This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft File: 3VP2PxOgyVKgefRXihDtv246pYs.mft (raw, json) Hash identifier: wQjqG8LkfcD667C+JAhNpo483oxwFgzUFXB5T27tKAA= Subject key identifier: 2B:4F:B9:E7:1A:97:19:6A:45:71:F9:9A:81:A2:E9:64:1B:70:2C:6C Authority key identifier: DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B Certificate issuer: /CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b Certificate serial: 019B7523CD326CBD233BBF5A30C65280D4D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft Manifest number: 1714 Signing time: Wed 31 Dec 2025 16:00:39 +0000 Manifest this update: Wed 31 Dec 2025 16:00:39 +0000 Manifest next update: Thu 01 Jan 2026 16:00:39 +0000 Files and hashes: 1: 3VP2PxOgyVKgefRXihDtv246pYs.crl (hash: hZvD6iI54zOOxedAwHwCI8ZubBT+nmNkVkr0n5ZhHMs=) 2: 42kA1PGA8no_1otOl8ofpG12v3U.roa (hash: xUXq/2K3klfSiQDOaLNutcuHJyhv84PrwrhgM3PQUAM=) 3: LkJec_DKJKY3truWJ2sI8NcpsVM.roa (hash: b6Bvufz+fttjZflFNHVPDFRMwRxNIOBdrZIhpdVt6mI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 16:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:75:23:cd:32:6c:bd:23:3b:bf:5a:30:c6:52:80:d4:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd53f63f13a0c952a079f4578a10edbf6e3aa58b Validity Not Before: Dec 31 16:00:39 2025 GMT Not After : Jan 1 16:00:39 2026 GMT Subject: CN=2b4fb9e71a97196a4571f99a81a2e9641b702c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:95:3a:40:04:b6:f8:24:30:90:5b:69:c7:69: 6f:4f:21:a4:5b:cf:51:f7:28:91:3e:68:46:03:6f: c6:68:a6:28:e1:c2:a6:14:3e:ba:fc:e5:71:13:69: 9e:0c:85:8e:31:d4:96:fb:cd:c2:b3:43:5b:7b:79: 81:be:74:65:fa:73:51:67:cd:96:75:29:cb:6d:7a: e8:24:4a:55:b6:2c:eb:71:a8:f6:21:15:02:77:38: f1:b5:48:b3:db:b9:29:eb:15:49:12:b7:b1:23:e9: a1:2f:2a:e1:d7:e1:61:72:0c:fd:ac:ab:0b:39:c1: f0:a4:e7:8e:d3:e2:5d:be:83:65:ca:15:53:88:3a: 92:1a:64:ab:cb:ee:65:89:95:c8:94:f5:d2:3b:57: aa:e6:9a:66:c1:cc:e5:df:2e:d2:4b:a1:9c:d3:99: cd:ee:85:4e:5a:60:eb:45:52:0e:f9:10:22:10:43: 74:2f:71:00:e9:de:0e:7f:b3:46:bf:4c:21:ed:b5: d5:fa:cb:c4:78:c8:e5:c3:4a:20:1d:90:5f:61:4d: d0:2b:e0:d8:3d:2c:94:8d:e4:23:e8:b5:a5:ad:b0: 21:1d:c3:b3:e4:ce:3e:90:e1:5c:a0:84:51:2b:31: ae:9e:81:9a:bb:ed:c1:bd:76:dc:a2:ed:09:97:c5: 80:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4F:B9:E7:1A:97:19:6A:45:71:F9:9A:81:A2:E9:64:1B:70:2C:6C X509v3 Authority Key Identifier: keyid:DD:53:F6:3F:13:A0:C9:52:A0:79:F4:57:8A:10:ED:BF:6E:3A:A5:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VP2PxOgyVKgefRXihDtv246pYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1c444d-058d-475c-abff-5cdfa117aec6/1/3VP2PxOgyVKgefRXihDtv246pYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:19:ae:ab:d7:54:9b:e7:01:37:e7:5b:eb:bd:34:8a:29:ef: e8:aa:fb:76:ea:3b:e4:8e:df:f1:99:ca:38:48:cd:94:47:50: ea:7a:82:03:2e:2e:b0:4a:75:55:92:ca:9e:a6:bb:65:29:58: ef:cf:4c:36:ff:b1:c4:25:a9:a1:77:8d:ee:f6:1b:13:34:3a: df:26:31:87:be:f1:04:65:f3:27:bb:8d:a5:82:7f:e1:f6:17: f7:1b:8c:80:55:33:3d:52:82:6e:c9:f6:e5:6c:7a:fd:11:8e: e9:fc:b5:d3:59:40:34:27:21:41:b4:be:ab:f1:ff:ff:d6:0a: bc:b6:ac:79:36:3f:c4:5f:94:1f:fb:3e:b3:f7:e3:32:6f:3b: 62:7d:3a:13:d9:13:6d:30:83:89:00:4f:ee:41:23:1d:a1:f2: db:95:80:91:fc:41:9b:a3:29:dc:21:d1:9a:bc:37:c8:48:94: 8d:49:89:0f:55:12:a7:0e:ec:84:13:ce:9b:38:07:51:9a:57: bf:e7:3f:be:3e:91:ac:33:33:c7:94:10:17:48:54:a5:d3:c0: bd:bc:96:31:26:9d:52:0b:41:5e:20:d8:d9:af:7f:2b:9a:a4: 5c:fb:47:b3:49:b5:ee:17:9c:08:4a:d1:26:1a:e8:8f:6c:7b: dd:05:c7:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt1I80ybL0jO79aMMZSgNTSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkNTNmNjNmMTNhMGM5NTJhMDc5ZjQ1NzhhMTBlZGJmNmUz YWE1OGIwHhcNMjUxMjMxMTYwMDM5WhcNMjYwMTAxMTYwMDM5WjAzMTEwLwYDVQQD EygyYjRmYjllNzFhOTcxOTZhNDU3MWY5OWE4MWEyZTk2NDFiNzAyYzZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkJU6QAS2+CQwkFtpx2lvTyGkW89R 9yiRPmhGA2/GaKYo4cKmFD66/OVxE2meDIWOMdSW+83Cs0Nbe3mBvnRl+nNRZ82W dSnLbXroJEpVtizrcaj2IRUCdzjxtUiz27kp6xVJErexI+mhLyrh1+Fhcgz9rKsL OcHwpOeO0+JdvoNlyhVTiDqSGmSry+5liZXIlPXSO1eq5ppmwczl3y7SS6Gc05nN 7oVOWmDrRVIO+RAiEEN0L3EA6d4Of7NGv0wh7bXV+svEeMjlw0ogHZBfYU3QK+DY PSyUjeQj6LWlrbAhHcOz5M4+kOFcoIRRKzGunoGau+3BvXbcou0Jl8WAAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCtPuecalxlqRXH5moGi6WQbcCxsMB8GA1UdIwQY MBaAFN1T9j8ToMlSoHn0V4oQ7b9uOqWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYt NWNkZmExMTdhZWM2LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8xYzQ0NGQtMDU4ZC00NzVjLWFiZmYtNWNkZmExMTdhZWM2 LzEvM1ZQMlB4T2d5VktnZWZSWGloRHR2MjQ2cFlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhmuq9dU m+cBN+db6700iinv6Kr7duo75I7f8ZnKOEjNlEdQ6nqCAy4usEp1VZLKnqa7ZSlY 789MNv+xxCWpoXeN7vYbEzQ63yYxh77xBGXzJ7uNpYJ/4fYX9xuMgFUzPVKCbsn2 5Wx6/RGO6fy101lANCchQbS+q/H//9YKvLaseTY/xF+UH/s+s/fjMm87Yn06E9kT bTCDiQBP7kEjHaHy25WAkfxBm6Mp3CHRmrw3yEiUjUmJD1USpw7shBPOmzgHUZpX v+c/vj6RrDMzx5QQF0hUpdPAvbyWMSadUgtBXiDY2a9/K5qkXPtHs0m17hecCErR Jhroj2x73QXHqA== -----END CERTIFICATE-----Generated at Wed Dec 31 23:29:53 2025 by rpki-client