This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json) Hash identifier: Zh09mhZq5kJEP0962SHhzVtL9LN+J2nF3zVwfqvALw4= Subject key identifier: B6:31:96:38:0F:85:BB:1E:22:04:3F:64:6F:03:32:38:77:3C:C6:C8 Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be Certificate serial: 019B51BE3A3A06EE5B215B3F8E53B6C87DC7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft Manifest number: 0774 Signing time: Wed 24 Dec 2025 19:02:59 +0000 Manifest this update: Wed 24 Dec 2025 19:02:59 +0000 Manifest next update: Thu 25 Dec 2025 19:02:59 +0000 Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: Fe7ldutCswd0uRt2RWmc6gjisXFsnl89MEh09WOkWfs=) 2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:be:3a:3a:06:ee:5b:21:5b:3f:8e:53:b6:c8:7d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be Validity Not Before: Dec 24 19:02:59 2025 GMT Not After : Dec 25 19:02:59 2025 GMT Subject: CN=b63196380f85bb1e22043f646f033238773cc6c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:30:b4:a6:74:29:59:c7:8a:5e:fb:56:67:93: 72:9d:c1:43:9b:bd:ba:63:17:52:d6:8c:bb:3d:ed: 7b:d9:6e:24:98:f5:83:f9:94:4e:e3:99:dc:fe:50: 79:ba:f5:46:77:ce:ba:98:63:94:0b:54:2b:00:83: ab:62:4d:95:10:df:d9:cc:c2:9a:14:a7:c6:d8:de: 87:25:88:b7:a0:c2:97:09:c1:75:9e:82:0b:f6:2e: 4d:34:ec:2d:b0:97:d5:44:e8:18:7d:a8:1b:19:00: f0:59:51:0d:77:a2:3c:56:57:94:93:eb:50:3c:f3: 96:46:b1:89:9d:f0:02:e7:6d:9e:89:9f:1d:df:01: 7c:ae:76:fe:60:47:e5:0f:3d:a2:4a:c0:f2:c8:1c: 4d:d6:31:c8:b9:1f:0a:c4:9b:30:1c:e8:f9:84:06: 9a:d2:d7:e3:d4:50:87:d9:19:0d:ef:2c:20:e5:b8: 9a:50:7c:25:60:5f:7c:4d:73:a6:0e:ba:3b:d4:2f: 20:c5:68:7c:79:66:c6:c4:34:c6:03:c9:d9:0e:95: 8b:13:2e:ba:da:c4:d4:0f:5a:9f:e8:fa:55:59:66: a5:39:54:20:02:a3:a0:1b:d8:3c:a8:b8:cb:57:40: a8:6d:63:ff:cd:25:52:f8:8e:36:15:eb:aa:7b:d1: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:31:96:38:0F:85:BB:1E:22:04:3F:64:6F:03:32:38:77:3C:C6:C8 X509v3 Authority Key Identifier: keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:7e:be:f4:34:fc:76:e0:da:cb:ee:99:e7:10:64:46:63:81: 69:78:9b:5d:53:bd:0b:b4:23:56:c5:d6:28:a3:95:d8:79:e0: d5:32:d2:62:ad:e4:aa:f5:d4:1c:dd:ed:35:c4:ef:cb:12:a2: 52:89:f3:3c:fc:9c:64:63:69:9d:d9:98:8e:76:93:dc:21:ae: 73:26:1e:3a:e0:07:56:2c:ec:17:88:86:ba:0f:34:35:06:2c: c9:b7:6c:72:b3:ed:55:e5:81:be:64:e8:3b:18:63:cb:42:c5: 8b:bf:ea:e8:a8:18:1a:36:95:66:c3:95:76:28:27:17:36:6d: 82:a3:6e:cd:9e:d2:09:7e:f2:60:01:37:15:e2:90:c8:f7:ed: d1:84:63:9c:ee:eb:0c:77:43:5c:b7:bb:8e:41:3a:3c:d4:c5: f7:c2:fe:5b:73:c7:03:90:3f:22:13:03:79:e7:13:a5:01:f3: b7:e7:ba:fc:05:2c:c2:6f:b1:1d:ee:16:9a:aa:89:55:c3:92: 28:73:81:82:43:dd:d4:8d:52:af:9d:16:0e:74:7f:a2:30:c9: 21:7b:a9:ff:ee:ef:51:ad:c7:01:ff:29:ec:d7:c2:be:ad:72: b5:6a:5b:5c:ba:69:87:cf:8e:97:db:ed:1d:95:b4:07:36:0b: 18:7a:28:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvjo6Bu5bIVs/jlO2yH3HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi YjE5YmUwHhcNMjUxMjI0MTkwMjU5WhcNMjUxMjI1MTkwMjU5WjAzMTEwLwYDVQQD EyhiNjMxOTYzODBmODViYjFlMjIwNDNmNjQ2ZjAzMzIzODc3M2NjNmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjC0pnQpWceKXvtWZ5NyncFDm726 YxdS1oy7Pe172W4kmPWD+ZRO45nc/lB5uvVGd866mGOUC1QrAIOrYk2VEN/ZzMKa FKfG2N6HJYi3oMKXCcF1noIL9i5NNOwtsJfVROgYfagbGQDwWVENd6I8VleUk+tQ PPOWRrGJnfAC522eiZ8d3wF8rnb+YEflDz2iSsDyyBxN1jHIuR8KxJswHOj5hAaa 0tfj1FCH2RkN7ywg5biaUHwlYF98TXOmDro71C8gxWh8eWbGxDTGA8nZDpWLEy66 2sTUD1qf6PpVWWalOVQgAqOgG9g8qLjLV0CobWP/zSVS+I42Feuqe9GDoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLYxljgPhbseIgQ/ZG8DMjh3PMbIMB8GA1UdIwQY MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt YjVjM2QyNGVmZGNkLzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPX6+9DT8 duDay+6Z5xBkRmOBaXibXVO9C7QjVsXWKKOV2Hng1TLSYq3kqvXUHN3tNcTvyxKi UonzPPycZGNpndmYjnaT3CGucyYeOuAHVizsF4iGug80NQYsybdscrPtVeWBvmTo Oxhjy0LFi7/q6KgYGjaVZsOVdignFzZtgqNuzZ7SCX7yYAE3FeKQyPft0YRjnO7r DHdDXLe7jkE6PNTF98L+W3PHA5A/IhMDeecTpQHzt+e6/AUswm+xHe4WmqqJVcOS KHOBgkPd1I1Sr50WDnR/ojDJIXup/+7vUa3HAf8p7NfCvq1ytWpbXLpph8+Ol9vt HZW0BzYLGHoorA== -----END CERTIFICATE-----Generated at Thu Dec 25 03:14:43 2025 by rpki-client