This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft File: 3z_cS_M72A_hKNdWhD9gs51b7uM.mft (raw, json) Hash identifier: OANF+ujRQZPPiuPQO1217bnna0J2il4F2LZOScW+Yso= Subject key identifier: 0F:2B:15:D9:F1:CB:42:AE:F9:DF:7C:B1:41:C4:D9:55:1D:BF:A2:D8 Authority key identifier: DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3 Certificate issuer: /CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3 Certificate serial: 019B0D12F90F5A0CF1E61F8280C25F23EE92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft Manifest number: 06E8 Signing time: Thu 11 Dec 2025 11:01:45 +0000 Manifest this update: Thu 11 Dec 2025 11:01:45 +0000 Manifest next update: Fri 12 Dec 2025 11:01:45 +0000 Files and hashes: 1: 3z_cS_M72A_hKNdWhD9gs51b7uM.crl (hash: QrEDULvMu7EeQvZs2PZA9O+KnOan33y38+5g1a4GaeA=) 2: LhFRmWbupiZRrTcY1BMgZx0XNm0.roa (hash: 1sSu4Xw0ICcOgnrgocU5c3W/gRE/T8H+tT4ltd3ayqM=) 3: RVm4PleqV8m6zGkcPiKBRGWO1cI.roa (hash: 3p0hXdk+JmHhQEiq1MExor2f3lGKmZyobEJTxOu9buE=) 4: ZqlSlV8xEjtTIPrwJS75wdXWNMY.roa (hash: IHSrkovQ51TOwmRPUF5AIxkAHRZYZBJiA4cpIYri+jU=) 5: eHnC0ZqJNqxv3y7mak9QRJMJw-o.roa (hash: +LqAwsdmA3jPuO+2IgsX5kZHBO+HuvNtjbjVsU8ziig=) 6: f25v4uVZY4JbTyMqNXKXGA35WKk.roa (hash: Cmqw5364kiAvR31aujca3rQebhgV1WXm34C80bI/lTU=) 7: l05lA3ihNrsbi6O1jQgYe6U6RiI.roa (hash: cFNLHeKumGIo0r4P/u4GyYnqlWIoiMqc4hH4vqv6oWg=) 8: xJ0_FRg6EplS-mzoDbYvP1y_mUw.roa (hash: 7evtOJQCPXqekbIigyPzPGbzquzgJixLY3c438GOL/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 11:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:12:f9:0f:5a:0c:f1:e6:1f:82:80:c2:5f:23:ee:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df3fdc4bf33bd80fe128d756843f60b39d5beee3 Validity Not Before: Dec 11 11:01:45 2025 GMT Not After : Dec 12 11:01:45 2025 GMT Subject: CN=0f2b15d9f1cb42aef9df7cb141c4d9551dbfa2d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f7:61:34:83:ac:cf:60:75:58:ef:f0:4c:6b: de:62:26:98:d4:db:ad:65:ad:70:6e:ba:31:a8:a2: 7e:09:ce:86:f2:47:ac:ab:bc:cd:be:3d:21:36:54: 76:54:7e:4c:db:95:82:53:5a:e1:71:fb:ce:09:18: 09:22:b1:7e:0c:e8:07:1f:23:dc:c8:8e:1a:db:d8: b3:69:db:02:9d:a0:ef:3f:94:a3:97:46:23:a6:85: 0f:e9:cb:96:41:54:cd:36:b1:42:fd:3f:c4:a5:d3: f1:0e:89:cf:e3:f2:ea:b5:f7:e2:be:52:4b:36:47: 40:34:68:e4:17:48:f4:ea:bb:c1:df:25:ee:99:fb: 9a:2e:45:43:6a:a4:76:b8:3e:c1:83:9c:68:89:6d: 9d:ba:c0:88:9d:93:5e:14:45:d0:1b:72:86:3a:cd: 95:15:5b:6e:4a:4b:33:87:e7:f6:28:cb:45:62:d8: 9f:72:b0:2e:d0:c4:12:0b:43:d6:aa:67:13:07:0c: 0e:a5:4c:2e:5c:6e:18:b8:38:1b:a8:54:a9:87:11: b8:b6:83:7e:ef:9c:5a:bc:99:9c:a6:df:bb:87:02: 21:24:c8:dd:0b:bc:de:02:8d:04:12:25:3a:2d:9a: 1a:c4:95:b6:cd:74:55:5b:91:7a:f7:6b:43:bb:b3: cd:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:2B:15:D9:F1:CB:42:AE:F9:DF:7C:B1:41:C4:D9:55:1D:BF:A2:D8 X509v3 Authority Key