This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft File: TuhDqF3WZOncAxCJK9fdnOUlkcc.mft (raw, json) Hash identifier: tSyBTJ1K3XEhdPEwN83ClIjZhK/zzN/07Og0Hjb/Dgs= Subject key identifier: 72:09:FE:D7:D9:29:38:3B:FD:DA:E3:6C:67:4F:88:AF:52:1B:67:C5 Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Certificate serial: 019B1CBC5CA46C7B8AE454F372C60E9ED52A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft Manifest number: 178B Signing time: Sun 14 Dec 2025 12:01:05 +0000 Manifest this update: Sun 14 Dec 2025 12:01:05 +0000 Manifest next update: Mon 15 Dec 2025 12:01:05 +0000 Files and hashes: 1: C0z6DdMKY0011CEMg0brREHft8I.roa (hash: +dbFWwxBIyFnN27a31OlolUnKb6JKZSNaPcmvgDSLGs=) 2: HGF0XnEulxWULqSPMu5rErMyWs8.roa (hash: 00NcZYCZGF+IaFRnbk/Q2PKjg8CgZv2ruaoed5i5QAU=) 3: T5IqxO0s3d3X9Y1GttHlSthoJkA.roa (hash: jGjUBiUWn1NYJl7CNkq/qe+4X44OgJIbeG2hNg3nO48=) 4: TuhDqF3WZOncAxCJK9fdnOUlkcc.crl (hash: 2q1u8HxLPP7GZ9+XTWfZh1VTt56e/wEtwcJJPtREJu4=) 5: UM40IJoMbmC2E6_NVNk7myz37CE.roa (hash: ho6wywXgZcMzdgmZ/BHVUcsSpC5snRTwoXFhr5WOwMg=) 6: _jJzyRmJqrwFJuS0RLJ0hiZgdfA.roa (hash: sbAUhaABWE5Yto64ATcg+Zla28iIZdfHxrQK/XE2Z0c=) 7: d2OIjSeYBVWvYxP4n_ODfkSTTf4.roa (hash: be0M2z23DoEhwT4FhHP2BW24O0nYk4oyMfhX4PQ+pRo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 12:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:bc:5c:a4:6c:7b:8a:e4:54:f3:72:c6:0e:9e:d5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Validity Not Before: Dec 14 12:01:05 2025 GMT Not After : Dec 15 12:01:05 2025 GMT Subject: CN=7209fed7d929383bfddae36c674f88af521b67c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c4:e9:37:ee:a4:f2:35:fc:71:74:e8:f5:28: c5:db:87:22:0c:f1:93:a7:2e:6d:9f:84:65:99:28: a0:7f:ad:f4:63:15:12:84:04:83:02:87:da:af:10: 0d:22:00:d6:41:96:89:56:1c:e6:9e:20:26:05:42: 8c:16:32:b1:d7:1c:93:ab:5f:e6:be:5a:36:01:29: 66:b4:de:4e:31:18:84:52:6e:da:e6:c8:b7:ca:23: 16:13:6c:f1:02:31:25:6c:ed:ed:31:2e:d2:ee:f3: 18:01:44:36:38:7f:6c:60:64:00:81:fe:d9:44:d3: 80:f4:b6:2c:37:f3:79:bb:63:c0:3d:7d:9f:02:00: 65:66:f4:7e:73:03:2f:ca:6c:9b:28:d9:5b:7c:3a: 2d:2a:86:16:fc:20:37:bd:f8:41:14:13:c4:10:a4: 2e:7f:c7:72:5c:a0:fd:bd:e4:10:38:39:cf:87:34: de:8b:09:c2:6c:36:1c:86:ce:49:b4:0f:73:b1:f8: e5:ad:f4:af:4c:ad:de:77:3c:06:a1:cc:9d:d6:26: 27:fa:56:0c:c9:86:ed:dd:f6:24:d6:63:c5:a6:9a: e3:b8:c0:5c:d9:8d:4f:83:9f:50:09:5b:13:53:13: 44:24:8b:65:41:91:24:a7:12:fe:e1:43:4e:cb:48: 