This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json) Hash identifier: 4uYQf5yioWTm7HQ3XEq/47o9o+9uUrC1O88EbQPCfRo= Subject key identifier: 77:E1:AA:95:C7:74:B5:5C:CE:80:D0:B3:91:E0:81:F3:C0:36:D4:44 Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76 Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976 Certificate serial: 019B0EC9BAB21CD4042686659EFC5B125CDD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft Manifest number: 1772 Signing time: Thu 11 Dec 2025 19:00:59 +0000 Manifest this update: Thu 11 Dec 2025 19:00:59 +0000 Manifest next update: Fri 12 Dec 2025 19:00:59 +0000 Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: uQ6uO/lcgB0MvYZYjzPCUi7mq9E12nTJfaiCJ+JmgMY=) 2: bs1HYE5HpmfRDe1IWRWlAw4_YbQ.roa (hash: /9wCX+4PJTuFTnMcFlhOot3PdJrbFSkbu3ySPd314JY=) 3: kvulLtgS7l9j5cL5cr_z1UEgt1M.roa (hash: lwycUBIUeNB/fogCEgMYVAepQLASER5k8Ye40EXBAoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:c9:ba:b2:1c:d4:04:26:86:65:9e:fc:5b:12:5c:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976 Validity Not Before: Dec 11 19:00:59 2025 GMT Not After : Dec 12 19:00:59 2025 GMT Subject: CN=77e1aa95c774b55cce80d0b391e081f3c036d444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:47:44:14:19:65:72:26:1e:24:21:ef:f2:9b: a3:c0:4c:52:e9:f8:e4:3b:d1:4a:96:8a:db:0f:a4: b8:17:9f:00:de:98:e9:db:46:6a:cf:e8:28:ab:53: df:bb:03:5e:8f:8e:35:00:94:5a:4d:fd:55:3d:a3: bf:ba:f4:98:a6:48:c9:a9:98:c8:62:5d:3c:d5:62: a0:09:d6:7f:3d:15:f6:79:0c:7d:61:a8:6b:91:22: f3:8a:20:2b:26:32:e2:c4:72:7e:a5:8a:7b:35:c0: 4f:97:d3:b5:31:6a:66:17:45:e2:2f:0b:5e:81:4a: 5b:68:55:da:9b:5e:c5:78:ae:a4:9d:df:df:97:20: a3:dd:a4:95:27:bd:39:dd:14:e3:68:ea:51:5d:15: f3:0e:db:18:4d:5d:69:e8:9c:a9:ff:80:1c:52:ed: d3:c1:50:bb:f6:d9:cb:7a:07:45:8f:6c:f2:e9:3d: 85:7d:9c:dd:df:ee:5b:b0:ff:d3:60:e7:93:92:5b: 41:6f:ca:b5:70:0f:d7:2c:1d:64:31:8c:dc:07:91: 89:93:18:5a:a5:1a:4f:13:d4:62:41:e4:aa:0c:ec: 82:d4:64:d2:a7:4e:2b:b7:37:d8:63:fc:04:b8:c5: 17:02:ec:e4:94:f1:f8:0a:4e:ea:57:d8:58:52:39: 2a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E1:AA:95:C7:74:B5:5C:CE:80:D0:B3:91:E0:81:F3:C0:36:D4:44 X509v3 Authority Key Identifier: keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:45:b7:1f:2a:a6:79:43:72:18:91:3a:70:09:c6:68:9e:3a: 19:e6:9f:9d:61:71:ad:cd:83:23:df:fa:19:f4:dc:b0:cb:bd: 