This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft File: A3hitGCMefRQKV7FyAx8etbf4qI.mft (raw, json) Hash identifier: E0DPOZGuEElf6Gv8dzD29VxxBPHbhqlFAFcO0mbkfDw= Subject key identifier: D2:CF:66:91:33:00:31:A2:45:99:DE:09:24:17:5D:B2:F6:D9:2B:4D Authority key identifier: 03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2 Certificate issuer: /CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2 Certificate serial: 019B3C0FE890897682283F384302155D9A76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft Manifest number: 1298 Signing time: Sat 20 Dec 2025 14:00:34 +0000 Manifest this update: Sat 20 Dec 2025 14:00:34 +0000 Manifest next update: Sun 21 Dec 2025 14:00:34 +0000 Files and hashes: 1: A3hitGCMefRQKV7FyAx8etbf4qI.crl (hash: QX1vyspPYgnBbAmI5PyhSpxpyG8VQbV3jWi5JPRMdw8=) 2: H1OMOC2BAR_5642Cu7ZwMViudi8.roa (hash: XWP0BQbCva9Xp/f//R3LpuOJ9bWFeCg7RqrDman+FAE=) 3: _KO8Oi7vtPgAowOISHE5epxFK5Q.roa (hash: 8164lOA7eSdWjoo8q/K2tQc7tm9W3hWFjEkyCggGOH4=) 4: pg2Uo1mGaRZ4g8oAbIXuXT68ouw.roa (hash: dY7d7wlBY9scutfRZI+Jc0/ht66poZjZN1QodpAABEg=) 5: rS4RgydKxGdwOWf1j4StfouO-tE.roa (hash: sFUBBhbDyvVoCqaYLXicDjVpE7stEZC/MmSdQhndwec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 14:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:0f:e8:90:89:76:82:28:3f:38:43:02:15:5d:9a:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=037862b4608c79f450295ec5c80c7c7ad6dfe2a2 Validity Not Before: Dec 20 14:00:34 2025 GMT Not After : Dec 21 14:00:34 2025 GMT Subject: CN=d2cf6691330031a24599de0924175db2f6d92b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:00:ca:84:26:d8:47:d5:44:30:44:48:9d: d6:e4:a3:7a:30:2f:be:14:a7:0a:9f:ef:0e:3f:05: 02:6d:e5:1a:0a:ce:f2:6a:e6:ba:35:81:6d:cc:9b: d9:26:ee:a0:19:6f:c0:a7:ec:39:e9:f6:13:21:ff: 84:c1:e9:03:e5:a8:5e:8d:71:2c:b2:e4:b1:2c:16: 5a:23:73:f7:3b:d1:4e:fe:3c:c2:68:b4:3e:02:c3: c4:07:16:74:dd:5a:2c:0c:86:0f:bd:e7:ad:d0:87: f9:97:1c:b2:d1:70:2e:5a:37:df:f5:d7:01:54:ed: 6d:fe:01:0b:fd:f2:d9:93:e7:89:ea:68:80:97:9b: 3a:ab:31:61:1c:b4:a3:46:01:8e:69:60:30:ab:f1: 18:53:64:ea:9e:cb:04:78:33:d0:c3:ff:f8:86:d9: c6:3c:3c:6c:b7:40:00:24:c1:23:6f:63:9e:f8:b5: 50:02:e5:21:6e:73:79:d2:a4:63:05:11:12:44:82: cd:af:97:fc:e9:e7:c8:89:24:71:dd:09:33:10:94: d6:69:06:12:39:07:b6:8e:af:57:6d:5c:30:cf:38: 19:86:a0:df:b9:7e:dd:7b:b7:13:5a:72:3b:99:3e: 9a:9e:ce:be:f1:f8:ac:11:a4:65:c6:28:ff:35:96: 15:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:CF:66:91:33:00:31:A2:45:99:DE:09:24:17:5D:B2:F6:D9:2B:4D X509v3 Authority Key Identifier: