This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json) Hash identifier: rXhb4UJ+ax7aBqHHtqNyAnnxSNOdpLaTBJ2UKTvzN8A= Subject key identifier: 81:B6:5D:1A:70:F0:18:3C:05:C0:00:D0:64:89:15:9D:B9:FD:07:B2 Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c Certificate serial: 019B367BF37A79F7D5010929BF01D1DCB8CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft Manifest number: 1785 Signing time: Fri 19 Dec 2025 12:00:51 +0000 Manifest this update: Fri 19 Dec 2025 12:00:51 +0000 Manifest next update: Sat 20 Dec 2025 12:00:51 +0000 Files and hashes: 1: ImIMpyzmy0FEM_jO2rXeZAmm028.roa (hash: BrRB0TTJOHq5tezchummHGAPB0HvKCmejoR+4CF6inA=) 2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: ybPaU1iXmmUKDi5rhtl5NjxNgaSDtL78yRt0rcPyHJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:7b:f3:7a:79:f7:d5:01:09:29:bf:01:d1:dc:b8:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c Validity Not Before: Dec 19 12:00:51 2025 GMT Not After : Dec 20 12:00:51 2025 GMT Subject: CN=81b65d1a70f0183c05c000d06489159db9fd07b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:50:cd:f6:90:7c:5b:8e:5f:62:89:8d:f9:11: d9:35:38:dd:e1:8f:57:94:fd:df:ab:03:95:05:b6: de:d9:e3:cc:27:e4:e6:88:ae:bc:11:ab:16:04:3f: c5:5c:e2:9c:6c:10:a5:2f:78:89:77:8b:a8:65:f3: 5c:04:a3:c6:f1:5b:a6:bd:f9:30:f6:5f:7e:a2:84: 37:d6:d5:42:3c:49:c9:c3:e5:73:48:72:a5:6b:34: 1b:8e:a4:91:ce:1a:98:45:52:ff:98:15:a7:a7:9c: 38:53:71:e8:ce:e8:b2:73:f2:92:c8:4a:a3:cd:da: 3f:23:ea:53:df:b1:a5:90:31:12:40:4e:59:5d:09: 97:62:e0:16:da:41:2d:61:59:77:6e:46:38:25:8a: 9d:8b:4c:49:99:9d:7b:97:f1:f3:b7:10:c4:b9:91: 65:fe:1c:9f:f7:76:8c:af:5a:87:8e:dc:c6:ac:70: 83:78:30:98:e1:71:b1:ec:b8:90:77:ec:79:a8:63: 3c:b9:b9:08:6e:7e:d4:87:67:39:95:65:95:79:48: 39:52:4e:b5:64:e6:85:69:80:c3:34:ff:16:5a:0c: 77:25:7e:d6:7d:6c:a0:76:84:e1:16:5f:86:a7:4e: 6d:3a:02:e4:05:e9:b3:f3:d2:af:d8:3f:97:f9:06: ed:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B6:5D:1A:70:F0:18:3C:05:C0:00:D0:64:89:15:9D:B9:FD:07:B2 X509v3 Authority Key Identifier: keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:a1:17:47:3a:00:13:eb:47:df:37:bf:a6:27:40:be:30:f9: 9d:01:c7:b5:d2:7a:a8:73:e4:81:84:04:15:c3:90:7b:7a:c2: 22:b4:c6:38:84:ff:8d:60:60:f3:0a:41:83:07:24:07:db:26: 37:a3:30:82:61:fc:6e:4b:ae:11:6f:c5:e3:f7:a6:b0:62:08: dc:d0:26:ee:69:52:3c:9e:2f:86:50:1f:43:e5:fa:db:28:05: 47:8a:41:bd:a8:87:85:cb:1b:ef:a8:1b:db:23:f0:f4:26:f3: 64:db:f3:b1:68:95:82:c8:cb:e5:28:58:e7:05:75:8a:2c:0b: 1b:ef:49:ca:7d:6d:1a:f6:fb:00:37:46:ba:04:0d:b9:e2:36: 2f:a6:fe:78:9c:69:de:fc:6d:a7:3b:31:64:27:b0:a4:2e:24: ac:da:c1:63:f7:48:6e:b1:fa:54:cc:45:64:33:1a:88:5b:ca: 7f:b4:93:5f:2a:b1:22:6f:41:bc:88:dc:60:aa:1e:5d:01:68: 81:22:68:72:72:89:8f:fb:de:66:7c:5c:ac:c9:c9:63:f3:48: 71:0f:96:92:02:88:98:4f:57:f6:bd:9e:6f:c3:ba:8b:2d:7f: ce:48:77:a6:94:1c:61:53:2b:29:4d:e0:e0:11:a3:cd:db:58: d0:a7:78:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2e/N6effVAQkpvwHR3LjMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2I5N2ExZDIxZjYzN2I1NDkxMzBmMDg1N2E2ODFjYzdm Njg4NGMwHhcNMjUxMjE5MTIwMDUxWhcNMjUxMjIwMTIwMDUxWjAzMTEwLwYDVQQD Eyg4MWI2NWQxYTcwZjAxODNjMDVjMDAwZDA2NDg5MTU5ZGI5ZmQwN2IyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyVDN9pB8W45fYomN+RHZNTjd4Y9X lP3fqwOVBbbe2ePMJ+TmiK68EasWBD/FXOKcbBClL3iJd4uoZfNcBKPG8Vumvfkw 9l9+ooQ31tVCPEnJw+VzSHKlazQbjqSRzhqYRVL/mBWnp5w4U3Hozuiyc/KSyEqj zdo/I+pT37GlkDESQE5ZXQmXYuAW2kEtYVl3bkY4JYqdi0xJmZ17l/HztxDEuZFl /hyf93aMr1qHjtzGrHCDeDCY4XGx7LiQd+x5qGM8ubkIbn7Uh2c5lWWVeUg5Uk61 ZOaFaYDDNP8WWgx3JX7WfWygdoThFl+Gp05tOgLkBemz89Kv2D+X+QbtBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIG2XRpw8Bg8BcAA0GSJFZ25/QeyMB8GA1UdIwQY MBaAFLQ7l6HSH2N7VJEw8IV6aBzH9ohMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0Yjkt MDQ2NGU5NDVmMWNjLzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0YjktMDQ2NGU5NDVmMWNj LzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADqEXRzoA E+tH3ze/pidAvjD5nQHHtdJ6qHPkgYQEFcOQe3rCIrTGOIT/jWBg8wpBgwckB9sm N6MwgmH8bkuuEW/F4/emsGII3NAm7mlSPJ4vhlAfQ+X62ygFR4pBvaiHhcsb76gb 2yPw9CbzZNvzsWiVgsjL5ShY5wV1iiwLG+9Jyn1tGvb7ADdGugQNueI2L6b+eJxp 3vxtpzsxZCewpC4krNrBY/dIbrH6VMxFZDMaiFvKf7STXyqxIm9BvIjcYKoeXQFo gSJocnKJj/veZnxcrMnJY/NIcQ+WkgKImE9X9r2eb8O6iy1/zkh3ppQcYVMrKU3g 4BGjzdtY0Kd4nQ== -----END CERTIFICATE-----Generated at Fri Dec 19 17:57:30 2025 by rpki-client