This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft File: 3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json) Hash identifier: upPVqQ8nMpQKjbS5iSVg5uJBIiyq2+rrUXxOnuN989I= Subject key identifier: DC:92:72:CC:E7:11:E9:74:C8:8E:53:D4:02:FA:2D:BD:7D:F7:56:34 Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C Certificate issuer: /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c Certificate serial: 019B3D59DB3056B59F65173D16467D4F5E84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft Manifest number: 10E6 Signing time: Sat 20 Dec 2025 20:00:57 +0000 Manifest this update: Sat 20 Dec 2025 20:00:57 +0000 Manifest next update: Sun 21 Dec 2025 20:00:57 +0000 Files and hashes: 1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: Eic67d0zFD2Se/Zoa0JyaT7tjl3J7LPJDOdK7QW04iM=) 2: NO2hwXxk6AiYVNho9DdnmakKibo.roa (hash: KjRA6xm9G+dFvFvEr1pRfwpBhmr4/09q+ZWaH5ApdDY=) 3: On6R4nNTZ0YYv_0GBGytm6COqe8.roa (hash: bNbiiOOyNE6FHV7YY8Nd3d02QHZTqUZthKpv3jqVHn4=) 4: _UiUxv0oU2Vs8vl9aQlqGT-rguM.roa (hash: EibngS/6U5WbywdZke7WcdMlnrfByt82mvGn2UMi818=) 5: qnHwx7ZjqkHGMQ3UL_6iH_ZiPZ0.roa (hash: v6x8FXcAuZgdOrpOuZAffsHlmhE2j1MwJFDVe05keHE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:59:db:30:56:b5:9f:65:17:3d:16:46:7d:4f:5e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c Validity Not Before: Dec 20 20:00:57 2025 GMT Not After : Dec 21 20:00:57 2025 GMT Subject: CN=dc9272cce711e974c88e53d402fa2dbd7df75634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c8:25:a8:1a:f3:8a:74:43:e1:59:40:a6:5b: 97:d0:e7:57:4a:b5:6e:d1:e2:48:2c:2d:c9:1e:54: 61:6d:72:ad:6c:04:b5:79:b7:ff:2b:5e:64:f3:cc: 42:6f:af:63:2c:32:83:ac:09:2e:bf:9c:22:ff:e1: 80:9f:41:cb:82:3b:04:73:92:d9:99:fb:54:10:08: e9:02:69:10:d8:32:0f:91:a3:7b:a5:7e:b1:7d:eb: a9:9f:34:19:b9:f0:84:c4:fe:22:5b:7a:f7:45:c3: d0:9c:31:bf:a4:c5:b3:2b:ed:2d:a6:19:b3:e6:3c: 68:bd:68:91:fd:08:bb:77:a1:8b:e9:fa:f5:b4:f8: a9:62:8c:fa:ec:b5:3e:19:93:c8:cc:92:59:58:4c: 88:d5:4e:6e:c8:d7:c0:39:ec:38:d2:62:16:02:df: f3:41:30:58:a0:c2:49:32:78:36:2c:16:5e:dd:d5: 33:38:dd:26:57:15:c2:55:9e:e2:dd:5a:c7:52:8f: d9:84:71:77:88:7a:62:cf:4f:a1:d9:79:d5:88:16: 09:45:02:b1:24:a4:32:b8:ea:7f:b3:c5:4d:cf:02: 08:fe:9c:87:d9:4e:68:34:7f:51:f0:b1:05:0a:3b: b9:3e:2d:ee:1f:e1:9b:6f:5e:47:da:24:14:46:db: ab:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:92:72:CC:E7:11:E9:74:C8:8E:53:D4:02:FA:2D:BD:7D:F7:56:34 