This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft File: tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft (raw, json) Hash identifier: mL+OMm1XpjAazgbSS2n2rljnu/OWyUAAIlQ4iVrXwwM= Subject key identifier: FB:11:DE:B4:88:96:9E:ED:C3:12:33:99:AA:93:A7:37:05:FF:C4:90 Authority key identifier: B4:85:84:EF:FA:05:1F:0C:BC:39:C3:19:16:3E:4F:23:38:60:49:82 Certificate issuer: /CN=b48584effa051f0cbc39c319163e4f2338604982 Certificate serial: 019B597761E8F1E5AF3BD8962170908751A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft Manifest number: 2F Signing time: Fri 26 Dec 2025 07:02:34 +0000 Manifest this update: Fri 26 Dec 2025 07:02:34 +0000 Manifest next update: Sat 27 Dec 2025 07:02:34 +0000 Files and hashes: 1: 8kE0tO9uvlKB37lyd62GPmDaFQI.roa (hash: D46kiJCVXFUzhMwUZ2ixZDFAlgrG2JSsYU6GUwRkFeY=) 2: tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl (hash: Vy4M3UG/0IgiqGCKcPtbQ2uoNGetpFQ45Dn1NW2NDAk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:61:e8:f1:e5:af:3b:d8:96:21:70:90:87:51:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b48584effa051f0cbc39c319163e4f2338604982 Validity Not Before: Dec 26 07:02:34 2025 GMT Not After : Dec 27 07:02:34 2025 GMT Subject: CN=fb11deb488969eedc3123399aa93a73705ffc490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0f:91:01:00:b0:8f:71:b3:e7:2c:09:91:4a: 64:b5:65:52:93:c8:e5:c4:70:78:35:e3:c7:a2:e7: 42:a6:a0:58:4a:5f:d2:fe:c5:a2:e8:99:4b:81:c6: 21:75:ef:52:04:2c:ff:63:c3:b9:3a:44:1c:d8:53: 7d:a5:53:2b:ee:f0:52:55:74:4f:31:c6:7a:e7:9e: 34:77:58:7d:a3:17:93:39:a8:16:16:2f:37:53:0c: 1e:1a:13:d3:63:bb:78:52:b6:c6:51:53:ae:f5:4f: 96:21:6b:e1:03:0b:58:e3:3d:75:3e:97:d7:34:ea: fd:cc:43:d8:01:5d:28:25:18:95:98:a5:99:0a:b7: de:bc:19:95:f1:c2:72:04:8c:81:4a:d9:ca:c8:6f: 69:37:ea:4c:6c:ad:8f:1f:38:03:d6:aa:3c:d6:1e: 16:4f:1f:14:a4:88:ed:b7:7d:22:2c:1a:92:c9:13: 7c:c7:e9:84:54:81:c4:61:cf:c5:52:d3:0e:e7:ae: 85:7a:7a:cd:0b:13:4e:78:ce:70:f4:9f:86:6b:96: 08:bd:22:6e:29:d9:ee:c4:80:8e:82:ea:2b:23:6c: 04:ac:c8:26:36:42:54:d4:15:6c:29:65:98:19:42: 4c:29:c2:52:75:24:1e:91:95:ab:a2:f9:41:b9:15: 70:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:11:DE:B4:88:96:9E:ED:C3:12:33:99:AA:93:A7:37:05:FF:C4:90 X509v3 Authority Key Identifier: keyid:B4:85:84:EF:FA:05:1F:0C:BC:39:C3:19:16:3E:4F:23:38:60:49:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIWE7_oFHwy8OcMZFj5PIzhgSYI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/21e032-073d-4068-ae45-c6613f9c14ca/1/tIWE7_oFHwy8OcMZFj5PIzhgSYI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:6b:7a:81:15:f4:f2:3f:e7:9b:05:69:8b:9b:41:c6:4c:1c: 