This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json) Hash identifier: us0495wAgY6f/k2e+Xmz24b/VGuPIJ+y/Agkzcb2ok4= Subject key identifier: 0B:79:B1:7C:91:0D:A5:58:EC:09:CF:77:CF:C7:26:B3:38:5A:33:3D Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff Certificate serial: 019B2FD570A3DA0B2BB53AA83E32AF33BA54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft Manifest number: 0E63 Signing time: Thu 18 Dec 2025 05:01:15 +0000 Manifest this update: Thu 18 Dec 2025 05:01:15 +0000 Manifest next update: Fri 19 Dec 2025 05:01:15 +0000 Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: GOtw3/Mth94/YPJZlFdveoZtve9tO1/JPPlKhXMA30g=) 2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:70:a3:da:0b:2b:b5:3a:a8:3e:32:af:33:ba:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff Validity Not Before: Dec 18 05:01:15 2025 GMT Not After : Dec 19 05:01:15 2025 GMT Subject: CN=0b79b17c910da558ec09cf77cfc726b3385a333d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f1:3a:b7:ae:37:5f:8e:27:d7:26:3e:70:34: d1:3d:b2:34:04:a4:8d:63:2b:a3:1d:7a:4c:6a:e4: 98:4a:f4:98:94:24:8c:f1:97:0c:fb:fd:4d:5e:97: cc:f0:5b:08:40:80:63:23:64:d1:b4:bf:57:4d:19: f4:ab:07:eb:3d:16:e0:49:05:3a:a4:e9:8d:1a:c3: 09:aa:36:94:61:1d:ff:a4:43:08:9f:7f:56:18:c2: c4:0b:80:7c:6d:79:a4:06:e0:de:17:33:43:63:28: 42:23:04:77:19:11:0e:94:62:a3:14:70:bb:d4:4b: 9e:e9:75:a9:60:35:8b:93:e3:4e:54:5e:9a:fa:8d: 63:ec:d9:6d:26:26:ca:08:30:9b:ef:1c:3c:96:97: 5a:ed:5d:d5:01:7d:89:77:73:fc:50:96:9d:80:8c: ef:61:c5:24:83:6d:c2:66:c7:3c:63:e2:14:5e:65: 35:d9:a1:48:65:91:ad:ba:58:9e:09:5a:7b:a3:d7: 3b:cb:aa:9a:bb:cf:05:c6:ea:66:d0:1f:d7:a8:91: b7:17:ec:16:59:10:99:66:71:50:2e:fc:f6:50:fc: b6:ef:89:a4:d7:a4:c2:ec:72:55:88:26:b7:07:2d: 31:ef:cd:35:f2:f4:61:5f:9f:80:21:00:03:00:ec: 4b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:79:B1:7C:91:0D:A5:58:EC:09:CF:77:CF:C7:26:B3:38:5A:33:3D X509v3 Authority Key Identifier: keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:c0:6e:65:9f:4d:5c:a3:df:bd:6f:56:0f:53:15:01:2e:7b: e1:0f:e3:ec:56:bc:e0:f2:55:00:ad:22:81:09:b3:86:f3:b9: 69:89:f0:9c:40:80:e6:24:72:8f:cb:73:bb:39:c5:b3:19:b4: fe:a9:cb:04:c4:25:96:37:87:4a:b2:0c:02:aa:17:45:ea:09: 93:5c:e6:ca:3a:57:01:59:b3:ff:62:c2:fd:21:49:b8:ee:5b: 13:01:43:93:44:6d:5c:3d:23:97:4d:09:ed:70:7e:3d:ad:f4: 4b:45:ff:1a:33:f4:92:aa:d4:64:0c:d4:25:74:a5:92:b7:a1: c3:c0:50:8c:2e:65:39:7f:ae:7e:2d:c5:cd:f5:43:7c:c9:3a: ae:1b:81:5c:cb:5f:a2:ff:8f:86:66:dc:99:ba:28:77:0e:55: d8:55:a8:82:91:70:0f:7a:47:ef:a3:67:b9:87:b7:7a:f5:f7: d6:35:68:4a:e4:3b:8f:7b:fd:28:8a:2f:36:43:9b:3f:d6:52: 57:78:4e:0d:2f:97:b0:1f:16:3a:8e:79:0b:11:db:8f:cc:e1: ef:25:8e:3a:ba:af:a7:e1:b4:5f:05:cd:a6:5a:48:70:af:bc: 67:00:af:5b:76:04:80:39:96:33:fa:1f:12:b4:a5:ee:21:ec: 48:01:25:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1XCj2gsrtTqoPjKvM7pUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk YTdjZmYwHhcNMjUxMjE4MDUwMTE1WhcNMjUxMjE5MDUwMTE1WjAzMTEwLwYDVQQD EygwYjc5YjE3YzkxMGRhNTU4ZWMwOWNmNzdjZmM3MjZiMzM4NWEzMzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPE6t643X44n1yY+cDTRPbI0BKSN YyujHXpMauSYSvSYlCSM8ZcM+/1NXpfM8FsIQIBjI2TRtL9XTRn0qwfrPRbgSQU6 pOmNGsMJqjaUYR3/pEMIn39WGMLEC4B8bXmkBuDeFzNDYyhCIwR3GREOlGKjFHC7 1Eue6XWpYDWLk+NOVF6a+o1j7NltJibKCDCb7xw8lpda7V3VAX2Jd3P8UJadgIzv YcUkg23CZsc8Y+IUXmU12aFIZZGtulieCVp7o9c7y6qau88Fxupm0B/XqJG3F+wW WRCZZnFQLvz2UPy274mk16TC7HJViCa3By0x78018vRhX5+AIQADAOxLpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAt5sXyRDaVY7AnPd8/HJrM4WjM9MB8GA1UdIwQY MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1 LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoMBuZZ9N XKPfvW9WD1MVAS574Q/j7Fa84PJVAK0igQmzhvO5aYnwnECA5iRyj8tzuznFsxm0 /qnLBMQlljeHSrIMAqoXReoJk1zmyjpXAVmz/2LC/SFJuO5bEwFDk0RtXD0jl00J 7XB+Pa30S0X/GjP0kqrUZAzUJXSlkrehw8BQjC5lOX+ufi3FzfVDfMk6rhuBXMtf ov+Phmbcmboodw5V2FWogpFwD3pH76NnuYe3evX31jVoSuQ7j3v9KIovNkObP9ZS V3hODS+XsB8WOo55CxHbj8zh7yWOOrqvp+G0XwXNplpIcK+8ZwCvW3YEgDmWM/of ErSl7iHsSAElLQ== -----END CERTIFICATE-----Generated at Thu Dec 18 09:29:37 2025 by rpki-client