This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft File: tUcxKN5Ul222LZvRYU53xD3uObU.mft (raw, json) Hash identifier: gJd3JYefdHseTsrsXad9+v5WJMFdwMCWaJP4YpnA3c4= Subject key identifier: 19:B2:84:B5:04:D7:72:92:3B:80:CE:13:27:BC:57:43:C4:5F:2A:15 Authority key identifier: B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5 Certificate issuer: /CN=b5473128de54976db62d9bd1614e77c43dee39b5 Certificate serial: 019B35322C0088CAF0E2FB9D57E2E2175717 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft Manifest number: 145C Signing time: Fri 19 Dec 2025 06:00:38 +0000 Manifest this update: Fri 19 Dec 2025 06:00:38 +0000 Manifest next update: Sat 20 Dec 2025 06:00:38 +0000 Files and hashes: 1: TmvOzGWnmK2lk0JBtr2hwCa8AyI.asa (hash: jT3uzkFsF2IKke7bmyYM9JWOSf+ukPwuY/SlyIWkCoE=) 2: WT51Xxp6wSpnMPjyEAyyUhxOXPk.roa (hash: GG3W3sv/8g51OizpERxg8YmbMm76mWXeFGoFM/wpQ9M=) 3: tUcxKN5Ul222LZvRYU53xD3uObU.crl (hash: 7zoDl7/JtfL7UK8P7SxnagQ9ksyH8AGcjotLWKXdZ1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:2c:00:88:ca:f0:e2:fb:9d:57:e2:e2:17:57:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5473128de54976db62d9bd1614e77c43dee39b5 Validity Not Before: Dec 19 06:00:38 2025 GMT Not After : Dec 20 06:00:38 2025 GMT Subject: CN=19b284b504d772923b80ce1327bc5743c45f2a15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c3:c8:01:c9:2b:3a:e1:71:ee:e8:7b:90:81: b9:17:88:e9:a0:8d:c6:fe:2f:54:54:ff:79:c3:0b: a7:04:76:ef:7f:c8:78:56:ae:f2:97:2e:18:7c:d2: 95:6a:76:9d:70:f2:90:aa:c3:cd:9d:ca:e9:54:2c: b1:d2:ad:a5:38:33:ed:0c:52:ec:68:09:8f:32:fb: 50:e7:0b:bd:6b:dc:f3:3d:6a:31:c7:7d:9f:96:b5: 1f:8e:ec:07:a4:98:11:67:97:d5:f1:88:04:fc:a2: bb:97:f6:3e:97:be:8a:0b:31:6c:e0:aa:d7:d0:56: 06:26:7f:c8:37:f5:11:4d:df:7a:cd:bb:5e:7b:38: 07:12:68:87:ec:d6:eb:f8:fb:ff:95:ef:f7:f2:8d: 9a:c4:5f:f7:6c:d4:c2:97:58:2d:a9:92:c4:2f:bb: 53:f0:d5:8e:62:a0:94:d5:67:30:bc:d0:f4:4b:40: ce:e1:98:d4:89:ad:64:22:3c:63:9c:28:2e:79:67: ca:3c:ae:15:bc:c5:c6:f8:9b:eb:b7:28:65:72:71: 68:5a:14:a2:de:c1:68:ee:87:6e:48:b8:14:92:71: 46:dc:3e:df:f2:4f:24:ff:80:93:32:f1:9d:95:ad: 94:d9:d1:08:c2:44:e2:cb:f6:e6:30:e2:dc:9c:e0: 72:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B2:84:B5:04:D7:72:92:3B:80:CE:13:27:BC:57:43:C4:5F:2A:15 X509v3 Authority Key Identifier: keyid:B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:32:77:e9:b2:a0:7e:2a:e9:ab:77:cf:f7:81:88:25:19:62: 