This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json) Hash identifier: 1PySsQBI4Kev0DII+NHhw9d7LfXlDTQtspkHMcDLhK0= Subject key identifier: CD:95:FD:23:D8:BC:B1:F4:0E:38:DB:55:67:6D:75:85:9F:2F:AA:A8 Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c Certificate serial: 019B3A5893304AB956B8884F4B7E96E13DA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 06:00:41 +0000 Manifest this update: Sat 20 Dec 2025 06:00:41 +0000 Manifest next update: Sun 21 Dec 2025 06:00:41 +0000 Files and hashes: 1: ImIMpyzmy0FEM_jO2rXeZAmm028.roa (hash: BrRB0TTJOHq5tezchummHGAPB0HvKCmejoR+4CF6inA=) 2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: 9wdaMKGondQaig/4213HyUh6XGV2jATUkT7tmblSujY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:58:93:30:4a:b9:56:b8:88:4f:4b:7e:96:e1:3d:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c Validity Not Before: Dec 20 06:00:41 2025 GMT Not After : Dec 21 06:00:41 2025 GMT Subject: CN=cd95fd23d8bcb1f40e38db55676d75859f2faaa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f5:69:1d:49:e4:b1:37:dd:68:e4:6b:73:a8: b2:0f:86:be:8d:fd:41:94:26:98:de:37:ce:08:cd: 4c:dc:12:71:34:aa:0b:9b:72:69:96:80:cd:4a:a5: c8:70:5d:e2:e4:23:4b:ea:30:e9:20:df:5d:be:30: 36:c5:54:82:3e:56:d9:e0:fe:58:dd:0d:e2:d8:8e: 23:de:bc:b3:18:f4:77:8d:20:1e:bc:b1:02:2b:40: c9:f5:cc:2a:fe:bc:71:38:25:72:78:a7:81:c8:28: 62:77:40:c5:66:1c:0d:ac:3d:5e:c3:8d:fd:3b:3c: fd:a9:bd:05:ec:99:2c:04:da:7e:87:73:8c:39:c5: 9e:77:71:0a:cb:54:d1:c3:22:9f:c7:b4:8f:24:90: e2:86:cf:f7:18:7a:4a:e6:f3:59:03:1e:fd:fa:37: 96:ab:20:a9:81:84:65:6e:77:e1:93:52:1e:af:05: 6c:0a:b0:69:5f:ab:bc:87:ce:0a:4d:84:4e:8c:ce: ed:56:28:41:25:cc:86:59:de:d1:ef:22:79:81:e4: 69:a8:ef:4b:a4:f1:05:fb:6e:bd:f1:f3:87:44:f5: ec:a3:b1:d1:c0:96:84:75:4f:8a:ba:ea:5c:2a:f5: b3:1a:94:1d:a7:14:22:16:15:6f:80:63:b3:6a:05: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:95:FD:23:D8:BC:B1:F4:0E:38:DB:55:67:6D:75:85:9F:2F:AA:A8 X509v3 Authority Key Identifier: keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:1a:2c:f4:25:9a:47:7c:e1:db:c8:d9:54:32:17:a0:aa:df: 8d:05:09:83:e6:a5:ae:6e:34:9f:54:9f:ad:23:a1:b3:e3:85: ba:5e:12:3f:3a:1c:82:5f:f1:2b:43:48:01:cf:47:8c:21:84: 9c:45:30:c3:76:d8:c0:d8:dd:ae:91:e2:20:e2:1a:7a:5a:5f: 3e:71:bc:92:9f:a1:b8:53:d2:fc:bb:6f:36:9a:2f:f6:02:3f: a5:39:04:13:33:31:21:44:71:b7:4a:13:b3:fb:34:3c:18:dc: 08:83:1a:91:7a:5f:7a:05:8f:15:10:78:c4:73:6d:14:a6:ec: 7a:a0:84:bb:85:b2:84:e9:a0:04:c5:27:bb:f6:96:36:e3:33: 46:5d:42:2a:57:96:0c:e2:c8:f5:7c:dd:3e:a0:38:78:f1:50: ce:10:96:0d:4e:02:dd:ad:35:d1:7e:15:49:e6:d8:97:24:90: 3c:f4:31:6c:61:5a:6f:13:0b:d7:8b:3c:40:e1:ee:cc:4c:f4: ac:d0:56:6d:5a:64:a0:13:37:80:67:b3:c6:18:3d:44:cc:67: 39:e4:c7:2a:dc:67:0a:b3:e6:0c:b0:37:1b:dd:94:60:8e:44: f7:39:3f:53:a7:28:5c:6c:b0:97:b3:18:33:1c:79:8a:7c:40: 3e:e6:00:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6WJMwSrlWuIhPS36W4T2jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2I5N2ExZDIxZjYzN2I1NDkxMzBmMDg1N2E2ODFjYzdm Njg4NGMwHhcNMjUxMjIwMDYwMDQxWhcNMjUxMjIxMDYwMDQxWjAzMTEwLwYDVQQD EyhjZDk1ZmQyM2Q4YmNiMWY0MGUzOGRiNTU2NzZkNzU4NTlmMmZhYWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3fVpHUnksTfdaORrc6iyD4a+jf1B lCaY3jfOCM1M3BJxNKoLm3JploDNSqXIcF3i5CNL6jDpIN9dvjA2xVSCPlbZ4P5Y 3Q3i2I4j3ryzGPR3jSAevLECK0DJ9cwq/rxxOCVyeKeByChid0DFZhwNrD1ew439 Ozz9qb0F7JksBNp+h3OMOcWed3EKy1TRwyKfx7SPJJDihs/3GHpK5vNZAx79+jeW qyCpgYRlbnfhk1IerwVsCrBpX6u8h84KTYROjM7tVihBJcyGWd7R7yJ5geRpqO9L pPEF+2698fOHRPXso7HRwJaEdU+KuupcKvWzGpQdpxQiFhVvgGOzagV3QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2V/SPYvLH0DjjbVWdtdYWfL6qoMB8GA1UdIwQY MBaAFLQ7l6HSH2N7VJEw8IV6aBzH9ohMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0Yjkt MDQ2NGU5NDVmMWNjLzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0YjktMDQ2NGU5NDVmMWNj LzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVRos9CWa R3zh28jZVDIXoKrfjQUJg+alrm40n1SfrSOhs+OFul4SPzocgl/xK0NIAc9HjCGE nEUww3bYwNjdrpHiIOIaelpfPnG8kp+huFPS/LtvNpov9gI/pTkEEzMxIURxt0oT s/s0PBjcCIMakXpfegWPFRB4xHNtFKbseqCEu4WyhOmgBMUnu/aWNuMzRl1CKleW DOLI9XzdPqA4ePFQzhCWDU4C3a010X4VSebYlySQPPQxbGFabxML14s8QOHuzEz0 rNBWbVpkoBM3gGezxhg9RMxnOeTHKtxnCrPmDLA3G92UYI5E9zk/U6coXGywl7MY Mxx5inxAPuYAaw== -----END CERTIFICATE-----Generated at Sat Dec 20 09:09:27 2025 by rpki-client