This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: 4EyBedSk5MSCZjN9BaCvCqtFmZk9bZ4AGVHuXD2S6Dg= Subject key identifier: 63:59:EC:87:6D:59:17:0D:A3:2F:F1:95:ED:CE:FD:A2:CF:F2:17:C8 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019AE00326ABB1C7B5B03C172BBA7C360CE1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 175C Signing time: Tue 02 Dec 2025 17:01:34 +0000 Manifest this update: Tue 02 Dec 2025 17:01:34 +0000 Manifest next update: Wed 03 Dec 2025 17:01:34 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: s90gksuycxhDKAHqwLX7rfz8G+34fnZk894+djKYz9U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Dec 2025 12:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e0:03:26:ab:b1:c7:b5:b0:3c:17:2b:ba:7c:36:0c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 2 17:01:34 2025 GMT Not After : Dec 3 17:01:34 2025 GMT Subject: CN=6359ec876d59170da32ff195edcefda2cff217c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b7:86:84:bf:bf:df:93:e7:c9:5e:6a:f3:ff: 23:b1:ab:a8:b1:34:d4:7c:53:22:74:b1:bc:7f:28: 80:a1:5f:27:53:c4:bf:93:32:1c:76:cb:5f:95:6a: 26:59:e7:01:cd:fa:8c:ae:c1:18:c5:bd:84:1d:80: 7a:33:73:04:83:15:b1:67:84:32:ad:fb:a1:64:04: de:56:87:8e:f0:eb:fb:f9:46:95:55:5e:05:83:a8: e2:0c:94:a0:74:ae:37:df:38:f9:98:91:bb:2c:da: 18:7e:6e:2a:43:36:df:62:83:6b:e0:c4:a9:ad:15: 63:e1:28:86:2e:ac:3f:ea:0a:ab:a7:59:69:d3:b9: cd:63:66:7f:1a:30:3f:fb:60:45:6e:bf:d9:d1:9f: 6b:7a:e1:75:80:df:5d:9a:64:be:62:2b:4f:3d:05: 62:22:81:47:37:d6:51:2b:e4:6b:53:10:e4:f5:09: d6:76:89:43:46:cb:47:77:d5:a5:24:e4:7c:7d:7a: 57:4b:ab:72:a3:ee:4d:9d:2c:c8:16:a9:a7:ed:d4: 3d:45:52:7c:70:a5:e5:83:f0:a1:c5:25:99:84:72: 91:08:4d:06:d9:62:3a:dd:c5:66:cd:cd:38:cf:10: 57:c2:dc:3a:59:65:b7:fd:79:1b:3f:75:62:1c:51: 5c:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:59:EC:87:6D:59:17:0D:A3:2F:F1:95:ED:CE:FD:A2:CF:F2:17:C8 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:d0:24:90:01:73:ae:7c:f1:90:66:32:54:cb:85:a9:bf:6c: 06:ef:51:ab:17:d7:1e:e8:d5:73:ba:24:a3:fe:00:09:b3:9f: cc:f6:78:2a:9c:ea:12:eb:91:75:21:30:3d:83:2a:6d:2c:68: 7d:a9:51:a3:0f:cb:b0:67:92:fe:9a:d2:23:9c:a3:d4:67:9e: 27:0a:08:c5:b7:7e:a5:d7:96:f0:c2:60:80:5c:5f:9b:d5:31: f7:f9:06:39:ed:6b:1e:e2:54:28:5e:c9:1e:4e:6e:39:c3:e6: e8:1a:92:1f:c8:c7:43:1b:60:50:a7:49:1d:47:88:24:7f:b5: 14:81:bc:e3:0f:58:5d:3b:de:7a:7e:09:93:f7:a8:03:8f:28: 78:48:59:47:8a:c0:a8:64:8a:42:f3:9c:43:f8:ba:ec:f0:cb: 4b:19:a5:94:99:45:8b:7f:9e:3c:79:79:36:e2:52:dd:2b:42: ba:7c:fc:cf:4b:1f:66:30:64:70:3f:98:3f:ad:71:02:17:33: 5f:2c:5c:2a:ee:e0:bd:cb:9e:4d:29:5b:f1:4b:c2:73:96:85: 22:8a:15:f9:8c:0c:7b:64:d9:fb:0d:12:b5:2e:68:08:15:35: 6f:c3:63:ab:09:9f:46:64:1b:3a:5a:6e:c2:03:92:57:06:22: 7f:46:90:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrgAyarsce1sDwXK7p8NgzhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjAyMTcwMTM0WhcNMjUxMjAzMTcwMTM0WjAzMTEwLwYDVQQD Eyg2MzU5ZWM4NzZkNTkxNzBkYTMyZmYxOTVlZGNlZmRhMmNmZjIxN2M4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLeGhL+/35PnyV5q8/8jsauosTTU fFMidLG8fyiAoV8nU8S/kzIcdstflWomWecBzfqMrsEYxb2EHYB6M3MEgxWxZ4Qy rfuhZATeVoeO8Ov7+UaVVV4Fg6jiDJSgdK433zj5mJG7LNoYfm4qQzbfYoNr4MSp rRVj4SiGLqw/6gqrp1lp07nNY2Z/GjA/+2BFbr/Z0Z9reuF1gN9dmmS+YitPPQVi IoFHN9ZRK+RrUxDk9QnWdolDRstHd9WlJOR8fXpXS6tyo+5NnSzIFqmn7dQ9RVJ8 cKXlg/ChxSWZhHKRCE0G2WI63cVmzc04zxBXwtw6WWW3/XkbP3ViHFFc3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGNZ7IdtWRcNoy/xle3O/aLP8hfIMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMNAkkAFz rnzxkGYyVMuFqb9sBu9RqxfXHujVc7oko/4ACbOfzPZ4KpzqEuuRdSEwPYMqbSxo falRow/LsGeS/prSI5yj1GeeJwoIxbd+pdeW8MJggFxfm9Ux9/kGOe1rHuJUKF7J Hk5uOcPm6BqSH8jHQxtgUKdJHUeIJH+1FIG84w9YXTveen4Jk/eoA48oeEhZR4rA qGSKQvOcQ/i67PDLSxmllJlFi3+ePHl5NuJS3StCunz8z0sfZjBkcD+YP61xAhcz XyxcKu7gvcueTSlb8UvCc5aFIooV+YwMe2TZ+w0StS5oCBU1b8NjqwmfRmQbOlpu wgOSVwYif0aQFg== -----END CERTIFICATE-----Generated at Tue Dec 2 18:50:56 2025 by rpki-client