Identifier: keyid:DF:3F:DC:4B:F3:3B:D8:0F:E1:28:D7:56:84:3F:60:B3:9D:5B:EE:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3z_cS_M72A_hKNdWhD9gs51b7uM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/325cd3-7edb-4026-8583-a473ec5410c3/1/3z_cS_M72A_hKNdWhD9gs51b7uM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:e7:17:ba:1b:07:12:cb:f4:72:84:b7:54:41:e5:43:a3:21: c2:96:8d:bc:ec:07:b8:54:cf:0d:58:9d:bd:99:fb:b7:bd:58: 97:e0:43:d6:d2:b2:79:89:5e:59:f0:f9:69:81:a6:d4:40:99: 7b:38:a0:78:9f:f9:a3:d6:7e:5a:c9:c6:1b:e3:c9:a6:34:11: 9f:36:85:71:60:27:51:b7:24:aa:a6:87:dd:96:e8:7c:23:29: 15:c6:b3:2c:71:a9:14:a2:6c:bb:14:1f:10:20:05:93:5c:ff: 2f:6d:9e:d1:0c:d6:38:b0:f1:53:ed:32:8b:73:56:06:ca:d3: 7e:69:76:27:d7:7b:98:04:8e:6d:e3:fc:58:ff:63:f6:ae:fc: 42:96:c1:ff:52:a6:1d:89:4e:d5:78:6c:1c:ed:79:30:4c:21: d4:a4:bd:8e:8d:1d:df:da:8f:b0:99:2e:e5:89:22:e9:1d:74: bd:97:6b:89:f2:5c:0d:84:da:02:18:8c:44:2c:ad:f5:05:ad: 25:a1:e8:29:5d:f6:5d:32:37:99:84:af:30:ec:5f:1c:3b:ef: 47:3b:91:b3:13:4a:17:35:5f:a1:99:94:6c:a5:67:5c:fb:46: 5e:2c:24:20:9c:50:3e:73:58:57:18:31:d5:75:70:a5:08:93: 2f:2f:ba:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNEvkPWgzx5h+CgMJfI+6SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmM2ZkYzRiZjMzYmQ4MGZlMTI4ZDc1Njg0M2Y2MGIzOWQ1 YmVlZTMwHhcNMjUxMjExMTEwMTQ1WhcNMjUxMjEyMTEwMTQ1WjAzMTEwLwYDVQQD EygwZjJiMTVkOWYxY2I0MmFlZjlkZjdjYjE0MWM0ZDk1NTFkYmZhMmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/dhNIOsz2B1WO/wTGveYiaY1Nut Za1wbroxqKJ+Cc6G8kesq7zNvj0hNlR2VH5M25WCU1rhcfvOCRgJIrF+DOgHHyPc yI4a29izadsCnaDvP5Sjl0YjpoUP6cuWQVTNNrFC/T/EpdPxDonP4/LqtffivlJL NkdANGjkF0j06rvB3yXumfuaLkVDaqR2uD7Bg5xoiW2dusCInZNeFEXQG3KGOs2V FVtuSkszh+f2KMtFYtifcrAu0MQSC0PWqmcTBwwOpUwuXG4YuDgbqFSphxG4toN+ 75xavJmcpt+7hwIhJMjdC7zeAo0EEiU6LZoaxJW2zXRVW5F692tDu7PN3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA8rFdnxy0Ku+d98sUHE2VUdv6LYMB8GA1UdIwQY MBaAFN8/3EvzO9gP4SjXVoQ/YLOdW+7jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3pfY1NfTTcyQV9oS05kV2hEOWdzNTFiN3VNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8zMjVjZDMtN2VkYi00MDI2LTg1ODMt YTQ3M2VjNTQxMGMzLzEvM3pfY1NfTTcyQV9oS05kV2hEOWdzNTFiN3VNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8zMjVjZDMtN2VkYi00MDI2LTg1ODMtYTQ3M2VjNTQxMGMz LzEvM3pfY1NfTTcyQV9oS05kV2hEOWdzNTFiN3VNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY+cXuhsH Esv0coS3VEHlQ6MhwpaNvOwHuFTPDVidvZn7t71Yl+BD1tKyeYleWfD5aYGm1ECZ ezigeJ/5o9Z+WsnGG+PJpjQRnzaFcWAnUbckqqaH3ZbofCMpFcazLHGpFKJsuxQf ECAFk1z/L22e0QzWOLDxU+0yi3NWBsrTfml2J9d7mASObeP8WP9j9q78QpbB/1Km HYlO1XhsHO15MEwh1KS9jo0d39qPsJku5Yki6R10vZdrifJcDYTaAhiMRCyt9QWt JaHoKV32XTI3mYSvMOxfHDvvRzuRsxNKFzVfoZmUbKVnXPtGXiwkIJxQPnNYVxgx 1XVwpQiTLy+6dA== -----END CERTIFICATE-----Generated at Thu Dec 11 19:42:48 2025 by rpki-client