keyid:03:78:62:B4:60:8C:79:F4:50:29:5E:C5:C8:0C:7C:7A:D6:DF:E2:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3hitGCMefRQKV7FyAx8etbf4qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1afe53-f1b8-4315-ab1c-f474f7bd3531/1/A3hitGCMefRQKV7FyAx8etbf4qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:3b:39:1e:b4:c5:c8:ca:87:7b:d6:ec:49:82:b0:1c:78:a7: 02:7d:ca:17:2d:be:74:f5:b4:85:1a:d1:4e:41:40:14:e1:5e: d3:84:c1:a6:e5:a3:a1:e0:31:d4:39:ac:2b:44:98:3f:b8:3a: b7:70:93:6c:cc:d6:55:3d:d3:92:ee:e0:98:4e:35:2c:f7:13: 77:1e:07:60:59:cd:97:f8:b9:b7:e2:ef:2e:99:fd:20:5b:68: e1:ad:7e:8d:60:05:59:8a:ab:0c:86:49:f2:7f:07:0e:55:d4: 0d:ca:e2:08:95:00:30:f4:e6:32:94:71:42:3b:fe:5f:69:81: 9a:4c:f6:88:98:36:4f:f0:cc:81:0e:c6:be:e0:0a:b9:c3:31: 2d:0a:4e:32:45:a1:f7:5e:e6:b3:c9:b3:ad:12:80:b1:d4:72: 7d:13:75:99:58:04:08:bb:48:59:dc:3a:39:b3:24:42:2d:50: c4:18:1c:6b:db:36:e9:1d:6f:1f:95:8e:5d:db:f8:cb:eb:74: d7:19:7a:94:1b:1f:61:1a:c9:f0:ba:bb:fd:d5:fa:6e:58:5a: 50:4d:fc:be:54:f2:11:75:dc:0f:1a:4b:02:fa:00:ef:d1:03: 12:52:cf:33:df:69:22:39:3d:d8:bb:d8:ce:e6:85:a1:bc:7f: 97:e4:d7:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8D+iQiXaCKD84QwIVXZp2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNzg2MmI0NjA4Yzc5ZjQ1MDI5NWVjNWM4MGM3YzdhZDZk ZmUyYTIwHhcNMjUxMjIwMTQwMDM0WhcNMjUxMjIxMTQwMDM0WjAzMTEwLwYDVQQD EyhkMmNmNjY5MTMzMDAzMWEyNDU5OWRlMDkyNDE3NWRiMmY2ZDkyYjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGcAyoQm2EfVRDBESJ3W5KN6MC++ FKcKn+8OPwUCbeUaCs7yaua6NYFtzJvZJu6gGW/Ap+w56fYTIf+EwekD5ahejXEs suSxLBZaI3P3O9FO/jzCaLQ+AsPEBxZ03VosDIYPveet0If5lxyy0XAuWjff9dcB VO1t/gEL/fLZk+eJ6miAl5s6qzFhHLSjRgGOaWAwq/EYU2TqnssEeDPQw//4htnG PDxst0AAJMEjb2Oe+LVQAuUhbnN50qRjBRESRILNr5f86efIiSRx3QkzEJTWaQYS OQe2jq9XbVwwzzgZhqDfuX7de7cTWnI7mT6ans6+8fisEaRlxij/NZYV4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNLPZpEzADGiRZneCSQXXbL22StNMB8GA1UdIwQY MBaAFAN4YrRgjHn0UClexcgMfHrW3+KiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTNoaXRHQ01lZlJRS1Y3RnlBeDhldGJmNHFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8xYWZlNTMtZjFiOC00MzE1LWFiMWMt ZjQ3NGY3YmQzNTMxLzEvQTNoaXRHQ01lZlJRS1Y3RnlBeDhldGJmNHFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS8xYWZlNTMtZjFiOC00MzE1LWFiMWMtZjQ3NGY3YmQzNTMx LzEvQTNoaXRHQ01lZlJRS1Y3RnlBeDhldGJmNHFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhjs5HrTF yMqHe9bsSYKwHHinAn3KFy2+dPW0hRrRTkFAFOFe04TBpuWjoeAx1DmsK0SYP7g6 t3CTbMzWVT3Tku7gmE41LPcTdx4HYFnNl/i5t+LvLpn9IFto4a1+jWAFWYqrDIZJ 8n8HDlXUDcriCJUAMPTmMpRxQjv+X2mBmkz2iJg2T/DMgQ7GvuAKucMxLQpOMkWh 917ms8mzrRKAsdRyfRN1mVgECLtIWdw6ObMkQi1QxBgca9s26R1vH5WOXdv4y+t0 1xl6lBsfYRrJ8Lq7/dX6blhaUE38vlTyEXXcDxpLAvoA79EDElLPM99pIjk92LvY zuaFobx/l+TXdw== -----END CERTIFICATE-----Generated at Sat Dec 20 22:19:38 2025 by rpki-client