This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json) Hash identifier: Jpqs+/tOTND53dBMIvDyw7/1g3F5JzmLKuGKNIyyhUs= Subject key identifier: 01:CF:5D:02:E9:61:A2:41:93:BB:55:89:CD:F8:CD:78:B0:11:58:E5 Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be Certificate serial: 019B213DBF2FAF998784717D2518D1AE39E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft Manifest number: 0AD4 Signing time: Mon 15 Dec 2025 09:00:53 +0000 Manifest this update: Mon 15 Dec 2025 09:00:53 +0000 Manifest next update: Tue 16 Dec 2025 09:00:53 +0000 Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=) 2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=) 3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: cd8KSJEYunfunnEtcRkuVK4fB3kmtKMwChBGQTZlj9o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 09:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:3d:bf:2f:af:99:87:84:71:7d:25:18:d1:ae:39:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be Validity Not Before: Dec 15 09:00:53 2025 GMT Not After : Dec 16 09:00:53 2025 GMT Subject: CN=01cf5d02e961a24193bb5589cdf8cd78b01158e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d7:ac:35:dd:00:9b:e4:38:64:e2:ae:7e:5c: e0:a9:ce:1c:99:3f:c7:1a:15:85:07:b3:dc:4b:32: f1:61:e3:63:45:ba:d7:ba:60:d7:c8:af:54:40:50: af:fb:90:f8:e9:f5:e3:b1:85:0b:f2:cf:41:dd:53: b6:28:b2:7c:23:40:ea:97:1b:27:82:0b:5c:b0:40: d3:b9:41:f6:e5:d3:6e:14:47:a0:33:26:87:f2:1b: 03:2b:d6:a0:0f:8b:4e:b6:75:12:06:0f:9b:19:72: 7a:da:51:38:25:47:26:0f:08:34:e6:9a:d8:de:84: 06:e7:9d:f4:b3:9b:55:40:92:24:4c:71:b1:c8:2a: 26:2f:ab:bf:0e:bb:df:66:a8:48:cb:d9:3b:29:71: e3:63:ad:3b:55:7b:b3:37:35:ba:9a:4d:69:2c:38: d1:3b:3d:b6:7b:f9:37:a7:f6:7c:75:db:ad:27:d0: af:d4:5a:59:b4:32:61:8d:41:44:07:56:fa:54:59: 39:07:c8:8f:bf:58:2b:d1:64:4d:39:52:cb:14:bc: e7:04:19:19:a7:ba:d8:2e:b1:e4:21:d2:cb:96:9d: 5e:38:68:9a:8e:09:32:7a:d6:1c:5f:a7:c5:5a:2e: 25:40:1e:e7:fa:f9:77:71:1b:cf:9c:64:d1:c5:ff: e6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CF:5D:02:E9:61:A2:41:93:BB:55:89:CD:F8:CD:78:B0:11:58:E5 X509v3 Authority Key Identifier: keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:cd:8d:b6:2d:0c:ea:0f:8f:49:13:5a:fb:6d:ed:fa:e5:c4: d8:e5:97:5d:36:b8:79:26:a5:03:19:e5:e1:7d:82:ef:76:ec: b4:70:c0:0e:3b:87:b6:6d:1c:0e:3d:fd:22:0e:41:d9:a7:f2: d1:43:fe:5a:77:d1:a9:6e:91:98:5a:22:dd:c9:2c:a3:5e:ff: c3:95:e3:a3:98:e5:b0:b8:a6:39:02:28:84:ba:56:f2:b2:f2: e2:cd:ca:e5:48:bf:78:96:6f:20:ab:28:ef:67:6f:a1:2d:21: 42:43:14:1f:cc:c5:24:d4:55:4b:f8:bf:e2:09:f9:ac:ef:8b: b8:ae:c0:13:eb:c8:37:ad:96:64:3c:8a:07:f3:f3:24:a5:54: d5:04:08:35:3b:be:7c:3c:a3:ec:5c:19:2b:f9:cb:57:5c:35: 5c:54:7a:68:85:9d:41:1b:ad:37:0d:f7:f1:b0:84:8f:b7:81: 28:17:8e:6e:90:bd:2f:3c:f7:c4:f2:82:6b:9a:28:94:7a:c0: c2:b3:d4:cc:5c:c6:0f:7e:43:86:e9:8c:ea:d0:97:56:06:8b: 92:0e:28:68:71:bb:69:01:5c:82:40:fb:ee:0f:da:af:ab:d7: 84:8c:f7:18:41:ea:b1:c0:1d:6d:32:7c:73:0d:3e:e9:9a:13: 8d:7f:f6:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshPb8vr5mHhHF9JRjRrjnmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODUyMmRhYzZiY2RlOGM0ODEzMzM1OTkxMzJhMTYyMDBl NmE1YmUwHhcNMjUxMjE1MDkwMDUzWhcNMjUxMjE2MDkwMDUzWjAzMTEwLwYDVQQD EygwMWNmNWQwMmU5NjFhMjQxOTNiYjU1ODljZGY4Y2Q3OGIwMTE1OGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkdesNd0Am+Q4ZOKuflzgqc4cmT/H GhWFB7PcSzLxYeNjRbrXumDXyK9UQFCv+5D46fXjsYUL8s9B3VO2KLJ8I0Dqlxsn ggtcsEDTuUH25dNuFEegMyaH8hsDK9agD4tOtnUSBg+bGXJ62lE4JUcmDwg05prY 3oQG5530s5tVQJIkTHGxyComL6u/DrvfZqhIy9k7KXHjY607VXuzNzW6mk1pLDjR Oz22e/k3p/Z8ddutJ9Cv1FpZtDJhjUFEB1b6VFk5B8iPv1gr0WRNOVLLFLznBBkZ p7rYLrHkIdLLlp1eOGiajgkyetYcX6fFWi4lQB7n+vl3cRvPnGTRxf/mVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAHPXQLpYaJBk7tVic34zXiwEVjlMB8GA1UdIwQY MBaAFLWFItrGvN6MSBMzWZEyoWIA5qW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUt YmEzOTQ3YzliMjJiLzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUtYmEzOTQ3YzliMjJi LzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARM2Nti0M 6g+PSRNa+23t+uXE2OWXXTa4eSalAxnl4X2C73bstHDADjuHtm0cDj39Ig5B2afy 0UP+WnfRqW6RmFoi3ckso17/w5Xjo5jlsLimOQIohLpW8rLy4s3K5Ui/eJZvIKso 72dvoS0hQkMUH8zFJNRVS/i/4gn5rO+LuK7AE+vIN62WZDyKB/PzJKVU1QQINTu+ fDyj7FwZK/nLV1w1XFR6aIWdQRutNw338bCEj7eBKBeObpC9Lzz3xPKCa5oolHrA wrPUzFzGD35DhumM6tCXVgaLkg4oaHG7aQFcgkD77g/ar6vXhIz3GEHqscAdbTJ8 cw0+6ZoTjX/2eg== -----END CERTIFICATE-----Generated at Mon Dec 15 16:53:23 2025 by rpki-client