This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft File: txKyWiME97pEw40Dld3y7QT1x-8.mft (raw, json) Hash identifier: b9C3OOoXEriACU9yGCBetVmaq6wfuAw2jz+/6301yfs= Subject key identifier: 28:F6:64:0E:A3:A8:82:01:8B:64:10:CE:1A:25:1F:3B:A2:3C:61:FD Authority key identifier: B7:12:B2:5A:23:04:F7:BA:44:C3:8D:03:95:DD:F2:ED:04:F5:C7:EF Certificate issuer: /CN=b712b25a2304f7ba44c38d0395ddf2ed04f5c7ef Certificate serial: 019B341FD508F9F17155A2EBE30EF31D0263 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft Manifest number: 1785 Signing time: Fri 19 Dec 2025 01:00:59 +0000 Manifest this update: Fri 19 Dec 2025 01:00:59 +0000 Manifest next update: Sat 20 Dec 2025 01:00:59 +0000 Files and hashes: 1: RachvBT8K5RrKxFdgA0E6V8Tpkk.roa (hash: vHi3hayejwDoniD0Pthlstu8q6vyCTap1RFSLihvYco=) 2: txKyWiME97pEw40Dld3y7QT1x-8.crl (hash: iL7srJBo5xEZNmDom30McHpymSUjWst2eEXP1PHZitc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:d5:08:f9:f1:71:55:a2:eb:e3:0e:f3:1d:02:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b712b25a2304f7ba44c38d0395ddf2ed04f5c7ef Validity Not Before: Dec 19 01:00:59 2025 GMT Not After : Dec 20 01:00:59 2025 GMT Subject: CN=28f6640ea3a882018b6410ce1a251f3ba23c61fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7d:a6:ec:ab:68:d6:e8:e3:43:d6:f8:e7:47: f8:48:a9:3a:69:fe:ac:0c:bb:23:03:fc:83:51:21: 6b:82:43:d0:7e:b3:18:f5:45:80:ef:08:23:d9:1c: a8:72:a1:3e:96:d8:f8:a8:92:24:31:5c:1f:5f:1e: bc:15:7f:de:a4:07:85:ff:91:d4:3b:4d:f1:e8:b5: c3:b1:1e:09:b6:e9:d9:97:ed:60:9e:fb:ee:5c:e7: 8e:73:5d:c9:bd:21:3d:3e:a2:c0:2b:e5:36:15:ab: ab:39:8c:e4:71:f3:09:e3:bd:e2:1f:0b:73:7b:78: aa:53:ef:b6:45:0e:2d:3f:83:6b:76:f6:5d:ef:98: 3f:74:f0:e6:e1:64:d0:fd:40:63:3c:ac:e3:40:6b: 59:df:e4:64:f0:78:16:6c:05:2b:71:a9:e7:c6:89: 3a:5a:8b:34:e7:4f:a6:27:89:3f:bf:0f:86:70:11: c2:6e:54:24:aa:d5:d7:cc:3d:ed:71:14:d9:cb:91: 0d:e9:96:5a:50:1d:5f:b1:cf:37:63:7f:41:0e:c2: a1:ae:47:bb:46:68:f4:ae:6d:a7:ae:85:b2:56:94: aa:3c:8f:64:b5:ec:f2:e4:01:d2:af:84:59:19:65: b3:c7:e1:53:3b:db:2a:85:65:06:d3:6c:16:d5:60: be:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F6:64:0E:A3:A8:82:01:8B:64:10:CE:1A:25:1F:3B:A2:3C:61:FD X509v3 Authority Key Identifier: keyid:B7:12:B2:5A:23:04:F7:BA:44:C3:8D:03:95:DD:F2:ED:04:F5:C7:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:e4:d8:ea:f8:0f:8f:b2:c1:cf:35:36:e7:48:9c:7e:7c:f4: