This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json) Hash identifier: 4ZTlPeg619dc5g8TUcqxE66uiM8NjYnXDNGo8Al9O1w= Subject key identifier: EF:72:8B:77:F3:E8:28:1F:20:D0:A1:40:06:ED:75:0D:C5:62:07:18 Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609 Certificate serial: 019B13F00F827F2DF465F72CB8D9C899BB87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft Manifest number: 131C Signing time: Fri 12 Dec 2025 19:00:58 +0000 Manifest this update: Fri 12 Dec 2025 19:00:58 +0000 Manifest next update: Sat 13 Dec 2025 19:00:58 +0000 Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=) 2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=) 3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=) 4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=) 5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=) 6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=) 7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: 8gqpoX/xyEprpoUGn3wOcfHnKhvv+9yN/K57PDq4/es=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 19:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:13:f0:0f:82:7f:2d:f4:65:f7:2c:b8:d9:c8:99:bb:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609 Validity Not Before: Dec 12 19:00:58 2025 GMT Not After : Dec 13 19:00:58 2025 GMT Subject: CN=ef728b77f3e8281f20d0a14006ed750dc5620718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:53:bc:f7:83:c2:0e:29:69:db:ea:a5:3a:d5: c5:fd:46:cc:c8:03:43:42:b3:a0:8e:95:66:d1:06: 72:b6:6f:77:88:9b:ab:18:f8:71:ba:9b:44:28:15: 9c:92:9f:2a:9c:3b:ee:26:dd:39:3f:2b:34:34:29: 89:5a:63:2f:b6:fa:e6:31:5a:b2:9a:11:49:c1:f5: 0d:51:4d:23:f9:61:b9:86:b9:b9:ec:09:98:29:a1: 31:8b:c9:82:ac:f8:1b:71:e7:a4:2e:f3:e2:53:3a: 98:25:b6:f3:02:91:d9:bd:28:17:37:4e:17:f9:30: 20:df:8e:a3:37:81:82:62:59:af:4e:09:8c:31:c5: b7:2b:3d:37:4e:8c:fb:73:ee:93:23:18:61:b3:f6: 94:1b:5b:b2:60:5e:7f:bb:17:62:80:d4:21:c4:50: 16:03:08:89:30:5a:c5:c8:40:d4:53:2b:c5:0d:ea: 4c:68:bf:62:c7:a5:2b:c7:45:55:a0:50:0b:0d:4a: a7:62:72:13:46:c8:e1:07:45:61:a2:6c:33:0b:5d: e9:e3:e2:fc:8d:37:5a:ef:b6:dc:f8:b3:6c:20:3e: 34:2e:5f:c1:1f:b4:8c:13:61:73:e0:41:e9:90:ba: 0d:ab:84:ee:df:2d:7b:7d:f4:58:39:93:74:90:99: b8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:72:8B:77:F3:E8:28:1F:20:D0:A1:40:06:ED:75:0D:C5:62:07:18 X509v3 Authority Key Identifier: keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:7b:63:84:2a:17:86:47:a6:3c:e4:d5:96:42:d6:32:39:7f: ee:94:18:c4:cf:5f:95:7f:96:3b:7c:f4:85:2d:54:8b:e6:9e: 8b:e0:56:ca:11:4b:74:f0:bd:aa:d6:64:6d:9c:cc:c1:10:71: ea:90:cc:40:7f:68:57:23:74:1f:cb:da:3e:bf:0d:27:58:b5: ff:3d:53:ee:8c:ce:0e:52:1f:ae:af:71:22:f1:00:d8:93:b1: ae:71:af:6c:ef:2b:9c:38:d8:65:6c:11:d2:50:ef:11:c9:13: 6b:f2:63:a4:33:3b:9f:0a:7d:25:37:0d:d5:11:94:aa:ea:1f: 53:24:ae:68:a7:03:3b:db:9a:63:dc:38:f9:75:5f:3b:f2:a4: 55:af:5d:ec:31:58:47:29:bb:ea:32:c4:0d:d3:05:e6:7f:66: 57:e2:51:83:be:b6:14:5e:69:e8:35:db:68:93:26:cc:dd:ea: f2:e4:94:91:ca:4f:bc:2d:ce:8b:e0:9e:67:b8:f1:3e:ff:f0: f3:78:b0:51:dc:2d:19:9c:25:51:6f:c5:2a:34:37:97:34:a9: 7b:aa:1d:78:d8:c0:d3:f4:25:87:b2:b5:32:4f:85:ea:2c:57: 11:03:f8:51:6b:e3:04:d6:8e:1b:bf:a6:ba:57:cc:5b:87:10: d7:6b:a8:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsT8A+Cfy30ZfcsuNnImbuHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODZhODY0MzYzM2U5ODc0MTExYThiY2YzNTE4YTA5MDVm Mjg2MDkwHhcNMjUxMjEyMTkwMDU4WhcNMjUxMjEzMTkwMDU4WjAzMTEwLwYDVQQD EyhlZjcyOGI3N2YzZTgyODFmMjBkMGExNDAwNmVkNzUwZGM1NjIwNzE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41O894PCDilp2+qlOtXF/UbMyAND QrOgjpVm0QZytm93iJurGPhxuptEKBWckp8qnDvuJt05Pys0NCmJWmMvtvrmMVqy mhFJwfUNUU0j+WG5hrm57AmYKaExi8mCrPgbceekLvPiUzqYJbbzApHZvSgXN04X +TAg346jN4GCYlmvTgmMMcW3Kz03Toz7c+6TIxhhs/aUG1uyYF5/uxdigNQhxFAW AwiJMFrFyEDUUyvFDepMaL9ix6Urx0VVoFALDUqnYnITRsjhB0VhomwzC13p4+L8 jTda77bc+LNsID40Ll/BH7SME2Fz4EHpkLoNq4Tu3y17ffRYOZN0kJm4YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9yi3fz6CgfINChQAbtdQ3FYgcYMB8GA1UdIwQY MBaAFLWGqGQ2M+mHQRGovPNRigkF8oYJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMt NDQ5OWUzMjM5ZjFmLzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMtNDQ5OWUzMjM5ZjFm LzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArXtjhCoX hkemPOTVlkLWMjl/7pQYxM9flX+WO3z0hS1Ui+aei+BWyhFLdPC9qtZkbZzMwRBx 6pDMQH9oVyN0H8vaPr8NJ1i1/z1T7ozODlIfrq9xIvEA2JOxrnGvbO8rnDjYZWwR 0lDvEckTa/JjpDM7nwp9JTcN1RGUquofUySuaKcDO9uaY9w4+XVfO/KkVa9d7DFY Rym76jLEDdMF5n9mV+JRg762FF5p6DXbaJMmzN3q8uSUkcpPvC3Oi+CeZ7jxPv/w 83iwUdwtGZwlUW/FKjQ3lzSpe6odeNjA0/Qlh7K1Mk+F6ixXEQP4UWvjBNaOG7+m ulfMW4cQ12uohQ== -----END CERTIFICATE-----Generated at Sat Dec 13 04:09:57 2025 by rpki-client