This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft File: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft (raw, json) Hash identifier: TOpT57c66v6T/7WKW6esGLhNSOCdt3msd9qcC9d2dBQ= Subject key identifier: 8C:A7:19:49:8D:CD:8A:13:68:09:4E:A1:06:B3:FB:3D:07:C6:09:BA Authority key identifier: DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD Certificate issuer: /CN=df0198a7b3afdcdd7003562a0871878e238760ad Certificate serial: 019B3E6DAF879902515C74A6F69A9C572730 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft Manifest number: 123C Signing time: Sun 21 Dec 2025 01:02:14 +0000 Manifest this update: Sun 21 Dec 2025 01:02:14 +0000 Manifest next update: Mon 22 Dec 2025 01:02:14 +0000 Files and hashes: 1: 3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl (hash: ivFP03xzufuXgeXMI/5iTm12PehE0SOIdq/6QjptLUY=) 2: 4PgtcW6j7xPoaJPy67vk2tMAXu4.roa (hash: fufIwyPbWqbMyORM68+h1FhSNKXbFzjdgG7WcXkavWU=) 3: cUPSsBWZ4irx4TApxzbroJpf5do.roa (hash: 6GPPFraRfTGyKrm5jIIIVF8Jt+KHlsZR8YFMwLgpuuE=) 4: xqYP462dYCt-0eOV8zXikdtxg14.roa (hash: YzKJbzm4Szaaz/1aNRHY+rmqu5/8YwNywOTzBNgzdeo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6d:af:87:99:02:51:5c:74:a6:f6:9a:9c:57:27:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df0198a7b3afdcdd7003562a0871878e238760ad Validity Not Before: Dec 21 01:02:14 2025 GMT Not After : Dec 22 01:02:14 2025 GMT Subject: CN=8ca719498dcd8a1368094ea106b3fb3d07c609ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:15:69:b1:2b:38:17:82:f6:2c:d0:26:eb:07: 8e:63:5f:b2:da:73:c5:60:d4:7e:31:66:d5:03:27: 99:1a:66:49:59:9b:dc:7c:ed:7a:0a:46:14:34:0e: b9:0f:a9:bc:8c:e6:a8:19:7e:fa:fa:2e:da:6d:8d: c6:ff:85:cf:87:87:c0:fa:86:a5:9a:b8:27:e4:f6: 35:e5:aa:f5:d3:fa:d3:e9:24:45:8b:27:db:d0:77: 88:c1:f9:98:f7:d7:e1:22:af:59:ff:ee:cb:19:42: 66:ee:c8:e3:81:c8:4f:32:cb:ff:63:f7:d3:f4:8c: 29:e9:eb:48:a6:0b:d7:97:b0:57:84:10:a1:b8:a6: 07:f6:bf:0b:ee:7b:be:3d:ab:d5:92:8c:be:63:07: cd:9b:cc:01:49:42:e9:9e:ef:1f:6b:f6:11:95:6b: fc:a6:89:63:84:3e:09:e5:35:b2:e0:50:34:47:51: a0:e6:9f:59:79:f4:02:8a:9a:15:fe:18:d3:87:3b: 55:c8:ea:93:9e:a5:ea:9a:87:b9:c8:95:69:c4:4d: d1:fa:73:1b:75:8a:d6:8f:0d:20:e6:9a:f4:17:d6: 1b:77:e7:a7:80:42:33:a6:d8:a8:be:83:96:3d:85: 1c:b5:a3:31:e4:d9:e7:23:18:dc:24:ac:54:cc:9d: 60:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A7:19:49:8D:CD:8A:13:68:09:4E:A1:06:B3:FB:3D:07:C6:09:BA X509v3 Authority Key Identifier: