This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: fcqHOwoOZKdXTMV/lgKLMxy2Ib4rFyul07YMlajnsEk= Subject key identifier: E8:40:62:56:8C:A8:3C:8D:41:4F:BA:EB:CE:F0:ED:AC:C8:3F:9B:15 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B1BE060BCB7CB74B66471FFBE9FA7F27A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 177B Signing time: Sun 14 Dec 2025 08:00:48 +0000 Manifest this update: Sun 14 Dec 2025 08:00:48 +0000 Manifest next update: Mon 15 Dec 2025 08:00:48 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: CthSFwpwrj52sQlf0pHT4waTJORFZMNC9pc8Igw+UkI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 08:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:e0:60:bc:b7:cb:74:b6:64:71:ff:be:9f:a7:f2:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 14 08:00:48 2025 GMT Not After : Dec 15 08:00:48 2025 GMT Subject: CN=e84062568ca83c8d414fbaebcef0edacc83f9b15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ac:a4:73:ab:46:52:08:82:6a:9f:f1:40:b5: 0f:11:e6:24:78:5b:1f:2a:e1:e4:1d:dd:52:e5:d8: 7b:ea:bb:df:c4:19:9d:7a:63:7a:2b:e2:5c:30:24: 7e:04:8a:f5:ca:72:a7:3b:c9:9c:86:bc:bf:96:6b: 84:76:33:c9:a7:8e:08:06:bd:ac:f5:eb:f1:4b:c6: 40:76:44:35:0d:99:4d:94:d5:7a:6b:3d:4e:e2:ee: e0:fe:3b:b9:e9:22:60:c7:dc:e1:c8:f0:54:93:c6: 60:97:32:e3:2d:a3:c7:66:e3:2f:6a:df:d4:6e:a1: d2:69:c6:25:0e:f3:46:c8:6f:07:35:95:76:cd:fa: 9e:00:26:44:ef:e0:95:4e:26:f1:76:77:e5:a7:f2: 31:ed:b8:af:bb:04:9e:90:39:75:b5:ec:99:0c:d0: d3:5c:7a:d9:16:bc:2c:8b:ea:25:bd:81:4a:fa:8f: 1a:aa:4e:ee:c5:9a:a4:36:fc:fc:47:c8:82:af:8a: 7e:8b:d1:9a:4f:46:6a:e0:ca:ba:8e:41:b8:b3:d2: 50:d9:fe:83:f3:9f:16:73:4f:ca:37:63:cf:49:5f: 04:20:32:be:7d:01:f8:fe:b0:25:53:3f:e1:c6:71: 57:ae:65:52:1c:a7:c5:ee:fc:08:51:1f:16:b9:1e: ea:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:40:62:56:8C:A8:3C:8D:41:4F:BA:EB:CE:F0:ED:AC:C8:3F:9B:15 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:b9:69:60:94:aa:bb:cc:83:d5:44:54:05:48:6e:32:4e:0e: a1:a2:68:b8:7c:ee:bc:cd:ca:f8:84:58:99:48:18:9f:83:01: c4:8b:d8:80:a7:45:cb:37:04:ce:b6:c4:01:a8:59:11:5d:e4: fa:fe:6c:2c:c2:43:f8:50:54:ea:77:f6:e9:da:aa:5b:23:00: bf:08:c3:1c:a1:7e:21:df:56:65:2a:b9:69:54:6e:60:36:5c: 6b:ca:33:d9:55:80:2f:1a:69:31:0a:c4:d8:2b:e1:fd:59:df: 28:54:c7:28:ca:02:14:16:9d:f6:0e:83:cf:65:c5:74:9a:86: aa:4e:1d:bf:de:0b:bb:4b:e7:8b:b2:e4:23:50:7c:87:ec:bf: ea:90:7d:37:0a:1d:64:f2:d1:99:c5:0b:2e:57:f2:47:ae:f0: ec:79:12:1b:f5:a9:1b:68:33:12:8a:d1:3b:bb:5c:f1:62:f2: ce:d5:d5:9a:06:e4:46:96:ae:35:80:b1:70:98:b5:78:d3:e4: f3:03:cb:51:38:80:53:87:0b:0d:f3:85:79:69:fd:21:2d:52: a6:aa:c6:dc:3a:d1:a1:53:25:80:9e:c3:3e:7d:e0:25:9f:15: 27:98:00:51:4e:3f:54:65:cd:93:9f:fd:0b:ca:53:29:92:3c: f4:cd:13:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsb4GC8t8t0tmRx/76fp/J6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjE0MDgwMDQ4WhcNMjUxMjE1MDgwMDQ4WjAzMTEwLwYDVQQD EyhlODQwNjI1NjhjYTgzYzhkNDE0ZmJhZWJjZWYwZWRhY2M4M2Y5YjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqykc6tGUgiCap/xQLUPEeYkeFsf KuHkHd1S5dh76rvfxBmdemN6K+JcMCR+BIr1ynKnO8mchry/lmuEdjPJp44IBr2s 9evxS8ZAdkQ1DZlNlNV6az1O4u7g/ju56SJgx9zhyPBUk8ZglzLjLaPHZuMvat/U bqHSacYlDvNGyG8HNZV2zfqeACZE7+CVTibxdnflp/Ix7bivuwSekDl1teyZDNDT XHrZFrwsi+olvYFK+o8aqk7uxZqkNvz8R8iCr4p+i9GaT0Zq4Mq6jkG4s9JQ2f6D 858Wc0/KN2PPSV8EIDK+fQH4/rAlUz/hxnFXrmVSHKfF7vwIUR8WuR7q8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOhAYlaMqDyNQU+6687w7azIP5sVMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg7lpYJSq u8yD1URUBUhuMk4OoaJouHzuvM3K+IRYmUgYn4MBxIvYgKdFyzcEzrbEAahZEV3k +v5sLMJD+FBU6nf26dqqWyMAvwjDHKF+Id9WZSq5aVRuYDZca8oz2VWALxppMQrE 2Cvh/VnfKFTHKMoCFBad9g6Dz2XFdJqGqk4dv94Lu0vni7LkI1B8h+y/6pB9Nwod ZPLRmcULLlfyR67w7HkSG/WpG2gzEorRO7tc8WLyztXVmgbkRpauNYCxcJi1eNPk 8wPLUTiAU4cLDfOFeWn9IS1SpqrG3DrRoVMlgJ7DPn3gJZ8VJ5gAUU4/VGXNk5/9 C8pTKZI89M0TWg== -----END CERTIFICATE-----Generated at Sun Dec 14 15:39:06 2025 by rpki-client