This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json) Hash identifier: t1pt8inI1ZuKYVoPGeRHv9fB1y9U+Nhr2NLHI3Nuws0= Subject key identifier: B4:3E:63:7B:96:57:6D:83:43:65:55:59:C0:41:F6:E4:A0:71:D1:F2 Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Certificate serial: 019B3D90C237BD1F5B8215D65CB62FFAE646 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft Manifest number: 179D Signing time: Sat 20 Dec 2025 21:00:55 +0000 Manifest this update: Sat 20 Dec 2025 21:00:55 +0000 Manifest next update: Sun 21 Dec 2025 21:00:55 +0000 Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: vIa8aSPP+J53WO8ANwcoxkkqlUsI3KmuNfQrrBtNQnk=) 2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=) 3: DPsq0OHf8MVPtjf1meByn-PM7Q0.roa (hash: oRmxnthJtArJCnDUTkrTLD5StLSleGnIBmGT013Rl5I=) 4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=) 5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 21:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:c2:37:bd:1f:5b:82:15:d6:5c:b6:2f:fa:e6:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Validity Not Before: Dec 20 21:00:55 2025 GMT Not After : Dec 21 21:00:55 2025 GMT Subject: CN=b43e637b96576d8343655559c041f6e4a071d1f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8a:4a:3a:49:b4:dd:43:c5:0b:b5:4d:c6:fe: 3d:56:0f:4d:e1:e1:7d:d1:ee:42:c2:fb:22:4b:af: f3:29:17:16:e2:e7:ea:c0:57:71:e8:97:62:15:56: b3:ca:47:9a:fb:1e:e9:92:c3:8c:39:f5:7d:50:71: a9:9e:ef:7e:06:1f:5f:61:74:b2:b8:03:11:1d:41: 2a:ae:0e:d0:8d:e0:fa:9e:ec:e6:7f:74:9b:c0:2a: 5e:55:51:51:94:65:ff:fe:fe:d0:80:f5:c4:b2:ad: c1:04:53:2f:d5:21:69:1a:80:fd:67:02:f9:90:8d: 5a:8c:f8:7a:ff:b7:4e:51:60:fb:68:b6:3d:2d:8e: 62:3b:71:54:74:d0:ab:88:b2:d6:0f:d8:fe:db:ff: 14:46:71:f8:15:33:38:8a:d0:5e:7e:52:9b:6c:4b: 83:c4:ed:48:5d:d3:63:b7:bd:29:48:d0:15:3d:41: ff:59:0c:1b:f1:af:21:72:58:3e:3a:b3:39:6a:cc: 19:46:a5:73:fd:5d:b9:64:d8:29:41:19:62:f1:48: 84:ee:c1:31:9b:18:4d:f3:b6:71:67:ea:18:e8:71: d4:21:41:63:98:96:fe:11:2c:13:c3:7d:d3:a1:75: e7:d6:d1:5c:14:38:0e:1f:bb:e7:b7:62:fd:b2:aa: 0c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3E:63:7B:96:57:6D:83:43:65:55:59:C0:41:F6:E4:A0:71:D1:F2 X509v3 Authority Key Identifier: keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:75:fc:ae:b3:41:87:72:8f:e7:3a:bf:fd:2d:b8:d4:42:6b: 91:67:36:c4:65:b9:91:cd:41:4b:8c:7f:ed:fc:9a:02:04:a7: 8b:96:c0:d7:10:a4:ae:f3:cd:f3:d4:47:86:35:b4:bd:ee:e0: 27:54:70:be:72:06:26:2f:da:59:96:6b:f1:ee:15:f8:d1:a6: ef:bd:9e:6a:0f:a2:82:7e:a5:d8:d7:93:c6:8d:8f:65:c3:13: 99:62:f8:d1:d6:52:b6:e3:db:63:19:11:ab:12:bf:b7:cd:21: fe:81:65:5c:a0:ea:82:c6:f6:9b:00:20:65:e0:8d:18:80:5d: 61:6b:5d:9c:dc:e9:53:f6:f5:aa:1f:f9:b3:cc:ac:6c:b8:c6: 2c:bf:79:8f:da:26:2f:c6:83:a6:d0:5e:23:d7:31:09:45:a6: 96:9b:d8:42:98:50:7b:76:3e:56:ea:3c:f4:34:34:08:9f:50: 22:2e:79:d4:97:ab:2c:d9:aa:b7:20:d5:4c:30:09:c0:45:60: a4:e0:1b:02:f2:ab:09:1f:4f:27:f6:55:66:a1:0f:45:8e:52: cd:a2:a3:f9:c4:a2:e2:1f:50:07:54:bd:6e:2e:f3:7a:5f:b1: 5c:93:21:58:2d:79:f0:2b:64:e1:79:22:32:7b:65:fd:c5:0f: 16:bc:3d:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kMI3vR9bghXWXLYv+uZGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2 ZGNmMTAwHhcNMjUxMjIwMjEwMDU1WhcNMjUxMjIxMjEwMDU1WjAzMTEwLwYDVQQD EyhiNDNlNjM3Yjk2NTc2ZDgzNDM2NTU1NTljMDQxZjZlNGEwNzFkMWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYpKOkm03UPFC7VNxv49Vg9N4eF9 0e5CwvsiS6/zKRcW4ufqwFdx6JdiFVazykea+x7pksOMOfV9UHGpnu9+Bh9fYXSy uAMRHUEqrg7QjeD6nuzmf3SbwCpeVVFRlGX//v7QgPXEsq3BBFMv1SFpGoD9ZwL5 kI1ajPh6/7dOUWD7aLY9LY5iO3FUdNCriLLWD9j+2/8URnH4FTM4itBeflKbbEuD xO1IXdNjt70pSNAVPUH/WQwb8a8hclg+OrM5aswZRqVz/V25ZNgpQRli8UiE7sEx mxhN87ZxZ+oY6HHUIUFjmJb+ESwTw33ToXXn1tFcFDgOH7vnt2L9sqoMswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLQ+Y3uWV22DQ2VVWcBB9uSgcdHyMB8GA1UdIwQY MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt ODVhOTU1ZjIxNjNiLzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIXX8rrNB h3KP5zq//S241EJrkWc2xGW5kc1BS4x/7fyaAgSni5bA1xCkrvPN89RHhjW0ve7g J1RwvnIGJi/aWZZr8e4V+NGm772eag+ign6l2NeTxo2PZcMTmWL40dZStuPbYxkR qxK/t80h/oFlXKDqgsb2mwAgZeCNGIBdYWtdnNzpU/b1qh/5s8ysbLjGLL95j9om L8aDptBeI9cxCUWmlpvYQphQe3Y+Vuo89DQ0CJ9QIi551JerLNmqtyDVTDAJwEVg pOAbAvKrCR9PJ/ZVZqEPRY5SzaKj+cSi4h9QB1S9bi7zel+xXJMhWC158Ctk4Xki Mntl/cUPFrw9BA== -----END CERTIFICATE-----Generated at Sun Dec 21 06:55:12 2025 by rpki-client