This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json) Hash identifier: X+ZEP8VW7A7KgH8u0MC073n9sAsa3rlAISTFwFKqedY= Subject key identifier: 87:62:CE:67:DB:EC:0A:8C:C6:31:8D:AB:E1:26:3C:91:02:59:93:59 Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Certificate serial: 019B42B78673E5CBB975563DB1BAFE965627 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft Manifest number: 179D Signing time: Sun 21 Dec 2025 21:01:22 +0000 Manifest this update: Sun 21 Dec 2025 21:01:22 +0000 Manifest next update: Mon 22 Dec 2025 21:01:22 +0000 Files and hashes: 1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: FJnjWB9Nj7u5EhA1ovrwSScaiv3pQ5OcZ/QyJc0Pm0c=) 2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=) 3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=) 4: Rbk5PVjqlkpGo1SxsQ_tSeJLPbo.roa (hash: BRLtcU6d3bxk4bV/7KHF4XZmiUFqH8jja8emVx8VywY=) 5: biONUDB1iLS86N-lmaqB6_yoBtQ.roa (hash: 5maaRfHknlsWIxQOJIJbyzAegwgxyX3Q4OIbKY62ook=) 6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=) 7: s30LP9oNn_a9WqmNNhVG8BZsr_E.roa (hash: niAKqfiybnbnJMKEAdo6F1LKY3RNGfAvckOC23OVwd0=) 8: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=) 9: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 21:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b7:86:73:e5:cb:b9:75:56:3d:b1:ba:fe:96:56:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Validity Not Before: Dec 21 21:01:22 2025 GMT Not After : Dec 22 21:01:22 2025 GMT Subject: CN=8762ce67dbec0a8cc6318dabe1263c9102599359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0b:fb:2d:25:eb:b5:c7:d9:5f:a9:89:4a:7b: 5a:21:4a:b9:7d:a9:51:ca:08:7d:5c:7b:19:8b:5a: 38:6a:7b:dc:08:fb:cd:b6:1d:4f:ee:a3:7b:ac:c2: c9:dd:17:6c:c7:0d:38:cb:7c:b5:f6:4b:63:f8:54: 01:30:dc:5f:58:eb:18:3b:a5:93:9c:5d:80:fd:90: 48:0f:c1:63:0c:b9:56:5a:47:88:b5:0a:98:d1:c3: c9:9f:b9:e2:f1:69:e9:7c:c1:d1:64:25:64:a7:ea: 0e:4c:87:66:64:75:7c:36:70:b4:33:21:58:ea:6d: 0a:88:97:c5:e7:3c:64:e6:c4:95:5e:43:e3:10:25: dc:9f:26:da:ca:14:fe:e2:ac:cd:ac:14:e0:9e:3e: 9b:07:39:c6:2d:ec:ed:c2:80:83:0b:af:51:6a:fb: 94:6a:37:2a:4e:9a:7a:d0:42:e0:ac:c1:3c:42:66: b0:b5:b0:4a:0c:6f:c6:41:3f:fd:d9:17:12:50:4e: d7:ce:b5:1c:7c:9d:e7:a4:95:5a:8a:5d:39:ab:06: d2:a7:6e:05:50:ee:4d:db:6c:79:3f:91:8a:2b:23: ea:80:ae:44:f3:5e:da:ba:e0:1c:2e:9f:a6:d3:d2: 95:9d:6d:41:16:09:f9:c8:66:d0:2e:8a:68:b5:f9: 0d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:62:CE:67:DB:EC:0A:8C:C6:31:8D:AB:E1:26:3C:91:02:59:93:59 X509v3 Authority Key Identifier: keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:c2:52:6f:06:e0:e7:00:ce:35:6a:cc:5d:ed:04:35:f3:0b: ea:ec:a9:d2:12:aa:73:f2:92:da:f4:56:72:f8:eb:25:4f:80: 7c:49:09:c0:6f:16:c7:03:3d:c4:4e:74:29:da:18:8b:ca:97: ee:da:1b:83:d9:e7:84:82:bc:cd:ff:7b:2a:b0:02:ad:b4:34: b1:fd:8a:7e:f4:d4:99:ef:02:e5:3f:8c:44:8e:c4:c2:eb:2c: ab:52:86:5a:57:cc:26:e3:6f:0f:1c:06:23:aa:fb:6c:0c:a0: 9a:4b:4d:b8:25:70:b9:ba:ce:7f:05:f1:26:d2:7f:41:3f:12: c4:4b:b7:13:36:5a:e4:f1:19:09:9e:22:67:06:3e:ff:86:28: 18:07:c7:1f:ba:19:c1:98:e2:29:f0:ee:b1:14:b3:b1:ce:41: 22:38:4f:d3:b1:7d:7f:a2:cc:7d:93:c6:de:da:4a:d9:9a:15: 3b:c7:a1:a2:84:f2:43:8f:c7:81:03:26:e1:6d:92:10:d6:f4: 09:10:70:3e:7a:ed:8a:79:d7:d8:1e:92:5d:08:b5:5b:18:11: 1d:29:e5:51:5a:05:c3:5e:b2:db:9d:9d:23:87:c1:20:51:1e: 8c:28:70:73:e5:a9:f4:34:57:06:9a:f6:1a:11:c8:08:c4:d6: f8:12:0d:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCt4Zz5cu5dVY9sbr+llYnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4 MTNjNWYwHhcNMjUxMjIxMjEwMTIyWhcNMjUxMjIyMjEwMTIyWjAzMTEwLwYDVQQD Eyg4NzYyY2U2N2RiZWMwYThjYzYzMThkYWJlMTI2M2M5MTAyNTk5MzU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4gv7LSXrtcfZX6mJSntaIUq5falR ygh9XHsZi1o4anvcCPvNth1P7qN7rMLJ3Rdsxw04y3y19ktj+FQBMNxfWOsYO6WT nF2A/ZBID8FjDLlWWkeItQqY0cPJn7ni8WnpfMHRZCVkp+oOTIdmZHV8NnC0MyFY 6m0KiJfF5zxk5sSVXkPjECXcnybayhT+4qzNrBTgnj6bBznGLeztwoCDC69RavuU ajcqTpp60ELgrME8QmawtbBKDG/GQT/92RcSUE7XzrUcfJ3npJVail05qwbSp24F UO5N22x5P5GKKyPqgK5E817auuAcLp+m09KVnW1BFgn5yGbQLopotfkNcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIdizmfb7AqMxjGNq+EmPJECWZNZMB8GA1UdIwQY MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL8JSbwbg 5wDONWrMXe0ENfML6uyp0hKqc/KS2vRWcvjrJU+AfEkJwG8WxwM9xE50KdoYi8qX 7tobg9nnhIK8zf97KrACrbQ0sf2KfvTUme8C5T+MRI7Ewussq1KGWlfMJuNvDxwG I6r7bAygmktNuCVwubrOfwXxJtJ/QT8SxEu3EzZa5PEZCZ4iZwY+/4YoGAfHH7oZ wZjiKfDusRSzsc5BIjhP07F9f6LMfZPG3tpK2ZoVO8ehooTyQ4/HgQMm4W2SENb0 CRBwPnrtinnX2B6SXQi1WxgRHSnlUVoFw16y252dI4fBIFEejChwc+Wp9DRXBpr2 GhHICMTW+BINDA== -----END CERTIFICATE-----Generated at Mon Dec 22 06:53:43 2025 by rpki-client