keyid:DF:01:98:A7:B3:AF:DC:DD:70:03:56:2A:08:71:87:8E:23:87:60:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/d3fca6-ecb5-43aa-8c9d-0fcc6c3011fc/1/3wGYp7Ov3N1wA1YqCHGHjiOHYK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:bc:ed:63:94:27:23:11:bc:e3:fc:ba:55:89:51:00:e1:91: 55:a4:72:7b:dd:08:64:5b:1b:e2:ea:51:49:28:74:6c:5f:6c: 16:cd:b9:bb:ae:60:de:9d:4d:1b:9c:1b:a9:19:94:48:80:e6: a2:5e:fb:71:c2:4f:2f:32:ed:45:5d:45:14:c8:0a:dc:be:71: 30:7b:fa:03:2f:f6:f7:a1:ae:6d:53:84:20:4d:59:c8:30:16: fa:d4:59:5e:6d:71:64:0a:54:09:45:70:ca:3f:0d:9e:9d:d3: a3:51:0a:d3:7a:0b:bc:b4:b1:b3:fd:a3:08:89:34:5f:7f:59: 04:e6:42:4b:b2:30:29:c9:6d:43:2b:1c:c1:46:83:85:0f:ab: ec:fc:18:e1:bc:db:85:d0:6e:69:4b:00:d6:f8:a1:1a:f1:51: 67:c2:bb:22:35:87:3c:bc:c7:53:4f:fe:3a:55:12:9d:98:c0: f2:06:75:d4:68:5c:1f:da:0d:3e:71:21:e6:04:e4:9f:c3:60: 5b:d5:c8:60:55:d1:b3:03:d7:36:6d:a5:9b:69:56:bd:69:49: fc:5f:45:e4:a8:ec:40:8d:3d:df:62:67:91:11:23:11:ca:55: b8:d5:d5:a6:87:ab:26:8e:40:14:23:53:4a:e1:fd:38:19:f6: bd:89:73:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+ba+HmQJRXHSm9pqcVycwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmMDE5OGE3YjNhZmRjZGQ3MDAzNTYyYTA4NzE4NzhlMjM4 NzYwYWQwHhcNMjUxMjIxMDEwMjE0WhcNMjUxMjIyMDEwMjE0WjAzMTEwLwYDVQQD Eyg4Y2E3MTk0OThkY2Q4YTEzNjgwOTRlYTEwNmIzZmIzZDA3YzYwOWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3hVpsSs4F4L2LNAm6weOY1+y2nPF YNR+MWbVAyeZGmZJWZvcfO16CkYUNA65D6m8jOaoGX76+i7abY3G/4XPh4fA+oal mrgn5PY15ar10/rT6SRFiyfb0HeIwfmY99fhIq9Z/+7LGUJm7sjjgchPMsv/Y/fT 9Iwp6etIpgvXl7BXhBChuKYH9r8L7nu+PavVkoy+YwfNm8wBSULpnu8fa/YRlWv8 poljhD4J5TWy4FA0R1Gg5p9ZefQCipoV/hjThztVyOqTnqXqmoe5yJVpxE3R+nMb dYrWjw0g5pr0F9Ybd+engEIzptiovoOWPYUctaMx5NnnIxjcJKxUzJ1ggQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIynGUmNzYoTaAlOoQaz+z0Hxgm6MB8GA1UdIwQY MBaAFN8BmKezr9zdcANWKghxh44jh2CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQt MGZjYzZjMzAxMWZjLzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9kM2ZjYTYtZWNiNS00M2FhLThjOWQtMGZjYzZjMzAxMWZj LzEvM3dHWXA3T3YzTjF3QTFZcUNIR0hqaU9IWUswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeLztY5Qn IxG84/y6VYlRAOGRVaRye90IZFsb4upRSSh0bF9sFs25u65g3p1NG5wbqRmUSIDm ol77ccJPLzLtRV1FFMgK3L5xMHv6Ay/296GubVOEIE1ZyDAW+tRZXm1xZApUCUVw yj8Nnp3To1EK03oLvLSxs/2jCIk0X39ZBOZCS7IwKcltQyscwUaDhQ+r7PwY4bzb hdBuaUsA1vihGvFRZ8K7IjWHPLzHU0/+OlUSnZjA8gZ11GhcH9oNPnEh5gTkn8Ng W9XIYFXRswPXNm2lm2lWvWlJ/F9F5KjsQI0932JnkREjEcpVuNXVpoerJo5AFCNT SuH9OBn2vYlz8g== -----END CERTIFICATE-----Generated at Sun Dec 21 03:00:08 2025 by rpki-client