This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft File: tqNouOZvnhWmEOwY1rFHtrokzuc.mft (raw, json) Hash identifier: R/yqjE0TGBtnm/uwVangyK+mHl17BwKELmw17Nt1KTE= Subject key identifier: 5F:67:8E:BA:4A:A0:D2:40:48:83:8D:36:85:D4:AE:45:2F:10:B4:0D Authority key identifier: B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7 Certificate issuer: /CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7 Certificate serial: 019B378EA22F56539802469416ADA41CE0CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft Manifest number: 0212 Signing time: Fri 19 Dec 2025 17:00:53 +0000 Manifest this update: Fri 19 Dec 2025 17:00:53 +0000 Manifest next update: Sat 20 Dec 2025 17:00:53 +0000 Files and hashes: 1: 76JdDApMBw2HG_-2b61i99W245Q.roa (hash: NIJoLQsfvrL/qonBB3ZwrtyRIgvdYG24/geuGhv0roI=) 2: tqNouOZvnhWmEOwY1rFHtrokzuc.crl (hash: Rmgv7hVmT8bdGqnKidpmOYw4uPmAtSK6Zg5IJklNBhk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:a2:2f:56:53:98:02:46:94:16:ad:a4:1c:e0:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6a368b8e66f9e15a610ec18d6b147b6ba24cee7 Validity Not Before: Dec 19 17:00:53 2025 GMT Not After : Dec 20 17:00:53 2025 GMT Subject: CN=5f678eba4aa0d24048838d3685d4ae452f10b40d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:21:fd:ed:c3:b1:fc:d1:26:10:5e:3e:6c: 34:01:13:7b:56:8a:ec:a1:6f:90:26:7d:9a:9e:7f: 20:1a:3b:c6:fe:ed:a6:4d:e3:ba:d0:67:39:57:35: bc:9b:75:0c:ec:76:ae:7d:be:35:0c:b7:a8:81:59: 9f:52:de:9e:fd:9e:70:a7:8a:ea:ed:ff:e5:64:44: 62:f6:e3:d3:33:2c:e1:6a:96:e4:de:bd:e8:28:57: 3b:dd:40:96:4a:02:db:72:8c:4f:d7:18:d6:28:37: 11:cc:b5:c1:64:32:a8:7a:63:e1:49:31:f4:d2:9e: 3f:b3:d2:ec:d4:d8:42:92:30:fb:9c:2f:81:5f:fb: f8:c9:e9:97:5d:d2:d8:56:4c:f7:6f:91:29:e4:49: 53:34:2f:56:8e:b2:77:ac:be:81:b9:08:28:d1:39: e5:d5:ee:a6:a2:92:4a:4e:0d:80:3b:36:82:36:4c: 62:3b:8a:92:5b:44:23:ef:76:6b:03:52:03:76:25: b9:a3:50:1b:50:d7:81:e7:cd:b7:51:b3:82:ac:e5: bd:a5:63:8a:f2:ef:84:02:b9:15:53:ee:f5:f2:01: 14:aa:7e:19:7c:63:fc:5a:98:34:6f:16:5c:a1:eb: 3e:86:cf:02:f1:db:bb:6a:ee:37:74:68:e4:77:6a: 26:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:67:8E:BA:4A:A0:D2:40:48:83:8D:36:85:D4:AE:45:2F:10:B4:0D X509v3 Authority Key Identifier: keyid:B6:A3:68:B8:E6:6F:9E:15:A6:10:EC:18:D6:B1:47:B6:BA:24:CE:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tqNouOZvnhWmEOwY1rFHtrokzuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ba1868-ab76-4be1-bc53-7480d8a2f1be/1/tqNouOZvnhWmEOwY1rFHtrokzuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:09:f8:72:84:73:9e:cd:f0:94:1c:c3:bb:1f:dd:02:a3:fc: 