This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft File: tLC71kRVeO28e6a1v3ypNo0kF78.mft (raw, json) Hash identifier: tQnk9t78HOLdY7XTv8IANkue0Zb+cpQKmmXH9yHW7Fk= Subject key identifier: 1D:81:93:21:AD:AB:97:2C:85:94:A2:FE:79:51:FB:EF:FD:1B:7F:4B Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf Certificate serial: 019B194D7104CCD6A09669B5F3D1780CDEC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft Manifest number: 0DD9 Signing time: Sat 13 Dec 2025 20:01:03 +0000 Manifest this update: Sat 13 Dec 2025 20:01:03 +0000 Manifest next update: Sun 14 Dec 2025 20:01:03 +0000 Files and hashes: 1: E_gpRXs1wyJj1CMrt4P6GzVFs4U.roa (hash: gqqgWP9QREPzkIwRRirj81r/4D9tgTwnunohsTpcA6w=) 2: HYQhj9GfS2VL1LGH2hoGRnAq_1g.roa (hash: vupLnnm29iaNTZjA+glh+6XHc5HkCkw1Lh/FCGeyQn4=) 3: tLC71kRVeO28e6a1v3ypNo0kF78.crl (hash: RZLf9SVqzv/g4oiRSXpzKUY8R00mW5LeGwDs0IvpW4I=) 4: zqLBYDBfWNqychEyI3nXYt2CCRQ.roa (hash: xPd7pskgYW4omSSyK6JduhnPOzmyiWl553qH0EzZiqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:4d:71:04:cc:d6:a0:96:69:b5:f3:d1:78:0c:de:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf Validity Not Before: Dec 13 20:01:03 2025 GMT Not After : Dec 14 20:01:03 2025 GMT Subject: CN=1d819321adab972c8594a2fe7951fbeffd1b7f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:48:f1:c6:b7:e2:b3:e4:75:b8:92:bd:49:22: 7d:79:cd:63:b4:03:93:92:b4:ba:d0:53:45:3e:e5: e7:a7:bc:44:63:6a:9d:ca:c6:f9:e2:e8:f7:c1:90: 42:cb:a4:d0:48:e0:bc:c9:6e:32:3f:f7:ff:5d:ad: 2d:60:08:aa:e7:5a:d7:4b:47:bb:bb:ac:30:ab:a9: 4e:81:25:8b:07:34:86:be:e9:ef:39:71:2a:9c:a3: a6:9d:56:c0:f9:ea:65:c4:90:ed:83:cd:a6:18:3d: 5b:da:16:9e:db:9b:91:21:ac:fd:88:69:f4:99:ee: ca:89:50:9b:e2:c1:5c:28:eb:48:40:f1:69:5f:3b: 5b:d7:36:d1:6e:48:14:1d:b7:2c:da:cc:7e:33:25: 19:70:00:d0:bf:45:ff:2b:a2:d2:3c:66:5b:fd:47: fd:a5:b9:b7:27:b5:91:13:b2:b7:71:bd:83:c0:b6: 7a:49:4d:b7:3c:e7:26:58:bd:c1:dd:5d:2f:a3:3d: c9:34:c6:f7:f7:c7:4b:e4:6a:ca:c6:24:a9:4a:b4: a1:a8:a6:c1:e1:57:25:c7:69:93:b4:7b:a5:a4:d7: 7d:a0:4e:d4:eb:03:aa:2a:63:d3:3e:a4:f4:ea:20: 29:25:2a:96:8f:02:c5:08:b2:37:f5:4c:35:14:6a: f5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:81:93:21:AD:AB:97:2C:85:94:A2:FE:79:51:FB:EF:FD:1B:7F:4B X509v3 Authority Key Identifier: keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:a1:ff:79:90:29:43:f5:c4:a8:1f:70:26:19:2e:5e:0e:ff: f6:50:63:f8:e4:97:c6:58:af:97:d2:50:2a:14:43:cc:b7:b7: c3:54:a0:3a:0b:f7:88:2a:90:e5:ef:eb:3b:07:22:e1:6a:44: fc:64:26:a5:af:2d:89:99:8a:01:dc:0b:f9:af:68:9d:09:86: 73:9d:9c:0e:b6:dd:bd:cb:41:dd:b8:dc:bc:25:0a:7b:cc:20: db:06:91:a2:9e:5f:58:89:61:d8:26:8c:2d:51:1c:69:5a:cf: 6f:8a:7a:84:b5:65:d9:f6:ca:2c:49:05:77:26:44:a8:00:ff: 20:18:c0:c2:6a:e1:9d:b4:9a:3e:d7:c1:6e:03:46:98:aa:86: f4:c7:1b:56:71:fc:6f:7b:02:55:5e:c4:e9:28:05:f8:0d:c5: 58:64:70:8d:30:d1:5a:60:fc:ee:3d:4e:4d:cf:c8:45:00:1b: 90:24:0c:12:c0:a3:40:31:6f:50:2f:a1:b5:02:82:73:1c:b5: f8:32:c2:9f:b9:ed:23:14:89:89:62:15:13:9a:a2:6f:16:f7: 6c:5b:35:d4:eb:0f:f0:8a:07:2a:bc:ad:d3:f7:ba:50:3f:3e: 7f:e0:1a:41:a6:45:3c:b5:62:bd:8e:50:d3:f4:59:75:97:41: 37:f0:e4:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZTXEEzNaglmm189F4DN7IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YjBiYmQ2NDQ1NTc4ZWRiYzdiYTZiNWJmN2NhOTM2OGQy NDE3YmYwHhcNMjUxMjEzMjAwMTAzWhcNMjUxMjE0MjAwMTAzWjAzMTEwLwYDVQQD EygxZDgxOTMyMWFkYWI5NzJjODU5NGEyZmU3OTUxZmJlZmZkMWI3ZjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0jxxrfis+R1uJK9SSJ9ec1jtAOT krS60FNFPuXnp7xEY2qdysb54uj3wZBCy6TQSOC8yW4yP/f/Xa0tYAiq51rXS0e7 u6wwq6lOgSWLBzSGvunvOXEqnKOmnVbA+eplxJDtg82mGD1b2hae25uRIaz9iGn0 me7KiVCb4sFcKOtIQPFpXztb1zbRbkgUHbcs2sx+MyUZcADQv0X/K6LSPGZb/Uf9 pbm3J7WRE7K3cb2DwLZ6SU23POcmWL3B3V0voz3JNMb398dL5GrKxiSpSrShqKbB 4Vclx2mTtHulpNd9oE7U6wOqKmPTPqT06iApJSqWjwLFCLI39Uw1FGr10QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB2BkyGtq5cshZSi/nlR++/9G39LMB8GA1UdIwQY MBaAFLSwu9ZEVXjtvHumtb98qTaNJBe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYt NzdkNTI5YmU1M2Q3LzEvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi8zNTAyZmMtZDlmNy00ZmE4LWJhZjYtNzdkNTI5YmU1M2Q3 LzEvdExDNzFrUlZlTzI4ZTZhMXYzeXBObzBrRjc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr6H/eZAp Q/XEqB9wJhkuXg7/9lBj+OSXxlivl9JQKhRDzLe3w1SgOgv3iCqQ5e/rOwci4WpE /GQmpa8tiZmKAdwL+a9onQmGc52cDrbdvctB3bjcvCUKe8wg2waRop5fWIlh2CaM LVEcaVrPb4p6hLVl2fbKLEkFdyZEqAD/IBjAwmrhnbSaPtfBbgNGmKqG9McbVnH8 b3sCVV7E6SgF+A3FWGRwjTDRWmD87j1OTc/IRQAbkCQMEsCjQDFvUC+htQKCcxy1 +DLCn7ntIxSJiWIVE5qibxb3bFs11OsP8IoHKryt0/e6UD8+f+AaQaZFPLVivY5Q 0/RZdZdBN/DkpQ== -----END CERTIFICATE-----Generated at Sun Dec 14 00:04:02 2025 by rpki-client