This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft File: mY3mCoZ7SdsppifG99IjomajIqk.mft (raw, json) Hash identifier: foWVqlYj87Uu/QdgwfnA/+L7noLJrF4Y9uD1rbFH+N4= Subject key identifier: BB:51:CF:7D:4E:2C:F4:B5:0E:30:D8:EE:2F:E0:C5:FD:1D:98:E5:4D Authority key identifier: 99:8D:E6:0A:86:7B:49:DB:29:A6:27:C6:F7:D2:23:A2:66:A3:22:A9 Certificate issuer: /CN=998de60a867b49db29a627c6f7d223a266a322a9 Certificate serial: 019B378ECB09EBFB1AE5F46501DB57656986 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft Manifest number: 3F Signing time: Fri 19 Dec 2025 17:01:03 +0000 Manifest this update: Fri 19 Dec 2025 17:01:03 +0000 Manifest next update: Sat 20 Dec 2025 17:01:03 +0000 Files and hashes: 1: 7yzx2Vou8DokUymMEJ2gEGzbZWY.roa (hash: LGKQizHBh7IVFdmQglMkoUVSWIWG/s6M78Z60SVxtgg=) 2: mY3mCoZ7SdsppifG99IjomajIqk.crl (hash: cMeB8D2Gz4VXHLAD8kc8kLAiqRwRBw2/PfZyrTBRnIw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:cb:09:eb:fb:1a:e5:f4:65:01:db:57:65:69:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=998de60a867b49db29a627c6f7d223a266a322a9 Validity Not Before: Dec 19 17:01:03 2025 GMT Not After : Dec 20 17:01:03 2025 GMT Subject: CN=bb51cf7d4e2cf4b50e30d8ee2fe0c5fd1d98e54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:a5:e4:e9:a0:dc:62:12:eb:5d:70:ec:e9: 96:44:fd:3c:3c:32:8f:ad:dc:90:68:df:49:3a:e4: 0b:4f:8c:bd:a6:6c:a9:2b:0d:cf:76:d7:ea:54:1a: 87:b5:cc:e6:d1:ba:6f:33:e2:04:f7:75:8c:f8:25: e3:d0:b0:74:11:3f:f2:08:2e:8b:ba:18:c4:33:d5: 08:41:a9:16:20:2c:46:b9:28:3a:ac:e6:84:2a:5a: 27:eb:f1:98:48:56:5b:94:a8:6f:9f:96:4a:d1:04: 75:d9:e4:1f:d1:6a:80:71:ae:a2:85:62:82:36:3c: 01:3d:47:40:9d:3a:16:78:67:dd:31:dc:0e:42:c0: c2:b0:ef:e9:bb:10:5c:ca:16:cf:41:04:3e:d9:94: 2e:a4:4b:f7:ab:2f:20:97:38:25:15:48:ba:e6:b3: 5c:0b:76:74:9d:c7:69:9a:74:70:cc:e4:49:dd:0c: 84:aa:d4:ef:48:9c:99:60:fb:a3:35:1a:d0:7c:8e: 4d:bf:a1:52:2d:e1:93:c3:2a:53:7c:b0:70:20:c1: aa:dc:b9:00:52:67:81:ca:ae:9e:50:1e:9a:a2:3e: ac:38:98:87:fe:7a:dd:36:9d:97:6b:c5:1d:79:fc: 50:d3:fc:34:90:dd:bf:71:78:0a:42:22:bf:9f:28: ae:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:51:CF:7D:4E:2C:F4:B5:0E:30:D8:EE:2F:E0:C5:FD:1D:98:E5:4D X509v3 Authority Key Identifier: keyid:99:8D:E6:0A:86:7B:49:DB:29:A6:27:C6:F7:D2:23:A2:66:A3:22:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:6a:14:bc:e4:e5:2a:50:e3:5c:a8:2d:e7:65:cd:d2:34:63: 