This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json) Hash identifier: xcHZuaJpGz+sBXQiwoInmGDZqhr/V6AChcwKXaWqPB8= Subject key identifier: 87:1B:34:7F:11:11:24:C3:70:1C:BB:DA:0F:0D:03:F7:0A:88:60:15 Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d Certificate serial: 019B3D90833070FBA8A2E28D5BC0FB020DA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft Manifest number: 0A02 Signing time: Sat 20 Dec 2025 21:00:39 +0000 Manifest this update: Sat 20 Dec 2025 21:00:39 +0000 Manifest next update: Sun 21 Dec 2025 21:00:39 +0000 Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: qHD3wIHym7ADKt249uMsz6rxr3zNX+WaWbl0Sv5RKdg=) 2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=) 3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=) 4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:83:30:70:fb:a8:a2:e2:8d:5b:c0:fb:02:0d:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d Validity Not Before: Dec 20 21:00:39 2025 GMT Not After : Dec 21 21:00:39 2025 GMT Subject: CN=871b347f111124c3701cbbda0f0d03f70a886015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3b:5f:ec:c1:7d:23:d9:93:b3:54:e9:ee:92: ae:10:d2:76:90:d4:34:b5:74:07:d5:87:7c:6d:2f: 71:42:6c:f8:cc:0e:fe:eb:84:a0:55:70:d7:bc:34: 7a:8f:91:ef:2f:2b:fa:fe:cc:39:43:e4:6d:eb:df: aa:a1:e8:5b:8c:c6:9d:41:f8:4c:62:1c:39:8d:48: 8a:ee:a6:4c:2c:e5:4c:55:b1:ec:e5:3e:11:40:b4: 18:0c:38:38:57:27:e5:b1:ea:f2:36:ce:19:c0:54: 26:f2:62:45:dc:c9:02:82:ba:fe:ee:17:7a:a9:63: dc:18:5a:be:85:e6:67:4b:36:42:09:60:75:2b:d5: 0b:4d:d6:55:c3:1e:f9:d9:86:0f:99:dd:a7:89:51: 9f:33:6a:8c:cb:e0:08:5b:3e:eb:b5:e5:d5:87:70: b3:c0:f2:f6:ea:29:5f:8d:85:97:35:f3:20:0f:ba: 64:03:9f:bc:23:9e:03:36:51:b2:0a:ae:73:c0:0a: b2:03:3f:13:0e:fd:17:53:14:ab:15:e1:c2:ba:cb: c0:10:4c:9b:f8:65:95:2d:25:46:f9:de:bb:2e:33: 76:29:aa:21:05:20:c8:6e:ac:ae:25:a2:21:18:98: 4b:de:87:c1:87:81:17:66:bf:b5:94:f3:cf:ef:2c: 86:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:1B:34:7F:11:11:24:C3:70:1C:BB:DA:0F:0D:03:F7:0A:88:60:15 X509v3 Authority Key Identifier: keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:8f:f4:62:94:b6:4c:cf:89:9e:b9:cb:d4:db:68:58:fa:15: 80:04:ea:1c:4e:09:9e:6e:80:c3:34:b7:cf:76:ad:47:f2:b9: 0d:0a:1a:d5:97:1a:e0:ea:a1:25:36:4b:c3:eb:26:fa:52:f3: 94:ee:6a:e4:66:2b:12:45:34:8d:35:a0:54:91:eb:60:2f:cd: 3c:d7:58:3d:13:5c:e1:ad:7c:3f:27:6f:f3:7b:ca:2f:96:03: f2:e1:17:ce:c0:d2:af:3b:8f:04:88:8b:cb:0d:b3:9f:f1:36: 54:95:c6:4f:b4:f3:7e:d2:f9:9c:17:d7:82:5f:64:a1:cc:a7: 96:f3:32:05:b2:cd:59:0e:67:a9:76:c6:2a:38:4e:c0:6b:87: 91:5e:6a:60:1b:f5:ce:0a:9f:7f:78:0c:9d:6f:f0:c0:50:e0: a6:cc:4b:b9:ac:a8:94:df:08:b6:85:85:90:1a:5c:80:f1:98: 24:23:78:6c:59:78:6f:8b:04:1f:ef:a0:09:2d:cb:b4:d4:39: 7b:b3:7a:67:72:de:22:3e:b7:e2:f6:32:be:e3:3a:cf:0e:a6: 30:e0:e1:d9:59:f5:2e:d8:ce:7e:76:f1:95:9f:5f:7e:2b:e8: 1b:12:c5:3f:4a:34:4f:52:e4:5c:f8:fc:38:4a:b8:57:36:b6: c3:28:1f:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kIMwcPuoouKNW8D7Ag2mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh OTgyOGQwHhcNMjUxMjIwMjEwMDM5WhcNMjUxMjIxMjEwMDM5WjAzMTEwLwYDVQQD Eyg4NzFiMzQ3ZjExMTEyNGMzNzAxY2JiZGEwZjBkMDNmNzBhODg2MDE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDtf7MF9I9mTs1Tp7pKuENJ2kNQ0 tXQH1Yd8bS9xQmz4zA7+64SgVXDXvDR6j5HvLyv6/sw5Q+Rt69+qoehbjMadQfhM Yhw5jUiK7qZMLOVMVbHs5T4RQLQYDDg4VyflseryNs4ZwFQm8mJF3MkCgrr+7hd6 qWPcGFq+heZnSzZCCWB1K9ULTdZVwx752YYPmd2niVGfM2qMy+AIWz7rteXVh3Cz wPL26ilfjYWXNfMgD7pkA5+8I54DNlGyCq5zwAqyAz8TDv0XUxSrFeHCusvAEEyb +GWVLSVG+d67LjN2KaohBSDIbqyuJaIhGJhL3ofBh4EXZr+1lPPP7yyG8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIcbNH8RESTDcBy72g8NA/cKiGAVMB8GA1UdIwQY MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt MjlkZjRlMjYxMWYxLzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAY/0YpS2 TM+JnrnL1NtoWPoVgATqHE4Jnm6AwzS3z3atR/K5DQoa1Zca4OqhJTZLw+sm+lLz lO5q5GYrEkU0jTWgVJHrYC/NPNdYPRNc4a18Pydv83vKL5YD8uEXzsDSrzuPBIiL yw2zn/E2VJXGT7TzftL5nBfXgl9kocynlvMyBbLNWQ5nqXbGKjhOwGuHkV5qYBv1 zgqff3gMnW/wwFDgpsxLuayolN8ItoWFkBpcgPGYJCN4bFl4b4sEH++gCS3LtNQ5 e7N6Z3LeIj634vYyvuM6zw6mMODh2Vn1LtjOfnbxlZ9ffivoGxLFP0o0T1LkXPj8 OEq4Vza2wygfkg== -----END CERTIFICATE-----Generated at Sat Dec 20 22:11:33 2025 by rpki-client