This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json) Hash identifier: rL8bOr01LKPxChNsHQWNOnLJF0RJQRrt7beDLPJAvJ0= Subject key identifier: AD:BF:20:B0:DC:8D:DF:B1:5C:15:67:DA:E3:4E:22:DA:AB:1C:AF:62 Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9 Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9 Certificate serial: 019B1238575532EFC3A89A0A2D734977DED3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft Manifest number: 17D2 Signing time: Fri 12 Dec 2025 11:00:40 +0000 Manifest this update: Fri 12 Dec 2025 11:00:40 +0000 Manifest next update: Sat 13 Dec 2025 11:00:40 +0000 Files and hashes: 1: O9nHfOl2QVEFkw8z5PZAG-bDmQE.roa (hash: CmUudjBRBoLhGNB6o4EaSfh+UkgJVlz+52jeWbtrV5A=) 2: SzyIBUJURbOXMTDJ4Z_haTgvNpI.roa (hash: wJIDwOiFxDwrE3GURrkhai8iWOYh1f3lI6qeGAaNPyc=) 3: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: 9V3ZzNDL5UsVeeNWo00w1PCI8s7gGPTPd72cmeDmWO8=) 4: UVW-IEFCCq7ahpPdj9WY7Kn8QqE.roa (hash: MZl++GgZA3uWjf7S8QTsOZZtzVITuzAAAAPegKRXupI=) 5: VIrZrIPn5JgwIWuerakwG37U7jA.roa (hash: +9EBlzR1H7BphSJTPeOlUDa4YDh16MokR5NsBCSFTMs=) 6: dQ4y2x688XsG8rEL7o8Sp4uIl8M.roa (hash: LuvxH8ju8nmShoj6OHN3o8s0V6hBxEddqrv3+BFDAgQ=) 7: gQDaBeXH0szJXrJTEvqe4lIGCV4.roa (hash: fhlImZ1nrh4i7H6LIP2R5ZbAmjbxd5MHcou/l4C25qU=) 8: lPoIPYo1ITlq-R71JXKfxiC_US0.roa (hash: 1ODRbC1wRix1ieOTK6Ku3fYNq0UfGPEvF5Esjd3aqDM=) 9: luug-CwXmvS54qQ88cgMGt-f5zU.roa (hash: HAfj14rHhfvfAv/i1MqUIJYZwmFczeoc01ZA/poLVk8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:38:57:55:32:ef:c3:a8:9a:0a:2d:73:49:77:de:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9 Validity Not Before: Dec 12 11:00:40 2025 GMT Not After : Dec 13 11:00:40 2025 GMT Subject: CN=adbf20b0dc8ddfb15c1567dae34e22daab1caf62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8b:43:62:4c:24:b5:fd:21:69:b3:03:97:e1: 4a:21:c3:06:49:6a:b1:a1:1d:d8:06:23:f1:dd:54: ec:dc:af:cf:c6:19:da:f8:b4:1d:79:35:6f:10:52: a9:21:17:c8:37:81:5d:1d:6e:6c:4f:7e:5e:db:a1: 1a:18:84:2c:dc:6e:63:16:b7:5c:54:e4:34:4a:2d: a0:36:a4:4e:bc:02:15:84:c9:5e:36:ca:af:c7:73: 10:3a:82:d5:15:61:67:c0:1c:4c:da:c0:ef:fa:99: cd:6e:d5:c7:9d:ba:3c:64:c9:b3:83:9a:a5:0d:6a: 58:72:8d:81:72:36:e4:79:10:13:7b:7c:d7:f6:ce: e9:63:e2:c8:ab:df:b7:27:a8:3c:2f:b2:e5:1f:72: ee:92:cf:1a:4b:0b:1a:11:b0:8c:f3:26:b6:de:d6: af:77:a3:a2:03:96:72:c4:53:48:e9:42:5e:68:01: 85:f8:68:a1:24:86:eb:e2:75:df:ec:91:c8:f8:de: 77:62:6a:c2:52:51:20:35:05:2e:8c:56:13:f9:93: df:9a:fe:d3:a8:3d:ff:d0:6a:c9:3b:42:4b:67:46: 71:95:9e:52:40:c0:92:9d:94:85:64:a2:2e:0f:90: 