This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft File: tLC71kRVeO28e6a1v3ypNo0kF78.mft (raw, json) Hash identifier: KuEXgo9RRzOjP6XIXFsuSNiLMKHK2zyqDbEdCqqFzr0= Subject key identifier: 25:3A:32:C8:A1:8B:C1:80:39:2D:27:91:23:D4:05:51:10:10:F7:08 Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf Certificate serial: 019B0FA57C06701261AE7D5741730B9D5E56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft Manifest number: 0DD4 Signing time: Thu 11 Dec 2025 23:01:01 +0000 Manifest this update: Thu 11 Dec 2025 23:01:01 +0000 Manifest next update: Fri 12 Dec 2025 23:01:01 +0000 Files and hashes: 1: E_gpRXs1wyJj1CMrt4P6GzVFs4U.roa (hash: gqqgWP9QREPzkIwRRirj81r/4D9tgTwnunohsTpcA6w=) 2: HYQhj9GfS2VL1LGH2hoGRnAq_1g.roa (hash: vupLnnm29iaNTZjA+glh+6XHc5HkCkw1Lh/FCGeyQn4=) 3: tLC71kRVeO28e6a1v3ypNo0kF78.crl (hash: jPAnBsZCunkDqeRs0fk02jXlh1Pt8h7dVnEl0PKtfFc=) 4: zqLBYDBfWNqychEyI3nXYt2CCRQ.roa (hash: xPd7pskgYW4omSSyK6JduhnPOzmyiWl553qH0EzZiqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:a5:7c:06:70:12:61:ae:7d:57:41:73:0b:9d:5e:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf Validity Not Before: Dec 11 23:01:01 2025 GMT Not After : Dec 12 23:01:01 2025 GMT Subject: CN=253a32c8a18bc180392d279123d405511010f708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3d:23:57:6e:00:26:ad:01:1a:5d:be:a9:33: 7b:0e:a8:0a:fc:e5:5b:87:d7:ff:45:10:62:6d:c9: 11:f5:7c:f3:b2:ce:db:e7:ad:67:63:3c:dc:ed:8c: 6e:b4:64:d9:89:78:72:9d:48:0e:0f:1d:a5:d8:c0: 0a:18:16:09:05:bd:15:4c:3c:f1:72:1f:e7:35:e2: aa:5f:03:51:cb:47:35:c6:d6:fd:85:2d:2f:a7:74: d1:cc:89:f4:16:f0:91:09:6c:98:6c:02:1c:a3:8e: 29:6b:22:d4:9b:e5:9b:ca:2b:2f:bc:7e:a3:72:68: 36:f6:b2:63:8a:2d:94:7b:4b:43:5d:5c:09:6c:e0: ee:4b:a5:a2:6c:6f:ab:50:11:37:2d:b0:03:a0:ed: aa:78:90:b5:61:16:a9:d0:c4:5d:01:a3:9f:cf:3a: 41:0e:a5:f9:2a:f7:f2:82:9e:7d:28:19:35:2d:1f: 80:1c:53:db:3a:1d:c8:bb:82:3f:aa:68:8a:b4:23: 0d:3f:e3:b5:73:77:69:a7:27:b1:5f:d1:a3:fb:5c: 78:88:82:8f:4c:b8:b8:22:3e:f4:ca:d5:ba:6f:fa: 69:fd:ff:0d:56:3e:b6:dc:84:df:00:c1:51:5a:3b: b4:89:62:fa:ab:ea:bf:3e:30:96:e7:46:dc:d2:9c: d3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3A:32:C8:A1:8B:C1:80:39:2D:27:91:23:D4:05:51:10:10:F7:08 X509v3 Authority Key Identifier: keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:23:d5:b7:9a:3c:bc:80:fb:52:5f:e8:27:e4:c8:5e:75:e0: cd:08:68:92:dd:58:89:53:29:a6:50:70:ae:31:9d:3a:65:03: 99:78:02:65:88:86:aa:72:be:64:a7:0e:e4:77:6b:e1:ce:95: 77:43:85:4c:16:8e:bd:2c:03:04:f8:39:63:be:15:37:87:54: c8:b3:a2:78:a4:2d:53:33:b2:99:7e:e4:dd:e5:cf:e7:cc:34: c2:82:f7:eb:d9:0d:62:fc:23:04:a7:e3:02:9c:d0:b6:6a:32: 35:90:13:f3:e8:67:74:3f:17:c7:74:f8:08:38:7b:53:fa:4e: 3a:ec:98:cb:88:78:2f:35:b1:98:fe:fc:55:08:b1:81:84:0c: 98:a0:33:dd:03:3e:c5:56:0f:2d:68:1a:26:71:d2:87:23:c6: a5:5b:29:af:20:b9:f6:06:b0:a0:70:38:1d:4e:0d:9b:fe:63: 7d:4a:38:c7:1c:e8:34:ee:b5:bd:f2:d5:c8:23:75:73:82:bc: 38:74:41:e8:1e:78:6b:ef:cd:75:28:3b:64:6e:5f:49:a5:b7: 5d:3e:0a:7c:6a:6b:87:8b:b9:a0:6a:71:aa:9e:75:00:b9:d3: 69:83:e1:b3:74:cd:d6:0c:48:53:4f:f6:cf:82:34:de:b1:6e: 82:0a:6c:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPpXwGcBJhrn1XQXMLnV5WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YjBiYmQ2NDQ1NTc4ZWRiYzdiYTZiNWJmN2NhOTM2OGQy NDE3YmYwHhcNMjUxMjExMjMwMTAxWhcNMjUxMjEyMjMwMTAxWjAzMTEwLwYDVQQD EygyNTNhMzJjOGExOGJjMTgwMzkyZDI3OTEyM2Q0MDU1MTEwMTBmNzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3j0jV24AJq0BGl2+qTN7DqgK/OVb h9f/RRBibckR9Xzzss7b561nYzzc7YxutGTZiXhynUgODx2l2MAKGBYJBb0VTDzx ch/nNeKqXwNRy0c1xtb9hS0vp3TRzIn0FvCRCWyYbAIco44payLUm+WbyisvvH6j cmg29rJjii2Ue0tDXVwJbODuS6WibG+rUBE3LbADoO2qeJC1YRap0MRdAaOfzzpB DqX5Kvfygp59KBk1LR+AHFPbOh3Iu4I/qmiKtCMNP+O1c3dppyexX9Gj+1x4iIKP TLi4Ij70ytW6b/pp/f8NVj623ITfAMFRWju0iWL6q+q/PjCW50bc0pzTJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCU6Msihi8GAOS0nkSPUBVEQEPcIMB8GA1UdIwQY MBaAFLSwu9ZEVXjtvHumtb98qTaNJBe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYt NzdkNTI5YmU1M2Q3LzEvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYtNzdkNTI5YmU1M2Q3 LzEvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAISPVt5o8 vID7Ul/oJ+TIXnXgzQhokt1YiVMpplBwrjGdOmUDmXgCZYiGqnK+ZKcO5Hdr4c6V d0OFTBaOvSwDBPg5Y74VN4dUyLOieKQtUzOymX7k3eXP58w0woL369kNYvwjBKfj ApzQtmoyNZAT8+hndD8Xx3T4CDh7U/pOOuyYy4h4LzWxmP78VQixgYQMmKAz3QM+ xVYPLWgaJnHShyPGpVspryC59gawoHA4HU4Nm/5jfUo4xxzoNO61vfLVyCN1c4K8 OHRB6B54a+/NdSg7ZG5fSaW3XT4KfGprh4u5oGpxqp51ALnTaYPhs3TN1gxIU0/2 z4I03rFuggpssQ== -----END CERTIFICATE-----Generated at Fri Dec 12 07:58:48 2025 by rpki-client