This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: dpvbTz8R27ZYtsT3nh/CUlqGjUgn6Gx24Don6+ak2PM= Subject key identifier: 0C:0A:51:3D:5B:5B:C7:F3:44:B3:DB:2A:06:FD:29:6F:61:91:E4:51 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B2B54283594903E26299EE9E3160BBA52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 1783 Signing time: Wed 17 Dec 2025 08:01:33 +0000 Manifest this update: Wed 17 Dec 2025 08:01:33 +0000 Manifest next update: Thu 18 Dec 2025 08:01:33 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: FIevaSuqWFAyX0u+vtb4KKdxhihP5mNLW6R0hWB9cSg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:54:28:35:94:90:3e:26:29:9e:e9:e3:16:0b:ba:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 17 08:01:33 2025 GMT Not After : Dec 18 08:01:33 2025 GMT Subject: CN=0c0a513d5b5bc7f344b3db2a06fd296f6191e451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4c:ce:03:b1:59:a5:25:e2:31:ef:83:a1:2a: bf:4e:45:9d:59:f4:ba:5a:d5:6f:46:f2:9e:76:dc: 6a:e1:8c:fa:a5:19:1b:ec:ef:9a:5c:b1:7e:f3:07: d9:96:fd:25:98:de:0e:3a:e7:36:a7:91:07:db:f4: b2:c0:bb:54:0f:dc:7a:24:88:15:60:16:a8:f4:c0: ff:69:1a:17:7c:1c:21:04:d9:35:8a:19:14:b8:5b: 2c:f3:49:9f:f8:e2:fd:c7:e1:50:17:31:88:96:5e: 3b:48:73:30:30:37:98:65:c1:c4:12:63:33:57:81: 0a:9e:8b:96:25:b8:50:90:f7:5a:c8:27:3d:49:20: 69:e9:9f:dc:95:88:77:bf:5d:25:fc:e9:73:f0:20: 8c:91:36:de:31:3c:74:a2:11:72:7f:f7:11:1a:1f: fc:27:8e:57:eb:03:1c:99:9b:9e:86:b0:86:cd:24: b4:26:f1:6d:51:1d:7a:e8:dc:45:e4:85:76:27:cb: 05:1a:cc:9b:16:05:4b:32:7f:90:5c:8a:69:8f:3c: 27:c1:1a:e3:48:3a:20:c9:81:24:a5:5d:c6:a3:7d: d7:c3:c8:eb:9b:d3:57:b5:5d:b0:d0:01:26:e0:bd: 59:e1:5a:65:d3:a1:16:c6:ba:a0:18:20:cf:b5:7d: 0b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:0A:51:3D:5B:5B:C7:F3:44:B3:DB:2A:06:FD:29:6F:61:91:E4:51 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:1c:f5:f4:25:72:9c:b4:5b:47:ed:80:55:8c:70:9d:88:34: ad:63:ad:48:8d:32:df:57:b7:17:1c:8e:8a:6d:cf:3f:aa:da: a4:d8:25:47:0a:12:49:ae:d0:6e:5e:d0:7c:12:88:64:23:da: cd:cc:95:e5:09:6d:13:f7:47:64:ce:32:7c:dd:d3:24:5a:f6: d4:c7:e3:4d:51:b8:9a:b0:3d:e9:b1:0b:98:a5:92:84:a8:99: 23:5e:24:41:c3:54:c2:5b:6b:b4:a9:c3:be:e4:96:60:57:97: c5:0e:67:0d:3c:06:04:de:99:f3:3e:af:ad:c8:e5:f1:84:d8: b2:38:59:d5:ba:9f:d6:a6:8c:3e:d2:7b:26:71:3d:6d:6b:c7: 12:b2:49:8f:58:ff:ce:ac:cd:bd:cd:c0:54:d3:28:b8:47:d6: 80:46:08:83:f9:e1:2e:42:ab:76:04:ed:1a:bc:fc:cd:eb:2f: ec:e6:f0:13:91:33:ae:ce:e4:ae:93:e4:3c:28:93:d7:78:b6: 8a:45:b6:61:02:58:29:65:7b:37:46:27:df:ce:40:20:5f:78: 90:40:e7:30:2e:95:d1:88:aa:36:63:86:1d:29:93:d2:97:cb: 73:06:45:fc:21:b9:00:8d:b8:15:fe:05:a1:eb:c8:a9:bb:f2: c0:f6:ca:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrVCg1lJA+Jime6eMWC7pSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjE3MDgwMTMzWhcNMjUxMjE4MDgwMTMzWjAzMTEwLwYDVQQD EygwYzBhNTEzZDViNWJjN2YzNDRiM2RiMmEwNmZkMjk2ZjYxOTFlNDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEzOA7FZpSXiMe+DoSq/TkWdWfS6 WtVvRvKedtxq4Yz6pRkb7O+aXLF+8wfZlv0lmN4OOuc2p5EH2/SywLtUD9x6JIgV YBao9MD/aRoXfBwhBNk1ihkUuFss80mf+OL9x+FQFzGIll47SHMwMDeYZcHEEmMz V4EKnouWJbhQkPdayCc9SSBp6Z/clYh3v10l/Olz8CCMkTbeMTx0ohFyf/cRGh/8 J45X6wMcmZuehrCGzSS0JvFtUR166NxF5IV2J8sFGsybFgVLMn+QXIppjzwnwRrj SDogyYEkpV3Go33Xw8jrm9NXtV2w0AEm4L1Z4Vpl06EWxrqgGCDPtX0LgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAwKUT1bW8fzRLPbKgb9KW9hkeRRMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATBz19CVy nLRbR+2AVYxwnYg0rWOtSI0y31e3FxyOim3PP6rapNglRwoSSa7Qbl7QfBKIZCPa zcyV5QltE/dHZM4yfN3TJFr21MfjTVG4mrA96bELmKWShKiZI14kQcNUwltrtKnD vuSWYFeXxQ5nDTwGBN6Z8z6vrcjl8YTYsjhZ1bqf1qaMPtJ7JnE9bWvHErJJj1j/ zqzNvc3AVNMouEfWgEYIg/nhLkKrdgTtGrz8zesv7ObwE5Ezrs7krpPkPCiT13i2 ikW2YQJYKWV7N0Yn385AIF94kEDnMC6V0YiqNmOGHSmT0pfLcwZF/CG5AI24Ff4F oevIqbvywPbKlg== -----END CERTIFICATE-----Generated at Wed Dec 17 17:42:00 2025 by rpki-client