This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: 7LhphDzGPJFB/oDASAqG8uWL0tIqIxyEeU+6YB7BQUY= Subject key identifier: 65:10:47:AD:96:E2:38:A2:B5:56:10:19:83:27:BC:18:2E:B1:B8:E1 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B02C5FE5132E594E31D76BC5036830ADD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 176E Signing time: Tue 09 Dec 2025 11:01:28 +0000 Manifest this update: Tue 09 Dec 2025 11:01:28 +0000 Manifest next update: Wed 10 Dec 2025 11:01:28 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: nl447yQvp7oIYzlhF42JykW4n11Ml9T+mJuduac1Cfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Dec 2025 11:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:02:c5:fe:51:32:e5:94:e3:1d:76:bc:50:36:83:0a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 9 11:01:28 2025 GMT Not After : Dec 10 11:01:28 2025 GMT Subject: CN=651047ad96e238a2b55610198327bc182eb1b8e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:97:cd:42:d5:f8:d1:b9:eb:68:6e:ef:10:9e: f0:98:06:7d:66:36:b8:06:ea:95:a2:8e:55:e8:b1: 49:19:33:be:7a:ba:7d:aa:4f:b8:f2:ff:d5:87:7d: 2a:cd:1c:5d:4f:9f:9e:c6:1e:00:a1:4b:ef:2a:1e: a9:7f:27:da:20:c1:b3:ae:81:27:77:39:d1:26:b2: 12:8a:e5:b6:c7:ff:7f:cf:fd:2d:18:95:47:3a:b3: f9:87:24:0d:a5:7a:fe:61:48:bd:d4:54:67:aa:77: b8:4a:87:56:57:90:df:7a:a0:42:ce:25:6a:36:90: 3b:f9:ea:82:16:b7:a7:20:cc:52:37:40:30:3b:4a: 35:ee:c1:84:21:e0:13:9b:a7:f5:3c:54:d1:61:f5: 5b:7d:72:bb:1d:86:e5:fe:5b:5a:7b:08:dc:4c:c2: 12:39:40:86:e9:f3:56:03:7e:e9:7e:fe:b5:12:b2: 90:99:51:38:a8:ec:35:e5:fb:22:85:37:de:31:6e: 1d:af:2f:80:65:c9:e5:55:ec:59:59:ad:d9:8a:c7: 7f:43:94:c8:37:ad:48:24:04:95:10:4c:6d:5d:12: 4a:eb:c6:2c:8b:aa:9d:4a:43:ce:2e:f0:15:63:bd: da:f2:32:cf:39:b6:03:bb:dd:08:57:da:d2:08:ef: 70:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:10:47:AD:96:E2:38:A2:B5:56:10:19:83:27:BC:18:2E:B1:B8:E1 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:8b:af:81:0e:c0:8f:06:a4:13:73:b3:f6:64:8e:d8:85:2a: 50:25:de:2a:fb:a1:bb:5e:3c:c4:4f:30:37:f8:59:6e:1d:3a: 07:c4:3c:02:44:83:55:fe:b3:7b:54:66:93:36:33:ff:08:9a: 4b:30:a2:bd:01:5d:3f:70:20:ad:f4:ec:1b:69:b3:d8:fc:c9: d6:f9:41:25:27:3b:5c:90:7a:a0:9d:7e:fd:26:0c:62:b8:80: 6b:6a:9b:c7:4d:3c:4e:8d:9c:ab:b1:a2:30:f1:7f:2d:e8:f7: e1:39:8a:c1:88:6e:f8:49:fe:f6:07:c0:ba:dd:77:6e:73:e3: e5:a3:48:4e:36:62:b5:89:0f:4e:5a:7d:51:d6:57:d5:03:12: c4:c2:7e:09:9b:f6:fc:f5:f7:33:98:99:27:72:05:9b:ef:65: dc:25:a1:1f:b7:98:cf:1a:1a:66:b0:5d:e7:4c:52:c8:9a:d2: 09:54:ef:59:f5:31:3f:30:6c:21:79:a9:e5:39:ac:c7:ed:4e: 46:88:ed:e0:02:19:4f:3c:dc:7e:0e:d0:97:04:87:a3:0f:69: 8e:1b:74:de:75:06:55:34:b0:c5:21:6c:09:01:9c:2c:76:46: 5e:8e:e9:95:c2:9c:73:b0:30:71:fb:54:15:28:f0:42:3a:33: ce:c9:2c:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsCxf5RMuWU4x12vFA2gwrdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjA5MTEwMTI4WhcNMjUxMjEwMTEwMTI4WjAzMTEwLwYDVQQD Eyg2NTEwNDdhZDk2ZTIzOGEyYjU1NjEwMTk4MzI3YmMxODJlYjFiOGUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZfNQtX40bnraG7vEJ7wmAZ9Zja4 BuqVoo5V6LFJGTO+erp9qk+48v/Vh30qzRxdT5+exh4AoUvvKh6pfyfaIMGzroEn dznRJrISiuW2x/9/z/0tGJVHOrP5hyQNpXr+YUi91FRnqne4SodWV5DfeqBCziVq NpA7+eqCFrenIMxSN0AwO0o17sGEIeATm6f1PFTRYfVbfXK7HYbl/ltaewjcTMIS OUCG6fNWA37pfv61ErKQmVE4qOw15fsihTfeMW4dry+AZcnlVexZWa3Zisd/Q5TI N61IJASVEExtXRJK68Ysi6qdSkPOLvAVY73a8jLPObYDu90IV9rSCO9wAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGUQR62W4jiitVYQGYMnvBgusbjhMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOIuvgQ7A jwakE3Oz9mSO2IUqUCXeKvuhu148xE8wN/hZbh06B8Q8AkSDVf6ze1RmkzYz/wia SzCivQFdP3AgrfTsG2mz2PzJ1vlBJSc7XJB6oJ1+/SYMYriAa2qbx008To2cq7Gi MPF/Lej34TmKwYhu+En+9gfAut13bnPj5aNITjZitYkPTlp9UdZX1QMSxMJ+CZv2 /PX3M5iZJ3IFm+9l3CWhH7eYzxoaZrBd50xSyJrSCVTvWfUxPzBsIXmp5Tmsx+1O Rojt4AIZTzzcfg7QlwSHow9pjht03nUGVTSwxSFsCQGcLHZGXo7plcKcc7AwcftU FSjwQjozzsksFA== -----END CERTIFICATE-----Generated at Tue Dec 9 20:05:01 2025 by rpki-client