This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft File: tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft (raw, json) Hash identifier: tb/IH2UZw6fURp3S0REtTcJYFsJPC0RAdtzBczZpvT8= Subject key identifier: DE:41:74:1E:67:E2:D1:07:E1:B3:7C:B6:F8:E6:92:7B:9B:34:67:F7 Authority key identifier: B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64 Certificate issuer: /CN=b473167913af73e4f6374170c4f945f8b0dd7d64 Certificate serial: 019B18DF5139D5B317CC8EA366C086E63DB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft Manifest number: 0DDA Signing time: Sat 13 Dec 2025 18:00:47 +0000 Manifest this update: Sat 13 Dec 2025 18:00:47 +0000 Manifest next update: Sun 14 Dec 2025 18:00:47 +0000 Files and hashes: 1: J0ZgfR5U6lkaUqXFqkaevK5zE7Y.roa (hash: /1drMWi8WHeYZMzayKCKRAt2zHYV3mIjXjepj/lhD8k=) 2: tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl (hash: KbIqpMZQsyNeGl/OtHUYD3pAKU7Y6hc4MhFg3M+05Ko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:df:51:39:d5:b3:17:cc:8e:a3:66:c0:86:e6:3d:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b473167913af73e4f6374170c4f945f8b0dd7d64 Validity Not Before: Dec 13 18:00:47 2025 GMT Not After : Dec 14 18:00:47 2025 GMT Subject: CN=de41741e67e2d107e1b37cb6f8e6927b9b3467f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5b:cb:90:7d:59:9f:b6:fe:4d:b6:1d:08:6e: b4:0c:f4:de:d6:0c:62:4c:eb:76:07:12:6b:06:c2: cb:7c:0c:e4:97:ad:61:6c:59:b5:6e:af:28:c1:b3: d3:fb:a6:7f:ac:38:41:0e:4e:74:70:f5:ef:3a:92: fb:15:4c:6d:81:6e:ba:f0:ea:3f:99:9e:c4:4f:bd: fb:ab:4e:07:b3:cf:c1:5e:c4:c0:ad:86:8c:dc:b9: a6:0a:4e:10:4e:6a:a5:6d:51:60:32:c5:2a:e2:0e: 6a:e7:cf:c7:d9:10:05:c9:7d:69:1d:57:8d:9d:5c: 6f:6f:30:1f:93:ea:ee:65:cd:f7:f3:a6:b3:1c:bd: 71:03:cf:6e:6e:b0:fb:f7:04:8a:74:02:72:3c:55: ed:e5:c5:41:02:77:d8:41:4b:bb:08:2a:2b:11:31: 72:59:03:cc:5c:11:67:dc:60:2f:5e:26:93:c4:2b: f2:65:82:68:5a:5c:8e:4e:af:00:1e:78:5d:a1:0f: 5d:b3:39:f3:de:7a:1b:1d:f7:b4:e4:d3:08:14:f1: 61:ce:80:f7:57:d0:68:0a:5f:c7:bf:2f:5c:f0:d9: 19:0a:e5:29:50:c5:91:3f:e8:a4:86:4b:f9:4d:84: 08:42:22:52:e4:da:0b:43:8e:c4:af:cb:7f:66:f8: 0e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:41:74:1E:67:E2:D1:07:E1:B3:7C:B6:F8:E6:92:7B:9B:34:67:F7 X509v3 Authority Key Identifier: keyid:B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:66:9a:6a:f5:ac:37:84:6d:0c:95:be:a8:b6:ee:83:a4:90: 