This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: rgvw7X/oh+QZ/7H74oDQwXTs1M0o18thWXZiMDZ51Mk= Subject key identifier: 00:82:67:11:7E:FA:E6:6E:2A:24:C4:2E:2D:1D:D5:48:2E:F6:43:B7 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B446E78B00B2DB364C3B6C5C4B910F53E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 1790 Signing time: Mon 22 Dec 2025 05:00:49 +0000 Manifest this update: Mon 22 Dec 2025 05:00:49 +0000 Manifest next update: Tue 23 Dec 2025 05:00:49 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: vdC/GT2mDDnjilrXtQe4V1OWHPAwwlrOm+sOKbAVZ8Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:6e:78:b0:0b:2d:b3:64:c3:b6:c5:c4:b9:10:f5:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 22 05:00:49 2025 GMT Not After : Dec 23 05:00:49 2025 GMT Subject: CN=008267117efae66e2a24c42e2d1dd5482ef643b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:a5:43:48:a8:3f:19:e7:a6:34:c6:a0:84: c1:58:1d:70:b2:24:4f:96:ab:ec:68:3f:f0:63:54: 79:0a:32:31:d5:02:5d:53:89:0e:ef:0f:a3:95:91: 2d:e0:9a:2e:20:57:c5:b0:ea:9e:c3:cc:1c:33:a9: 2b:53:a0:f0:d0:db:b4:d9:9e:3c:9c:44:aa:9b:0d: da:27:2a:f9:1c:08:a1:25:2e:38:85:9c:66:05:4e: ec:a2:9e:e7:dc:0c:16:9f:81:aa:8a:3a:9b:90:f9: a3:ee:11:fb:d8:c0:3c:8e:f8:19:9f:74:95:27:3e: ea:40:c2:9a:2e:83:3e:ba:9c:0e:06:49:b4:cf:e1: 69:4d:84:60:2a:6f:f9:7f:a5:84:b4:c2:bf:64:d2: 32:33:b5:10:6b:35:20:f4:b0:9d:9f:55:ee:38:82: 8d:21:bd:a0:41:98:24:69:72:dc:96:8a:4f:de:29: d0:26:e3:de:33:f2:c4:5b:d9:24:50:7b:e5:b8:cc: 99:9a:81:9b:1e:ad:16:45:fa:14:fb:e1:13:8c:8b: df:4c:69:9e:a1:70:2f:b7:1e:70:1c:63:d8:26:e0: 54:4d:fe:ac:5a:a9:c1:f8:9c:d2:23:53:46:18:81: af:c7:70:77:f0:16:07:c9:a3:0a:fe:e7:cd:af:2c: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:82:67:11:7E:FA:E6:6E:2A:24:C4:2E:2D:1D:D5:48:2E:F6:43:B7 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:8e:fb:32:14:fd:b4:1a:61:7c:53:ed:2f:8c:95:22:8d:ce: 25:78:ce:94:f9:e8:73:42:19:85:ab:9b:d4:e4:04:21:a2:d3: 46:94:34:b6:a9:2a:f7:75:9e:61:7e:be:94:9a:25:5f:50:6b: b0:2d:5a:91:73:59:84:5e:39:6e:aa:2e:88:74:b7:30:cb:11: ca:50:13:db:43:6e:a6:b7:f2:c1:73:b9:50:c7:02:77:e0:aa: cc:2c:95:d6:ed:eb:cd:13:50:7d:7a:90:f3:96:03:62:19:3e: fb:e9:93:8b:01:f9:fe:7e:bb:82:fb:aa:12:99:40:22:7b:82: 67:58:f4:ce:62:64:ad:cf:16:8a:4a:8f:d1:b0:5b:7c:3f:1e: f2:31:04:64:eb:6c:b1:cb:a0:0c:33:1f:76:1f:80:db:e0:7a: c7:f5:0a:a0:1c:97:ba:13:83:ac:4d:8d:34:d5:d9:e2:b1:11: 46:d1:dc:7e:54:fa:9a:6b:f3:a5:e9:24:9c:e7:9f:6a:cc:bd: 1e:3a:12:c1:c4:26:3d:bc:0a:28:18:3a:22:51:44:2f:20:dc: 77:e6:bf:81:46:3c:9a:72:86:ad:6f:b6:02:c6:9f:2d:58:c6: 94:4c:91:9d:0e:7d:b5:9c:36:40:d9:de:3f:9c:94:23:93:62: 0e:53:2e:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEbniwCy2zZMO2xcS5EPU+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjIyMDUwMDQ5WhcNMjUxMjIzMDUwMDQ5WjAzMTEwLwYDVQQD EygwMDgyNjcxMTdlZmFlNjZlMmEyNGM0MmUyZDFkZDU0ODJlZjY0M2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNulQ0ioPxnnpjTGoITBWB1wsiRP lqvsaD/wY1R5CjIx1QJdU4kO7w+jlZEt4JouIFfFsOqew8wcM6krU6Dw0Nu02Z48 nESqmw3aJyr5HAihJS44hZxmBU7sop7n3AwWn4GqijqbkPmj7hH72MA8jvgZn3SV Jz7qQMKaLoM+upwOBkm0z+FpTYRgKm/5f6WEtMK/ZNIyM7UQazUg9LCdn1XuOIKN Ib2gQZgkaXLclopP3inQJuPeM/LEW9kkUHvluMyZmoGbHq0WRfoU++ETjIvfTGme oXAvtx5wHGPYJuBUTf6sWqnB+JzSI1NGGIGvx3B38BYHyaMK/ufNryzbLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFACCZxF++uZuKiTELi0d1Ugu9kO3MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZY77MhT9 tBphfFPtL4yVIo3OJXjOlPnoc0IZhaub1OQEIaLTRpQ0tqkq93WeYX6+lJolX1Br sC1akXNZhF45bqouiHS3MMsRylAT20NuprfywXO5UMcCd+CqzCyV1u3rzRNQfXqQ 85YDYhk+++mTiwH5/n67gvuqEplAInuCZ1j0zmJkrc8WikqP0bBbfD8e8jEEZOts scugDDMfdh+A2+B6x/UKoByXuhODrE2NNNXZ4rERRtHcflT6mmvzpekknOefasy9 HjoSwcQmPbwKKBg6IlFELyDcd+a/gUY8mnKGrW+2AsafLVjGlEyRnQ59tZw2QNne P5yUI5NiDlMujA== -----END CERTIFICATE-----Generated at Mon Dec 22 15:29:17 2025 by rpki-client