This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft File: tJvYTaF5l8uyhq-QIqsuBboItEI.mft (raw, json) Hash identifier: IGjfsGaECWhiIkbutWz2W+5m+leR+TFLXEr8kHbSANg= Subject key identifier: 31:D5:BF:2A:45:0E:7D:60:D8:54:2C:DB:DD:F9:C0:EC:4B:47:5D:E7 Authority key identifier: B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42 Certificate issuer: /CN=b49bd84da17997cbb286af9022ab2e05ba08b442 Certificate serial: 019B34568BCDE20FBFDE9B73E67475471E6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft Manifest number: 12E4 Signing time: Fri 19 Dec 2025 02:00:45 +0000 Manifest this update: Fri 19 Dec 2025 02:00:45 +0000 Manifest next update: Sat 20 Dec 2025 02:00:45 +0000 Files and hashes: 1: 1-PqW8UmiSaov5LQilBVWMK5ZalY.roa (hash: TOVF5pxyQFktaD7ChGQ0pQzpTOW/D5b1AiH6KqbdxuQ=) 2: DaHb-AgbaohKBsaZFPAVDGbt_RI.roa (hash: T2KsBuhVxG35+5zMSgS7xBXEVKNyKlB23AKVgPghBi4=) 3: ZKaLH1RF9q1E6524_CLGwNAeKPU.roa (hash: NYm5o8T+AXl6BoN5iWRobD4OTRMc9uAM7u/9BRILK/4=) 4: tJvYTaF5l8uyhq-QIqsuBboItEI.crl (hash: /TjXZ7DQa87uK6Q9Mnxy4KuX1L/6/zOqJOLkASSZ/O0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 02:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:8b:cd:e2:0f:bf:de:9b:73:e6:74:75:47:1e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b49bd84da17997cbb286af9022ab2e05ba08b442 Validity Not Before: Dec 19 02:00:45 2025 GMT Not After : Dec 20 02:00:45 2025 GMT Subject: CN=31d5bf2a450e7d60d8542cdbddf9c0ec4b475de7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:09:1a:f8:b4:9c:5b:ee:10:76:7c:a0:7a:89: 80:2d:90:b8:99:49:94:2b:42:38:08:f4:8d:57:43: 64:72:5a:1e:00:b7:ef:79:93:f3:64:00:c5:72:fd: 8f:f4:56:c3:66:f1:03:79:92:99:23:a1:dc:2a:d4: 7a:45:7e:69:16:68:66:85:ee:17:8a:f7:26:a3:22: d6:3e:90:83:c6:16:07:6c:3e:8e:75:ba:1b:fd:0b: 7c:53:37:07:29:31:1a:57:ba:dd:7e:2d:10:8d:f6: 4e:ab:07:a5:a6:f5:6c:be:aa:9c:a7:3e:5b:a9:32: 13:f0:9e:c4:7c:06:1d:85:e5:65:b5:4b:a1:cf:a2: e6:ef:33:32:9b:7c:fa:84:7d:6b:1b:49:bb:fa:5d: de:5a:bb:07:74:f2:d1:59:c3:e7:03:a5:e4:06:1f: 27:db:f2:9d:51:b4:ba:27:6a:3b:6f:ea:d3:6d:77: a0:ab:04:06:02:6e:f5:b8:a9:1e:ac:71:0c:fe:dd: 2e:0d:46:d7:49:21:0b:79:78:47:e4:9f:e1:93:cd: 4b:65:e9:0e:44:93:40:9f:1b:22:4c:64:4e:28:ae: 90:88:98:21:80:b2:63:41:fb:d3:c4:73:a7:46:e7: 39:8c:da:09:4f:01:e3:fd:a5:eb:1c:6d:01:5b:46: a9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D5:BF:2A:45:0E:7D:60:D8:54:2C:DB:DD:F9:C0:EC:4B:47:5D:E7 X509v3 Authority Key Identifier: