This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft File: 3c6wiktA8fheTroXzcfIPke7WX0.mft (raw, json) Hash identifier: Gcg88lf3g12iaY637mxAe2DbliGcx2+IJoFEou3KhOw= Subject key identifier: 53:60:9F:6D:52:C5:05:EA:15:76:97:CC:BE:91:4A:01:4A:E7:00:08 Authority key identifier: DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D Certificate issuer: /CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d Certificate serial: 019B42EE1631360B547F33C31E88AF0A52CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft Manifest number: 0D00 Signing time: Sun 21 Dec 2025 22:00:58 +0000 Manifest this update: Sun 21 Dec 2025 22:00:58 +0000 Manifest next update: Mon 22 Dec 2025 22:00:58 +0000 Files and hashes: 1: 3c6wiktA8fheTroXzcfIPke7WX0.crl (hash: QsZ8F4cCv0HbxMm9FVxFIJdUX2zou2xk11xpK7yMuUY=) 2: wkcnsTzQjgo9eEySS50APSZKqWQ.roa (hash: SKv++65s2nAU0vbkJDBqrGiZUMw6xX7YKBnglQkJRuE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:ee:16:31:36:0b:54:7f:33:c3:1e:88:af:0a:52:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddceb08a4b40f1f85e4eba17cdc7c83e47bb597d Validity Not Before: Dec 21 22:00:58 2025 GMT Not After : Dec 22 22:00:58 2025 GMT Subject: CN=53609f6d52c505ea157697ccbe914a014ae70008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c5:c1:bc:b0:f6:ef:b3:52:55:49:c0:4f:33: d0:33:13:b0:66:a7:e6:bc:33:e1:b7:81:ad:de:5b: fa:0d:86:3f:b7:50:94:50:72:15:50:b9:e0:e2:7f: 9f:e6:ff:10:da:e0:5c:86:58:46:ac:52:01:b6:81: fa:8b:fe:fb:8f:06:57:62:61:61:0e:be:c1:77:96: 63:6c:0d:13:4a:9c:a7:41:df:2d:8c:f5:56:b7:99: db:f1:0d:51:7f:c2:d4:4d:8f:00:24:b6:9e:9e:bc: c8:58:e0:d6:48:42:f7:29:47:ae:4c:6e:be:c1:58: 4c:91:85:1a:fe:ae:3a:3c:f8:e1:5a:a2:1b:22:cc: 2c:ab:01:e8:4c:7a:2c:0e:ea:d7:8c:36:bb:a5:05: 42:62:ed:e7:b3:0f:11:b0:73:9d:bf:96:e7:a0:13: 1f:01:93:01:de:03:ee:16:05:fb:cf:bd:8c:b3:d1: 03:20:e2:7e:99:70:ce:5d:51:d6:a2:72:f7:34:df: 55:5e:a7:0a:97:9a:c6:95:79:d6:b3:ae:c9:e5:bc: ff:e1:9a:50:16:b4:63:92:b1:8d:54:0d:77:fc:65: f7:f9:dd:06:02:44:b1:73:41:a0:a8:5f:96:a1:f9: f4:a5:63:95:b8:c8:23:7f:14:23:9f:92:aa:ab:63: cc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:60:9F:6D:52:C5:05:EA:15:76:97:CC:BE:91:4A:01:4A:E7:00:08 X509v3 Authority Key Identifier: keyid:DD:CE:B0:8A:4B:40:F1:F8:5E:4E:BA:17:CD:C7:C8:3E:47:BB:59:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c6wiktA8fheTroXzcfIPke7WX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/92b0df-e0db-4276-8334-8db944e13810/1/3c6wiktA8fheTroXzcfIPke7WX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:45:9c:91:91:2d:d5:fe:dc:32:ac:00:f3:77:85:2b:3f:b2: