This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft File: TNkIkaeTL3NWqAMznaDM32OtLTU.mft (raw, json) Hash identifier: reaNQ1s1DF1goeNljvfADlvnG/G4ucIzm3W9DzD/OsE= Subject key identifier: 1E:7E:F5:93:55:C3:0A:4C:2D:40:E8:5A:00:81:07:4C:7D:67:2F:1B Authority key identifier: 4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35 Certificate issuer: /CN=4cd90891a7932f7356a803339da0ccdf63ad2d35 Certificate serial: 019B10EEFEAB4ED2EACD47B82697A8977E48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft Manifest number: 025C Signing time: Fri 12 Dec 2025 05:00:56 +0000 Manifest this update: Fri 12 Dec 2025 05:00:56 +0000 Manifest next update: Sat 13 Dec 2025 05:00:56 +0000 Files and hashes: 1: GPp0CA4dJEmXPt3FvKOuB6Y1Ajo.roa (hash: /WVZb52tGGnvS1Lpmu++5VCxojp2nMgaocCDFVDfPQY=) 2: TNkIkaeTL3NWqAMznaDM32OtLTU.crl (hash: MgLqpPoo5TT7BzyjI/Y8gZIRtPCR6awW9e+LyTb3i5A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 05:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:ee:fe:ab:4e:d2:ea:cd:47:b8:26:97:a8:97:7e:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cd90891a7932f7356a803339da0ccdf63ad2d35 Validity Not Before: Dec 12 05:00:56 2025 GMT Not After : Dec 13 05:00:56 2025 GMT Subject: CN=1e7ef59355c30a4c2d40e85a0081074c7d672f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:72:77:b3:e6:c9:2f:1d:03:d6:3a:6e:39:4f: c5:e8:8f:f8:cf:77:18:52:2b:26:d1:f9:60:1b:e8: 33:ad:d0:80:ab:60:68:e5:b8:b9:b3:a9:03:2f:b8: f5:6e:a6:e4:1a:d2:ab:40:85:99:0a:7f:d9:d4:fd: c3:d0:c1:84:62:8c:bf:bc:9e:e8:15:af:3d:80:47: 26:27:3c:4b:06:e4:1c:74:c8:d9:42:54:f8:04:40: d3:0f:7e:be:fa:ff:7f:50:13:48:6b:4b:91:f6:0c: 2f:70:83:dc:60:24:d4:b5:0a:ca:38:c9:2b:71:cb: fd:27:b5:75:d6:ab:fa:fb:37:69:ea:d8:e8:dd:0b: 19:ae:f2:2c:30:ca:47:54:46:4f:21:aa:43:b0:9f: 5f:de:0f:e0:c9:5c:a7:0d:fd:25:eb:17:54:85:c2: fc:1a:cc:e4:92:95:20:2b:e9:13:80:ff:9c:71:8e: ed:2e:3a:a4:1b:67:53:6c:14:91:42:0a:73:f3:c3: a1:4f:bf:eb:4c:3e:91:d9:06:e8:bd:44:a9:87:5e: 4d:2f:20:f9:01:38:d6:ce:3d:00:93:b9:f0:49:61: 3a:b2:08:04:5f:d5:af:2b:5f:e6:a2:9c:09:b3:cd: a3:5a:8f:21:49:81:92:98:37:02:ef:d9:0e:35:ac: 23:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7E:F5:93:55:C3:0A:4C:2D:40:E8:5A:00:81:07:4C:7D:67:2F:1B X509v3 Authority Key Identifier: keyid:4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:7e:91:7e:d6:63:32:c6:77:20:bb:19:8d:ba:ae:76:9b:10: d7:c1:37:c3:f1:ab:62:be:bf:e4:7d:eb:78:13:87:8b:8c:b0: 3e:02:e8:7f:e0:23:14:7a:b1:ec:ca:fd:b1:5f:32:8a:9e:a3: a8:67:f0:05:c5:b2:9b:45:b0:eb:04:12:93:96:49:cc:90:95: 9a:af:42:86:93:08:b8:51:dc:ba:9a:2e:d1:8c:a8:86:0f:c9: a5:2f:b4:68:50:39:50:97:83:0e:6a:c2:56:6e:cc:31:1b:74: 3e:10:00:e9:9d:56:b7:be:c1:ad:6a:d1:3e:e3:ac:dd:37:4b: 1d:1c:8b:81:4e:bd:11:f5:38:2f:ab:9a:b6:d3:10:30:5d:eb: fc:a2:e8:ce:a3:89:da:3d:d3:94:87:e3:6a:68:18:c2:bf:d8: 33:f2:66:e7:81:8b:52:b4:e8:1d:c1:53:14:d7:67:7f:2d:65: cb:56:1b:7c:a8:21:b8:ae:32:dd:58:b0:25:be:d4:2d:10:44: 39:0c:f2:ec:ff:f4:43:33:3b:ea:d4:0b:d9:72:c9:db:86:3b: ae:f0:3d:ed:e6:ab:50:b8:87:aa:83:ba:7e:05:77:75:85:6f: 88:74:ac:6e:fd:8e:7b:94:4f:26:4c:82:98:07:b7:88:f6:a3: 03:24:30:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQ7v6rTtLqzUe4Jpeol35IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZDkwODkxYTc5MzJmNzM1NmE4MDMzMzlkYTBjY2RmNjNh ZDJkMzUwHhcNMjUxMjEyMDUwMDU2WhcNMjUxMjEzMDUwMDU2WjAzMTEwLwYDVQQD EygxZTdlZjU5MzU1YzMwYTRjMmQ0MGU4NWEwMDgxMDc0YzdkNjcyZjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA53J3s+bJLx0D1jpuOU/F6I/4z3cY Uism0flgG+gzrdCAq2Bo5bi5s6kDL7j1bqbkGtKrQIWZCn/Z1P3D0MGEYoy/vJ7o Fa89gEcmJzxLBuQcdMjZQlT4BEDTD36++v9/UBNIa0uR9gwvcIPcYCTUtQrKOMkr ccv9J7V11qv6+zdp6tjo3QsZrvIsMMpHVEZPIapDsJ9f3g/gyVynDf0l6xdUhcL8 GszkkpUgK+kTgP+ccY7tLjqkG2dTbBSRQgpz88OhT7/rTD6R2QbovUSph15NLyD5 ATjWzj0Ak7nwSWE6sggEX9WvK1/mopwJs82jWo8hSYGSmDcC79kONawjPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5+9ZNVwwpMLUDoWgCBB0x9Zy8bMB8GA1UdIwQY MBaAFEzZCJGnky9zVqgDM52gzN9jrS01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE5rSWthZVRMM05XcUFNem5hRE0zMk90TFRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS82YTkzNzgtMmZhNy00ODJkLThjN2Mt NjljYTRjYjY1Zjk3LzEvVE5rSWthZVRMM05XcUFNem5hRE0zMk90TFRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS82YTkzNzgtMmZhNy00ODJkLThjN2MtNjljYTRjYjY1Zjk3 LzEvVE5rSWthZVRMM05XcUFNem5hRE0zMk90TFRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD36RftZj MsZ3ILsZjbqudpsQ18E3w/GrYr6/5H3reBOHi4ywPgLof+AjFHqx7Mr9sV8yip6j qGfwBcWym0Ww6wQSk5ZJzJCVmq9ChpMIuFHcupou0Yyohg/JpS+0aFA5UJeDDmrC Vm7MMRt0PhAA6Z1Wt77BrWrRPuOs3TdLHRyLgU69EfU4L6uattMQMF3r/KLozqOJ 2j3TlIfjamgYwr/YM/Jm54GLUrToHcFTFNdnfy1ly1YbfKghuK4y3ViwJb7ULRBE OQzy7P/0QzM76tQL2XLJ24Y7rvA97earULiHqoO6fgV3dYVviHSsbv2Oe5RPJkyC mAe3iPajAyQwuA== -----END CERTIFICATE-----Generated at Fri Dec 12 13:20:30 2025 by rpki-client