68:28:65:77:81:00:75:76:aa:26:f8:2e:58:8f:8f: 24:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BF:20:B0:DC:8D:DF:B1:5C:15:67:DA:E3:4E:22:DA:AB:1C:AF:62 X509v3 Authority Key Identifier: keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:f5:d4:d9:4e:fc:ba:6b:54:da:c5:29:25:e8:a3:c8:77:87: ac:6e:5e:76:b1:f4:5d:03:6a:52:71:99:b7:57:74:a6:b6:2a: 36:ce:e2:a1:dd:f9:8e:75:02:6a:9b:5a:2b:17:f8:ce:a0:dd: d6:3e:b9:8c:68:91:84:18:15:c4:69:9e:d8:37:5b:16:11:f7: 08:ea:d8:ea:49:88:94:d3:ae:21:0c:7d:f2:04:96:33:aa:42: 4d:f1:e8:ee:0a:f6:0f:8c:23:54:b0:d5:cd:4f:86:1d:68:68: 69:37:53:dd:5f:4c:e9:57:90:cf:59:3d:1d:9f:74:08:b8:28: 0d:17:62:1a:18:b3:e5:e2:4b:8b:a5:c4:3c:90:b5:3c:f3:bd: a2:43:9e:47:21:86:cf:0a:53:21:77:f8:28:64:e3:83:ad:b8: dd:42:c9:a0:f4:65:cb:ec:19:67:6f:47:fc:64:f3:be:42:51: 79:6c:b1:51:61:49:d3:aa:f6:da:9c:71:6a:63:ef:68:aa:1d: e1:30:db:0f:df:d5:e6:ca:19:54:10:22:ea:6b:e1:49:3f:ad: 80:8c:7b:f4:ce:7b:ec:f9:84:b1:b4:ea:49:e7:2f:9d:e9:1a: e8:24:e3:15:d3:26:57:53:33:7f:97:da:c2:a8:7c:59:c3:48: 6d:e4:3a:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSOFdVMu/DqJoKLXNJd97TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjMzdmMjdlYjQ5OTdiM2JlZjlmMjgyNjZhMzk2OTQwNTBm ZTc0ZjkwHhcNMjUxMjEyMTEwMDQwWhcNMjUxMjEzMTEwMDQwWjAzMTEwLwYDVQQD EyhhZGJmMjBiMGRjOGRkZmIxNWMxNTY3ZGFlMzRlMjJkYWFiMWNhZjYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsItDYkwktf0habMDl+FKIcMGSWqx oR3YBiPx3VTs3K/Pxhna+LQdeTVvEFKpIRfIN4FdHW5sT35e26EaGIQs3G5jFrdc VOQ0Si2gNqROvAIVhMleNsqvx3MQOoLVFWFnwBxM2sDv+pnNbtXHnbo8ZMmzg5ql DWpYco2BcjbkeRATe3zX9s7pY+LIq9+3J6g8L7LlH3Luks8aSwsaEbCM8ya23tav d6OiA5ZyxFNI6UJeaAGF+GihJIbr4nXf7JHI+N53YmrCUlEgNQUujFYT+ZPfmv7T qD3/0GrJO0JLZ0ZxlZ5SQMCSnZSFZKIuD5BoKGV3gQB1dqom+C5Yj48kaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK2/ILDcjd+xXBVn2uNOItqrHK9iMB8GA1UdIwQY MBaAFEw38n60mXs7758oJmo5aUBQ/nT5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEt ZWI1YTYyN2U3NmEzLzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEtZWI1YTYyN2U3NmEz LzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUfXU2U78 umtU2sUpJeijyHeHrG5edrH0XQNqUnGZt1d0prYqNs7iod35jnUCaptaKxf4zqDd 1j65jGiRhBgVxGme2DdbFhH3COrY6kmIlNOuIQx98gSWM6pCTfHo7gr2D4wjVLDV zU+GHWhoaTdT3V9M6VeQz1k9HZ90CLgoDRdiGhiz5eJLi6XEPJC1PPO9okOeRyGG zwpTIXf4KGTjg6243ULJoPRly+wZZ29H/GTzvkJReWyxUWFJ06r22pxxamPvaKod 4TDbD9/V5soZVBAi6mvhST+tgIx79M577PmEsbTqSecvneka6CTjFdMmV1Mzf5fa wqh8WcNIbeQ65A== -----END CERTIFICATE-----Generated at Fri Dec 12 19:06:30 2025 by rpki-client