This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: lw4O572oiwPQvwf+MuoZC+UfhVXw1N2OCr/y5uVVeQY= Subject key identifier: 19:38:0B:C2:B5:FB:FD:83:30:48:E8:A2:A0:CA:27:C9:6A:58:A9:75 Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019B476FE57B2263F1B53BA950EA63CA4853 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 17AA Signing time: Mon 22 Dec 2025 19:01:14 +0000 Manifest this update: Mon 22 Dec 2025 19:01:14 +0000 Manifest next update: Tue 23 Dec 2025 19:01:14 +0000 Files and hashes: 1: 3m24X-EciRhk0jIJsdLBkFHw4Vc.roa (hash: 4191ER+HI71G/WcSYBdVlGxJt+on8LpGReotMNSci7U=) 2: BWY_6iX1eFA1wINEV3UFtZmQLVc.roa (hash: ieExeoISyHbhbY82Esso3kgMYn1eA+NJEZI1EbJUVxo=) 3: OW3nOicLkrmXZdp3r5orx47eGJQ.roa (hash: 5EmIochVR6v8ogsSzgwpakcQSlqncNbG0N7JC4GvEpY=) 4: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: +UatKHqHdQ+IV5XHc+uNBTdxw/SoUPTC+dBIEwMAi/s=) 5: XRjqskDJfCb5PURI6gE2z-7afCI.roa (hash: lC6CdL71ZqZQFEg499ebGpokdZd/v2A2IJbWINe+nqc=) 6: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=) 7: yCdRlY1dy91_yoXt5TFoEdJrw-o.roa (hash: KareyGqAsZ0sDsSq6dTpkWiy0kkcW1Zx+0QaG17jqGs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:6f:e5:7b:22:63:f1:b5:3b:a9:50:ea:63:ca:48:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Dec 22 19:01:14 2025 GMT Not After : Dec 23 19:01:14 2025 GMT Subject: CN=19380bc2b5fbfd833048e8a2a0ca27c96a58a975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9a:26:82:7e:c4:ac:a2:cd:31:da:32:30:78: 69:cd:aa:74:02:4a:c0:a7:44:ee:86:7b:0a:71:14: d9:31:39:cd:08:66:4c:1b:d8:55:08:9b:3d:a6:a0: ed:cd:5c:1b:72:0f:3f:d3:b7:7e:78:28:24:ba:6d: 07:b3:98:96:78:63:df:29:db:ed:5e:e3:28:c1:f5: ac:89:2d:6a:e6:24:4c:ed:33:f2:5d:d0:c4:24:a7: 02:e8:73:3a:fd:94:a5:55:9e:90:09:fe:5f:fd:00: 1c:43:97:13:78:26:12:4d:1f:56:5b:9a:40:2a:8b: 8f:33:88:c5:55:2e:01:49:ef:d0:3d:fe:2e:7f:8c: b5:60:f2:c3:ed:6c:6e:1a:a1:ab:20:2f:83:28:68: d3:64:7c:86:d7:eb:fa:33:de:d8:e7:8b:c3:9a:49: 4a:de:09:5d:48:93:77:28:79:17:5f:86:9d:3f:b9: 28:f8:ba:ab:75:d3:29:8b:b3:eb:89:ed:33:79:a5: 2e:66:56:06:97:fa:a5:df:40:8c:74:e2:88:6a:ab: cd:cb:fc:a2:2b:67:54:27:72:d7:3b:74:2b:ae:77: 81:cd:81:09:20:74:85:cb:21:c7:a4:f0:8d:10:f8: 70:fa:75:77:1c:a6:c8:54:c0:80:e4:8d:b9:94:2e: 9d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:38:0B:C2:B5:FB:FD:83:30:48:E8:A2:A0:CA:27:C9:6A:58:A9:75 X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e8:d6:0a:e2:ac:4d:75:d2:0f:b9:fa:70:47:08:9a:5c:ac: ea:28:39:f9:0e:ac:82:45:e2:31:4f:ca:ea:6e:35:20:cf:fc: 28:39:37:a1:e4:5b:22:be:2a:f1:d1:6e:f8:a1:52:48:8d:3c: 38:56:a0:9a:33:fa:60:a3:39:e8:b5:46:c0:8c:bd:33:e6:b8: dc:e0:f7:63:be:72:64:29:fb:b1:a1:bd:cf:c9:7a:5c:50:7d: 36:78:71:c4:f4:38:d3:9b:f7:aa:7d:e2:94:c1:a6:c3:73:02: ac:cf:d5:7f:f8:26:4a:54:b2:90:04:cf:4f:93:61:eb:ed:10: fb:29:47:89:2b:7f:8c:71:9e:14:07:03:25:1e:3d:93:9e:6f: 00:98:bc:ee:3c:4c:9d:de:30:be:fa:23:49:43:92:d6:0f:e4: 97:81:68:cb:27:f8:a7:8a:ae:86:7b:be:4b:38:65:60:7a:51: c9:eb:da:57:40:df:67:81:75:fb:9f:1b:12:d0:ad:e7:82:a8: 1a:05:44:15:7d:20:4b:c3:f7:3c:e5:39:a0:b2:57:91:53:72: 67:cd:12:d2:f1:3f:20:51:a4:0d:e5:27:99:70:8c:07:27:0e: 2b:28:26:9d:fe:c5:9a:cb:a4:71:66:2f:35:17:1b:85:5e:ba: 2f:50:fe:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHb+V7ImPxtTupUOpjykhTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjUxMjIyMTkwMTE0WhcNMjUxMjIzMTkwMTE0WjAzMTEwLwYDVQQD EygxOTM4MGJjMmI1ZmJmZDgzMzA0OGU4YTJhMGNhMjdjOTZhNThhOTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Jomgn7ErKLNMdoyMHhpzap0AkrA p0TuhnsKcRTZMTnNCGZMG9hVCJs9pqDtzVwbcg8/07d+eCgkum0Hs5iWeGPfKdvt XuMowfWsiS1q5iRM7TPyXdDEJKcC6HM6/ZSlVZ6QCf5f/QAcQ5cTeCYSTR9WW5pA KouPM4jFVS4BSe/QPf4uf4y1YPLD7WxuGqGrIC+DKGjTZHyG1+v6M97Y54vDmklK 3gldSJN3KHkXX4adP7ko+LqrddMpi7Prie0zeaUuZlYGl/ql30CMdOKIaqvNy/yi K2dUJ3LXO3QrrneBzYEJIHSFyyHHpPCNEPhw+nV3HKbIVMCA5I25lC6dowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBk4C8K1+/2DMEjooqDKJ8lqWKl1MB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjujWCuKs TXXSD7n6cEcImlys6ig5+Q6sgkXiMU/K6m41IM/8KDk3oeRbIr4q8dFu+KFSSI08 OFagmjP6YKM56LVGwIy9M+a43OD3Y75yZCn7saG9z8l6XFB9NnhxxPQ405v3qn3i lMGmw3MCrM/Vf/gmSlSykATPT5Nh6+0Q+ylHiSt/jHGeFAcDJR49k55vAJi87jxM nd4wvvojSUOS1g/kl4Foyyf4p4quhnu+SzhlYHpRyevaV0DfZ4F1+58bEtCt54Ko GgVEFX0gS8P3POU5oLJXkVNyZ80S0vE/IFGkDeUnmXCMBycOKygmnf7FmsukcWYv NRcbhV66L1D+yw== -----END CERTIFICATE-----Generated at Tue Dec 23 03:31:58 2025 by rpki-client