This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: q+4Pwl+g7aPEb4e2IfALgl+S6hoecJZKTCF7wj4zsGQ= Subject key identifier: 1E:09:91:17:91:4A:1E:C9:9E:DA:30:0C:86:91:5C:FE:1C:C4:5D:D3 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B19F23808B0F1D42A63519F0DEAACC20A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 177A Signing time: Sat 13 Dec 2025 23:01:02 +0000 Manifest this update: Sat 13 Dec 2025 23:01:02 +0000 Manifest next update: Sun 14 Dec 2025 23:01:02 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 6l7joPiWCEu4EIPENKd8GqFXLCEOJUeNxcoD/gOvNYE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:f2:38:08:b0:f1:d4:2a:63:51:9f:0d:ea:ac:c2:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 13 23:01:02 2025 GMT Not After : Dec 14 23:01:02 2025 GMT Subject: CN=1e099117914a1ec99eda300c86915cfe1cc45dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e5:08:c3:44:7b:9a:c3:c8:bc:08:e6:44:26: 67:55:9d:dc:c7:57:b0:ed:90:3b:4d:d9:87:ce:4f: be:d2:6c:5d:f3:0a:ad:09:c7:ff:05:2b:ee:3d:1e: eb:a3:e6:ba:7a:74:41:9e:19:2e:fb:26:e2:2c:88: 35:86:f3:59:3b:8b:b3:d6:a1:70:6c:04:a2:40:cc: df:1e:7d:ce:89:76:2c:20:d4:d9:ae:b3:a2:df:ee: fa:c9:3e:e4:f9:4f:39:47:19:c8:8a:9d:19:8f:82: e5:d8:95:00:10:a3:35:c6:1b:1b:ac:63:af:78:e3: 8c:9a:db:b4:c4:90:9d:c5:88:d0:8b:fa:d2:95:1e: ef:05:9d:62:f2:97:3f:c8:1a:a4:f2:8b:09:18:5b: b6:e2:ee:6b:84:27:d7:c8:32:dd:35:b5:50:ac:ff: d8:2b:5f:8b:ec:d8:cc:e6:ac:75:2a:9e:c1:e8:09: 5f:19:5e:49:71:ca:94:f4:ac:03:e7:75:d8:83:92: 5c:02:b6:22:6c:93:38:a9:75:53:e4:b9:52:96:7b: f0:e0:50:54:08:ae:45:bd:53:80:b2:89:38:dd:dd: 46:a1:89:2c:9f:51:76:17:01:d0:cb:44:24:8b:ee: a5:d0:5a:a1:2d:9f:81:c1:e6:4e:56:9e:5e:15:e2: c4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:09:91:17:91:4A:1E:C9:9E:DA:30:0C:86:91:5C:FE:1C:C4:5D:D3 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:3b:eb:b1:47:53:1e:72:a4:0e:d1:3e:96:36:ad:66:e6:9c: a0:5e:2b:47:07:59:5a:51:43:37:2f:63:1f:62:3c:41:10:b1: 84:f3:1e:11:97:a5:e2:25:90:88:80:77:14:73:41:a8:8c:21: 46:04:83:81:c1:a8:8c:0a:4c:de:fd:63:3d:b7:79:80:ae:bb: 53:a8:b8:58:3d:85:70:91:1b:48:46:70:97:56:36:2f:36:cd: 0b:f9:28:1d:ca:c2:6a:5f:9e:7d:96:71:b6:ec:6b:e2:02:5b: df:9c:7a:8b:eb:e2:28:46:0e:eb:54:27:cd:7b:7a:89:8b:fc: d5:37:3d:66:ad:41:b0:c5:09:ca:47:c7:52:e1:d7:1f:1a:04: e3:02:b0:56:f0:c9:9b:a1:97:7c:ea:9c:e7:45:d5:b2:1c:df: 06:64:db:89:6b:75:c1:fc:7b:25:b1:9c:b5:01:89:27:a0:ea: b9:31:52:a3:03:89:73:85:80:2e:8c:c5:43:49:b5:77:a8:6d: 1a:72:9e:94:e7:d2:f9:a0:31:99:00:6d:9e:14:89:7d:40:45: 17:25:03:c0:e9:6d:12:24:55:5f:a6:f0:4c:fe:02:f0:5e:4b: 70:a2:98:ff:36:fe:ce:33:43:c1:e7:b8:86:3a:5e:58:98:ac: 6d:c1:0e:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZ8jgIsPHUKmNRnw3qrMIKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjEzMjMwMTAyWhcNMjUxMjE0MjMwMTAyWjAzMTEwLwYDVQQD EygxZTA5OTExNzkxNGExZWM5OWVkYTMwMGM4NjkxNWNmZTFjYzQ1ZGQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuUIw0R7msPIvAjmRCZnVZ3cx1ew 7ZA7TdmHzk++0mxd8wqtCcf/BSvuPR7ro+a6enRBnhku+ybiLIg1hvNZO4uz1qFw bASiQMzfHn3OiXYsINTZrrOi3+76yT7k+U85RxnIip0Zj4Ll2JUAEKM1xhsbrGOv eOOMmtu0xJCdxYjQi/rSlR7vBZ1i8pc/yBqk8osJGFu24u5rhCfXyDLdNbVQrP/Y K1+L7NjM5qx1Kp7B6AlfGV5JccqU9KwD53XYg5JcArYibJM4qXVT5LlSlnvw4FBU CK5FvVOAsok43d1GoYksn1F2FwHQy0Qki+6l0FqhLZ+BweZOVp5eFeLENwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB4JkReRSh7JntowDIaRXP4cxF3TMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWzvrsUdT HnKkDtE+ljatZuacoF4rRwdZWlFDNy9jH2I8QRCxhPMeEZel4iWQiIB3FHNBqIwh RgSDgcGojApM3v1jPbd5gK67U6i4WD2FcJEbSEZwl1Y2LzbNC/koHcrCal+efZZx tuxr4gJb35x6i+viKEYO61QnzXt6iYv81Tc9Zq1BsMUJykfHUuHXHxoE4wKwVvDJ m6GXfOqc50XVshzfBmTbiWt1wfx7JbGctQGJJ6DquTFSowOJc4WALozFQ0m1d6ht GnKelOfS+aAxmQBtnhSJfUBFFyUDwOltEiRVX6bwTP4C8F5LcKKY/zb+zjNDwee4 hjpeWJisbcEOzA== -----END CERTIFICATE-----Generated at Sun Dec 14 03:13:31 2025 by rpki-client