This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft File: is3dXDDVgOsP7soqFs9cWoslaP0.mft (raw, json) Hash identifier: Tiaz+YlCL2r+gzI2Xhd4TJ9SwNNHajtRAHd619cu7Fk= Subject key identifier: 14:41:7F:00:C4:58:0F:67:4A:E5:06:CA:14:BA:DD:DF:61:B9:3D:12 Authority key identifier: 8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD Certificate issuer: /CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd Certificate serial: 019B39B4015C2740400E62ACB980ABF8F9B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft Manifest number: 1789 Signing time: Sat 20 Dec 2025 03:00:56 +0000 Manifest this update: Sat 20 Dec 2025 03:00:56 +0000 Manifest next update: Sun 21 Dec 2025 03:00:56 +0000 Files and hashes: 1: 1-BU0QGGPOY6StLl6EjdaPUoRp0U.roa (hash: YErgeEfB3mK/ybWEoY6pFZ+o+6uteNHWASk7smyhzI8=) 2: is3dXDDVgOsP7soqFs9cWoslaP0.crl (hash: rqjBzbY33tIDJhzbEFcrsbG6F5jsRXN/+ong83A0RGU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:b4:01:5c:27:40:40:0e:62:ac:b9:80:ab:f8:f9:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8acddd5c30d580eb0feeca2a16cf5c5a8b2568fd Validity Not Before: Dec 20 03:00:56 2025 GMT Not After : Dec 21 03:00:56 2025 GMT Subject: CN=14417f00c4580f674ae506ca14badddf61b93d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:86:f3:0a:4a:d9:bd:43:f9:12:ba:dc:ee: b3:f2:6f:43:d4:12:81:70:e7:55:b9:45:ce:bb:53: d5:15:7e:e0:14:d7:ed:49:05:37:7f:bd:ae:ec:90: 6e:17:27:3c:3a:de:24:9d:0d:98:7d:ac:fc:2c:00: d8:69:66:f9:09:8e:5d:bc:27:c7:ce:42:88:79:84: 59:5a:54:40:c7:09:08:97:1b:95:54:7a:21:bf:2e: da:20:e7:cf:ea:3b:e8:2b:9e:a5:82:93:74:48:be: d0:04:96:ce:b7:28:56:89:ad:20:68:43:62:3a:cc: a5:f2:7d:78:f4:20:5f:b0:79:9d:dd:ed:82:ad:76: 72:49:e8:e7:c3:3e:49:0f:c9:b5:13:54:7f:66:24: 2d:13:bd:81:8e:23:63:86:0f:42:13:e6:66:4a:ad: 65:75:0a:d4:3d:2c:ef:f2:b2:bf:37:b4:71:6a:42: 2a:6d:05:cd:a7:5a:0d:a7:ff:f5:97:91:de:20:99: d0:c8:d9:da:6f:f5:b6:9a:93:3a:a5:29:fc:c9:dc: 71:c7:f8:47:a8:7c:f7:a1:f1:ea:24:2a:3e:e4:2b: 09:ae:71:a0:a4:d8:dd:79:3c:3a:23:f0:45:96:15: 55:df:23:38:f9:ae:22:6e:ee:ed:51:ca:7d:86:b6: 49:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:41:7F:00:C4:58:0F:67:4A:E5:06:CA:14:BA:DD:DF:61:B9:3D:12 X509v3 Authority Key Identifier: keyid:8A:CD:DD:5C:30:D5:80:EB:0F:EE:CA:2A:16:CF:5C:5A:8B:25:68:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/is3dXDDVgOsP7soqFs9cWoslaP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/25aca7-7e28-487c-86d2-17b1c7379300/1/is3dXDDVgOsP7soqFs9cWoslaP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e4:39:53:e5:be:37:c9:74:36:d3:c5:e2:a3:74:9f:02:28:b9: ab:cb:a4:6c:60:75:78:af:73:17:97:6b:d4:90:20:3e:64:d0: bc:06:1a:18:56:ba:bd:57:d6:a0:c3:f6:bc:6c:73:02:85:4f: 6f:9f:7a:3f:f3:c0:b0:2b:ac:cb:de:ee:bd:43:36:12:da:d3: 16:17:d8:14:52:2f:d2:3b:28:60:a0:df:56:21:ff:b1:23:7f: ed:79:ce:14:a5:9f:41:7c:2c:bd:ea:10:22:81:1b:2e:f1:70: 6e:c4:75:f8:93:62:cc:4e:f9:5e:aa:de:db:43:0a:ab:2b:86: 56:76:59:df:6a:0d:55:54:e3:c3:04:89:2e:34:2b:91:16:51: cd:a0:74:57:05:0f:54:d7:55:6a:dd:1d:d3:3e:d1:4c:44:f9: df:c2:3d:5a:e6:ab:90:6f:27:76:4e:6d:8b:90:33:cd:71:2f: e2:51:eb:49:a5:13:84:3c:97:bc:f7:c8:23:81:cc:03:0a:31: a0:b8:2f:57:25:16:e7:0d:53:f3:d6:34:ea:f2:b3:46:2c:fe: cc:21:3d:09:2c:9a:47:3e:0d:af:8f:c7:4e:4a:c4:9f:cc:5f: b7:51:cd:cf:c1:2e:ab:b8:c3:1b:c4:17:68:72:ca:25:fe:52: f0:71:d3:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5tAFcJ0BADmKsuYCr+Pm3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhY2RkZDVjMzBkNTgwZWIwZmVlY2EyYTE2Y2Y1YzVhOGIy NTY4ZmQwHhcNMjUxMjIwMDMwMDU2WhcNMjUxMjIxMDMwMDU2WjAzMTEwLwYDVQQD EygxNDQxN2YwMGM0NTgwZjY3NGFlNTA2Y2ExNGJhZGRkZjYxYjkzZDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwi+G8wpK2b1D+RK63O6z8m9D1BKB cOdVuUXOu1PVFX7gFNftSQU3f72u7JBuFyc8Ot4knQ2Yfaz8LADYaWb5CY5dvCfH zkKIeYRZWlRAxwkIlxuVVHohvy7aIOfP6jvoK56lgpN0SL7QBJbOtyhWia0gaENi Osyl8n149CBfsHmd3e2CrXZySejnwz5JD8m1E1R/ZiQtE72BjiNjhg9CE+ZmSq1l dQrUPSzv8rK/N7RxakIqbQXNp1oNp//1l5HeIJnQyNnab/W2mpM6pSn8ydxxx/hH qHz3ofHqJCo+5CsJrnGgpNjdeTw6I/BFlhVV3yM4+a4ibu7tUcp9hrZJ8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBRBfwDEWA9nSuUGyhS63d9huT0SMB8GA1UdIwQY MBaAFIrN3Vww1YDrD+7KKhbPXFqLJWj9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yNWFjYTctN2UyOC00ODdjLTg2ZDIt MTdiMWM3Mzc5MzAwLzEvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yNWFjYTctN2UyOC00ODdjLTg2ZDItMTdiMWM3Mzc5MzAw LzEvaXMzZFhERFZnT3NQN3NvcUZzOWNXb3NsYVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA5DlT5b43 yXQ208Xio3SfAii5q8ukbGB1eK9zF5dr1JAgPmTQvAYaGFa6vVfWoMP2vGxzAoVP b596P/PAsCusy97uvUM2EtrTFhfYFFIv0jsoYKDfViH/sSN/7XnOFKWfQXwsveoQ IoEbLvFwbsR1+JNizE75Xqre20MKqyuGVnZZ32oNVVTjwwSJLjQrkRZRzaB0VwUP VNdVat0d0z7RTET538I9WuarkG8ndk5ti5AzzXEv4lHrSaUThDyXvPfII4HMAwox oLgvVyUW5w1T89Y06vKzRiz+zCE9CSyaRz4Nr4/HTkrEn8xft1HNz8Euq7jDG8QX aHLKJf5S8HHTYQ== -----END CERTIFICATE-----Generated at Sat Dec 20 10:51:35 2025 by rpki-client