This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: frVTSD8TESl8Hul6mY+SZDJUjKh+71PdUF2jt8E93UE= Subject key identifier: 52:5D:52:C2:FF:E6:E4:DB:60:99:66:0F:12:AC:B5:40:40:1C:52:52 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B1238BD814553001AA6EE0A647A6AA9EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 1776 Signing time: Fri 12 Dec 2025 11:01:06 +0000 Manifest this update: Fri 12 Dec 2025 11:01:06 +0000 Manifest next update: Sat 13 Dec 2025 11:01:06 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: JkgIZthk+TD0jm4pPD+Q5q1crbT4mGCkyg+zJq7XaXU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 11:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:38:bd:81:45:53:00:1a:a6:ee:0a:64:7a:6a:a9:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 12 11:01:06 2025 GMT Not After : Dec 13 11:01:06 2025 GMT Subject: CN=525d52c2ffe6e4db6099660f12acb540401c5252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7d:11:e8:de:01:70:d4:df:f5:89:67:2b:00: 45:01:40:c4:32:41:e4:23:c3:22:42:6e:98:e2:a1: ff:07:88:48:96:7e:0a:f6:63:13:03:d6:6e:03:6b: 50:86:a4:bb:60:5a:3c:59:0e:75:ff:a4:b2:02:85: 9b:de:33:b7:c5:7a:1a:bd:aa:77:7e:83:84:dd:2f: ee:39:2f:f2:14:dd:fc:9f:b6:7c:3e:bd:9c:0c:04: 25:40:db:f6:e3:e3:f8:cd:cc:57:b6:ba:7b:89:9a: ac:7e:bd:43:37:fd:9f:a4:6b:ad:db:cc:11:db:02: b8:18:9a:73:a8:4d:34:a0:f5:95:30:e8:16:39:61: 1c:7e:f5:ae:57:85:ca:50:e5:90:a2:cd:d7:77:22: 85:ed:de:b1:0d:7c:0f:e4:d0:3f:b9:22:8d:12:8d: 56:62:0e:9c:d5:67:8e:9e:3a:43:df:01:d4:e5:1f: 34:04:8b:38:a8:6d:b7:ae:85:65:91:9e:cc:a9:11: d9:c6:7e:ee:7d:99:16:02:5d:12:29:ad:5d:70:a8: 39:cd:ea:61:ea:1a:26:0d:61:96:c8:80:7c:2e:0b: 76:5b:29:ac:84:b6:ff:b0:42:88:85:0d:f0:12:69: a0:a7:a1:53:08:06:ea:6d:76:90:d1:2f:43:68:90: f3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5D:52:C2:FF:E6:E4:DB:60:99:66:0F:12:AC:B5:40:40:1C:52:52 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:98:28:5c:23:5d:44:ab:a5:09:62:5b:64:e7:51:ee:34:bb: 77:dc:e5:58:92:48:5c:15:18:90:64:64:91:21:be:a8:df:46: 2e:ce:17:b0:cf:ea:19:d5:05:85:8d:3f:ec:49:ed:c5:4e:de: 71:b5:bb:87:dd:55:f7:8a:e8:15:9b:b6:c4:94:d9:01:8f:13: c3:30:dc:ba:39:7f:87:47:83:f6:3e:2d:8c:a2:48:87:d3:f3: 98:70:60:40:61:9c:74:ee:48:bc:c9:b6:d6:4e:31:6f:ee:fa: 4c:20:bb:99:f5:23:08:82:2e:5f:f2:ee:4a:e9:d6:b3:f0:6e: 68:97:de:f4:a6:44:d3:0c:70:c7:d8:20:e6:60:df:05:ef:77: 2e:07:88:2a:e5:dd:07:46:7d:fc:e7:cd:b8:fe:13:c5:fe:27: cd:76:bd:e4:c0:3c:0c:d2:ff:fc:80:07:85:06:0b:19:25:4b: 5c:44:18:d9:dd:53:0d:5b:a2:2a:e6:ae:8a:ac:89:bf:e5:89: 58:25:91:05:a1:a1:4e:2b:35:40:86:e1:f2:3a:0d:9a:77:a8: e8:5a:eb:7c:8c:62:7c:7e:15:58:a2:91:2d:ff:da:4b:fc:5a: 68:6d:92:91:5d:91:a9:63:0d:81:95:b0:85:c6:94:bb:9d:e7: ff:4d:6a:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSOL2BRVMAGqbuCmR6aqnsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjEyMTEwMTA2WhcNMjUxMjEzMTEwMTA2WjAzMTEwLwYDVQQD Eyg1MjVkNTJjMmZmZTZlNGRiNjA5OTY2MGYxMmFjYjU0MDQwMWM1MjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3X0R6N4BcNTf9YlnKwBFAUDEMkHk I8MiQm6Y4qH/B4hIln4K9mMTA9ZuA2tQhqS7YFo8WQ51/6SyAoWb3jO3xXoavap3 foOE3S/uOS/yFN38n7Z8Pr2cDAQlQNv24+P4zcxXtrp7iZqsfr1DN/2fpGut28wR 2wK4GJpzqE00oPWVMOgWOWEcfvWuV4XKUOWQos3XdyKF7d6xDXwP5NA/uSKNEo1W Yg6c1WeOnjpD3wHU5R80BIs4qG23roVlkZ7MqRHZxn7ufZkWAl0SKa1dcKg5zeph 6homDWGWyIB8Lgt2WymshLb/sEKIhQ3wEmmgp6FTCAbqbXaQ0S9DaJDzSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFJdUsL/5uTbYJlmDxKstUBAHFJSMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe5goXCNd RKulCWJbZOdR7jS7d9zlWJJIXBUYkGRkkSG+qN9GLs4XsM/qGdUFhY0/7EntxU7e cbW7h91V94roFZu2xJTZAY8TwzDcujl/h0eD9j4tjKJIh9PzmHBgQGGcdO5IvMm2 1k4xb+76TCC7mfUjCIIuX/LuSunWs/BuaJfe9KZE0wxwx9gg5mDfBe93LgeIKuXd B0Z9/OfNuP4Txf4nzXa95MA8DNL//IAHhQYLGSVLXEQY2d1TDVuiKuauiqyJv+WJ WCWRBaGhTis1QIbh8joNmneo6FrrfIxifH4VWKKRLf/aS/xaaG2SkV2RqWMNgZWw hcaUu53n/01qXA== -----END CERTIFICATE-----Generated at Fri Dec 12 20:59:47 2025 by rpki-client