X509v3 Authority Key Identifier: keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:36:fc:9d:6c:35:a6:8d:d2:37:fc:81:f4:d2:35:2f:9a:58: 57:97:49:ae:a2:bf:93:8e:1a:5c:9b:f1:44:73:54:90:bf:d1: 47:60:34:6f:fb:82:60:a6:1b:bb:fc:fd:30:97:95:45:71:9b: 18:b2:4c:ed:e0:8e:7c:02:aa:fc:8f:54:bb:40:36:25:7a:5e: 0c:32:8b:95:98:77:e5:79:7e:60:f4:76:91:63:11:b8:d1:d8: bc:28:8c:d2:67:3e:c8:62:13:37:ba:6f:01:29:c1:33:b7:88: d7:4e:0d:e7:d9:94:29:12:ef:1d:3f:06:8e:80:04:bf:ba:c5: ff:17:17:bc:18:db:29:ab:49:1f:2a:96:90:9e:f3:90:c4:65: 16:25:45:f8:70:2b:26:50:34:2a:9e:77:b1:17:3f:53:95:c4: c7:ef:c2:48:ba:fa:a1:06:c0:ef:40:ac:33:c5:86:47:b4:26: d3:a5:8e:7f:67:c0:35:8d:b2:26:a8:15:70:d8:78:8f:2f:b0: 4a:bc:ac:45:3c:73:b8:d6:1e:88:ae:60:2e:39:f5:25:79:2b: 27:47:49:c6:84:b7:81:fa:96:89:c2:a8:9b:90:a1:c5:e8:3e: 78:b3:43:9a:2e:6f:16:28:71:d6:38:1f:4e:bc:3d:d0:eb:1b: f3:0c:bd:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9WdswVrWfZRc9FkZ9T16EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNDRlMTllMmJiNGU3MDIzY2MxYmExMGQ0OWI3NGVkZTRi Zjg2NWMwHhcNMjUxMjIwMjAwMDU3WhcNMjUxMjIxMjAwMDU3WjAzMTEwLwYDVQQD EyhkYzkyNzJjY2U3MTFlOTc0Yzg4ZTUzZDQwMmZhMmRiZDdkZjc1NjM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsglqBrzinRD4VlApluX0OdXSrVu 0eJILC3JHlRhbXKtbAS1ebf/K15k88xCb69jLDKDrAkuv5wi/+GAn0HLgjsEc5LZ mftUEAjpAmkQ2DIPkaN7pX6xfeupnzQZufCExP4iW3r3RcPQnDG/pMWzK+0tphmz 5jxovWiR/Qi7d6GL6fr1tPipYoz67LU+GZPIzJJZWEyI1U5uyNfAOew40mIWAt/z QTBYoMJJMng2LBZe3dUzON0mVxXCVZ7i3VrHUo/ZhHF3iHpiz0+h2XnViBYJRQKx JKQyuOp/s8VNzwII/pyH2U5oNH9R8LEFCju5Pi3uH+Gbb15H2iQURturrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNyScsznEel0yI5T1AL6Lb1991Y0MB8GA1UdIwQY MBaAFNxE4Z4rtOcCPMG6ENSbdO3kv4ZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjIt NGM4MmFjZTcyYzg1LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS80NmY1YjktNjAwMC00MDcyLTg5ZjItNGM4MmFjZTcyYzg1 LzEvM0VUaG5pdTA1d0k4d2JvUTFKdDA3ZVNfaGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbDb8nWw1 po3SN/yB9NI1L5pYV5dJrqK/k44aXJvxRHNUkL/RR2A0b/uCYKYbu/z9MJeVRXGb GLJM7eCOfAKq/I9Uu0A2JXpeDDKLlZh35Xl+YPR2kWMRuNHYvCiM0mc+yGITN7pv ASnBM7eI104N59mUKRLvHT8GjoAEv7rF/xcXvBjbKatJHyqWkJ7zkMRlFiVF+HAr JlA0Kp53sRc/U5XEx+/CSLr6oQbA70CsM8WGR7Qm06WOf2fANY2yJqgVcNh4jy+w SrysRTxzuNYeiK5gLjn1JXkrJ0dJxoS3gfqWicKom5Chxeg+eLNDmi5vFihx1jgf Trw90Osb8wy95Q== -----END CERTIFICATE-----Generated at Sun Dec 21 02:09:24 2025 by rpki-client