This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft File: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft (raw, json) Hash identifier: 7o7Z2d7nj3NrEQBmUIe40I73rRMZpSjrqP9M3RL93eM= Subject key identifier: 05:37:6B:91:BB:09:21:63:51:59:FC:8A:16:21:F2:37:38:86:2C:C4 Authority key identifier: 2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD Certificate issuer: /CN=2f70532664343cb3d2897023a127f60ba917a5dd Certificate serial: 019B83844E1646CC7918F486D8B6AF9D610C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft Manifest number: 0DA0 Signing time: Sat 03 Jan 2026 11:00:44 +0000 Manifest this update: Sat 03 Jan 2026 11:00:44 +0000 Manifest next update: Sun 04 Jan 2026 11:00:44 +0000 Files and hashes: 1: L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl (hash: JtiRQZkmnNCdCki65Xp8hZax7g35qGcEKm7I69qoD5A=) 2: TsNw6_rUlF3WyS0xB9lA_qFI5N0.roa (hash: o/jK1+Sozn92VWRitjnWkL3+T8fEVmw/zg1uz6fdVJQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 04 Jan 2026 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:83:84:4e:16:46:cc:79:18:f4:86:d8:b6:af:9d:61:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2f70532664343cb3d2897023a127f60ba917a5dd Validity Not Before: Jan 3 11:00:44 2026 GMT Not After : Jan 4 11:00:44 2026 GMT Subject: CN=05376b91bb0921635159fc8a1621f23738862cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:59:31:58:39:de:ad:c0:07:6a:f2:54:e4: 51:d6:0a:2e:f6:93:0d:4e:12:b6:bd:f2:1c:71:44: 44:50:45:91:4b:c4:2f:f7:ea:36:c1:1f:cc:b4:17: a6:ee:94:85:6d:9f:bc:99:39:ab:eb:51:3b:26:0a: 8f:c0:3b:d0:06:d0:b9:94:43:0e:60:a3:e4:ea:85: 76:74:48:23:8f:c6:16:81:c8:dd:07:9a:af:18:9b: 9a:61:e7:51:ef:e6:90:52:7f:ca:c5:ca:56:79:e1: ec:d6:94:6d:38:c5:25:4e:97:76:96:97:9b:17:53: 24:20:20:6d:aa:77:00:b6:3d:3d:c6:7e:7d:48:a1: 90:30:7e:59:59:71:44:db:54:46:cc:6f:fd:06:49: 9d:d8:9a:44:e7:81:fd:63:b5:5d:07:7c:16:f6:53: 9a:01:82:3a:aa:d4:d8:38:46:e3:f3:33:5e:e6:db: a7:5a:09:87:b6:8d:35:f6:35:0a:94:42:3e:5e:5a: 8b:60:58:28:0d:d3:6c:0d:d0:8c:88:40:db:65:44: b6:09:e8:06:12:e8:73:60:b0:fa:c6:83:ab:ca:75: 2f:d6:a2:1d:5f:d9:fc:58:37:e4:41:07:69:d3:3e: 82:49:8d:66:b2:1b:fb:bf:d8:e0:39:84:87:67:7b: b1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:37:6B:91:BB:09:21:63:51:59:FC:8A:16:21:F2:37:38:86:2C:C4 X509v3 Authority Key Identifier: keyid:2F:70:53:26:64:34:3C:B3:D2:89:70:23:A1:27:F6:0B:A9:17:A5:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6c59c0-ecd8-4727-b1de-315a79f59e18/1/L3BTJmQ0PLPSiXAjoSf2C6kXpd0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:f3:e9:fc:77:b9:90:ba:77:43:84:2e:62:a2:e1:86:71:9b: 