94:66:4c:a9:f6:8a:57:e8:4b:33:4a:84:26:d3:f8:c8:7b:3e: 73:76:e5:5d:1c:f5:81:eb:7d:bc:73:07:41:40:1f:67:3c:23: 55:12:6a:ed:5a:8b:5e:b8:80:ca:83:43:63:08:79:8b:61:c9: ca:f8:45:a0:6e:20:38:ae:f5:8c:2f:1e:bb:e3:23:62:92:9c: 2d:79:b9:44:b3:73:be:a5:2f:15:a5:36:2a:75:bc:2f:df:c0: 53:ca:e0:08:f4:b6:51:93:85:c9:df:78:17:31:41:60:1a:32: b9:0f:f7:07:43:c7:5a:47:21:93:53:bc:5a:50:cb:93:8e:a9: 2c:01:7a:8a:cc:24:3b:51:ba:3d:64:ed:b1:c0:0f:3b:da:56: 71:f3:fb:01:a6:c9:42:35:fe:a5:1c:1e:ba:a2:05:54:f8:83: 3b:32:0e:19:b0:b9:95:4f:1a:80:4c:f9:5c:1b:1b:8f:65:bc: 4a:b1:1d:ac:01:1a:9b:42:1c:db:48:bb:16:d8:0a:e2:aa:4a: 8f:94:15:db:45:54:db:71:a5:59:23:6c:0a:91:64:04:56:2a: 94:f4:1d:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOybqyHNQEJoZlnvxbElzdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjY2JjNWUwNDVlYWE1Zjc2MmE5MTQ2MjQ0YzE5MjQ4YjYy YmE5NzYwHhcNMjUxMjExMTkwMDU5WhcNMjUxMjEyMTkwMDU5WjAzMTEwLwYDVQQD Eyg3N2UxYWE5NWM3NzRiNTVjY2U4MGQwYjM5MWUwODFmM2MwMzZkNDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUdEFBllciYeJCHv8pujwExS6fjk O9FKlorbD6S4F58A3pjp20Zqz+goq1PfuwNej441AJRaTf1VPaO/uvSYpkjJqZjI Yl081WKgCdZ/PRX2eQx9YahrkSLziiArJjLixHJ+pYp7NcBPl9O1MWpmF0XiLwte gUpbaFXam17FeK6knd/flyCj3aSVJ7053RTjaOpRXRXzDtsYTV1p6Jyp/4AcUu3T wVC79tnLegdFj2zy6T2FfZzd3+5bsP/TYOeTkltBb8q1cA/XLB1kMYzcB5GJkxha pRpPE9RiQeSqDOyC1GTSp04rtzfYY/wEuMUXAuzklPH4Ck7qV9hYUjkqfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfhqpXHdLVczoDQs5HggfPANtREMB8GA1UdIwQY MBaAFEzLxeBF6qX3YqkUYkTBkki2K6l2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE12RjRFWHFwZmRpcVJSaVJNR1NTTFlycVhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9iZjY2ZGQtNjIzNy00OGRlLWFlZDct YTdjNTlkZGNmNzZiLzEvVE12RjRFWHFwZmRpcVJSaVJNR1NTTFlycVhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9iZjY2ZGQtNjIzNy00OGRlLWFlZDctYTdjNTlkZGNmNzZi LzEvVE12RjRFWHFwZmRpcVJSaVJNR1NTTFlycVhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhEW3Hyqm eUNyGJE6cAnGaJ46GeafnWFxrc2DI9/6GfTcsMu9lGZMqfaKV+hLM0qEJtP4yHs+ c3blXRz1get9vHMHQUAfZzwjVRJq7VqLXriAyoNDYwh5i2HJyvhFoG4gOK71jC8e u+MjYpKcLXm5RLNzvqUvFaU2KnW8L9/AU8rgCPS2UZOFyd94FzFBYBoyuQ/3B0PH Wkchk1O8WlDLk46pLAF6iswkO1G6PWTtscAPO9pWcfP7AabJQjX+pRweuqIFVPiD OzIOGbC5lU8agEz5XBsbj2W8SrEdrAEam0Ic20i7FtgK4qpKj5QV20VU23GlWSNs CpFkBFYqlPQdPw== -----END CERTIFICATE-----Generated at Thu Dec 11 23:57:48 2025 by rpki-client