40:ec:c5:1d:4d:15:cb:a4:70:8c:48:28:4f:02:6a:8c:d6:ac: cb:ea:a1:08:5f:8c:29:2f:70:81:5c:c6:20:c2:87:00:c4:ed: e7:cc:4c:ba:20:45:db:01:70:cb:9d:ea:35:5a:73:f4:cb:3d: f3:16:42:7e:ef:59:b0:bf:7a:13:ba:f5:7c:54:cb:fe:55:34: d9:6a:1f:c3:2d:bc:0c:1d:61:fe:96:a4:e1:c0:60:69:e4:41: de:63:27:45:27:16:d7:c0:62:6c:45:bb:3d:06:aa:5b:7e:75: 5d:98:58:c7:24:84:d5:07:df:ea:40:71:d3:93:ad:47:6b:dd: a6:c3:51:4b:7c:bf:8c:d7:aa:46:9c:b2:43:b0:6a:0e:80:ce: 22:4c:06:c5:57:76:6f:b6:9b:f4:32:b8:d0:a3:6a:8e:c9:3b: 7e:d2:ef:38:87:db:6b:96:bc:63:ee:25:0e:e5:ba:b3:fb:2a: 05:08:46:c7:eb:7c:10:b9:97:b0:ff:75:20:7c:a0:3e:f8:2b: e1:01:c2:19:bb:a9:08:aa:c1:2a:7b:0d:50:9f:77:f8:90:3e: a7:76:e1:20:2e:12:e8:02:5b:49:cd:e0:84:95:08:65:7d:d8: b8:2a:6f:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3jssJ6/sa5fRlAdtXZWmGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5OGRlNjBhODY3YjQ5ZGIyOWE2MjdjNmY3ZDIyM2EyNjZh MzIyYTkwHhcNMjUxMjE5MTcwMTAzWhcNMjUxMjIwMTcwMTAzWjAzMTEwLwYDVQQD EyhiYjUxY2Y3ZDRlMmNmNGI1MGUzMGQ4ZWUyZmUwYzVmZDFkOThlNTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCil5Omg3GIS611w7OmWRP08PDKP rdyQaN9JOuQLT4y9pmypKw3PdtfqVBqHtczm0bpvM+IE93WM+CXj0LB0ET/yCC6L uhjEM9UIQakWICxGuSg6rOaEKlon6/GYSFZblKhvn5ZK0QR12eQf0WqAca6ihWKC NjwBPUdAnToWeGfdMdwOQsDCsO/puxBcyhbPQQQ+2ZQupEv3qy8glzglFUi65rNc C3Z0ncdpmnRwzORJ3QyEqtTvSJyZYPujNRrQfI5Nv6FSLeGTwypTfLBwIMGq3LkA UmeByq6eUB6aoj6sOJiH/nrdNp2Xa8UdefxQ0/w0kN2/cXgKQiK/nyiu9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLtRz31OLPS1DjDY7i/gxf0dmOVNMB8GA1UdIwQY MBaAFJmN5gqGe0nbKaYnxvfSI6JmoyKpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVkzbUNvWjdTZHNwcGlmRzk5SWpvbWFqSXFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kZTE3MWItNWIzYy00Yjc2LWIwNjUt MjBkMzRlMThlMjcwLzEvbVkzbUNvWjdTZHNwcGlmRzk5SWpvbWFqSXFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kZTE3MWItNWIzYy00Yjc2LWIwNjUtMjBkMzRlMThlMjcw LzEvbVkzbUNvWjdTZHNwcGlmRzk5SWpvbWFqSXFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJWoUvOTl KlDjXKgt52XN0jRjQOzFHU0Vy6RwjEgoTwJqjNasy+qhCF+MKS9wgVzGIMKHAMTt 58xMuiBF2wFwy53qNVpz9Ms98xZCfu9ZsL96E7r1fFTL/lU02Wofwy28DB1h/pak 4cBgaeRB3mMnRScW18BibEW7PQaqW351XZhYxySE1Qff6kBx05OtR2vdpsNRS3y/ jNeqRpyyQ7BqDoDOIkwGxVd2b7ab9DK40KNqjsk7ftLvOIfba5a8Y+4lDuW6s/sq BQhGx+t8ELmXsP91IHygPvgr4QHCGbupCKrBKnsNUJ93+JA+p3bhIC4S6AJbSc3g hJUIZX3YuCpviw== -----END CERTIFICATE-----Generated at Fri Dec 19 19:48:23 2025 by rpki-client