This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json) Hash identifier: OU2DFvl1a+5SfONdRRAYEOI23OMDIvE9A7owTWE3+Dk= Subject key identifier: 57:B8:06:D2:FE:09:59:E5:F7:BD:3D:76:AF:7A:47:7B:1E:6D:B7:7C Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad Certificate serial: 019B43C9FCE0A10EAB1F63CE1B1215972885 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft Manifest number: 0737 Signing time: Mon 22 Dec 2025 02:01:09 +0000 Manifest this update: Mon 22 Dec 2025 02:01:09 +0000 Manifest next update: Tue 23 Dec 2025 02:01:09 +0000 Files and hashes: 1: 6rvpyTq3GpToeI0SORQBn8auSqk.roa (hash: It3me0g3R8Ie8D4qrGq2UTC1Pz9Blt9bU50UXq7GwOE=) 2: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: 1gJkE2Sx4EQIeIroKhsuO/7RxYKLAs5yDl17wY/ZaY8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:c9:fc:e0:a1:0e:ab:1f:63:ce:1b:12:15:97:28:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad Validity Not Before: Dec 22 02:01:09 2025 GMT Not After : Dec 23 02:01:09 2025 GMT Subject: CN=57b806d2fe0959e5f7bd3d76af7a477b1e6db77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:0b:57:02:95:e7:de:16:05:2f:05:35:16: 01:05:21:55:6b:1d:4c:a4:79:1b:7e:9a:df:9c:bb: 60:1c:6f:2f:71:af:35:63:ce:be:f2:13:2a:f6:50: 87:84:d1:dd:6a:6e:8c:ca:9b:9f:8a:7b:6c:60:5e: dc:72:85:9b:74:e1:60:a4:18:9c:4e:da:a0:6e:44: cb:cd:e7:1d:8b:57:bc:86:7a:ac:09:6b:ee:ba:a3: 03:e9:d7:e0:e0:c7:c7:49:05:51:46:61:6f:ab:f8: 28:a3:cf:e3:4d:45:2b:f4:e8:3d:39:e3:b6:0b:2d: 1c:06:24:5b:3c:49:dc:ef:cd:a6:7c:66:55:95:a0: 8a:5d:fe:94:83:8f:dd:34:38:a1:e7:27:66:fb:ea: bf:e8:5f:50:5f:53:48:7b:6e:d6:cf:3f:2e:97:b2: 2d:39:96:e2:c2:2d:17:30:06:03:33:ee:15:b9:73: 85:86:05:26:b5:67:cb:a6:b3:46:97:4c:3b:86:c9: 89:23:58:cf:74:b3:ac:69:12:90:3e:b5:ed:d5:60: 5a:a3:cf:c9:15:35:83:35:cc:23:2f:b0:6d:e9:98: 64:da:34:fb:8a:99:1e:01:a3:8d:f6:ad:0b:07:b6: 0d:59:9f:92:07:e4:09:25:98:2d:51:fd:8b:fb:64: 97:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B8:06:D2:FE:09:59:E5:F7:BD:3D:76:AF:7A:47:7B:1E:6D:B7:7C X509v3 Authority Key Identifier: keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:0e:68:ab:db:81:97:53:72:56:8e:49:fe:48:f0:fd:1e:9d: e2:f8:88:d9:4f:5b:25:40:bc:04:8e:67:83:34:a0:41:38:3d: d0:01:f0:0f:15:e6:4f:b8:98:65:d7:20:b6:da:89:b7:39:29: 09:c6:91:a7:29:29:14:93:9f:f5:38:cc:b4:23:52:0b:77:12: be:50:bf:d9:72:3e:60:f4:2d:8b:59:be:c0:c2:76:f9:c8:68: f5:e8:79:1b:1d:4f:55:9e:33:eb:86:51:05:74:c2:79:15:8a: e0:9f:af:63:85:c5:ea:f1:a5:24:45:3f:c6:91:c6:52:8e:a8: ec:09:29:8a:9d:0c:19:2e:06:d4:cc:c8:4f:58:41:d4:a3:a0: 4d:33:e1:a2:e5:fa:5a:a7:8f:b4:03:22:67:5e:48:5b:64:d9: f7:16:ca:52:0c:90:c2:01:71:14:45:0a:e6:24:f5:3d:ed:90: cc:a0:d9:a5:f4:d4:0f:a8:4e:f3:04:74:2e:17:59:55:3c:4b: 34:95:3d:6c:86:9a:d3:8f:99:c1:57:d5:3e:87:fd:7d:21:b7: 1b:2c:df:af:1b:67:0b:bc:20:97:d4:98:f8:51:b6:86:40:80: b2:b1:56:55:8b:46:c2:1e:36:bf:0a:b7:4b:5b:93:24:58:76: d8:b7:82:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDyfzgoQ6rH2POGxIVlyiFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiN2IxMjA0NWIxYWYwOWFjZjk2NjJlZTM1YmEyY2Q3ZTFj ODViYWQwHhcNMjUxMjIyMDIwMTA5WhcNMjUxMjIzMDIwMTA5WjAzMTEwLwYDVQQD Eyg1N2I4MDZkMmZlMDk1OWU1ZjdiZDNkNzZhZjdhNDc3YjFlNmRiNzdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8MLVwKV594WBS8FNRYBBSFVax1M pHkbfprfnLtgHG8vca81Y86+8hMq9lCHhNHdam6MypufintsYF7ccoWbdOFgpBic TtqgbkTLzecdi1e8hnqsCWvuuqMD6dfg4MfHSQVRRmFvq/goo8/jTUUr9Og9OeO2 Cy0cBiRbPEnc782mfGZVlaCKXf6Ug4/dNDih5ydm++q/6F9QX1NIe27Wzz8ul7It OZbiwi0XMAYDM+4VuXOFhgUmtWfLprNGl0w7hsmJI1jPdLOsaRKQPrXt1WBao8/J FTWDNcwjL7Bt6Zhk2jT7ipkeAaON9q0LB7YNWZ+SB+QJJZgtUf2L+2SXOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFe4BtL+CVnl9709dq96R3sebbd8MB8GA1UdIwQY MBaAFGt7EgRbGvCaz5Zi7jW6LNfhyFutMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTNzU0JGc2E4SnJQbG1MdU5ib3MxLUhJVzYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84NjhhOWMtZmUyNS00YjU5LWEzMjkt MTg0MDFkYTQzNTYzLzEvYTNzU0JGc2E4SnJQbG1MdU5ib3MxLUhJVzYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi84NjhhOWMtZmUyNS00YjU5LWEzMjktMTg0MDFkYTQzNTYz LzEvYTNzU0JGc2E4SnJQbG1MdU5ib3MxLUhJVzYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiw5oq9uB l1NyVo5J/kjw/R6d4viI2U9bJUC8BI5ngzSgQTg90AHwDxXmT7iYZdcgttqJtzkp CcaRpykpFJOf9TjMtCNSC3cSvlC/2XI+YPQti1m+wMJ2+cho9eh5Gx1PVZ4z64ZR BXTCeRWK4J+vY4XF6vGlJEU/xpHGUo6o7Akpip0MGS4G1MzIT1hB1KOgTTPhouX6 WqePtAMiZ15IW2TZ9xbKUgyQwgFxFEUK5iT1Pe2QzKDZpfTUD6hO8wR0LhdZVTxL NJU9bIaa04+ZwVfVPof9fSG3GyzfrxtnC7wgl9SY+FG2hkCAsrFWVYtGwh42vwq3 S1uTJFh22LeC9Q== -----END CERTIFICATE-----Generated at Mon Dec 22 07:19:12 2025 by rpki-client