This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json) Hash identifier: ken07I6vd5X1WlMRx57q/t/3660GjBiXJj1X1OWbG28= Subject key identifier: F1:1B:95:DC:84:96:94:0D:38:8C:8F:B0:D6:32:53:62:A7:D4:F1:E3 Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03 Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803 Certificate serial: 019B32D795A48CDD17F5821D5D2C4B5D8EBC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft Manifest number: 1781 Signing time: Thu 18 Dec 2025 19:02:27 +0000 Manifest this update: Thu 18 Dec 2025 19:02:27 +0000 Manifest next update: Fri 19 Dec 2025 19:02:27 +0000 Files and hashes: 1: 0BpZrCwCrh0nhCnBWsTx8npHw5Y.roa (hash: dghoAHC17Ez/jlFwmLW4wwi4h/yLfo/iz9cDa/mgf8U=) 2: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: bpW1p6YrHIURTq6QKqlq9ewYrgZroNx1rhEP0jnPPWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:95:a4:8c:dd:17:f5:82:1d:5d:2c:4b:5d:8e:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803 Validity Not Before: Dec 18 19:02:27 2025 GMT Not After : Dec 19 19:02:27 2025 GMT Subject: CN=f11b95dc8496940d388c8fb0d6325362a7d4f1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d9:e2:60:e0:34:7c:98:e3:63:46:53:9a:21: 3a:be:ad:8d:c8:85:f3:78:ae:89:6f:b1:74:f4:54: 14:a8:15:09:84:d3:b0:57:01:4f:fe:e0:ba:7a:05: 95:80:f5:73:38:29:a6:1a:34:de:e9:4a:07:d2:7a: 71:44:8f:c2:f7:0d:52:af:78:64:e4:9b:42:82:e7: ab:e8:b9:8b:67:b6:5e:00:75:57:c5:62:29:24:05: 33:09:8f:e3:95:f6:cd:cc:aa:9e:8e:01:a2:cf:73: f7:c3:4a:a5:d3:6e:a6:c6:f3:67:ad:98:a5:3d:5a: 65:0b:5b:d4:fe:cd:66:aa:ea:05:e8:d7:1a:5a:c6: 52:26:8d:2d:c6:9c:0c:cb:29:4d:08:d8:60:98:00: fe:60:2a:ba:18:65:0f:87:22:6b:a4:f2:4a:a7:35: 86:1a:60:a7:6b:4d:32:70:7d:d6:29:5b:aa:5b:3d: b0:f3:e4:68:f4:b1:5f:be:3b:8a:8e:fe:73:5a:20: be:40:19:79:5d:dd:26:1d:70:8b:d7:c0:51:d5:a8: 91:0e:8c:af:f3:de:fc:17:24:5b:14:a1:ac:7a:71: bb:bd:40:59:d4:4a:01:2d:18:7e:70:9a:91:60:2d: e5:05:96:99:95:2b:6f:ce:53:a9:fa:40:e4:43:a1: a9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:1B:95:DC:84:96:94:0D:38:8C:8F:B0:D6:32:53:62:A7:D4:F1:E3 X509v3 Authority Key Identifier: keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:9c:b8:cc:f2:84:e5:8c:44:2e:07:35:e9:89:53:01:0a:9e: 06:4b:ae:6a:47:93:21:eb:69:3d:9a:b1:22:3d:7e:d8:97:f1: 8a:37:c1:3a:3e:6b:45:37:29:05:28:c9:93:26:36:1a:71:ea: 76:af:27:05:29:f4:92:70:4e:eb:fe:c7:d7:71:ab:0a:40:c8: b6:45:93:0e:64:cc:5f:95:b5:28:e5:62:b3:35:39:82:d7:1a: 21:63:60:c5:d3:d8:c9:46:fb:de:a0:a2:94:08:ae:c3:1a:6d: ee:9b:e1:28:94:a2:f2:33:a0:e4:1a:61:4e:6e:8e:9d:1e:76: 9d:3c:1f:36:e7:8a:49:e3:13:84:cd:04:7e:43:1a:27:89:08: fc:79:c8:55:75:ff:25:52:a7:fb:d4:0f:7a:b9:62:a3:54:ec: 7d:c4:9c:4a:4e:36:46:d3:14:7d:9c:e6:43:1b:78:de:c1:c3: 89:ff:ba:c9:f1:af:b8:c2:9e:de:f7:8f:16:71:ee:a9:26:ec: 4a:2e:aa:7f:26:4d:ec:98:c7:10:c5:12:5b:c7:ec:cd:7a:a9: 77:38:e6:3c:7b:fc:5e:05:dd:ce:69:3e:42:92:9f:9c:1e:85: a8:75:11:00:58:5c:b3:60:6f:1b:fd:6c:1c:17:0d:bf:96:6c: 80:5b:09:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy15WkjN0X9YIdXSxLXY68MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMzRiMTNmYmQ5MzgxZGY4NGM2ODdmMDZiY2QwNzRlNGE3 NTU4MDMwHhcNMjUxMjE4MTkwMjI3WhcNMjUxMjE5MTkwMjI3WjAzMTEwLwYDVQQD EyhmMTFiOTVkYzg0OTY5NDBkMzg4YzhmYjBkNjMyNTM2MmE3ZDRmMWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5tniYOA0fJjjY0ZTmiE6vq2NyIXz eK6Jb7F09FQUqBUJhNOwVwFP/uC6egWVgPVzOCmmGjTe6UoH0npxRI/C9w1Sr3hk 5JtCguer6LmLZ7ZeAHVXxWIpJAUzCY/jlfbNzKqejgGiz3P3w0ql026mxvNnrZil PVplC1vU/s1mquoF6NcaWsZSJo0txpwMyylNCNhgmAD+YCq6GGUPhyJrpPJKpzWG GmCna00ycH3WKVuqWz2w8+Ro9LFfvjuKjv5zWiC+QBl5Xd0mHXCL18BR1aiRDoyv 8978FyRbFKGsenG7vUBZ1EoBLRh+cJqRYC3lBZaZlStvzlOp+kDkQ6GpBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPEbldyElpQNOIyPsNYyU2Kn1PHjMB8GA1UdIwQY MBaAFP00sT+9k4HfhMaH8GvNB05KdVgDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMTk2ZjEtNDMzOS00YmRjLTgwMzQt MmViMmYyZWQzMDI5LzEvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8wMTk2ZjEtNDMzOS00YmRjLTgwMzQtMmViMmYyZWQzMDI5 LzEvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhZy4zPKE 5YxELgc16YlTAQqeBkuuakeTIetpPZqxIj1+2JfxijfBOj5rRTcpBSjJkyY2GnHq dq8nBSn0knBO6/7H13GrCkDItkWTDmTMX5W1KOViszU5gtcaIWNgxdPYyUb73qCi lAiuwxpt7pvhKJSi8jOg5BphTm6OnR52nTwfNueKSeMThM0EfkMaJ4kI/HnIVXX/ JVKn+9QPerlio1TsfcScSk42RtMUfZzmQxt43sHDif+6yfGvuMKe3vePFnHuqSbs Si6qfyZN7JjHEMUSW8fszXqpdzjmPHv8XgXdzmk+QpKfnB6FqHURAFhcs2BvG/1s HBcNv5ZsgFsJ7g== -----END CERTIFICATE-----Generated at Thu Dec 18 22:36:46 2025 by rpki-client