This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft File: tKOwBTZrDhDVAulBSQHNhPri3JU.mft (raw, json) Hash identifier: tz2+wQCYzuCDTGLBc9XSNdAvjpsRLxhySQc+S2ukqoo= Subject key identifier: C5:B6:97:B3:EC:AF:03:84:03:3C:78:0F:E6:E7:5F:FB:A1:50:44:4B Authority key identifier: B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95 Certificate issuer: /CN=b4a3b005366b0e10d502e9414901cd84fae2dc95 Certificate serial: 019B593EEDA964E029AF6725BD85D18E5729 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft Manifest number: 2B Signing time: Fri 26 Dec 2025 06:00:54 +0000 Manifest this update: Fri 26 Dec 2025 06:00:54 +0000 Manifest next update: Sat 27 Dec 2025 06:00:54 +0000 Files and hashes: 1: aeLq5a8kiXNujRcNnD6lfz80EEM.roa (hash: EyFxSW6yLpfJeNoBTxjBTmV96AGiGIG/MOZ8ivHN2Z4=) 2: tKOwBTZrDhDVAulBSQHNhPri3JU.crl (hash: k9GBhaMM9D2USY7aAlopHbDzpwV8QDWUKjQ938rlMWw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:ed:a9:64:e0:29:af:67:25:bd:85:d1:8e:57:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a3b005366b0e10d502e9414901cd84fae2dc95 Validity Not Before: Dec 26 06:00:54 2025 GMT Not After : Dec 27 06:00:54 2025 GMT Subject: CN=c5b697b3ecaf0384033c780fe6e75ffba150444b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5a:8e:51:b2:92:c1:c3:df:f4:44:87:1f:27: c8:38:57:38:74:87:15:ef:ac:72:09:bf:2a:ea:e1: 65:c2:f1:b5:e6:05:f6:ad:a3:f2:30:5b:1f:a9:e0: c5:de:eb:08:7d:09:9c:27:7e:c0:c7:a6:04:38:74: bf:54:c0:eb:2e:e7:08:db:73:43:d3:33:3a:c4:de: 65:e0:d4:b6:d3:48:f4:d3:2f:d3:3c:cb:1f:40:b9: 9b:e8:61:4e:a0:b7:a0:2b:79:3b:a7:c9:d9:bf:81: 93:0a:ae:a0:d1:3d:43:53:d8:b7:a8:c9:95:d9:81: 63:5c:8e:72:cb:44:a3:36:a4:db:12:fc:56:ef:f8: 6e:2b:ca:5f:bf:e4:54:43:1c:8b:9e:0a:9e:ed:46: 9f:2f:b7:77:3c:8f:d6:64:47:59:e0:dc:97:bb:c8: 51:78:3a:09:9a:18:95:72:42:c0:70:79:e9:9a:15: 55:dc:60:06:1c:8c:4c:f2:12:65:08:6d:be:1f:4c: 4b:0e:5e:41:9f:a1:c4:fc:9d:af:3c:6d:5c:e4:61: b7:22:84:92:b1:2f:8b:88:6a:49:ec:16:23:28:f5: 7c:d5:da:a8:4c:14:17:4c:3b:78:1a:63:d7:72:b8: 34:97:d4:7b:69:5f:9d:92:0c:ab:50:a2:7d:e8:32: 29:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B6:97:B3:EC:AF:03:84:03:3C:78:0F:E6:E7:5F:FB:A1:50:44:4B X509v3 Authority Key Identifier: keyid:B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:1a:56:f5:5f:6e:da:7b:fc:e7:89:b0:22:ef:75:3f:b6:80: 