This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json) Hash identifier: TpTl6Iz4uSE68lhc3GeJj35iHi11UWCaBXyPh1tIwIQ= Subject key identifier: 03:18:DB:03:8C:91:BF:6A:1D:4B:96:73:EB:FB:6C:2C:F2:20:B6:D9 Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78 Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78 Certificate serial: 019B38A16B10BD4C2D954690321F05DF17AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft Manifest number: 08C9 Signing time: Fri 19 Dec 2025 22:01:01 +0000 Manifest this update: Fri 19 Dec 2025 22:01:01 +0000 Manifest next update: Sat 20 Dec 2025 22:01:01 +0000 Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=) 2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: SYPPnA9Q5EdWwXkgFRXDbiJ1AA6L86Op//DYjEDCOcE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a1:6b:10:bd:4c:2d:95:46:90:32:1f:05:df:17:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78 Validity Not Before: Dec 19 22:01:01 2025 GMT Not After : Dec 20 22:01:01 2025 GMT Subject: CN=0318db038c91bf6a1d4b9673ebfb6c2cf220b6d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4c:a9:78:df:e0:88:1f:18:d0:e5:4f:54:fe: d7:fc:f2:11:d9:e1:e5:c5:00:0e:05:53:c4:6d:65: 8a:87:72:03:53:e1:c8:e4:d1:ac:6d:b3:cc:a3:a8: d7:1b:b1:e9:93:ec:aa:b7:c2:57:8c:1e:5e:a7:ff: cd:8e:2d:99:06:e2:b8:19:f1:4b:a8:d0:81:6d:b4: 8d:fd:6d:6b:c6:1d:8c:dd:c4:0e:f1:be:3b:af:9e: 61:d8:bb:0c:b6:ba:83:b1:a4:60:9d:5f:07:f3:a6: 25:ed:19:09:ae:3d:15:58:af:ed:c1:0c:f9:ac:af: 8d:4a:6f:99:10:6a:07:33:ab:f6:fd:ce:27:b3:33: 75:ac:fd:5f:f3:3f:d6:96:09:23:b0:40:69:0e:b2: 04:28:cc:af:e7:98:f2:0b:9a:b6:40:2a:ba:ef:a6: 62:56:0a:7e:04:2e:d4:68:0c:1d:2a:66:e7:24:a7: f0:b1:aa:94:5c:f1:5c:13:5e:7b:80:32:19:72:6e: 5f:cf:6b:e8:04:c1:b8:cd:8e:df:b4:37:7e:9f:9b: de:88:fa:3b:1c:b6:50:e4:d3:bb:98:78:58:25:a4: 4b:8b:79:90:d8:b5:d2:12:22:d9:ac:d6:40:11:ff: 30:54:5b:29:a4:a0:83:5c:03:c4:2c:9a:2f:d5:23: 83:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:18:DB:03:8C:91:BF:6A:1D:4B:96:73:EB:FB:6C:2C:F2:20:B6:D9 X509v3 Authority Key Identifier: keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:77:29:1d:54:c3:73:1c:a5:b7:9e:7c:b6:30:84:01:45:61: 03:a8:a8:c5:13:a8:c2:d2:a6:2d:a1:3a:5f:84:a7:21:99:0c: a1:f3:68:68:35:d7:d0:23:b7:4c:07:f3:b3:69:e3:7a:e0:c7: ce:6c:0f:53:ef:18:b5:72:db:67:1c:83:01:55:8f:a5:3a:47: 59:9a:a0:e5:0b:e7:99:db:ca:34:52:b3:bb:71:f5:d3:03:60: 13:88:1f:d3:76:36:dc:73:9d:85:32:05:a7:5e:ea:32:fb:7b: 43:82:bc:29:1a:fc:6e:f3:7d:e9:57:e6:5f:dc:b9:a4:75:85: 24:cf:1b:f0:58:0b:fb:be:16:af:b7:5d:b9:ae:8c:fe:18:6f: d3:ff:7d:6e:81:1a:3a:0a:0f:6d:1b:e3:fb:ca:69:d9:26:7e: fa:0b:61:47:51:6e:f2:af:86:50:11:73:f4:68:b7:e6:ba:52: e7:91:6e:7d:e7:65:36:cc:90:79:1a:d0:98:8d:1b:af:de:63: 3c:5b:fd:01:7f:41:e5:bc:94:59:36:95:aa:61:19:aa:a9:9f: 67:b6:71:68:af:2a:85:7c:54:35:ae:60:42:0c:b1:c8:b9:0b: 26:89:a9:c7:bc:c0:99:bd:e3:15:ed:08:d1:a3:89:e3:96:89: 7b:61:8e:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4oWsQvUwtlUaQMh8F3xerMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NGRkZjZmMDMzMzFjZDc3M2M3ZTdhYmIxNTQyOWJhOGQy MGJkNzgwHhcNMjUxMjE5MjIwMTAxWhcNMjUxMjIwMjIwMTAxWjAzMTEwLwYDVQQD EygwMzE4ZGIwMzhjOTFiZjZhMWQ0Yjk2NzNlYmZiNmMyY2YyMjBiNmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA50ypeN/giB8Y0OVPVP7X/PIR2eHl xQAOBVPEbWWKh3IDU+HI5NGsbbPMo6jXG7Hpk+yqt8JXjB5ep//Nji2ZBuK4GfFL qNCBbbSN/W1rxh2M3cQO8b47r55h2LsMtrqDsaRgnV8H86Yl7RkJrj0VWK/twQz5 rK+NSm+ZEGoHM6v2/c4nszN1rP1f8z/WlgkjsEBpDrIEKMyv55jyC5q2QCq676Zi Vgp+BC7UaAwdKmbnJKfwsaqUXPFcE157gDIZcm5fz2voBMG4zY7ftDd+n5veiPo7 HLZQ5NO7mHhYJaRLi3mQ2LXSEiLZrNZAEf8wVFsppKCDXAPELJov1SODOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAMY2wOMkb9qHUuWc+v7bCzyILbZMB8GA1UdIwQY MBaAFLVN328DMxzXc8fnq7FUKbqNIL14MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82NWJjZmYtYmEwMS00OThjLWI1NGQt ODQwMjZiYzg1MmYwLzEvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC82NWJjZmYtYmEwMS00OThjLWI1NGQtODQwMjZiYzg1MmYw LzEvdFUzZmJ3TXpITmR6eC1lcnNWUXB1bzBndlhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcHcpHVTD cxylt558tjCEAUVhA6ioxROowtKmLaE6X4SnIZkMofNoaDXX0CO3TAfzs2njeuDH zmwPU+8YtXLbZxyDAVWPpTpHWZqg5QvnmdvKNFKzu3H10wNgE4gf03Y23HOdhTIF p17qMvt7Q4K8KRr8bvN96VfmX9y5pHWFJM8b8FgL+74Wr7ddua6M/hhv0/99boEa OgoPbRvj+8pp2SZ++gthR1Fu8q+GUBFz9Gi35rpS55FufedlNsyQeRrQmI0br95j PFv9AX9B5byUWTaVqmEZqqmfZ7ZxaK8qhXxUNa5gQgyxyLkLJompx7zAmb3jFe0I 0aOJ45aJe2GOJA== -----END CERTIFICATE-----Generated at Fri Dec 19 23:42:21 2025 by rpki-client