This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json) Hash identifier: nyb4TvjnqjZJXbrRPxrW9REjgJmtCrD7vm2w13VKfWI= Subject key identifier: 6C:15:41:DF:9B:0F:09:1D:45:63:5A:D5:D4:39:55:D5:3C:AF:43:31 Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be Certificate serial: 019B21767A02C19E418D8EA169D00D48FD72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft Manifest number: 075B Signing time: Mon 15 Dec 2025 10:02:51 +0000 Manifest this update: Mon 15 Dec 2025 10:02:51 +0000 Manifest next update: Tue 16 Dec 2025 10:02:51 +0000 Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: OD6vKlGLXiEfOV1XoQyvuKapvYit9eYSnicZPj1XEVU=) 2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:76:7a:02:c1:9e:41:8d:8e:a1:69:d0:0d:48:fd:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be Validity Not Before: Dec 15 10:02:51 2025 GMT Not After : Dec 16 10:02:51 2025 GMT Subject: CN=6c1541df9b0f091d45635ad5d43955d53caf4331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:ca:db:1b:6e:c7:a7:36:5c:f4:8e:34:e5: b6:bd:c7:10:a9:12:f8:a4:f5:ac:bb:e3:47:0f:99: dc:f6:29:c6:3c:bd:60:54:03:c1:60:dd:15:99:05: 34:d8:98:ca:f4:69:f2:3e:77:43:58:7c:d4:5b:65: 80:8d:bc:8c:7c:4a:de:bf:d2:cf:39:ba:cd:8b:11: bd:c0:4c:fc:08:05:07:4f:34:e4:4d:ec:ec:23:7f: fd:fd:00:84:d3:ff:44:68:c3:d7:54:13:b7:97:e7: d0:26:47:3f:48:6d:c7:56:96:08:55:a0:64:6e:2f: b8:09:eb:ec:60:38:5f:72:dd:f1:d8:e1:1b:54:66: 4c:e0:4b:f5:06:56:8b:00:aa:df:c5:60:a0:ea:e8: 84:b5:af:b1:94:2e:ae:3a:60:f5:0a:97:bf:59:04: d9:bc:d8:fc:94:1d:06:5f:5a:ae:10:ac:76:8a:56: c2:9d:6f:6f:d1:bc:5d:60:2a:3a:fb:5f:ba:8d:a9: 05:14:9c:57:73:be:54:3a:bb:75:96:67:bd:1c:c5: 2f:78:04:97:f0:bb:e7:77:0b:92:48:c8:3b:a3:9c: be:b2:36:f0:a0:7e:9c:5f:b1:62:33:12:92:70:89: 6a:42:d0:ad:e8:9f:76:dd:2d:36:84:68:52:4b:01: 62:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:15:41:DF:9B:0F:09:1D:45:63:5A:D5:D4:39:55:D5:3C:AF:43:31 X509v3 Authority Key Identifier: keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:c1:df:84:dd:69:df:5e:d4:19:30:20:ab:1c:61:88:3f:35: 76:b3:ae:b8:d4:03:10:14:6a:9c:b9:c8:5f:22:64:da:ad:7e: 1f:82:43:48:07:ca:46:04:73:1d:68:08:85:01:28:a2:23:0e: 07:c9:05:ef:f3:bd:07:ff:a4:54:6b:2d:ed:dc:2f:b6:3e:82: d1:ec:75:ec:1f:2f:83:89:c1:4f:34:a8:cb:c2:58:4b:3d:7c: 13:ff:25:f9:f3:72:b0:94:5b:06:ff:f8:6a:46:3b:96:59:ba: ce:46:ae:cb:57:97:a8:1c:de:bd:f8:8b:18:3b:88:8a:7f:bf: 9f:d8:d8:27:6e:85:0b:56:6f:56:b7:23:38:b8:4f:85:b0:a7: 67:4b:f8:0d:04:6e:a1:3e:13:02:40:c3:56:12:d5:d2:61:92: 4b:33:6d:f0:1c:2d:40:2a:ba:be:6d:96:e0:e1:66:a6:3b:59: 8b:4b:d8:3a:77:8c:b5:cc:c9:5d:fe:22:6e:59:4a:0d:0f:a3: 9d:6e:e2:c4:89:31:00:c6:6d:f8:5b:61:7a:89:ad:a4:cc:ec: a1:20:9a:8d:d8:1f:9f:95:8e:95:0c:61:38:8d:ef:c5:60:a0: 18:3a:12:d4:12:af:d2:d8:06:81:81:3c:63:84:be:f4:65:2f: d3:44:f2:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshdnoCwZ5BjY6hadANSP1yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi YjE5YmUwHhcNMjUxMjE1MTAwMjUxWhcNMjUxMjE2MTAwMjUxWjAzMTEwLwYDVQQD Eyg2YzE1NDFkZjliMGYwOTFkNDU2MzVhZDVkNDM5NTVkNTNjYWY0MzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx//K2xtux6c2XPSONOW2vccQqRL4 pPWsu+NHD5nc9inGPL1gVAPBYN0VmQU02JjK9GnyPndDWHzUW2WAjbyMfErev9LP ObrNixG9wEz8CAUHTzTkTezsI3/9/QCE0/9EaMPXVBO3l+fQJkc/SG3HVpYIVaBk bi+4CevsYDhfct3x2OEbVGZM4Ev1BlaLAKrfxWCg6uiEta+xlC6uOmD1Cpe/WQTZ vNj8lB0GX1quEKx2ilbCnW9v0bxdYCo6+1+6jakFFJxXc75UOrt1lme9HMUveASX 8LvndwuSSMg7o5y+sjbwoH6cX7FiMxKScIlqQtCt6J923S02hGhSSwFibQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwVQd+bDwkdRWNa1dQ5VdU8r0MxMB8GA1UdIwQY MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt YjVjM2QyNGVmZGNkLzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAucHfhN1p 317UGTAgqxxhiD81drOuuNQDEBRqnLnIXyJk2q1+H4JDSAfKRgRzHWgIhQEooiMO B8kF7/O9B/+kVGst7dwvtj6C0ex17B8vg4nBTzSoy8JYSz18E/8l+fNysJRbBv/4 akY7llm6zkauy1eXqBzevfiLGDuIin+/n9jYJ26FC1ZvVrcjOLhPhbCnZ0v4DQRu oT4TAkDDVhLV0mGSSzNt8BwtQCq6vm2W4OFmpjtZi0vYOneMtczJXf4ibllKDQ+j nW7ixIkxAMZt+FtheomtpMzsoSCajdgfn5WOlQxhOI3vxWCgGDoS1BKv0tgGgYE8 Y4S+9GUv00TyLQ== -----END CERTIFICATE-----Generated at Mon Dec 15 13:23:30 2025 by rpki-client