This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json) Hash identifier: eJD6Hc/3QaEYmmvd77VTtV6rwPNxS3RCCjfzv2RcqlI= Subject key identifier: 6F:2A:ED:AB:2B:8E:84:9C:F7:BB:6E:88:D2:2C:AF:0C:E6:61:53:B3 Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Certificate serial: 019B56AC2180EA99761DAEA2DC768D96F777 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft Manifest number: 17AA Signing time: Thu 25 Dec 2025 18:01:19 +0000 Manifest this update: Thu 25 Dec 2025 18:01:19 +0000 Manifest next update: Fri 26 Dec 2025 18:01:19 +0000 Files and hashes: 1: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: kdleRHETnuTpU2RuHWoSlNEfF9JuUq68SM6zBUjFlRY=) 2: 4TacCA5fNMvJzrQKHYvZp1FsTCY.roa (hash: PoM3PiM+eiQs0IrTl3gGzaDWCG/B3yTTKS+dLnu4Yd0=) 3: DPsq0OHf8MVPtjf1meByn-PM7Q0.roa (hash: oRmxnthJtArJCnDUTkrTLD5StLSleGnIBmGT013Rl5I=) 4: RMqD4QZBwk_wzHsp1loeMRU2jMk.roa (hash: nCQ5Eq/Er1do1Gz84LWpqzugPw71HtroPiJZlZhFk8k=) 5: naw_j5gKrLLjpLmDjj2VeLVHcW0.roa (hash: 9rsCrKDYxMlNCKWks8aC7H+vNumWPUdz18CO2dwuUHA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 10:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:56:ac:21:80:ea:99:76:1d:ae:a2:dc:76:8d:96:f7:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Validity Not Before: Dec 25 18:01:19 2025 GMT Not After : Dec 26 18:01:19 2025 GMT Subject: CN=6f2aedab2b8e849cf7bb6e88d22caf0ce66153b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0e:98:b4:4d:bb:8f:4a:8f:81:d2:81:15:3b: e2:ea:d6:c5:c0:07:cd:bf:05:9e:53:f0:a1:09:43: 9f:75:8b:3b:d5:bc:1b:40:d6:cb:e3:b7:30:fa:c4: 31:0c:4f:46:95:96:96:dc:26:0c:c5:e6:bf:18:15: b4:27:5e:71:b3:f2:3e:47:e5:05:25:80:66:f2:43: 13:bf:14:34:31:eb:54:ac:6c:a5:dc:b6:bd:bb:e3: ae:f4:aa:af:01:af:09:89:ae:7e:86:e5:32:47:37: cf:83:e1:a8:92:75:1a:e9:a1:ba:60:8a:c6:26:67: b1:75:19:5f:17:dd:67:20:fa:32:15:45:fc:de:0d: 7c:fc:16:01:6c:41:53:ed:90:1f:5c:c7:e8:1e:76: 0b:5f:6e:85:99:2f:1b:3f:be:5f:a7:be:29:61:dd: 28:c9:35:3b:0f:ac:85:20:eb:ae:fd:56:af:70:87: b1:97:a0:7f:b6:48:c3:2b:e5:21:f4:69:b4:6c:13: 12:24:39:d4:8f:1d:1d:5a:b5:31:35:2b:93:7b:04: d1:d1:33:e2:51:d7:94:8a:65:99:ca:c5:1a:9c:73: 5c:54:d1:c8:84:af:bb:21:29:2e:5a:96:b4:04:c6: fa:c0:45:f6:0e:7a:d4:7a:13:fd:b3:46:46:ee:34: 64:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:2A:ED:AB:2B:8E:84:9C:F7:BB:6E:88:D2:2C:AF:0C:E6:61:53:B3 X509v3 Authority Key Identifier: keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:9f:88:4c:37:1b:13:7a:be:be:06:92:0c:bf:43:12:df:bd: ca:85:ad:ff:a6:91:a0:d8:ba:6b:76:8b:df:3e:15:3a:7f:4d: 30:71:1b:26:cf:94:99:b3:e2:b9:ea:a3:09:45:52:5c:19:35: 2e:25:7c:2d:63:65:61:c6:22:54:1b:fa:04:bb:a5:bc:29:78: 88:fe:3c:fc:5b:87:03:27:3a:b3:e4:1d:e2:94:1a:8f:f4:b6: e1:d8:e4:79:46:2c:af:00:36:64:bb:72:3f:8c:e9:e1:62:38: 4b:fc:1d:f9:13:3a:33:ff:db:2c:10:54:0e:4e:79:bf:d9:48: 93:9c:f1:49:42:f6:e3:fe:6e:f1:49:19:2d:b0:60:20:16:20: e7:26:08:93:97:8f:d5:58:87:88:8d:3f:ee:38:d3:ba:13:49: 17:7d:e6:d3:b0:fc:e2:82:95:be:c0:e9:a2:18:27:35:95:50: de:19:0a:dd:6a:5a:b5:9d:47:ae:6b:c0:e1:0e:82:ec:e1:fc: 70:3e:b3:b9:ce:33:2e:89:31:ca:4f:fb:20:37:a4:0c:14:c7: 47:41:35:c9:61:47:0e:92:38:4e:ba:7a:64:60:f2:a9:3f:ee: 3c:d9:09:1a:20:ba:d4:24:77:62:29:60:0b:11:d1:7e:a3:6b: e0:4b:52:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtWrCGA6pl2Ha6i3HaNlvd3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2 ZGNmMTAwHhcNMjUxMjI1MTgwMTE5WhcNMjUxMjI2MTgwMTE5WjAzMTEwLwYDVQQD Eyg2ZjJhZWRhYjJiOGU4NDljZjdiYjZlODhkMjJjYWYwY2U2NjE1M2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQ6YtE27j0qPgdKBFTvi6tbFwAfN vwWeU/ChCUOfdYs71bwbQNbL47cw+sQxDE9GlZaW3CYMxea/GBW0J15xs/I+R+UF JYBm8kMTvxQ0MetUrGyl3La9u+Ou9KqvAa8Jia5+huUyRzfPg+GoknUa6aG6YIrG JmexdRlfF91nIPoyFUX83g18/BYBbEFT7ZAfXMfoHnYLX26FmS8bP75fp74pYd0o yTU7D6yFIOuu/VavcIexl6B/tkjDK+Uh9Gm0bBMSJDnUjx0dWrUxNSuTewTR0TPi UdeUimWZysUanHNcVNHIhK+7ISkuWpa0BMb6wEX2DnrUehP9s0ZG7jRkgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG8q7asrjoSc97tuiNIsrwzmYVOzMB8GA1UdIwQY MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt ODVhOTU1ZjIxNjNiLzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF5+ITDcb E3q+vgaSDL9DEt+9yoWt/6aRoNi6a3aL3z4VOn9NMHEbJs+UmbPiueqjCUVSXBk1 LiV8LWNlYcYiVBv6BLulvCl4iP48/FuHAyc6s+Qd4pQaj/S24djkeUYsrwA2ZLty P4zp4WI4S/wd+RM6M//bLBBUDk55v9lIk5zxSUL24/5u8UkZLbBgIBYg5yYIk5eP 1ViHiI0/7jjTuhNJF33m07D84oKVvsDpohgnNZVQ3hkK3WpatZ1HrmvA4Q6C7OH8 cD6zuc4zLokxyk/7IDekDBTHR0E1yWFHDpI4Trp6ZGDyqT/uPNkJGiC61CR3Yilg CxHRfqNr4EtS8w== -----END CERTIFICATE-----Generated at Thu Dec 25 19:41:44 2025 by rpki-client