68:d2:59:89:9d:94:a1:99:43:6d:e8:47:41:94:4f:8d:6c:6c: 7a:6a:c7:32:e3:ee:33:b1:c3:21:8a:1f:b7:b8:82:e7:b4:12: 50:5e:89:e9:e7:32:66:18:68:71:6f:16:5e:74:d0:c8:3b:13: 26:83:f5:68:54:0e:02:33:4f:9d:2e:7a:3b:bc:bc:82:aa:b0: 55:a5:d8:4a:6f:11:08:6a:4a:32:ce:f8:3a:0b:21:0c:3d:14: 3b:69:73:82:3e:c3:ad:f5:da:34:67:aa:a0:52:43:f5:0e:15: 91:13:76:0d:62:f3:67:d5:3c:cd:11:ee:3f:b0:7b:48:c8:1c: b8:33:bc:87:7b:bc:07:7a:ad:9b:4e:bc:fd:94:6e:88:f4:12: e9:98:96:78:5b:73:22:e0:d3:bd:df:a9:07:9b:71:2e:28:3e: 0a:17:12:69:87:03:fd:f3:34:3a:24:d6:ef:9f:94:fa:67:ab: f8:90:55:60:f4:2d:ac:76:94:02:4b:c3:1b:30:03:35:6f:d4: ac:f1:05:14:81:6a:b5:c0:96:81:b3:84:3b:e5:9a:60:13:76: 11:7c:62:52:cc:b9:de:1a:9b:53:c6:93:ec:fc:d5:05:9c:68: f7:86:f3:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuDhE4WRsx5GPSG2LavnWEMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmNzA1MzI2NjQzNDNjYjNkMjg5NzAyM2ExMjdmNjBiYTkx N2E1ZGQwHhcNMjYwMTAzMTEwMDQ0WhcNMjYwMTA0MTEwMDQ0WjAzMTEwLwYDVQQD EygwNTM3NmI5MWJiMDkyMTYzNTE1OWZjOGExNjIxZjIzNzM4ODYyY2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwf1ZMVg53q3AB2ryVORR1gou9pMN ThK2vfIccUREUEWRS8Qv9+o2wR/MtBem7pSFbZ+8mTmr61E7JgqPwDvQBtC5lEMO YKPk6oV2dEgjj8YWgcjdB5qvGJuaYedR7+aQUn/KxcpWeeHs1pRtOMUlTpd2lpeb F1MkICBtqncAtj09xn59SKGQMH5ZWXFE21RGzG/9Bkmd2JpE54H9Y7VdB3wW9lOa AYI6qtTYOEbj8zNe5tunWgmHto019jUKlEI+XlqLYFgoDdNsDdCMiEDbZUS2CegG EuhzYLD6xoOrynUv1qIdX9n8WDfkQQdp0z6CSY1mshv7v9jgOYSHZ3uxpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAU3a5G7CSFjUVn8ihYh8jc4hizEMB8GA1UdIwQY MBaAFC9wUyZkNDyz0olwI6En9gupF6XdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTDNCVEptUTBQTFBTaVhBam9TZjJDNmtYcGQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82YzU5YzAtZWNkOC00NzI3LWIxZGUt MzE1YTc5ZjU5ZTE4LzEvTDNCVEptUTBQTFBTaVhBam9TZjJDNmtYcGQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC82YzU5YzAtZWNkOC00NzI3LWIxZGUtMzE1YTc5ZjU5ZTE4 LzEvTDNCVEptUTBQTFBTaVhBam9TZjJDNmtYcGQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/Pp/He5 kLp3Q4QuYqLhhnGbaNJZiZ2UoZlDbehHQZRPjWxsemrHMuPuM7HDIYoft7iC57QS UF6J6ecyZhhocW8WXnTQyDsTJoP1aFQOAjNPnS56O7y8gqqwVaXYSm8RCGpKMs74 OgshDD0UO2lzgj7DrfXaNGeqoFJD9Q4VkRN2DWLzZ9U8zRHuP7B7SMgcuDO8h3u8 B3qtm068/ZRuiPQS6ZiWeFtzIuDTvd+pB5txLig+ChcSaYcD/fM0OiTW75+U+mer +JBVYPQtrHaUAkvDGzADNW/UrPEFFIFqtcCWgbOEO+WaYBN2EXxiUsy53hqbU8aT 7PzVBZxo94bzuA== -----END CERTIFICATE-----Generated at Sat Jan 3 13:07:23 2026 by rpki-client