This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft File: tm6nNZIhwbd9bMAG97ZwapqQgpk.mft (raw, json) Hash identifier: /TjYoG1h2YxmEZtC0UAEwSTSJJbjl2I8o9DFneftSMg= Subject key identifier: 66:93:12:27:C1:2B:F7:24:38:EF:9A:F3:51:03:48:2E:AB:31:6B:A5 Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99 Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299 Certificate serial: 019B1E73E6CA15AAA1497C06F466DB5C24CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft Manifest number: 1788 Signing time: Sun 14 Dec 2025 20:01:10 +0000 Manifest this update: Sun 14 Dec 2025 20:01:10 +0000 Manifest next update: Mon 15 Dec 2025 20:01:10 +0000 Files and hashes: 1: 040TsSTaomXmk-0H6b35Y5nsohA.roa (hash: ywLoOOPj8BHlaIbmhxcOt0xmd8oXL/QshjksxdsZgto=) 2: tm6nNZIhwbd9bMAG97ZwapqQgpk.crl (hash: BUDSARRzKrD+cl0VVR8QmDOqBClu0ZX+ZuodfbXUkhc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:73:e6:ca:15:aa:a1:49:7c:06:f4:66:db:5c:24:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299 Validity Not Before: Dec 14 20:01:10 2025 GMT Not After : Dec 15 20:01:10 2025 GMT Subject: CN=66931227c12bf72438ef9af35103482eab316ba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:90:39:12:8c:a7:10:44:d1:23:2b:de:09:e6: bd:74:21:a7:45:c5:c8:67:4d:b9:6a:3e:c5:8b:02: 85:ed:17:0f:16:c9:83:16:b7:fb:1a:49:6a:52:2f: 1a:7a:a4:e6:6a:76:8b:b4:5e:67:de:e8:8e:bf:d0: b5:a9:82:ec:79:50:ac:99:7a:4d:0a:1a:72:14:7b: 2d:80:4c:84:9e:50:74:7b:b9:a4:89:67:82:c2:d7: c3:14:23:b8:4c:27:81:01:e2:1c:56:8b:7f:2b:4f: 2c:ce:1a:25:c6:55:37:c7:18:73:94:f4:8f:64:6f: 39:05:ea:e5:af:fa:ac:83:fb:bf:27:ae:3f:07:96: 15:3b:69:e2:4f:73:fc:7c:ee:c9:9e:3f:fa:d9:84: ac:63:b7:f0:58:d9:d0:fc:b7:29:f5:09:9f:82:16: fe:17:69:21:4d:ad:2f:cd:9d:4b:08:7a:17:c3:f0: 0b:2b:40:80:a6:8f:a6:49:87:c9:24:9b:9b:90:3a: cb:03:a7:df:f4:1f:4f:9d:d9:1d:91:db:ff:f7:f0: 04:ed:7a:e9:f3:6e:02:eb:fd:73:36:35:6a:57:98: 5b:79:93:61:e1:d4:1a:3b:a4:a6:fa:69:bb:b9:99: 08:d6:cb:bd:31:ea:09:96:1e:23:53:e6:81:b2:68: 37:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:93:12:27:C1:2B:F7:24:38:EF:9A:F3:51:03:48:2E:AB:31:6B:A5 X509v3 Authority Key Identifier: keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b5:66:a3:00:c0:b2:0a:83:c3:73:1f:cb:cf:b7:db:94:15: 35:41:3e:d4:bf:75:a5:2e:31:e8:de:6e:2d:33:2f:6a:1f:70: a6:be:c1:03:e7:5e:f3:7b:05:34:a9:9e:28:1e:93:3a:9f:4a: 03:2f:33:4a:ea:f2:28:13:50:94:ff:93:5d:97:6c:30:9e:22: 22:c6:b1:fb:1c:c3:3b:27:85:cb:9a:76:59:14:6f:3a:03:3b: 96:3e:9f:6e:7c:b8:f8:9a:34:b3:e8:ed:b9:d7:e2:8e:aa:cf: 5a:7a:1a:97:a7:18:fd:b1:b1:66:37:0a:33:04:7d:e8:f2:95: ae:c7:0f:8b:59:5d:07:6d:3b:de:b3:0d:f1:c1:c8:66:af:ab: e2:a4:8c:64:3a:a0:94:b1:d1:0a:a6:a2:e4:3e:dd:c3:07:f0: 68:a5:4d:e6:af:d8:c4:8c:61:ec:e8:da:cc:75:86:f7:0b:09: d7:db:74:1e:55:de:78:b2:6b:1c:90:37:8e:1e:ab:fb:b0:67: e4:2d:80:e0:04:b5:ac:e8:8f:88:8f:dc:50:8d:5a:cd:23:13: 64:c1:8c:7a:5c:54:37:39:65:2a:f4:40:8d:53:b0:c3:75:da: 42:3f:69:50:8b:1b:e6:52:db:eb:b6:f9:f3:12:59:9d:60:d5: c9:e9:e7:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsec+bKFaqhSXwG9GbbXCTNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2NmVhNzM1OTIyMWMxYjc3ZDZjYzAwNmY3YjY3MDZhOWE5 MDgyOTkwHhcNMjUxMjE0MjAwMTEwWhcNMjUxMjE1MjAwMTEwWjAzMTEwLwYDVQQD Eyg2NjkzMTIyN2MxMmJmNzI0MzhlZjlhZjM1MTAzNDgyZWFiMzE2YmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZA5EoynEETRIyveCea9dCGnRcXI Z025aj7FiwKF7RcPFsmDFrf7GklqUi8aeqTmanaLtF5n3uiOv9C1qYLseVCsmXpN ChpyFHstgEyEnlB0e7mkiWeCwtfDFCO4TCeBAeIcVot/K08szholxlU3xxhzlPSP ZG85Berlr/qsg/u/J64/B5YVO2niT3P8fO7Jnj/62YSsY7fwWNnQ/Lcp9Qmfghb+ F2khTa0vzZ1LCHoXw/ALK0CApo+mSYfJJJubkDrLA6ff9B9Pndkdkdv/9/AE7Xrp 824C6/1zNjVqV5hbeZNh4dQaO6Sm+mm7uZkI1su9MeoJlh4jU+aBsmg3SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGaTEifBK/ckOO+a81EDSC6rMWulMB8GA1UdIwQY MBaAFLZupzWSIcG3fWzABve2cGqakIKZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9mODdhMmUtNDZiMS00YTY2LWE5MGMt Njk5ODM1YzkyYmZlLzEvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9mODdhMmUtNDZiMS00YTY2LWE5MGMtNjk5ODM1YzkyYmZl LzEvdG02bk5aSWh3YmQ5Yk1BRzk3WndhcHFRZ3BrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbrVmowDA sgqDw3Mfy8+325QVNUE+1L91pS4x6N5uLTMvah9wpr7BA+de83sFNKmeKB6TOp9K Ay8zSuryKBNQlP+TXZdsMJ4iIsax+xzDOyeFy5p2WRRvOgM7lj6fbny4+Jo0s+jt udfijqrPWnoal6cY/bGxZjcKMwR96PKVrscPi1ldB2073rMN8cHIZq+r4qSMZDqg lLHRCqai5D7dwwfwaKVN5q/YxIxh7OjazHWG9wsJ19t0HlXeeLJrHJA3jh6r+7Bn 5C2A4AS1rOiPiI/cUI1azSMTZMGMelxUNzllKvRAjVOww3XaQj9pUIsb5lLb67b5 8xJZnWDVyenneA== -----END CERTIFICATE-----Generated at Sun Dec 14 21:35:02 2025 by rpki-client