ff:0b:be:64:f2:79:61:21:b7:57:2e:e4:12:1b:87:c3:34:38: 47:28:22:68:f7:07:d4:1d:a6:e9:08:88:d9:b1:47:21:0f:7c: 86:4b:03:a6:bd:f7:02:97:c9:b7:99:52:23:58:c7:bc:b4:54: 3a:ef:9f:a0:fa:88:bc:c8:32:34:d3:2a:69:35:a6:e1:b6:b0: 7e:03:45:3b:b7:ad:5f:12:e9:f0:9e:9e:95:df:71:9e:de:83: 5f:d9:dc:79:de:3c:bf:54:34:eb:43:0f:d4:6f:79:02:f0:c7: 99:74:2a:9c:ae:d0:02:95:e1:36:b7:e1:71:37:7e:42:10:59: e9:61:de:d8:11:8e:95:80:34:29:8a:8f:18:74:6f:6c:47:4c: 3f:00:7c:5d:f6:10:4f:3b:2c:73:70:2a:5a:fd:91:b5:56:6e: 4f:86:d2:f3:ee:72:11:44:66:93:10:6b:ae:fd:25:db:40:ed: 64:e1:a9:a7:2a:3a:9a:ac:a3:0c:f3:03:6b:bd:dd:a6:71:fa: 4b:24:77:31:57:fd:7b:31:b7:3c:b4:80:f2:5a:03:0c:bf:51: c0:a9:48:c5:a4:13:b0:0f:02:e3:32:d2:84:1c:43:03:0a:97: 22:11:4c:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtC7hYxNgtUfzPDHoivClLPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkY2ViMDhhNGI0MGYxZjg1ZTRlYmExN2NkYzdjODNlNDdi YjU5N2QwHhcNMjUxMjIxMjIwMDU4WhcNMjUxMjIyMjIwMDU4WjAzMTEwLwYDVQQD Eyg1MzYwOWY2ZDUyYzUwNWVhMTU3Njk3Y2NiZTkxNGEwMTRhZTcwMDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8XBvLD277NSVUnATzPQMxOwZqfm vDPht4Gt3lv6DYY/t1CUUHIVULng4n+f5v8Q2uBchlhGrFIBtoH6i/77jwZXYmFh Dr7Bd5ZjbA0TSpynQd8tjPVWt5nb8Q1Rf8LUTY8AJLaenrzIWODWSEL3KUeuTG6+ wVhMkYUa/q46PPjhWqIbIswsqwHoTHosDurXjDa7pQVCYu3nsw8RsHOdv5bnoBMf AZMB3gPuFgX7z72Ms9EDIOJ+mXDOXVHWonL3NN9VXqcKl5rGlXnWs67J5bz/4ZpQ FrRjkrGNVA13/GX3+d0GAkSxc0GgqF+Wofn0pWOVuMgjfxQjn5Kqq2PMYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFNgn21SxQXqFXaXzL6RSgFK5wAIMB8GA1UdIwQY MBaAFN3OsIpLQPH4Xk66F83HyD5Hu1l9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2M2d2lrdEE4ZmhlVHJvWHpjZklQa2U3V1gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi85MmIwZGYtZTBkYi00Mjc2LTgzMzQt OGRiOTQ0ZTEzODEwLzEvM2M2d2lrdEE4ZmhlVHJvWHpjZklQa2U3V1gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi85MmIwZGYtZTBkYi00Mjc2LTgzMzQtOGRiOTQ0ZTEzODEw LzEvM2M2d2lrdEE4ZmhlVHJvWHpjZklQa2U3V1gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfUWckZEt 1f7cMqwA83eFKz+y/wu+ZPJ5YSG3Vy7kEhuHwzQ4RygiaPcH1B2m6QiI2bFHIQ98 hksDpr33ApfJt5lSI1jHvLRUOu+foPqIvMgyNNMqaTWm4bawfgNFO7etXxLp8J6e ld9xnt6DX9nced48v1Q060MP1G95AvDHmXQqnK7QApXhNrfhcTd+QhBZ6WHe2BGO lYA0KYqPGHRvbEdMPwB8XfYQTzssc3AqWv2RtVZuT4bS8+5yEURmkxBrrv0l20Dt ZOGppyo6mqyjDPMDa73dpnH6SyR3MVf9ezG3PLSA8loDDL9RwKlIxaQTsA8C4zLS hBxDAwqXIhFMiw== -----END CERTIFICATE-----Generated at Mon Dec 22 01:24:48 2025 by rpki-client