af:26:14:8a:6e:f9:4c:2b:2c:2b:83:3e:95:1a:19:ad:d2:a5: d8:fb:77:f4:57:0e:14:f4:22:da:6c:17:ed:ab:97:44:44:fc: 93:bb:b6:ef:9a:9b:5a:6e:a3:0a:70:58:72:0e:5d:65:d1:5b: 8e:ac:c3:80:40:d2:be:6d:fc:e5:61:20:3a:18:17:ca:23:f4: f9:e6:38:3f:5a:0f:cc:a2:00:ce:d2:a9:83:53:ad:71:b1:24: c3:f6:62:71:9b:ae:a6:17:72:5f:1d:a4:4f:be:b9:18:d4:7b: c1:a1:1a:38:8b:a4:c9:4a:ea:ec:0f:55:a6:32:3e:26:90:39: 02:25:87:5c:72:14:d4:5a:a6:75:83:0c:d7:c6:32:27:e2:a0: 4e:68:9c:6e:7d:33:f9:c3:99:18:b8:60:e0:d8:f4:93:45:d6: 3b:0a:ec:d6:4d:dd:35:57:de:92:82:7e:e3:b3:e8:7c:fb:5f: 61:30:89:3b:e8:4b:cc:50:66:19:9e:44:6f:e4:41:4f:77:69: 69:fe:bc:d2:0a:1e:93:28:33:62:cf:f9:92:d9:58:e9:c4:7f: 53:17:9f:ee:59:a7:34:7f:32:d6:1f:de:af:88:d1:ff:04:95: 68:17:e5:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H9UI+fFxVaLr4w7zHQJjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3MTJiMjVhMjMwNGY3YmE0NGMzOGQwMzk1ZGRmMmVkMDRm NWM3ZWYwHhcNMjUxMjE5MDEwMDU5WhcNMjUxMjIwMDEwMDU5WjAzMTEwLwYDVQQD EygyOGY2NjQwZWEzYTg4MjAxOGI2NDEwY2UxYTI1MWYzYmEyM2M2MWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkH2m7Kto1ujjQ9b450f4SKk6af6s DLsjA/yDUSFrgkPQfrMY9UWA7wgj2RyocqE+ltj4qJIkMVwfXx68FX/epAeF/5HU O03x6LXDsR4JtunZl+1gnvvuXOeOc13JvSE9PqLAK+U2FaurOYzkcfMJ473iHwtz e3iqU++2RQ4tP4NrdvZd75g/dPDm4WTQ/UBjPKzjQGtZ3+Rk8HgWbAUrcannxok6 Wos050+mJ4k/vw+GcBHCblQkqtXXzD3tcRTZy5EN6ZZaUB1fsc83Y39BDsKhrke7 Rmj0rm2nroWyVpSqPI9ktezy5AHSr4RZGWWzx+FTO9sqhWUG02wW1WC+iQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCj2ZA6jqIIBi2QQzholHzuiPGH9MB8GA1UdIwQY MBaAFLcSslojBPe6RMONA5Xd8u0E9cfvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHhLeVdpTUU5N3BFdzQwRGxkM3k3UVQxeC04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85YWVhZTctZGYxMC00MGE3LWI5MzMt MDgxY2I3Y2I4OGYzLzEvdHhLeVdpTUU5N3BFdzQwRGxkM3k3UVQxeC04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi85YWVhZTctZGYxMC00MGE3LWI5MzMtMDgxY2I3Y2I4OGYz LzEvdHhLeVdpTUU5N3BFdzQwRGxkM3k3UVQxeC04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACeTY6vgP j7LBzzU250icfnz0ryYUim75TCssK4M+lRoZrdKl2Pt39FcOFPQi2mwX7auXRET8 k7u275qbWm6jCnBYcg5dZdFbjqzDgEDSvm385WEgOhgXyiP0+eY4P1oPzKIAztKp g1OtcbEkw/ZicZuuphdyXx2kT765GNR7waEaOIukyUrq7A9VpjI+JpA5AiWHXHIU 1FqmdYMM18YyJ+KgTmicbn0z+cOZGLhg4Nj0k0XWOwrs1k3dNVfekoJ+47PofPtf YTCJO+hLzFBmGZ5Eb+RBT3dpaf680goekygzYs/5ktlY6cR/Uxef7lmnNH8y1h/e r4jR/wSVaBfljg== -----END CERTIFICATE-----Generated at Fri Dec 19 07:50:14 2025 by rpki-client