This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json) Hash identifier: DECjRXsp6m6XETig9lde41EtqKiIjaZ7zZWAMX8t+kw= Subject key identifier: FE:D5:05:B6:52:91:E8:50:E0:74:4B:F1:EB:60:F2:8D:CF:89:D5:55 Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b Certificate serial: 019B4E8476755268829431E0BBBB810D9896 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft Manifest number: 1700 Signing time: Wed 24 Dec 2025 04:01:02 +0000 Manifest this update: Wed 24 Dec 2025 04:01:02 +0000 Manifest next update: Thu 25 Dec 2025 04:01:02 +0000 Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: gIgawV1dJQLxohF6684pRDVFBG7hBwH1JYXmycmm+5E=) 2: 42kA1PGA8no_1otOl8ofpG12v3U.roa (hash: xUXq/2K3klfSiQDOaLNutcuHJyhv84PrwrhgM3PQUAM=) 3: LkJec_DKJKY3truWJ2sI8NcpsVM.roa (hash: b6Bvufz+fttjZflFNHVPDFRMwRxNIOBdrZIhpdVt6mI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 04:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:84:76:75:52:68:82:94:31:e0:bb:bb:81:0d:98:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b Validity Not Before: Dec 24 04:01:02 2025 GMT Not After : Dec 25 04:01:02 2025 GMT Subject: CN=fed505b65291e850e0744bf1eb60f28dcf89d555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:af:7f:a4:01:90:33:7c:08:c8:1f:d5:25:73: 1b:d5:5b:3a:f3:5e:25:0c:de:2f:8a:52:be:e7:ef: 08:68:15:cc:60:c3:bd:26:e9:45:d4:37:14:4b:7e: 83:a9:cb:64:5b:f3:6f:b3:86:a1:77:3d:43:c9:de: 48:31:44:02:68:7d:e2:f3:c1:2d:4d:7b:b5:b8:76: 5b:02:76:89:47:25:bd:3e:77:26:9c:e8:7b:3a:f8: 5c:1d:1f:e2:70:c1:66:0b:79:a0:48:d2:a3:d3:89: 29:6c:a5:d2:cc:ef:b6:24:0c:61:30:a0:3e:6b:5f: f0:86:64:33:9f:0b:6f:ba:dd:ed:99:03:ed:14:f1: 7f:42:e8:7a:8c:4f:e3:3e:e5:e3:79:11:94:cb:1c: 12:27:99:71:0c:a4:b1:b7:f7:45:f1:18:83:13:2c: b7:e8:9b:fc:80:c5:fb:9f:c0:e1:b6:28:f7:b8:3d: 33:da:a9:a9:46:9b:fd:ae:e3:22:60:ea:b3:a7:c8: a8:63:1e:01:97:3f:69:cb:01:65:3a:f6:b2:f6:bb: 6f:48:da:bd:99:8a:83:b7:7c:1c:59:ff:cd:3c:80: 36:b9:5f:58:29:92:4c:0b:fe:73:84:99:6f:d5:4c: 67:54:23:89:08:1a:89:ea:e8:fd:5a:fc:96:62:cb: 11:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D5:05:B6:52:91:E8:50:E0:74:4B:F1:EB:60:F2:8D:CF:89:D5:55 X509v3 Authority Key Identifier: keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:2d:50:20:36:55:e1:6e:17:3a:59:fa:50:05:93:d7:02:de: 3e:04:41:f8:68:50:6a:90:fc:99:05:a6:b8:5d:4a:45:0d:7c: 2d:71:a4:6b:3d:b3:9c:28:51:be:65:48:b8:87:39:76:d7:92: d0:3b:7e:3f:2e:8d:27:95:93:e4:2c:4f:ae:83:a2:fc:4c:f2: f8:e3:59:b1:1b:e4:92:0c:ba:71:7e:41:c0:ef:d0:d5:5a:f1: 3f:cd:6b:75:20:f0:fd:fb:f8:f4:db:ee:9b:20:8f:5f:b4:5f: e7:41:0d:27:c7:0d:36:a5:c3:fb:1c:91:11:54:25:70:c4:ad: 44:5a:51:e7:bb:28:4c:b2:42:5d:76:c4:50:b0:f3:b3:8d:44: 89:14:16:2a:eb:30:e2:5f:ab:02:92:b2:bb:9e:b1:15:08:f9: c9:d3:58:ac:1c:19:d1:52:55:49:2d:e3:20:9d:01:dc:4e:c2: 19:88:c9:82:3f:f4:d5:82:98:0d:64:68:09:a2:a3:64:57:63: 99:1e:e5:8a:6b:4d:6c:f0:6a:d9:a4:92:2e:67:bb:ee:96:5d: e1:73:fe:80:8a:37:d0:d5:47:a1:ba:12:f4:8d:b1:4d:8b:cc: e0:12:e5:3a:fd:ac:9f:c9:e4:70:56:09:74:5f:88:5d:85:2e: af:cc:96:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOhHZ1UmiClDHgu7uBDZiWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNTNmNjNmMTNhMGM5NTJhMDc5ZjQ1NzhhMTBlZGJmNmUz YWE1OGIwHhcNMjUxMjI0MDQwMTAyWhcNMjUxMjI1MDQwMTAyWjAzMTEwLwYDVQQD EyhmZWQ1MDViNjUyOTFlODUwZTA3NDRiZjFlYjYwZjI4ZGNmODlkNTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoa9/pAGQM3wIyB/VJXMb1Vs6814l DN4vilK+5+8IaBXMYMO9JulF1DcUS36DqctkW/Nvs4ahdz1Dyd5IMUQCaH3i88Et TXu1uHZbAnaJRyW9PncmnOh7OvhcHR/icMFmC3mgSNKj04kpbKXSzO+2JAxhMKA+ a1/whmQznwtvut3tmQPtFPF/Quh6jE/jPuXjeRGUyxwSJ5lxDKSxt/dF8RiDEyy3 6Jv8gMX7n8Dhtij3uD0z2qmpRpv9ruMiYOqzp8ioYx4Blz9pywFlOvay9rtvSNq9 mYqDt3wcWf/NPIA2uV9YKZJMC/5zhJlv1UxnVCOJCBqJ6uj9WvyWYssRRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP7VBbZSkehQ4HRL8etg8o3PidVVMB8GA1UdIwQY MBaAFN1T9j8ToMlSoHn0V4oQ7b9uOqWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYt NWNkZmExMTdhZWM2LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYtNWNkZmExMTdhZWM2 LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcy1QIDZV 4W4XOln6UAWT1wLePgRB+GhQapD8mQWmuF1KRQ18LXGkaz2znChRvmVIuIc5dteS 0Dt+Py6NJ5WT5CxProOi/Ezy+ONZsRvkkgy6cX5BwO/Q1VrxP81rdSDw/fv49Nvu myCPX7Rf50ENJ8cNNqXD+xyREVQlcMStRFpR57soTLJCXXbEULDzs41EiRQWKusw 4l+rApKyu56xFQj5ydNYrBwZ0VJVSS3jIJ0B3E7CGYjJgj/01YKYDWRoCaKjZFdj mR7limtNbPBq2aSSLme77pZd4XP+gIo30NVHoboS9I2xTYvM4BLlOv2sn8nkcFYJ dF+IXYUur8yWAQ== -----END CERTIFICATE-----Generated at Wed Dec 24 10:49:32 2025 by rpki-client