This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: uDmAD3uXoHmOxrT7Qr7fiY5vU0JqHfQYOo1U7kvPSvQ= Subject key identifier: AC:EB:3B:F8:2C:2D:0E:11:ED:E5:99:95:B8:6A:90:6E:E5:48:1D:7E Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B34FBBB0729EC4A64583391CF6484E31A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 1788 Signing time: Fri 19 Dec 2025 05:01:11 +0000 Manifest this update: Fri 19 Dec 2025 05:01:11 +0000 Manifest next update: Sat 20 Dec 2025 05:01:11 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: qAuKmbbUcwY+ZzL7bM/JNeSP5L/on1b9JJLT0M4kzF4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:bb:07:29:ec:4a:64:58:33:91:cf:64:84:e3:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 19 05:01:11 2025 GMT Not After : Dec 20 05:01:11 2025 GMT Subject: CN=aceb3bf82c2d0e11ede59995b86a906ee5481d7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:48:70:e4:2f:e8:ac:21:d0:7f:fd:bd:2f:36: ec:f3:3b:a1:93:ac:11:bb:2a:40:4d:34:5b:01:38: ec:ef:67:a6:18:8d:1a:5a:a6:d8:1a:b3:b6:8f:5c: 9b:b8:ca:93:2a:f5:02:ef:89:4f:d0:67:b2:ad:ad: d5:b8:e9:3d:95:13:2f:e1:ba:a5:75:20:55:ff:58: 6d:9d:80:04:ba:0a:93:20:56:b8:68:a1:cd:43:4b: ad:71:4b:df:52:9a:32:c0:10:07:0c:bb:0d:50:9a: 17:6d:8f:d0:66:49:3e:dd:75:9e:f0:81:5d:bc:97: 1d:49:c9:3f:f1:c0:2b:d3:65:4d:52:47:30:ef:86: 18:04:72:1a:83:4e:8d:82:99:35:c4:1b:d6:aa:a8: 1d:32:af:a8:87:7b:e1:a4:5c:2e:2a:14:78:0d:6f: 3e:e2:c4:84:c5:38:7f:52:64:ce:4f:52:fa:99:07: 9e:63:aa:25:65:8b:0c:e8:5d:3c:ed:93:82:7c:74: 0e:c6:0a:26:38:31:fa:59:8d:cf:ad:8f:9a:a0:36: f3:8a:a3:b9:ab:b6:ec:05:53:ba:5e:b3:20:df:c7: f9:d0:ad:92:d2:43:4b:ef:8f:a1:10:4a:56:46:6e: d3:f4:b5:97:bb:e4:9d:44:f2:44:5f:7e:16:53:c9: 67:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:EB:3B:F8:2C:2D:0E:11:ED:E5:99:95:B8:6A:90:6E:E5:48:1D:7E X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:e5:a6:13:05:cf:0e:39:5e:82:46:a0:bb:4a:8a:52:d5:6f: e5:64:20:1e:19:d1:4c:bf:e1:1a:9c:2f:7f:74:f3:47:e0:5d: 04:76:92:73:8e:37:f7:67:66:c9:ad:9a:43:a2:63:fa:d8:8d: 5f:b6:5b:cd:cf:02:26:94:bb:fc:e6:6a:4c:3b:b0:e7:50:1f: 1e:17:1a:e9:32:0b:c6:a8:29:66:5d:7e:62:4e:22:0c:af:4a: 4d:cc:47:da:ca:4a:e3:59:c0:45:04:a0:8e:d7:c1:ea:0f:fa: 0e:6a:63:b0:e1:bf:6f:c0:d3:48:ff:5c:7d:b6:69:28:53:a9: 5c:b2:b6:8b:6d:2a:4a:02:02:1d:21:5d:44:d2:72:3c:c6:ef: e4:33:cf:c7:94:01:08:43:b6:44:57:13:41:63:99:7b:f1:c8: f3:a7:ce:ce:f6:fd:b9:76:34:81:4f:79:91:1e:87:71:0c:f3: 79:b6:11:0a:95:fb:a5:77:67:da:af:85:c6:57:10:a9:74:31: c5:b6:55:70:48:cb:fb:dc:60:25:aa:99:19:d0:bf:24:e4:2c: e5:f3:9f:2f:e9:a5:0d:f6:9d:7b:37:e0:6f:ca:db:66:25:61: f8:df:db:a3:bf:ef:90:ef:b9:9d:2b:e6:b6:7f:91:86:ac:56: da:34:50:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+7sHKexKZFgzkc9khOMaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjE5MDUwMTExWhcNMjUxMjIwMDUwMTExWjAzMTEwLwYDVQQD EyhhY2ViM2JmODJjMmQwZTExZWRlNTk5OTViODZhOTA2ZWU1NDgxZDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA80hw5C/orCHQf/29Lzbs8zuhk6wR uypATTRbATjs72emGI0aWqbYGrO2j1ybuMqTKvUC74lP0Geyra3VuOk9lRMv4bql dSBV/1htnYAEugqTIFa4aKHNQ0utcUvfUpoywBAHDLsNUJoXbY/QZkk+3XWe8IFd vJcdSck/8cAr02VNUkcw74YYBHIag06Ngpk1xBvWqqgdMq+oh3vhpFwuKhR4DW8+ 4sSExTh/UmTOT1L6mQeeY6olZYsM6F087ZOCfHQOxgomODH6WY3PrY+aoDbziqO5 q7bsBVO6XrMg38f50K2S0kNL74+hEEpWRm7T9LWXu+SdRPJEX34WU8lnWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKzrO/gsLQ4R7eWZlbhqkG7lSB1+MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIuWmEwXP Djlegkagu0qKUtVv5WQgHhnRTL/hGpwvf3TzR+BdBHaSc44392dmya2aQ6Jj+tiN X7Zbzc8CJpS7/OZqTDuw51AfHhca6TILxqgpZl1+Yk4iDK9KTcxH2spK41nARQSg jtfB6g/6DmpjsOG/b8DTSP9cfbZpKFOpXLK2i20qSgICHSFdRNJyPMbv5DPPx5QB CEO2RFcTQWOZe/HI86fOzvb9uXY0gU95kR6HcQzzebYRCpX7pXdn2q+FxlcQqXQx xbZVcEjL+9xgJaqZGdC/JOQs5fOfL+mlDfadezfgb8rbZiVh+N/bo7/vkO+5nSvm tn+RhqxW2jRQQw== -----END CERTIFICATE-----Generated at Fri Dec 19 13:07:41 2025 by rpki-client