This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft File: TRYkCJewEwVoHJQl_lI_WPqydBU.mft (raw, json) Hash identifier: eMImvYv6kqkTTTw1QAG6dErORoNZnxg2UAxf4LD3Lx8= Subject key identifier: 5D:5F:C6:D3:1C:E6:77:6C:20:2E:BF:1B:2F:97:19:9B:53:43:55:3F Authority key identifier: 4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15 Certificate issuer: /CN=4d16240897b01305681c9425fe523f58fab27415 Certificate serial: 019B1E05A7B021E4E925AC8B9F8ED2DFAD83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft Manifest number: 1778 Signing time: Sun 14 Dec 2025 18:00:45 +0000 Manifest this update: Sun 14 Dec 2025 18:00:45 +0000 Manifest next update: Mon 15 Dec 2025 18:00:45 +0000 Files and hashes: 1: L587eFkH5wYc14IkuF8E7of-x9o.roa (hash: qZjZeJL5jZ5Dikm84ADOgn1QShjJOm5n3wbg8yoD9PY=) 2: TRYkCJewEwVoHJQl_lI_WPqydBU.crl (hash: tmm7onrnRMUehg+mS+9lVcbGVw9uverEIwTCO0v04nY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 18:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:05:a7:b0:21:e4:e9:25:ac:8b:9f:8e:d2:df:ad:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d16240897b01305681c9425fe523f58fab27415 Validity Not Before: Dec 14 18:00:45 2025 GMT Not After : Dec 15 18:00:45 2025 GMT Subject: CN=5d5fc6d31ce6776c202ebf1b2f97199b5343553f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ff:95:dd:41:ee:98:4d:b4:b7:bb:2f:d1:93: 2a:85:12:73:9e:4f:fa:84:bc:e8:3b:c3:5b:2f:b3: 6a:5f:e1:ac:09:48:fb:0f:98:47:ad:e1:e6:1b:64: 87:9e:c1:9d:37:18:f2:dd:a5:0a:56:da:2f:46:4e: ca:24:9e:48:c3:f5:29:94:39:b1:b4:57:9a:1f:b8: b9:7e:d7:bb:e0:8b:9d:3f:d3:69:24:56:33:e1:92: 25:bf:1b:b4:8f:78:9f:5a:a4:3e:25:ae:59:f0:1b: 04:79:a2:93:1d:63:a7:80:9a:5b:f7:5f:3e:ab:02: 67:e7:62:20:31:1e:b9:ae:8a:2c:49:e6:9f:1b:9c: 81:88:92:be:f3:41:b9:22:38:26:e3:54:4b:e6:9b: 31:b6:bf:53:f0:4e:b9:bc:e0:5e:f3:09:a2:6d:8c: 39:5b:11:05:6c:5c:ca:95:6e:93:78:da:99:21:c4: 7a:63:38:cb:6a:a2:0e:ce:e1:ae:83:ec:23:e4:c8: c2:c2:37:ad:3b:20:c1:7a:35:d2:01:8e:db:a7:d3: 45:ad:4b:57:31:21:21:1e:1a:52:5a:c5:eb:ca:75: 62:5a:3f:26:27:a5:a6:d0:d3:38:ca:7d:0c:84:b2: d1:6c:87:ae:19:d9:a4:5f:87:29:8e:86:8b:98:25: ce:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:5F:C6:D3:1C:E6:77:6C:20:2E:BF:1B:2F:97:19:9B:53:43:55:3F X509v3 Authority Key Identifier: keyid:4D:16:24:08:97:B0:13:05:68:1C:94:25:FE:52:3F:58:FA:B2:74:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRYkCJewEwVoHJQl_lI_WPqydBU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/fc481a-ab01-4f82-9e6e-eb02f3d3f40c/1/TRYkCJewEwVoHJQl_lI_WPqydBU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:5b:55:fb:d1:e4:f1:cc:16:4c:9a:b2:d8:b7:0d:53:58:9e: 