keyid:B4:9B:D8:4D:A1:79:97:CB:B2:86:AF:90:22:AB:2E:05:BA:08:B4:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tJvYTaF5l8uyhq-QIqsuBboItEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ee54d1-5b15-4f93-897b-0c909bf5be4d/1/tJvYTaF5l8uyhq-QIqsuBboItEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:ea:5d:37:a6:f4:4b:43:b0:19:71:ed:e4:4c:f0:30:c5:eb: 35:2f:6b:03:e0:2a:a5:0f:1b:2a:70:88:9e:7a:ba:bc:11:5c: 35:a9:d1:86:75:90:c5:bf:b1:c8:cb:5a:ea:8b:12:88:27:8f: 64:36:9d:25:92:82:b5:01:56:14:b7:d3:46:c6:32:8c:fe:7f: a5:42:b1:5a:f4:2b:98:94:c5:eb:15:f1:72:ca:0b:65:83:24: 87:ac:8b:d1:4a:1d:ce:f9:97:fb:23:25:66:0e:2e:06:df:93: da:b2:fe:b0:b8:df:5f:0c:0e:3a:4e:47:74:8d:c6:80:88:ac: 8d:3a:dc:fa:96:7d:03:be:85:68:5b:91:6b:b0:81:18:c1:5b: 64:29:fd:3a:11:5b:69:8e:91:a9:de:40:3b:d8:f0:e9:3e:1c: be:d1:38:12:cb:43:06:b0:ba:b4:cb:46:c0:aa:2a:8c:40:01: dd:be:f8:30:cf:da:07:b3:22:08:ff:66:ef:b8:be:05:a0:65: 7f:78:f5:51:e4:93:2c:87:c1:8a:3c:4b:6a:b8:22:e0:ea:5e: 18:32:1b:83:3f:9f:1e:9f:f4:45:7e:23:0a:5a:59:0f:76:7d: 3c:02:ac:30:59:3b:91:8d:fc:63:49:ff:01:c4:19:6e:5d:fe: 4e:08:0a:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0VovN4g+/3ptz5nR1Rx5sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0OWJkODRkYTE3OTk3Y2JiMjg2YWY5MDIyYWIyZTA1YmEw OGI0NDIwHhcNMjUxMjE5MDIwMDQ1WhcNMjUxMjIwMDIwMDQ1WjAzMTEwLwYDVQQD EygzMWQ1YmYyYTQ1MGU3ZDYwZDg1NDJjZGJkZGY5YzBlYzRiNDc1ZGU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAka+LScW+4QdnygeomALZC4mUmU K0I4CPSNV0NkcloeALfveZPzZADFcv2P9FbDZvEDeZKZI6HcKtR6RX5pFmhmhe4X ivcmoyLWPpCDxhYHbD6Odbob/Qt8UzcHKTEaV7rdfi0QjfZOqwelpvVsvqqcpz5b qTIT8J7EfAYdheVltUuhz6Lm7zMym3z6hH1rG0m7+l3eWrsHdPLRWcPnA6XkBh8n 2/KdUbS6J2o7b+rTbXegqwQGAm71uKkerHEM/t0uDUbXSSELeXhH5J/hk81LZekO RJNAnxsiTGROKK6QiJghgLJjQfvTxHOnRuc5jNoJTwHj/aXrHG0BW0apmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDHVvypFDn1g2FQs2935wOxLR13nMB8GA1UdIwQY MBaAFLSb2E2heZfLsoavkCKrLgW6CLRCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEp2WVRhRjVsOHV5aHEtUUlxc3VCYm9JdEVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lZTU0ZDEtNWIxNS00ZjkzLTg5N2It MGM5MDliZjViZTRkLzEvdEp2WVRhRjVsOHV5aHEtUUlxc3VCYm9JdEVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lZTU0ZDEtNWIxNS00ZjkzLTg5N2ItMGM5MDliZjViZTRk LzEvdEp2WVRhRjVsOHV5aHEtUUlxc3VCYm9JdEVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbepdN6b0 S0OwGXHt5EzwMMXrNS9rA+AqpQ8bKnCInnq6vBFcNanRhnWQxb+xyMta6osSiCeP ZDadJZKCtQFWFLfTRsYyjP5/pUKxWvQrmJTF6xXxcsoLZYMkh6yL0UodzvmX+yMl Zg4uBt+T2rL+sLjfXwwOOk5HdI3GgIisjTrc+pZ9A76FaFuRa7CBGMFbZCn9OhFb aY6Rqd5AO9jw6T4cvtE4EstDBrC6tMtGwKoqjEAB3b74MM/aB7MiCP9m77i+BaBl f3j1UeSTLIfBijxLargi4OpeGDIbgz+fHp/0RX4jClpZD3Z9PAKsMFk7kY38Y0n/ AcQZbl3+TggK/w== -----END CERTIFICATE-----Generated at Fri Dec 19 09:27:00 2025 by rpki-client