72:65:11:3b:f4:8f:f0:fb:10:a1:4e:eb:5f:95:19:94:89:9e: 9f:61:7a:b4:f9:81:8b:f4:05:9c:e2:52:a6:17:25:7a:c5:53: e0:f7:3c:ac:c5:c5:aa:1a:2d:63:de:9e:be:b4:83:79:35:4c: 03:e6:62:d9:a0:8c:2f:05:a6:8b:fc:6e:77:5d:78:15:8b:4a: 20:2e:28:8f:1b:15:73:f8:56:be:09:41:21:c5:05:fd:97:c3: e9:e5:69:24:27:98:e2:5b:2f:60:e5:55:67:16:e8:d2:b9:db: 3d:ea:ba:04:2b:9d:13:e3:3d:e1:39:d6:06:4d:75:35:fc:0e: 14:c0:b0:58:77:f0:9a:49:13:5b:e4:b9:80:0a:ba:75:a9:2e: 03:03:f2:67:54:3d:37:e9:15:ed:d1:b9:e2:a3:60:5f:2c:95: 31:00:04:46:c9:5c:83:4b:cd:fa:6c:6d:22:f7:41:50:29:e6: 03:b0:02:c1:6b:b8:c5:23:0b:8b:e4:fd:20:99:98:1a:28:a9: fb:df:78:94:97:87:d0:d5:19:06:3b:9a:ba:ab:61:f4:32:16: 6a:df:59:c0:d4:1f:66:68:4e:58:52:22:6f:97:ad:87:a5:c3: ad:0f:52:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MiwAiMrw4vudV+LiF1cXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDczMTI4ZGU1NDk3NmRiNjJkOWJkMTYxNGU3N2M0M2Rl ZTM5YjUwHhcNMjUxMjE5MDYwMDM4WhcNMjUxMjIwMDYwMDM4WjAzMTEwLwYDVQQD EygxOWIyODRiNTA0ZDc3MjkyM2I4MGNlMTMyN2JjNTc0M2M0NWYyYTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5MPIAckrOuFx7uh7kIG5F4jpoI3G /i9UVP95wwunBHbvf8h4Vq7yly4YfNKVanadcPKQqsPNncrpVCyx0q2lODPtDFLs aAmPMvtQ5wu9a9zzPWoxx32flrUfjuwHpJgRZ5fV8YgE/KK7l/Y+l76KCzFs4KrX 0FYGJn/IN/URTd96zbteezgHEmiH7Nbr+Pv/le/38o2axF/3bNTCl1gtqZLEL7tT 8NWOYqCU1WcwvND0S0DO4ZjUia1kIjxjnCgueWfKPK4VvMXG+JvrtyhlcnFoWhSi 3sFo7oduSLgUknFG3D7f8k8k/4CTMvGdla2U2dEIwkTiy/bmMOLcnOBygQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmyhLUE13KSO4DOEye8V0PEXyoVMB8GA1UdIwQY MBaAFLVHMSjeVJdtti2b0WFOd8Q97jm1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVjeEtONVVsMjIyTFp2UllVNTN4RDN1T2JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83MGRlODAtNTBlOS00YzFkLWE3YjQt ZTkwNDMxODM0MmVlLzEvdFVjeEtONVVsMjIyTFp2UllVNTN4RDN1T2JVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC83MGRlODAtNTBlOS00YzFkLWE3YjQtZTkwNDMxODM0MmVl LzEvdFVjeEtONVVsMjIyTFp2UllVNTN4RDN1T2JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEDJ36bKg firpq3fP94GIJRlicmURO/SP8PsQoU7rX5UZlImen2F6tPmBi/QFnOJSphclesVT 4Pc8rMXFqhotY96evrSDeTVMA+Zi2aCMLwWmi/xud114FYtKIC4ojxsVc/hWvglB IcUF/ZfD6eVpJCeY4lsvYOVVZxbo0rnbPeq6BCudE+M94TnWBk11NfwOFMCwWHfw mkkTW+S5gAq6dakuAwPyZ1Q9N+kV7dG54qNgXyyVMQAERslcg0vN+mxtIvdBUCnm A7ACwWu4xSMLi+T9IJmYGiip+994lJeH0NUZBjuauqth9DIWat9ZwNQfZmhOWFIi b5eth6XDrQ9Sig== -----END CERTIFICATE-----Generated at Fri Dec 19 13:16:52 2025 by rpki-client