXdWnUa2XilXER9lxcPz2/y/f MgUaQy8Gmqxp4y6fID5gkeiZ9YgL5CN3g9/xaqqbS2DLYBR9eKQKnR6SMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1xUNFfvW/Suj4j8yjpTEsws3T6MB8GA1UdIwQY MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMU6+6+DM DxhfotSggUPQrV/w22DlcYhNuACqP/oapX0hLSU19C1i4sDEkkDWM7154U3VZx0+ jbdaDM7N60jw1PS0fPTb1o0WY0ekuBBJG5+LqYxcGMHCGtUK0fh130YnFo7Yl9f2 V/+H4I1e4LDXJXSSlIAC5cueW9sv0/03HF8iKa7TToNUsitPV3J7S8OSQKS8KLdu 1qo9RFu0ASpLQm8gZLu3H+QHjDcTO5OlhfaZJI7aBBLQGs5h4LxpUEpUC/ufw3ym hrlBoxtAjFSWFt8SL8+ogf4da48zOpUBHBKLnjdxlEznlECycp7KMUIeZqdVmd4X 8oV9iP8GUyWc1g== -----END CERTIFICATE-----Generated at Wed Dec 10 02:29:28 2025 by rpki-client