43:d0:74:af:57:8e:99:be:7f:f3:7a:9f:94:b0:22:01:d2:a2: 11:d0:e7:7c:76:9d:ea:f8:f7:bd:94:d6:0b:44:2f:b7:dd:ac: ab:a1:ad:6a:3b:b3:58:17:ea:3f:e3:6f:1b:3c:d3:a7:dc:19: ba:8e:fb:02:0d:6e:78:f9:d5:04:3b:2a:2d:96:fe:8e:96:f2: ce:e6:d6:17:61:22:aa:5f:d8:99:a6:0e:ee:b2:03:2d:39:ce: 5e:a9:9f:f4:47:d8:d0:df:4d:ce:df:7a:9e:9c:fb:38:58:87: ba:8a:da:36:07:a9:a7:39:cc:b9:1a:9c:be:85:64:1b:24:39: 0a:1b:6f:28:78:0f:f1:15:1d:a8:f1:dc:4b:86:62:20:fd:05: 21:6c:f1:2c:a8:2d:58:f5:b7:8d:07:2a:8f:b9:fe:f6:8c:b5: 61:51:b2:bd:ab:5f:db:d0:c9:91:90:26:71:bd:d8:7a:b3:16: cb:12:4a:97:c2:0b:f4:10:2c:29:b7:c9:87:f1:56:9e:e7:e9: 90:c1:d0:46:86:fb:45:aa:6a:48:54:9b:b6:29:cb:b0:13:8f: 16:25:db:c8:f4:91:c9:7a:7d:92:8e:61:0a:9c:18:b5:b2:d6: 2d:53:38:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZseBaewIeTpJayLn47S362DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMTYyNDA4OTdiMDEzMDU2ODFjOTQyNWZlNTIzZjU4ZmFi Mjc0MTUwHhcNMjUxMjE0MTgwMDQ1WhcNMjUxMjE1MTgwMDQ1WjAzMTEwLwYDVQQD Eyg1ZDVmYzZkMzFjZTY3NzZjMjAyZWJmMWIyZjk3MTk5YjUzNDM1NTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApP+V3UHumE20t7sv0ZMqhRJznk/6 hLzoO8NbL7NqX+GsCUj7D5hHreHmG2SHnsGdNxjy3aUKVtovRk7KJJ5Iw/UplDmx tFeaH7i5fte74IudP9NpJFYz4ZIlvxu0j3ifWqQ+Ja5Z8BsEeaKTHWOngJpb918+ qwJn52IgMR65roosSeafG5yBiJK+80G5Ijgm41RL5psxtr9T8E65vOBe8wmibYw5 WxEFbFzKlW6TeNqZIcR6YzjLaqIOzuGug+wj5MjCwjetOyDBejXSAY7bp9NFrUtX MSEhHhpSWsXrynViWj8mJ6Wm0NM4yn0MhLLRbIeuGdmkX4cpjoaLmCXO1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1fxtMc5ndsIC6/Gy+XGZtTQ1U/MB8GA1UdIwQY MBaAFE0WJAiXsBMFaByUJf5SP1j6snQVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9mYzQ4MWEtYWIwMS00ZjgyLTllNmUt ZWIwMmYzZDNmNDBjLzEvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9mYzQ4MWEtYWIwMS00ZjgyLTllNmUtZWIwMmYzZDNmNDBj LzEvVFJZa0NKZXdFd1ZvSEpRbF9sSV9XUHF5ZEJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYVtV+9Hk 8cwWTJqy2LcNU1ieQ9B0r1eOmb5/83qflLAiAdKiEdDnfHad6vj3vZTWC0Qvt92s q6GtajuzWBfqP+NvGzzTp9wZuo77Ag1uePnVBDsqLZb+jpbyzubWF2Eiql/YmaYO 7rIDLTnOXqmf9EfY0N9Nzt96npz7OFiHuoraNgeppznMuRqcvoVkGyQ5ChtvKHgP 8RUdqPHcS4ZiIP0FIWzxLKgtWPW3jQcqj7n+9oy1YVGyvatf29DJkZAmcb3YerMW yxJKl8IL9BAsKbfJh/FWnufpkMHQRob7RapqSFSbtinLsBOPFiXbyPSRyXp9ko5h CpwYtbLWLVM41w== -----END CERTIFICATE-----Generated at Mon Dec 15 04:52:28 2025 by rpki-client