This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft File: tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft (raw, json) Hash identifier: NnJcQsk7snJhkEXbOkWsfIRXiytn9IwH1DezGKikszs= Subject key identifier: 97:9E:A6:B4:43:5D:B2:E0:9C:61:50:7D:67:93:0D:5A:63:08:3C:EA Authority key identifier: B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6 Certificate issuer: /CN=b69aaef1cea19f2f926f570961545cfe4ed69af6 Certificate serial: 019B462665E16793B2CF0954AC22BAA2D291 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft Manifest number: 072C Signing time: Mon 22 Dec 2025 13:01:20 +0000 Manifest this update: Mon 22 Dec 2025 13:01:20 +0000 Manifest next update: Tue 23 Dec 2025 13:01:20 +0000 Files and hashes: 1: tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl (hash: BEyUKBkOXriEOOxWYMXw3KS9JmAofIaSVGTpSILW3MQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:26:65:e1:67:93:b2:cf:09:54:ac:22:ba:a2:d2:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b69aaef1cea19f2f926f570961545cfe4ed69af6 Validity Not Before: Dec 22 13:01:20 2025 GMT Not After : Dec 23 13:01:20 2025 GMT Subject: CN=979ea6b4435db2e09c61507d67930d5a63083cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:27:78:39:0d:91:8c:a8:d1:02:fa:7f:a8: ed:79:cb:38:eb:3d:91:d6:19:ba:15:cf:3a:29:a1: 1b:3e:5e:45:98:06:47:a4:bd:18:a6:ec:4a:aa:6c: 38:a1:90:30:d4:1e:e8:f1:df:7b:b7:c6:b3:ec:b7: f9:e9:4d:88:f4:3e:5f:59:be:7e:45:1a:f3:7b:a3: ed:8a:1c:6f:96:2d:2d:f7:f6:23:f7:23:2d:58:b0: b4:69:6f:13:47:b8:36:dd:e4:2e:43:1d:b7:24:43: bd:b9:38:06:d1:34:fe:6f:5a:b6:ef:a7:51:ce:c1: 14:30:42:f2:58:7f:33:52:c8:71:ad:64:0b:d6:44: 0d:ff:6c:dd:48:3e:2c:b0:2e:8b:ab:02:47:db:b5: 32:c8:2a:e7:81:4d:b6:aa:b4:18:33:81:c2:bb:e3: 4e:f5:71:54:8d:f4:74:92:32:b6:b3:84:07:03:6a: 63:af:e6:86:7e:86:db:25:99:01:56:28:ae:0f:4a: 78:a2:17:f3:92:37:5c:88:29:a9:e8:8f:77:a6:57: 9b:c7:a9:44:44:b1:86:9e:e7:a6:fb:81:ae:7a:3e: 43:49:17:10:de:fa:23:f9:78:e3:12:f8:c8:82:bb: 6b:bc:bb:a5:2a:3f:53:a7:7e:22:f4:ed:09:07:fd: aa:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:9E:A6:B4:43:5D:B2:E0:9C:61:50:7D:67:93:0D:5A:63:08:3C:EA X509v3 Authority Key Identifier: keyid:B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:89:cc:bf:3f:ad:8d:f0:7b:ed:2a:62:e5:95:63:d2:cc:95: c7:cf:e4:96:f1:9a:b7:c3:af:d2:1b:cb:3b:1a:97:06:0f:c3: b7:83:d9:af:35:4d:07:8b:56:15:08:75:53:6c:5f:63:29:7b: 9b:ce:29:da:24:77:4b:bd:b1:ad:15:b7:ef:c0:75:83:67:b3: 62:34:78:47:98:a2:6e:61:5a:10:f1:79:48:e8:a1:7b:6f:3c: 83:20:cc:1e:65:f6:e5:d6:bc:c6:d0:9d:ac:7a:1b:b0:de:a8: 77:fc:e3:f3:ad:e2:22:3d:06:3f:5e:84:17:bb:67:ac:8a:51: 98:45:1a:03:ce:83:bf:d0:44:b5:1f:28:8e:3c:c6:5f:cc:b4: 6d:a9:85:b6:d7:9d:15:5e:b6:5e:d4:1d:b9:13:4c:05:fc:82: 19:9a:16:6b:e1:18:26:28:83:74:94:70:5c:89:cb:47:60:f6: 58:d3:14:af:20:eb:67:b4:90:b1:da:fd:dc:89:69:5f:6e:96: 96:9b:d7:2a:9a:de:25:6c:2e:a8:ed:6b:55:1a:07:87:24:1b: 89:de:30:50:f1:01:fb:4c:4d:47:4c:b5:e9:85:33:e6:7e:e1: a0:72:e7:e2:aa:b2:68:b3:dc:4e:b2:a6:03:97:64:de:b8:40: 12:75:5b:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJmXhZ5OyzwlUrCK6otKRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OWFhZWYxY2VhMTlmMmY5MjZmNTcwOTYxNTQ1Y2ZlNGVk NjlhZjYwHhcNMjUxMjIyMTMwMTIwWhcNMjUxMjIzMTMwMTIwWjAzMTEwLwYDVQQD Eyg5NzllYTZiNDQzNWRiMmUwOWM2MTUwN2Q2NzkzMGQ1YTYzMDgzY2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RYneDkNkYyo0QL6f6jtecs46z2R 1hm6Fc86KaEbPl5FmAZHpL0YpuxKqmw4oZAw1B7o8d97t8az7Lf56U2I9D5fWb5+ RRrze6Ptihxvli0t9/Yj9yMtWLC0aW8TR7g23eQuQx23JEO9uTgG0TT+b1q276dR zsEUMELyWH8zUshxrWQL1kQN/2zdSD4ssC6LqwJH27UyyCrngU22qrQYM4HCu+NO 9XFUjfR0kjK2s4QHA2pjr+aGfobbJZkBViiuD0p4ohfzkjdciCmp6I93plebx6lE RLGGnuem+4Guej5DSRcQ3voj+XjjEvjIgrtrvLulKj9Tp34i9O0JB/2qpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJeeprRDXbLgnGFQfWeTDVpjCDzqMB8GA1UdIwQY MBaAFLaarvHOoZ8vkm9XCWFUXP5O1pr2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mMDE3MTItNzJiYi00MDg4LThiNjEt N2ZlMjBmMmVmZWQ0LzEvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS9mMDE3MTItNzJiYi00MDg4LThiNjEtN2ZlMjBmMmVmZWQ0 LzEvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGonMvz+t jfB77Spi5ZVj0syVx8/klvGat8Ov0hvLOxqXBg/Dt4PZrzVNB4tWFQh1U2xfYyl7 m84p2iR3S72xrRW378B1g2ezYjR4R5iibmFaEPF5SOihe288gyDMHmX25da8xtCd rHobsN6od/zj863iIj0GP16EF7tnrIpRmEUaA86Dv9BEtR8ojjzGX8y0bamFtted FV62XtQduRNMBfyCGZoWa+EYJiiDdJRwXInLR2D2WNMUryDrZ7SQsdr93IlpX26W lpvXKpreJWwuqO1rVRoHhyQbid4wUPEB+0xNR0y16YUz5n7hoHLn4qqyaLPcTrKm A5dk3rhAEnVbLg== -----END CERTIFICATE-----Generated at Mon Dec 22 22:19:59 2025 by rpki-client