5a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:09:FE:D7:D9:29:38:3B:FD:DA:E3:6C:67:4F:88:AF:52:1B:67:C5 X509v3 Authority Key Identifier: keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:1c:cf:7b:f8:ad:11:96:e6:d9:02:87:d1:11:f9:70:16:a1: d4:3b:bf:d2:4d:30:bb:c8:57:4b:55:f9:bf:94:f2:34:ce:62: 49:cc:9d:76:fa:71:32:ec:a9:7a:da:bd:4a:9b:01:67:3f:61: 84:3c:ce:f2:6a:c4:fd:31:d6:e3:a4:4a:b7:46:dc:3a:47:2c: 46:f8:50:ff:9c:46:35:d6:c8:9e:bc:2a:50:b5:70:af:dd:ed: f0:00:68:6a:fb:54:56:5b:53:bc:21:05:62:49:2a:f4:24:c0: b5:24:45:ce:77:76:63:8b:b9:d8:f1:24:17:1d:c2:1b:fd:8b: 61:0a:64:50:fd:cc:02:c0:e5:13:55:89:f7:90:db:77:1d:9b: c8:87:af:1b:ea:3a:8d:b6:03:2d:50:41:2c:d7:0d:de:2b:54: f5:a1:8d:98:99:ca:cf:bc:4d:bb:12:a4:17:05:e8:e5:a6:d4: 3d:d2:30:9d:21:30:67:c6:a6:a7:67:02:05:d6:83:dd:3d:ec: 6b:78:4f:d2:9d:dc:e1:81:68:47:14:f3:c0:4a:97:ed:5a:79: 8d:3f:95:6d:81:78:82:2c:b4:a5:76:d1:c4:4f:ad:2d:9c:ea: 49:c5:f4:34:28:77:34:7f:02:a8:b9:c4:31:fb:1f:e4:38:d5: dd:cd:3f:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZscvFykbHuK5FTzcsYOntUqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZTg0M2E4NWRkNjY0ZTlkYzAzMTA4OTJiZDdkZDljZTUy NTkxYzcwHhcNMjUxMjE0MTIwMTA1WhcNMjUxMjE1MTIwMTA1WjAzMTEwLwYDVQQD Eyg3MjA5ZmVkN2Q5MjkzODNiZmRkYWUzNmM2NzRmODhhZjUyMWI2N2M1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMTpN+6k8jX8cXTo9SjF24ciDPGT py5tn4RlmSigf630YxUShASDAofarxANIgDWQZaJVhzmniAmBUKMFjKx1xyTq1/m vlo2ASlmtN5OMRiEUm7a5si3yiMWE2zxAjElbO3tMS7S7vMYAUQ2OH9sYGQAgf7Z RNOA9LYsN/N5u2PAPX2fAgBlZvR+cwMvymybKNlbfDotKoYW/CA3vfhBFBPEEKQu f8dyXKD9veQQODnPhzTeiwnCbDYchs5JtA9zsfjlrfSvTK3edzwGocyd1iYn+lYM yYbt3fYk1mPFpprjuMBc2Y1Pg59QCVsTUxNEJItlQZEkpxL+4UNOy0hacwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHIJ/tfZKTg7/drjbGdPiK9SG2fFMB8GA1UdIwQY MBaAFE7oQ6hd1mTp3AMQiSvX3ZzlJZHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjct NDhjZjQxMmIzODdiLzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjctNDhjZjQxMmIzODdi LzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOBzPe/it EZbm2QKH0RH5cBah1Du/0k0wu8hXS1X5v5TyNM5iScyddvpxMuypetq9SpsBZz9h hDzO8mrE/THW46RKt0bcOkcsRvhQ/5xGNdbInrwqULVwr93t8ABoavtUVltTvCEF Ykkq9CTAtSRFznd2Y4u52PEkFx3CG/2LYQpkUP3MAsDlE1WJ95Dbdx2byIevG+o6 jbYDLVBBLNcN3itU9aGNmJnKz7xNuxKkFwXo5abUPdIwnSEwZ8amp2cCBdaD3T3s a3hP0p3c4YFoRxTzwEqX7Vp5jT+VbYF4giy0pXbRxE+tLZzqScX0NCh3NH8CqLnE Mfsf5DjV3c0/wQ== -----END CERTIFICATE-----Generated at Sun Dec 14 21:35:04 2025 by rpki-client