66:db:1a:c0:08:54:09:d4:66:32:ec:8f:c0:21:98:00:7d:a1: e7:b2:8d:1d:7d:34:b8:80:06:45:14:c4:01:11:20:a5:70:52: 16:f1:28:ec:19:0d:e3:21:c8:89:a2:01:b4:20:d4:cf:64:5b: c2:12:80:e2:9b:b1:de:a7:13:1f:33:3c:83:d1:e7:3b:39:fe: 55:eb:35:da:52:69:e5:40:cc:5c:0d:d3:65:8b:86:10:0d:4a: a9:9a:f6:74:11:8e:17:3e:02:c5:45:52:a6:7a:f8:99:41:92: 21:e4:18:06:cb:8a:8a:90:ba:a0:af:fb:af:53:f2:2b:0c:43: 7a:af:5d:3c:ac:83:5e:4d:3a:a3:3d:b4:d0:5f:07:31:cb:db: 81:9b:44:d1:69:55:fd:26:8f:e3:ad:69:8c:29:9e:05:22:b9: f3:52:67:06:b5:d1:43:ad:ff:d6:90:47:f6:93:e6:5d:46:f0: f1:98:08:15:77:82:d8:e9:d4:67:97:cd:16:dd:64:a7:56:a4: 35:7e:74:cd:02:08:09:7a:26:76:e0:19:b3:62:ff:6e:ef:71: 28:fc:db:eb:c9:6b:fa:37:71:e4:e9:2b:c3:1f:c9:de:84:d1: 12:25:ee:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsY31E51bMXzI6jZsCG5j22MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NzMxNjc5MTNhZjczZTRmNjM3NDE3MGM0Zjk0NWY4YjBk ZDdkNjQwHhcNMjUxMjEzMTgwMDQ3WhcNMjUxMjE0MTgwMDQ3WjAzMTEwLwYDVQQD EyhkZTQxNzQxZTY3ZTJkMTA3ZTFiMzdjYjZmOGU2OTI3YjliMzQ2N2Y3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAolvLkH1Zn7b+TbYdCG60DPTe1gxi TOt2BxJrBsLLfAzkl61hbFm1bq8owbPT+6Z/rDhBDk50cPXvOpL7FUxtgW668Oo/ mZ7ET737q04Hs8/BXsTArYaM3LmmCk4QTmqlbVFgMsUq4g5q58/H2RAFyX1pHVeN nVxvbzAfk+ruZc3386azHL1xA89ubrD79wSKdAJyPFXt5cVBAnfYQUu7CCorETFy WQPMXBFn3GAvXiaTxCvyZYJoWlyOTq8AHnhdoQ9dsznz3nobHfe05NMIFPFhzoD3 V9BoCl/Hvy9c8NkZCuUpUMWRP+ikhkv5TYQIQiJS5NoLQ47Er8t/ZvgOUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN5BdB5n4tEH4bN8tvjmknubNGf3MB8GA1UdIwQY MBaAFLRzFnkTr3Pk9jdBcMT5Rfiw3X1kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEhNV2VST3ZjLVQyTjBGd3hQbEYtTERkZldRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9lNTZkNDEtNWJiOC00YTkxLWE0ZjAt Zjg2ZGNhYWQ4YzQ5LzEvdEhNV2VST3ZjLVQyTjBGd3hQbEYtTERkZldRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9lNTZkNDEtNWJiOC00YTkxLWE0ZjAtZjg2ZGNhYWQ4YzQ5 LzEvdEhNV2VST3ZjLVQyTjBGd3hQbEYtTERkZldRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATWaaavWs N4RtDJW+qLbug6SQZtsawAhUCdRmMuyPwCGYAH2h57KNHX00uIAGRRTEAREgpXBS FvEo7BkN4yHIiaIBtCDUz2RbwhKA4pux3qcTHzM8g9HnOzn+Ves12lJp5UDMXA3T ZYuGEA1KqZr2dBGOFz4CxUVSpnr4mUGSIeQYBsuKipC6oK/7r1PyKwxDeq9dPKyD Xk06oz200F8HMcvbgZtE0WlV/SaP461pjCmeBSK581JnBrXRQ63/1pBH9pPmXUbw 8ZgIFXeC2OnUZ5fNFt1kp1akNX50zQIICXomduAZs2L/bu9xKPzb68lr+jdx5Okr wx/J3oTREiXuzg== -----END CERTIFICATE-----Generated at Sun Dec 14 00:04:45 2025 by rpki-client