This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft File: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft (raw, json) Hash identifier: yYP6Y0Um4Nn5y+hcuQ9cZXOdzFcr2HGIuJKKIVavWQI= Subject key identifier: 7C:C3:7A:C1:D2:B8:52:F6:53:2D:93:80:0E:DB:65:F5:A1:84:E5:DF Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe Certificate serial: 019B304320897FC92E76E8E24B3AAB6EF8CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft Manifest number: 1782 Signing time: Thu 18 Dec 2025 07:01:03 +0000 Manifest this update: Thu 18 Dec 2025 07:01:03 +0000 Manifest next update: Fri 19 Dec 2025 07:01:03 +0000 Files and hashes: 1: 7YKaewqyZbI9lVFIivFUL2FPVzU.roa (hash: wf42n7crwFg9XaXHUPxEE3NTHiwbzXO1xRDVNEMLG6A=) 2: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl (hash: F2P3FJWkECt0P+jXJpBjlzWcK1JTcXSKPa+v6UjZ6hM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 07:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:43:20:89:7f:c9:2e:76:e8:e2:4b:3a:ab:6e:f8:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe Validity Not Before: Dec 18 07:01:03 2025 GMT Not After : Dec 19 07:01:03 2025 GMT Subject: CN=7cc37ac1d2b852f6532d93800edb65f5a184e5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7b:4f:fd:2a:a0:f2:d5:57:cd:81:46:f9:21: bb:cf:5c:37:44:eb:59:77:64:f6:45:94:aa:b6:ee: af:c7:66:a2:4a:62:99:5b:02:e1:b4:eb:1e:fb:6c: e3:71:70:1f:0a:16:4b:1c:9b:94:56:1f:d1:a1:3c: 70:55:1c:06:cb:44:b8:0c:30:a6:e6:c5:eb:4f:6d: d7:82:16:8e:28:d0:09:11:82:02:d2:32:dc:18:71: 8a:fc:a7:bc:87:ba:85:98:84:28:a6:10:10:04:22: 5a:cd:eb:01:e5:42:cf:ea:46:f0:cc:f0:1b:9e:26: e7:4f:42:f4:fd:b3:02:04:cb:f4:d8:d9:68:e6:46: 3a:63:d6:42:c8:7f:26:7e:34:5c:50:20:ca:34:65: d5:71:b0:c7:3d:d3:f5:5d:be:9c:05:1d:6f:94:ca: 2e:60:cd:ea:a9:2d:9f:b4:be:c9:9c:8c:7f:c9:ba: 8a:16:8b:ce:e7:b7:d7:75:96:b4:0c:c5:6a:58:d8: 07:84:a9:41:59:7c:54:b3:c1:ad:60:72:97:e4:95: f9:63:58:94:ce:6b:17:00:35:79:2f:3f:e5:06:24: 5e:28:6b:7f:50:22:7b:fd:bd:cb:65:4b:de:26:90: ed:b5:dd:df:e4:32:7f:cd:3a:18:a8:5d:ef:9e:e0: 12:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:C3:7A:C1:D2:B8:52:F6:53:2D:93:80:0E:DB:65:F5:A1:84:E5:DF X509v3 Authority Key Identifier: keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:4c:31:e3:0c:ed:68:fe:ea:2e:8f:b1:82:d8:d2:7f:b5:41: b9:06:85:7d:15:75:cd:ef:64:2c:67:6d:de:14:46:bd:7b:a0: 3b:b2:25:e3:76:be:26:c5:b2:a2:1a:c0:40:04:f0:5d:c8:86: 94:e0:4a:f8:c8:2b:37:02:6c:80:b7:14:5e:40:d7:e4:9f:d1: 70:65:f1:62:da:a3:d2:e3:67:bc:35:6f:45:62:05:39:2c:ba: 74:f2:0b:69:94:92:cc:50:0b:34:3c:af:43:f0:b2:3c:86:5e: c3:a1:ba:f1:71:c1:6c:60:9d:5a:cb:2e:97:d5:a8:79:be:1b: d6:04:75:ea:09:c4:36:f4:95:cc:39:57:0c:76:1d:f2:d6:c9: 08:71:96:f6:00:7c:23:3d:a2:48:64:6c:3c:74:c5:b8:eb:1c: 03:d4:ed:a2:c4:4b:52:9d:37:df:dc:3b:a4:19:9c:6f:e9:be: fd:8d:1f:36:7a:e2:68:bb:58:df:7e:b7:8c:23:02:47:d3:c7: 4c:5e:8a:ba:2b:b8:a2:4a:96:2d:5f:6b:29:71:30:a6:65:18: 40:e1:5b:62:df:43:1a:ad:ec:7e:e0:24:41:77:ea:3d:c1:a9: 53:ce:b2:31:db:34:e5:9c:40:0b:c2:b4:e4:e5:b9:0f:84:2e: 94:5e:d2:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZswQyCJf8kudujiSzqrbvjLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkYTM3MTFkYzVkZTQ1ZjJmNWI0NzkwMTY1OWU5NTZkOTM4 MjcyZmUwHhcNMjUxMjE4MDcwMTAzWhcNMjUxMjE5MDcwMTAzWjAzMTEwLwYDVQQD Eyg3Y2MzN2FjMWQyYjg1MmY2NTMyZDkzODAwZWRiNjVmNWExODRlNWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHtP/Sqg8tVXzYFG+SG7z1w3ROtZ d2T2RZSqtu6vx2aiSmKZWwLhtOse+2zjcXAfChZLHJuUVh/RoTxwVRwGy0S4DDCm 5sXrT23XghaOKNAJEYIC0jLcGHGK/Ke8h7qFmIQophAQBCJazesB5ULP6kbwzPAb nibnT0L0/bMCBMv02Nlo5kY6Y9ZCyH8mfjRcUCDKNGXVcbDHPdP1Xb6cBR1vlMou YM3qqS2ftL7JnIx/ybqKFovO57fXdZa0DMVqWNgHhKlBWXxUs8GtYHKX5JX5Y1iU zmsXADV5Lz/lBiReKGt/UCJ7/b3LZUveJpDttd3f5DJ/zToYqF3vnuAS+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHzDesHSuFL2Uy2TgA7bZfWhhOXfMB8GA1UdIwQY MBaAFE2jcR3F3kXy9bR5AWWelW2TgnL+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hODMxYzAtNDU3Yy00YmE4LWJlYzct ZTI1MTEwOWJmZDE5LzEvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hODMxYzAtNDU3Yy00YmE4LWJlYzctZTI1MTEwOWJmZDE5 LzEvVGFOeEhjWGVSZkwxdEhrQlpaNlZiWk9DY3Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAakwx4wzt aP7qLo+xgtjSf7VBuQaFfRV1ze9kLGdt3hRGvXugO7Il43a+JsWyohrAQATwXciG lOBK+MgrNwJsgLcUXkDX5J/RcGXxYtqj0uNnvDVvRWIFOSy6dPILaZSSzFALNDyv Q/CyPIZew6G68XHBbGCdWssul9Woeb4b1gR16gnENvSVzDlXDHYd8tbJCHGW9gB8 Iz2iSGRsPHTFuOscA9TtosRLUp0339w7pBmcb+m+/Y0fNnriaLtY3363jCMCR9PH TF6Kuiu4okqWLV9rKXEwpmUYQOFbYt9DGq3sfuAkQXfqPcGpU86yMds05ZxAC8K0 5OW5D4QulF7SKg== -----END CERTIFICATE-----Generated at Thu Dec 18 14:34:00 2025 by rpki-client