This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json) Hash identifier: vQzxPg5lKPdp8/t/onB7gmycQs6hbM+jHp3iVdJe4gI= Subject key identifier: EB:93:2E:EE:74:ED:E4:88:E1:A2:94:52:48:47:5D:07:E4:A6:7B:A1 Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92 Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292 Certificate serial: 019B05FD6EACB005A9A6CE923B285B75F790 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft Manifest number: 058F Signing time: Wed 10 Dec 2025 02:00:53 +0000 Manifest this update: Wed 10 Dec 2025 02:00:53 +0000 Manifest next update: Thu 11 Dec 2025 02:00:53 +0000 Files and hashes: 1: 1-HTDTTyHqsL8qWvl7tdyMvlROZo.roa (hash: rDjH3KjSESto7R5VRIkalhKhlHHWAhNK5nCorKVRQGY=) 2: RXQQhNgKVihPcMVhthLhTg3n-Us.roa (hash: kG2eozK8NJSfX7hFrfDKG75LYSNAeBB7F12dBSasppU=) 3: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=) 4: YJ0iR_b-Nen1aOiqKaw4vZmo_5c.roa (hash: KZCgbqiRi9f7dw5nk4nyuo7z+mZsmVTjQi5EVZjEuks=) 5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: +ZrycdsC2OAhnGTi4962NwaHSv70wERVkhp1oFpG630=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:fd:6e:ac:b0:05:a9:a6:ce:92:3b:28:5b:75:f7:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292 Validity Not Before: Dec 10 02:00:53 2025 GMT Not After : Dec 11 02:00:53 2025 GMT Subject: CN=eb932eee74ede488e1a2945248475d07e4a67ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e1:bb:ff:de:05:98:dc:0e:6b:54:1c:79:b1: 27:d2:a4:a7:b7:12:8f:38:17:45:d7:af:cd:01:cf: 20:52:33:0b:55:ab:4b:83:ca:2f:0f:df:31:ee:6e: 83:9f:e6:7d:6b:6b:a8:aa:3b:42:13:10:dc:55:58: b6:a9:e7:11:d5:99:40:94:a2:8b:de:da:ea:bd:d3: 86:d6:fa:5c:f6:06:13:ca:91:d2:f2:a7:5c:3c:53: 0c:88:e2:5a:3f:5b:93:3e:eb:ce:48:03:70:20:f9: 1d:dc:a7:bd:9f:02:80:3d:bb:f6:65:ad:bd:44:b9: 4b:ca:73:2c:1b:d4:bf:d1:c5:90:be:e6:47:dc:7c: 4a:3a:db:82:33:e8:e1:63:29:e3:f7:35:7c:99:b5: 1e:a5:46:e3:bc:5b:e0:e2:d6:37:93:44:f5:1f:8d: f5:9f:f9:eb:7f:ea:82:04:f7:19:a2:ee:ee:b3:ad: 8d:4e:fc:73:91:55:04:99:d0:83:a7:47:1b:a2:d3: dd:3e:5f:46:d2:82:f5:d9:21:f7:86:4a:08:8c:ef: 3f:5b:20:00:40:af:59:fa:90:e9:84:7a:89:5f:b6: e0:5c:0f:7b:2d:8d:8f:83:00:c2:f6:e2:bc:04:60: 38:e0:be:24:18:16:65:18:b6:e4:0c:7c:79:e3:30: d3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:93:2E:EE:74:ED:E4:88:E1:A2:94:52:48:47:5D:07:E4:A6:7B:A1 X509v3 Authority Key Identifier: keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:96:4e:eb:d4:75:3a:ac:40:9d:a8:49:b1:68:93:63:49:68: bd:ce:42:01:79:34:6e:e5:f9:04:a3:04:2e:9a:33:d0:8d:a0: ef:68:60:7a:31:82:1b:d1:77:a1:fc:6a:7f:c7:96:38:ee:be: d6:a0:cb:7c:b8:98:6c:50:aa:e4:e7:d8:55:e0:5b:06:06:3b: d3:d7:aa:1b:d8:c4:b2:e2:19:50:49:10:34:b1:10:de:1c:05: 59:49:6f:ab:aa:11:85:6f:42:c9:c9:88:ce:06:23:6a:c2:46: c5:f5:1d:9e:87:2d:f5:68:91:da:86:e9:d4:8f:27:1e:42:44: 55:b2:db:87:cf:73:47:98:fe:58:ea:9c:d0:7c:98:4c:fd:d2: d6:74:0c:32:ce:ce:ee:cd:29:1e:6e:02:fb:f9:06:51:11:52: 60:4c:fc:90:8a:43:88:98:21:28:0c:c7:41:35:53:e7:c2:a3: ef:ae:3d:fb:42:34:cc:61:af:25:7e:af:e2:39:5a:c0:4e:b8: b1:4d:6a:62:d1:c5:c6:f4:28:b6:5f:64:50:d0:b2:a0:6f:26: b6:ef:b7:93:fd:23:6f:c8:c9:c7:92:be:e6:55:e9:fa:d9:3c: 57:da:7f:af:39:20:98:15:e2:de:3a:93:09:68:0d:fd:7c:bd: f0:bd:10:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsF/W6ssAWpps6SOyhbdfeQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDE1NTgxODFmNzg2MzExOWJmNGExNTU0Yzc1ZGFiMWY2 YzUyOTIwHhcNMjUxMjEwMDIwMDUzWhcNMjUxMjExMDIwMDUzWjAzMTEwLwYDVQQD EyhlYjkzMmVlZTc0ZWRlNDg4ZTFhMjk0NTI0ODQ3NWQwN2U0YTY3YmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8uG7/94FmNwOa1QcebEn0qSntxKP OBdF16/NAc8gUjMLVatLg8ovD98x7m6Dn+Z9a2uoqjtCExDcVVi2qecR1ZlAlKKL 3trqvdOG1vpc9gYTypHS8qdcPFMMiOJaP1uTPuvOSANwIPkd3Ke9nwKAPbv2Za29 RLlLynMsG9S/0cWQvuZH3HxKOtuCM+jhYynj9zV8mbUepUbjvFvg4tY3k0T1H431 n/nrf+qCBPcZou7us62NTvxzkVUEmdCDp0cbotPdPl9G0oL12SH3hkoIjO8/WyAA QK9Z+pDphHqJX7bgXA97LY2PgwDC9uK8BGA44L4kGBZlGLbkDHx54zDThwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOuTLu507eSI4aKUUkhHXQfkpnuhMB8GA1UdIwQY MBaAFLVBVYGB94YxGb9KFVTHXasfbFKSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi80ZGQxNjktOGRjYi00NjUzLThhMDMt NTcxYjZjNjEyYmVjLzEvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi80ZGQxNjktOGRjYi00NjUzLThhMDMtNTcxYjZjNjEyYmVj LzEvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgZZO69R1 OqxAnahJsWiTY0lovc5CAXk0buX5BKMELpoz0I2g72hgejGCG9F3ofxqf8eWOO6+ 1qDLfLiYbFCq5OfYVeBbBgY709eqG9jEsuIZUEkQNLEQ3hwFWUlvq6oRhW9CycmI zgYjasJGxfUdnoct9WiR2obp1I8nHkJEVbLbh89zR5j+WOqc0HyYTP3S1nQMMs7O 7s0pHm4C+/kGURFSYEz8kIpDiJghKAzHQTVT58Kj7649+0I0zGGvJX6v4jlawE64 sU1qYtHFxvQotl9kUNCyoG8mtu+3k/0jb8jJx5K+5lXp+tk8V9p/rzkgmBXi3jqT CWgN/Xy98L0Q5Q== -----END CERTIFICATE-----Generated at Wed Dec 10 11:17:21 2025 by rpki-client