This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft File: Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json) Hash identifier: n+2ecOa628Xv9kb5yIDS2qXrJmHnagQ2yXyUxNeq2M8= Subject key identifier: 87:E7:5E:F4:F2:24:97:FB:13:B1:20:F9:7F:75:52:61:55:98:C8:E3 Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 Certificate issuer: /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Certificate serial: 019B10138C959F36F94F40CF45B004C47398 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft Manifest number: 1096 Signing time: Fri 12 Dec 2025 01:01:15 +0000 Manifest this update: Fri 12 Dec 2025 01:01:15 +0000 Manifest next update: Sat 13 Dec 2025 01:01:15 +0000 Files and hashes: 1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: IeYkapyP1jt40/7IluqFWF+442diCkIK7Vy9wTJ2kfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:13:8c:95:9f:36:f9:4f:40:cf:45:b0:04:c4:73:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Validity Not Before: Dec 12 01:01:15 2025 GMT Not After : Dec 13 01:01:15 2025 GMT Subject: CN=87e75ef4f22497fb13b120f97f7552615598c8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:7f:5f:77:91:2e:2c:4e:f3:e2:9e:dc:ac: 11:83:df:1e:76:98:57:61:86:23:3c:f9:11:59:8e: 53:86:5d:87:fb:84:6b:8e:82:c8:c2:32:92:89:2d: 1d:4a:3c:15:15:b4:d7:05:50:9f:5a:e3:c7:cd:3e: 39:7c:5e:fc:18:87:b1:f3:ae:02:87:c4:40:09:c6: 9d:0a:1e:e4:a6:d5:10:c8:97:3a:d7:90:9b:59:f0: 4c:2f:6b:c6:c4:88:42:0c:4f:4c:ed:c8:56:c4:ae: a1:bb:a0:48:13:90:39:a4:26:2b:b0:3e:c4:60:9a: fe:8c:4a:1c:eb:6f:4f:7e:86:15:97:04:d3:f8:c1: 3b:48:27:ae:f0:62:c9:85:bb:de:c5:8a:c8:0c:42: 44:4e:16:d7:0a:87:5d:dc:61:3e:1c:32:d9:10:9c: 3d:5b:dc:67:d1:cb:85:66:78:c6:ba:6f:47:fd:18: a6:47:f8:08:82:d6:b8:bd:dd:f7:65:25:9c:6f:70: 5b:ca:94:58:81:ab:0f:f1:b7:f3:fd:48:31:3e:01: 34:5b:80:c9:86:2f:b4:74:6a:6e:6a:05:c5:01:21: 4a:f0:58:71:8c:76:c4:ac:96:a1:f9:2a:f1:5b:b9: ba:42:15:dd:59:69:3c:a4:93:70:40:2a:2a:62:c0: ef:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E7:5E:F4:F2:24:97:FB:13:B1:20:F9:7F:75:52:61:55:98:C8:E3 X509v3 Authority Key Identifier: keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:6c:05:77:6b:4c:85:b7:a0:50:31:a1:9c:c0:c2:21:e3:18: 65:0e:3d:6e:fa:be:7d:27:f4:d5:dd:84:f5:3d:1a:41:75:f2: b3:bb:b1:6f:24:bf:79:67:7b:30:ee:84:a7:d7:51:7c:74:8f: c2:d1:e4:3f:af:6b:78:45:aa:40:c5:72:a5:c4:2b:8f:01:cc: 50:82:41:98:d6:b8:aa:d0:f1:01:90:02:c9:61:f5:ef:7f:ca: 1a:f6:dc:93:cd:0f:1c:6a:3c:de:7f:40:10:b0:2a:fe:ab:62: ad:1d:b3:e8:1f:a5:67:f8:1b:63:b9:bf:c9:ce:31:06:14:d7: c4:20:66:4c:26:d7:c4:97:cd:a1:9f:95:10:ac:84:88:fb:de: 22:e9:92:63:67:d1:c3:25:40:f1:c4:a0:aa:51:57:b1:3d:87: 1e:50:48:c2:68:38:54:ae:05:e1:3d:b6:df:fb:68:16:0d:0f: ba:f8:27:14:27:52:d7:e3:6f:13:e3:46:ef:66:f8:d9:1c:93: 8a:1e:d7:47:69:cd:ab:0f:1a:f6:a6:1d:78:3f:e5:d4:8f:5d: 99:8c:57:83:6b:76:9e:52:7b:00:36:ec:19:aa:33:2a:68:c7: 68:6c:61:c4:98:aa:9f:27:4c:87:68:9a:b2:a9:e0:92:b7:cb: 0f:0d:09:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQE4yVnzb5T0DPRbAExHOYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNTdiYTc2Y2I3ZDZkMmFlYzA1MjAzY2Y0MWI4ZTY3MTZl ZTdlYTAwHhcNMjUxMjEyMDEwMTE1WhcNMjUxMjEzMDEwMTE1WjAzMTEwLwYDVQQD Eyg4N2U3NWVmNGYyMjQ5N2ZiMTNiMTIwZjk3Zjc1NTI2MTU1OThjOGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLF/X3eRLixO8+Ke3KwRg98edphX YYYjPPkRWY5Thl2H+4RrjoLIwjKSiS0dSjwVFbTXBVCfWuPHzT45fF78GIex864C h8RACcadCh7kptUQyJc615CbWfBML2vGxIhCDE9M7chWxK6hu6BIE5A5pCYrsD7E YJr+jEoc629PfoYVlwTT+ME7SCeu8GLJhbvexYrIDEJEThbXCodd3GE+HDLZEJw9 W9xn0cuFZnjGum9H/RimR/gIgta4vd33ZSWcb3BbypRYgasP8bfz/UgxPgE0W4DJ hi+0dGpuagXFASFK8FhxjHbErJah+SrxW7m6QhXdWWk8pJNwQCoqYsDvvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIfnXvTyJJf7E7Eg+X91UmFVmMjjMB8GA1UdIwQY MBaAFE5XunbLfW0q7AUgPPQbjmcW7n6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEt YjcyZDdhZGJmYjk2LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEtYjcyZDdhZGJmYjk2 LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ2wFd2tM hbegUDGhnMDCIeMYZQ49bvq+fSf01d2E9T0aQXXys7uxbyS/eWd7MO6Ep9dRfHSP wtHkP69reEWqQMVypcQrjwHMUIJBmNa4qtDxAZACyWH173/KGvbck80PHGo83n9A ELAq/qtirR2z6B+lZ/gbY7m/yc4xBhTXxCBmTCbXxJfNoZ+VEKyEiPveIumSY2fR wyVA8cSgqlFXsT2HHlBIwmg4VK4F4T223/toFg0PuvgnFCdS1+NvE+NG72b42RyT ih7XR2nNqw8a9qYdeD/l1I9dmYxXg2t2nlJ7ADbsGaozKmjHaGxhxJiqnydMh2ia sqngkrfLDw0JBg== -----END CERTIFICATE-----Generated at Fri Dec 12 05:34:42 2025 by rpki-client