0b:1d:b8:db:7c:00:21:03:9d:c9:83:e0:bf:2b:0f:c4:95:ea: e1:be:fb:88:7d:ca:34:60:da:ea:07:fe:e7:cd:7f:1d:b8:3a: 7d:51:ff:4c:da:a3:6a:e2:2d:38:65:55:dd:f5:ae:8d:f4:0e: c3:5d:ff:bb:e8:ab:08:ea:84:86:71:be:02:2f:05:85:44:c4: 01:3d:4b:ce:29:0d:45:74:60:9f:13:09:f7:7a:e0:34:b5:69: e4:5d:a9:40:56:75:58:a0:63:d9:94:f9:3d:f6:ef:9a:f9:ac: 14:12:55:2f:a6:64:8a:8e:c9:fe:54:da:ef:8a:2c:bd:eb:c2: 4f:28:5d:ac:63:5e:56:e1:f8:78:a8:7c:34:2e:89:7c:45:87: 58:ad:94:89:e0:59:a9:f6:14:96:41:40:21:4f:ad:78:a8:44: 27:15:f3:5a:09:39:b0:06:fa:79:ee:4b:ac:a0:56:82:a2:2f: c0:80:80:2e:6f:e2:f3:db:71:5c:54:67:07:b6:2e:ba:ea:48: 50:96:62:8a:3d:07:4e:7f:14:dd:c2:03:ea:cf:c2:03:ef:3e: 8a:d7:c0:58:6d:cf:4b:d2:3f:95:9d:eb:94:a6:2e:bb:80:12: c6:79:43:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPu2pZOApr2clvYXRjlcpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTNiMDA1MzY2YjBlMTBkNTAyZTk0MTQ5MDFjZDg0ZmFl MmRjOTUwHhcNMjUxMjI2MDYwMDU0WhcNMjUxMjI3MDYwMDU0WjAzMTEwLwYDVQQD EyhjNWI2OTdiM2VjYWYwMzg0MDMzYzc4MGZlNmU3NWZmYmExNTA0NDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFqOUbKSwcPf9ESHHyfIOFc4dIcV 76xyCb8q6uFlwvG15gX2raPyMFsfqeDF3usIfQmcJ37Ax6YEOHS/VMDrLucI23ND 0zM6xN5l4NS200j00y/TPMsfQLmb6GFOoLegK3k7p8nZv4GTCq6g0T1DU9i3qMmV 2YFjXI5yy0SjNqTbEvxW7/huK8pfv+RUQxyLngqe7UafL7d3PI/WZEdZ4NyXu8hR eDoJmhiVckLAcHnpmhVV3GAGHIxM8hJlCG2+H0xLDl5Bn6HE/J2vPG1c5GG3IoSS sS+LiGpJ7BYjKPV81dqoTBQXTDt4GmPXcrg0l9R7aV+dkgyrUKJ96DIpMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMW2l7PsrwOEAzx4D+bnX/uhUERLMB8GA1UdIwQY MBaAFLSjsAU2aw4Q1QLpQUkBzYT64tyVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMmJhNzItYTg5Mi00MjZkLWFlYzkt YTE1NzVmOTFmODNiLzEvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9jMmJhNzItYTg5Mi00MjZkLWFlYzktYTE1NzVmOTFmODNi LzEvdEtPd0JUWnJEaERWQXVsQlNRSE5oUHJpM0pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASRpW9V9u 2nv854mwIu91P7aACx2423wAIQOdyYPgvysPxJXq4b77iH3KNGDa6gf+581/Hbg6 fVH/TNqjauItOGVV3fWujfQOw13/u+irCOqEhnG+Ai8FhUTEAT1LzikNRXRgnxMJ 93rgNLVp5F2pQFZ1WKBj2ZT5PfbvmvmsFBJVL6Zkio7J/lTa74osvevCTyhdrGNe VuH4eKh8NC6JfEWHWK2UieBZqfYUlkFAIU+teKhEJxXzWgk5sAb6ee5LrKBWgqIv wICALm/i89txXFRnB7YuuupIUJZiij0HTn8U3cID6s/CA+8+itfAWG3PS9I/lZ3r lKYuu4ASxnlDzw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:36 2025 by rpki-client