This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json) Hash identifier: X/UjMMmsbitmPiNRDPI5kU3/Xo3+s1hTHgk7eaoIJM0= Subject key identifier: AC:B9:5D:B9:A4:18:C1:27:DC:19:D2:01:4A:C0:BF:0F:DC:A0:52:BB Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Certificate serial: 019B5A1A85BC48652F79F6BA8FF870C3C2CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft Manifest number: 1795 Signing time: Fri 26 Dec 2025 10:00:46 +0000 Manifest this update: Fri 26 Dec 2025 10:00:46 +0000 Manifest next update: Sat 27 Dec 2025 10:00:46 +0000 Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=) 2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: XElBSiP2LgNh1x37CPFALQViCCghySif7RFfaYjjtmo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:85:bc:48:65:2f:79:f6:ba:8f:f8:70:c3:c2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Validity Not Before: Dec 26 10:00:46 2025 GMT Not After : Dec 27 10:00:46 2025 GMT Subject: CN=acb95db9a418c127dc19d2014ac0bf0fdca052bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:7b:68:8d:7c:80:67:43:d9:06:fb:a2:14: d4:4a:8e:6d:cc:90:3d:f0:8f:90:ec:12:24:fb:99: 66:ab:c0:43:7e:3f:43:06:f0:e8:6e:63:33:ac:38: 5a:59:6d:85:57:66:69:c0:82:8a:cb:97:48:cf:81: 3f:8e:5d:b7:f8:43:0e:9c:5f:ce:27:2b:9a:40:3a: 3a:2c:01:5e:f1:a7:67:6e:90:76:d8:af:5e:ac:61: c3:ce:eb:49:8c:db:e5:8f:f1:9c:3c:a3:7a:28:93: 20:90:92:62:4f:fc:dd:e2:b6:7d:93:72:b1:52:b9: 1a:83:c7:83:38:b7:22:5b:84:e9:d6:07:bc:4e:a5: 67:9e:b9:73:82:f6:ee:21:c5:c8:57:fb:21:a1:a3: f0:f3:ed:34:06:17:70:e0:66:3b:03:0a:a3:c5:a2: 1c:e0:ee:82:51:91:b5:e7:9d:ae:44:b6:82:7e:b2: f3:a6:94:19:cc:39:4e:95:de:05:cb:a6:71:1a:9b: 0a:f3:08:22:c7:47:96:91:94:4e:8d:6a:81:4f:be: 0e:7c:7d:f6:96:e2:b7:64:c0:86:3a:a1:9d:d4:a3: 88:8c:45:91:30:1b:e6:03:bd:53:02:54:c7:a3:12: 07:b7:06:ee:c7:82:ce:69:40:c6:be:b6:be:62:bf: 7d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B9:5D:B9:A4:18:C1:27:DC:19:D2:01:4A:C0:BF:0F:DC:A0:52:BB X509v3 Authority Key Identifier: keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:d1:77:e1:39:67:5b:64:56:f4:5b:f2:ec:9a:eb:d4:be:16: 8f:62:32:1a:2c:55:40:b3:69:18:00:43:d5:da:0a:d9:12:48: 7c:c2:30:7d:a0:30:98:19:52:ae:27:ce:55:84:d2:b6:4a:79: 9f:ed:55:b1:81:d1:13:dd:3c:a1:34:d9:11:da:f0:e3:b9:3b: 6d:88:71:5f:e0:17:7b:b3:1b:d4:ba:af:f1:16:a8:10:b7:68: 70:db:b6:8c:5f:4e:e2:24:87:29:c2:4b:51:36:27:95:f6:39: 5c:47:05:cc:b3:2c:b8:50:95:26:e4:3c:13:12:13:62:35:5a: 7d:a9:64:aa:e1:71:3b:83:c5:b2:b8:d8:f8:bd:85:44:89:d9: dd:01:a7:c1:99:8b:ce:b2:1d:6d:84:6b:59:47:ad:46:84:dc: ea:d3:a1:a0:a3:f0:ac:2f:eb:45:ee:5c:58:3d:e5:9b:42:f4: 25:59:c8:0f:4f:8e:15:4f:39:c2:f7:03:20:3c:35:3c:90:56: 1b:8b:71:50:68:bf:5c:9c:5a:ca:c4:00:48:12:db:a6:eb:59: 62:eb:80:f3:3f:62:51:a6:c3:27:d2:d2:7a:43:1d:a5:a7:b4: 0f:b5:bd:49:b7:e6:fc:40:83:3e:40:d7:ae:75:38:7a:13:4c: c9:78:13:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGoW8SGUvefa6j/hww8LNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0 Njg4OWEwHhcNMjUxMjI2MTAwMDQ2WhcNMjUxMjI3MTAwMDQ2WjAzMTEwLwYDVQQD EyhhY2I5NWRiOWE0MThjMTI3ZGMxOWQyMDE0YWMwYmYwZmRjYTA1MmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1B7aI18gGdD2Qb7ohTUSo5tzJA9 8I+Q7BIk+5lmq8BDfj9DBvDobmMzrDhaWW2FV2ZpwIKKy5dIz4E/jl23+EMOnF/O JyuaQDo6LAFe8adnbpB22K9erGHDzutJjNvlj/GcPKN6KJMgkJJiT/zd4rZ9k3Kx Urkag8eDOLciW4Tp1ge8TqVnnrlzgvbuIcXIV/shoaPw8+00Bhdw4GY7AwqjxaIc 4O6CUZG1552uRLaCfrLzppQZzDlOld4Fy6ZxGpsK8wgix0eWkZROjWqBT74OfH32 luK3ZMCGOqGd1KOIjEWRMBvmA71TAlTHoxIHtwbux4LOaUDGvra+Yr99OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKy5XbmkGMEn3BnSAUrAvw/coFK7MB8GA1UdIwQY MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5 LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhtF34Tln W2RW9Fvy7Jrr1L4Wj2IyGixVQLNpGABD1doK2RJIfMIwfaAwmBlSrifOVYTStkp5 n+1VsYHRE908oTTZEdrw47k7bYhxX+AXe7Mb1Lqv8RaoELdocNu2jF9O4iSHKcJL UTYnlfY5XEcFzLMsuFCVJuQ8ExITYjVafalkquFxO4PFsrjY+L2FRInZ3QGnwZmL zrIdbYRrWUetRoTc6tOhoKPwrC/rRe5cWD3lm0L0JVnID0+OFU85wvcDIDw1PJBW G4txUGi/XJxaysQASBLbputZYuuA8z9iUabDJ9LSekMdpae0D7W9Sbfm/ECDPkDX rnU4ehNMyXgTAQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:09:05 2025 by rpki-client