1d:27:a1:20:6c:02:65:d5:75:32:d6:ca:12:84:84:91:99:61: 46:ad:92:c0:6a:06:fb:62:cd:91:80:b5:50:22:0a:57:9b:d1: 3c:89:71:ca:8c:e1:73:aa:7d:12:16:01:9e:04:9c:f6:82:8b: 74:86:92:71:0c:7c:9f:03:9e:9c:02:f4:b4:8b:98:bd:e0:1c: 39:75:b7:86:01:ad:7d:1b:69:77:80:c2:64:ac:2d:a9:93:77: b9:b5:6e:89:5f:34:25:97:c1:0d:55:5e:9b:79:b1:b8:a1:c3: 01:a7:59:e0:84:e1:c5:d9:9c:00:20:f3:1b:f3:67:f8:4d:3c: ab:59:bb:6d:81:2b:2f:73:6f:9d:9f:ce:12:7c:8b:7f:db:cc: e8:d7:50:a7:08:54:82:2d:55:4d:22:8d:fd:38:7d:3c:5c:9c: f7:7c:1d:a4:c7:ae:cd:30:6c:ae:11:ca:ec:95:13:72:7a:ad: a1:e2:c8:a9:17:bf:b4:04:04:88:56:76:a4:8e:b9:0b:be:40: 04:7a:bc:fa:70:f0:a1:c0:1e:54:4a:bf:71:0b:00:ac:01:ac: 7b:a8:cc:6b:2a:c2:f9:c3:74:a2:80:c8:e7:e2:2e:d7:d0:7d: 63:d3:57:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3jqIvVlOYAkaUFq2kHODMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2YTM2OGI4ZTY2ZjllMTVhNjEwZWMxOGQ2YjE0N2I2YmEy NGNlZTcwHhcNMjUxMjE5MTcwMDUzWhcNMjUxMjIwMTcwMDUzWjAzMTEwLwYDVQQD Eyg1ZjY3OGViYTRhYTBkMjQwNDg4MzhkMzY4NWQ0YWU0NTJmMTBiNDBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwD0h/e3DsfzRJhBePmw0ARN7Vors oW+QJn2ann8gGjvG/u2mTeO60Gc5VzW8m3UM7Haufb41DLeogVmfUt6e/Z5wp4rq 7f/lZERi9uPTMyzhapbk3r3oKFc73UCWSgLbcoxP1xjWKDcRzLXBZDKoemPhSTH0 0p4/s9Ls1NhCkjD7nC+BX/v4yemXXdLYVkz3b5Ep5ElTNC9WjrJ3rL6BuQgo0Tnl 1e6mopJKTg2AOzaCNkxiO4qSW0Qj73ZrA1IDdiW5o1AbUNeB5823UbOCrOW9pWOK 8u+EArkVU+718gEUqn4ZfGP8Wpg0bxZcoes+hs8C8du7au43dGjkd2omfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF9njrpKoNJASIONNoXUrkUvELQNMB8GA1UdIwQY MBaAFLajaLjmb54VphDsGNaxR7a6JM7nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMt NzQ4MGQ4YTJmMWJlLzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9iYTE4NjgtYWI3Ni00YmUxLWJjNTMtNzQ4MGQ4YTJmMWJl LzEvdHFOb3VPWnZuaFdtRU93WTFyRkh0cm9renVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAn4coRz ns3wlBzDux/dAqP8HSehIGwCZdV1MtbKEoSEkZlhRq2SwGoG+2LNkYC1UCIKV5vR PIlxyozhc6p9EhYBngSc9oKLdIaScQx8nwOenAL0tIuYveAcOXW3hgGtfRtpd4DC ZKwtqZN3ubVuiV80JZfBDVVem3mxuKHDAadZ4IThxdmcACDzG/Nn+E08q1m7bYEr L3NvnZ/OEnyLf9vM6NdQpwhUgi1VTSKN/Th9PFyc93wdpMeuzTBsrhHK7JUTcnqt oeLIqRe/tAQEiFZ2pI65C75ABHq8+nDwocAeVEq/cQsArAGse6jMayrC+cN0ooDI 5+Iu19B9Y9NX0g== -----END CERTIFICATE-----Generated at Fri Dec 19 20:32:46 2025 by rpki-client