83:2d:7d:fc:67:d6:fc:ab:c9:02:03:2b:8e:be:bf:e5:59:65: 13:26:30:fd:56:5b:5e:8e:6d:41:d6:fa:40:72:e3:f5:12:ef: 15:a4:02:c7:b4:0d:0c:3d:8e:93:24:01:2d:4f:ab:35:a5:e4: f7:88:be:86:23:af:29:97:b5:f8:c3:aa:f7:0a:c5:05:68:8e: 49:0c:57:9b:b6:0e:1a:a7:76:c9:c6:2e:0b:10:a4:68:eb:31: cb:b4:60:40:b4:1f:f7:4f:bf:ab:20:b6:ac:7b:79:90:60:b6: ec:94:fb:ff:8b:cf:bf:67:84:b6:e7:66:23:b3:db:f3:19:b7: 5a:15:03:3a:29:70:d7:68:73:11:79:41:7f:d3:69:bb:ac:46: 29:0b:8c:28:82:fe:5f:81:ee:ed:da:55:63:4e:ed:75:28:57: 30:eb:ac:00:76:c4:b6:28:6f:43:dc:fe:53:33:46:57:92:b8: 23:2b:af:ba:b1:93:bc:aa:93:45:6d:04:bb:3c:8a:22:8b:c8: f1:7f:10:cb:80:d1:58:6e:b3:b1:66:64:06:f3:54:2c:c7:7a: eb:50:43:2e:45:15:e1:84:26:7d:10:f4:d2:01:4b:af:1d:9e: e4:12:06:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd2Ho8eWvO9iWIXCQh1GhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ODU4NGVmZmEwNTFmMGNiYzM5YzMxOTE2M2U0ZjIzMzg2 MDQ5ODIwHhcNMjUxMjI2MDcwMjM0WhcNMjUxMjI3MDcwMjM0WjAzMTEwLwYDVQQD EyhmYjExZGViNDg4OTY5ZWVkYzMxMjMzOTlhYTkzYTczNzA1ZmZjNDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4A+RAQCwj3Gz5ywJkUpktWVSk8jl xHB4NePHoudCpqBYSl/S/sWi6JlLgcYhde9SBCz/Y8O5OkQc2FN9pVMr7vBSVXRP McZ65540d1h9oxeTOagWFi83UwweGhPTY7t4UrbGUVOu9U+WIWvhAwtY4z11PpfX NOr9zEPYAV0oJRiVmKWZCrfevBmV8cJyBIyBStnKyG9pN+pMbK2PHzgD1qo81h4W Tx8UpIjtt30iLBqSyRN8x+mEVIHEYc/FUtMO566FenrNCxNOeM5w9J+Ga5YIvSJu KdnuxICOguorI2wErMgmNkJU1BVsKWWYGUJMKcJSdSQekZWrovlBuRVw+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPsR3rSIlp7twxIzmaqTpzcF/8SQMB8GA1UdIwQY MBaAFLSFhO/6BR8MvDnDGRY+TyM4YEmCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdElXRTdfb0ZId3k4T2NNWkZqNVBJemhnU1lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yMWUwMzItMDczZC00MDY4LWFlNDUt YzY2MTNmOWMxNGNhLzEvdElXRTdfb0ZId3k4T2NNWkZqNVBJemhnU1lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8yMWUwMzItMDczZC00MDY4LWFlNDUtYzY2MTNmOWMxNGNh LzEvdElXRTdfb0ZId3k4T2NNWkZqNVBJemhnU1lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMWt6gRX0 8j/nmwVpi5tBxkwcgy19/GfW/KvJAgMrjr6/5VllEyYw/VZbXo5tQdb6QHLj9RLv FaQCx7QNDD2OkyQBLU+rNaXk94i+hiOvKZe1+MOq9wrFBWiOSQxXm7YOGqd2ycYu CxCkaOsxy7RgQLQf90+/qyC2rHt5kGC27JT7/4vPv2eEtudmI7Pb8xm3WhUDOilw 12hzEXlBf9Npu6xGKQuMKIL+X4Hu7dpVY07tdShXMOusAHbEtihvQ9z+UzNGV5K4 IyuvurGTvKqTRW0EuzyKIovI8X8Qy4DRWG6zsWZkBvNULMd661BDLkUV4YQmfRD0 0gFLrx2e5BIGUg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:19 2025 by rpki-client