This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json) Hash identifier: F+0DGwtOOmCzF4NPSXZQOSf+UTtwgTNWfTzdcq01LOc= Subject key identifier: 97:AE:27:16:1E:B6:5C:97:DF:B6:00:96:47:C6:94:54:F3:E9:A5:1C Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5 Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5 Certificate serial: 019B0F0077CE92818A640CD91CB98676439E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft Manifest number: 0E56 Signing time: Thu 11 Dec 2025 20:00:47 +0000 Manifest this update: Thu 11 Dec 2025 20:00:47 +0000 Manifest next update: Fri 12 Dec 2025 20:00:47 +0000 Files and hashes: 1: 4f1jI7-qAw-Fm-OtnESqUBoebm0.roa (hash: Yj15262IImuG/zvO4RGd+KynWz9BG4CJpl9H3lrssA0=) 2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: sCZqUtLkgo3pQVCl8vcm847LPO05f930eZTMkEvZGrE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:77:ce:92:81:8a:64:0c:d9:1c:b9:86:76:43:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5 Validity Not Before: Dec 11 20:00:47 2025 GMT Not After : Dec 12 20:00:47 2025 GMT Subject: CN=97ae27161eb65c97dfb6009647c69454f3e9a51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:54:29:3a:df:65:44:85:cd:7e:38:e7:15:14: dd:94:3a:a9:cb:1b:d2:e1:b3:10:ea:5c:35:b4:76: 6d:74:59:61:f9:30:95:2c:b8:98:e8:46:5b:1f:f1: 8f:02:09:d1:51:80:1e:a8:81:f0:5f:32:fc:a0:44: 43:66:da:84:77:52:ef:b8:ee:75:96:32:fd:b0:17: 7a:d6:d0:23:34:fb:dc:5f:0d:3b:63:8c:41:72:e7: c8:6f:f9:4f:c9:ea:8b:25:9b:55:0b:22:c8:ff:82: 69:cf:ec:71:6e:0e:89:c3:a0:0e:a9:71:8d:ca:9a: 47:0c:d2:6b:95:f7:88:43:9a:31:23:4c:da:dd:f9: 6b:37:08:6a:50:49:27:f5:b3:49:27:a0:e2:a6:47: cd:c6:58:1f:b8:ae:a3:46:6f:b7:74:7b:4c:10:8f: 17:65:33:40:7c:45:58:53:2d:e7:22:dd:0d:59:cf: b0:b4:8a:15:88:37:a1:19:67:71:f2:79:80:eb:73: d6:c0:8f:7b:e3:95:bc:3c:35:2e:c3:9f:73:75:54: 71:2e:45:4a:0f:b6:fc:eb:af:7e:d3:6d:fc:ab:ba: 79:35:81:18:31:cc:aa:c9:83:30:d1:17:6c:1f:cd: 2f:ed:98:43:2e:2e:08:4c:74:d4:5a:0b:21:64:70: 2e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AE:27:16:1E:B6:5C:97:DF:B6:00:96:47:C6:94:54:F3:E9:A5:1C X509v3 Authority Key Identifier: keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:13:14:b9:b7:fe:c7:87:f0:70:1d:37:e5:9d:db:d5:76:61: 5a:ac:9e:83:e9:69:b7:c6:ef:3c:df:44:ab:7f:ec:24:6f:1b: 22:be:9b:eb:aa:06:9b:28:31:4a:e9:13:fd:1d:c9:b2:53:e7: 81:49:65:19:66:da:73:ca:a5:5e:ab:6a:ab:79:7a:f6:22:71: 7d:ed:c7:ba:49:63:38:22:bf:8d:b2:dc:84:44:df:a9:52:46: bd:52:a2:57:f6:3d:37:bd:08:9d:54:7c:7e:e8:1c:ac:01:0a: 97:43:f5:18:26:6c:e2:3d:5f:61:5d:55:15:6e:cc:a1:09:83: 04:46:e2:28:0c:36:c6:4c:98:99:ab:b9:68:0d:0c:38:8f:88: a6:0f:3b:5d:7c:6a:ce:e5:ce:9a:4d:58:dd:14:2d:54:d4:d8: e6:05:ff:0e:1f:0a:2c:3d:71:bf:b2:5f:3c:47:93:01:1c:73: 9a:cc:8d:36:df:b7:25:ff:cd:2b:16:1e:b2:12:8e:0c:1d:43: 26:b6:69:cd:5f:74:cb:0c:d9:b1:1e:d1:50:d8:32:3a:36:81: 92:42:a6:71:60:3b:bd:5c:9b:50:d8:21:68:1a:7b:f1:61:8e: e6:f6:ab:59:f7:a2:a5:56:90:ef:f7:f5:df:d2:26:e7:18:65: 44:b2:87:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAHfOkoGKZAzZHLmGdkOeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkYmUzMWI2YmVkYzUxZjJhYTJlYzBhNjQ1M2YyZTQzNWU4 MDhmYjUwHhcNMjUxMjExMjAwMDQ3WhcNMjUxMjEyMjAwMDQ3WjAzMTEwLwYDVQQD Eyg5N2FlMjcxNjFlYjY1Yzk3ZGZiNjAwOTY0N2M2OTQ1NGYzZTlhNTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lQpOt9lRIXNfjjnFRTdlDqpyxvS 4bMQ6lw1tHZtdFlh+TCVLLiY6EZbH/GPAgnRUYAeqIHwXzL8oERDZtqEd1LvuO51 ljL9sBd61tAjNPvcXw07Y4xBcufIb/lPyeqLJZtVCyLI/4Jpz+xxbg6Jw6AOqXGN yppHDNJrlfeIQ5oxI0za3flrNwhqUEkn9bNJJ6DipkfNxlgfuK6jRm+3dHtMEI8X ZTNAfEVYUy3nIt0NWc+wtIoViDehGWdx8nmA63PWwI9745W8PDUuw59zdVRxLkVK D7b8669+0238q7p5NYEYMcyqyYMw0RdsH80v7ZhDLi4ITHTUWgshZHAuxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJeuJxYetlyX37YAlkfGlFTz6aUcMB8GA1UdIwQY MBaAFE2+Mba+3FHyqi7ApkU/LkNegI+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAt ZmJkNDZkOWNhMzcyLzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAtZmJkNDZkOWNhMzcy LzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFhMUubf+ x4fwcB035Z3b1XZhWqyeg+lpt8bvPN9Eq3/sJG8bIr6b66oGmygxSukT/R3JslPn gUllGWbac8qlXqtqq3l69iJxfe3HukljOCK/jbLchETfqVJGvVKiV/Y9N70InVR8 fugcrAEKl0P1GCZs4j1fYV1VFW7MoQmDBEbiKAw2xkyYmau5aA0MOI+Ipg87XXxq zuXOmk1Y3RQtVNTY5gX/Dh8KLD1xv7JfPEeTARxzmsyNNt+3Jf/NKxYeshKODB1D JrZpzV90ywzZsR7RUNgyOjaBkkKmcWA7vVybUNghaBp78WGO5varWfeipVaQ7/f1 39Im5xhlRLKH+A== -----END CERTIFICATE-----Generated at Fri Dec 12 00:28:20 2025 by rpki-client