This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: VT5zHWleY7dZsQ2Gv7nnP3wvPZUXV1sBs+zg1GB+UEU= Subject key identifier: 80:B7:7E:2F:11:9B:BB:A9:82:68:D4:00:6E:E0:23:3E:6A:4C:29:F6 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B2588AE3FD4D7C0B8D0FDC0CF4685E938 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 1780 Signing time: Tue 16 Dec 2025 05:01:12 +0000 Manifest this update: Tue 16 Dec 2025 05:01:12 +0000 Manifest next update: Wed 17 Dec 2025 05:01:12 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: KC0bgLqdsXxPltBOogLhNbN2Vm/CfyGVqO1zoklCjKY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:ae:3f:d4:d7:c0:b8:d0:fd:c0:cf:46:85:e9:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 16 05:01:12 2025 GMT Not After : Dec 17 05:01:12 2025 GMT Subject: CN=80b77e2f119bbba98268d4006ee0233e6a4c29f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:02:de:fd:43:82:37:d4:47:4b:87:3a:15:0e: 73:bc:41:1b:54:19:7a:19:1a:38:b7:4f:67:18:26: a4:12:b1:cb:68:97:9c:92:de:35:33:67:95:e7:bd: bc:4f:22:27:e5:15:24:24:86:04:2a:dd:fd:3b:66: bf:b3:46:1b:6a:16:4c:cc:f3:f4:09:aa:6b:a7:de: 17:8a:8b:b2:cf:a2:38:49:e7:98:60:14:4b:06:fd: 6f:a8:91:2f:f1:61:a6:89:42:5b:98:33:d9:e4:02: 9d:80:6a:9e:51:15:72:03:99:ab:d8:5b:66:e0:3b: 9c:08:a0:67:b4:2c:f5:cf:bb:49:f8:fe:22:e1:4c: f0:c4:85:0d:68:d7:f7:8b:1f:fc:f9:40:29:68:04: 7b:4c:34:e4:26:2e:1e:4e:02:e2:8f:20:33:70:73: fe:73:1b:5f:e3:8e:93:49:b2:59:3f:94:6f:f6:0b: cf:78:d7:5d:eb:2f:66:e2:3c:c8:59:4c:c7:5f:39: ac:23:b6:da:7e:73:ba:52:8c:34:80:ed:01:9a:2c: 75:92:3c:bc:52:78:ee:7b:db:8d:82:2f:97:6e:f7: 97:72:c3:d9:68:ad:63:24:20:97:37:e4:0d:a6:24: 7e:3d:a9:9b:41:1f:9c:e3:f2:55:bc:4d:a7:0f:e6: ff:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B7:7E:2F:11:9B:BB:A9:82:68:D4:00:6E:E0:23:3E:6A:4C:29:F6 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:6a:51:04:c4:78:f9:95:db:70:5d:60:02:5a:ea:9a:30:a0: f3:80:8d:1e:0a:4b:1f:61:83:69:e9:b1:48:0d:47:38:5c:80: 72:a1:40:a4:05:db:df:57:c3:48:53:b4:4d:a0:bc:4c:56:81: 66:e1:34:3a:0c:12:4e:5c:61:1c:44:05:22:00:1f:ee:94:92: fb:1a:98:a4:82:9f:14:ae:f7:7d:5f:12:b4:d2:93:b6:54:0d: 74:52:84:ea:b2:70:6a:b9:a3:e7:ac:21:b4:0e:86:88:b3:58: ea:0b:c3:36:0b:25:0b:14:db:e4:96:c6:aa:9b:4b:1d:5d:5f: 19:e1:55:a8:fb:9e:0e:6b:b1:3b:b7:ad:4e:b8:51:2f:b1:c7: 1f:6e:d0:9c:f8:d4:b2:5b:33:24:46:c2:a0:ef:34:9f:1c:05: 7f:d7:8c:90:bd:9c:8c:0a:d9:d4:21:68:8d:30:ed:9c:c0:c4: a4:f6:65:ef:c8:5b:f3:36:44:9b:62:d4:71:d1:06:69:43:c3: 59:32:11:c9:76:8a:72:6f:d1:db:b9:18:30:f8:7c:c7:54:b3: 8e:f2:04:e6:21:d1:0e:a6:98:ac:0a:97:50:d4:79:68:b0:c9: f8:43:45:3f:0a:27:a4:41:8e:2a:8a:b3:fc:1e:5c:62:c6:30: 52:d1:68:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliK4/1NfAuND9wM9Ghek4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjE2MDUwMTEyWhcNMjUxMjE3MDUwMTEyWjAzMTEwLwYDVQQD Eyg4MGI3N2UyZjExOWJiYmE5ODI2OGQ0MDA2ZWUwMjMzZTZhNGMyOWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6QLe/UOCN9RHS4c6FQ5zvEEbVBl6 GRo4t09nGCakErHLaJeckt41M2eV5728TyIn5RUkJIYEKt39O2a/s0YbahZMzPP0 Caprp94Xiouyz6I4SeeYYBRLBv1vqJEv8WGmiUJbmDPZ5AKdgGqeURVyA5mr2Ftm 4DucCKBntCz1z7tJ+P4i4UzwxIUNaNf3ix/8+UApaAR7TDTkJi4eTgLijyAzcHP+ cxtf446TSbJZP5Rv9gvPeNdd6y9m4jzIWUzHXzmsI7bafnO6Uow0gO0Bmix1kjy8 Unjue9uNgi+XbveXcsPZaK1jJCCXN+QNpiR+PambQR+c4/JVvE2nD+b/kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIC3fi8Rm7upgmjUAG7gIz5qTCn2MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADmpRBMR4 +ZXbcF1gAlrqmjCg84CNHgpLH2GDaemxSA1HOFyAcqFApAXb31fDSFO0TaC8TFaB ZuE0OgwSTlxhHEQFIgAf7pSS+xqYpIKfFK73fV8StNKTtlQNdFKE6rJwarmj56wh tA6GiLNY6gvDNgslCxTb5JbGqptLHV1fGeFVqPueDmuxO7etTrhRL7HHH27QnPjU slszJEbCoO80nxwFf9eMkL2cjArZ1CFojTDtnMDEpPZl78hb8zZEm2LUcdEGaUPD WTIRyXaKcm/R27kYMPh8x1SzjvIE5iHRDqaYrAqXUNR5aLDJ+ENFPwonpEGOKoqz /B5cYsYwUtFohw== -----END CERTIFICATE-----Generated at Tue Dec 16 08:46:10 2025 by rpki-client