This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json) Hash identifier: gS4ym5GUmxxAkqR8JvPDzb5yztSMfOlt0mh987wse4o= Subject key identifier: B2:E6:40:8F:5D:2A:71:1D:1E:8E:68:61:4A:BD:FA:AB:B3:26:A3:25 Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3 Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3 Certificate serial: 019B1BAB39819176E9F6893679609E83EB7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft Manifest number: 08EA Signing time: Sun 14 Dec 2025 07:02:44 +0000 Manifest this update: Sun 14 Dec 2025 07:02:44 +0000 Manifest next update: Mon 15 Dec 2025 07:02:44 +0000 Files and hashes: 1: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: hcwv5y7M+CahtbHkJI/kS7bFpz69roK71dAt6UuSp9I=) 2: Vh_JUxD0F48NbjyYRcDhXuGyEXI.roa (hash: RX3aXV1jt4pV7znP3Nr6a04cOEHqVMLgDW/kqRB9jNI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 07:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:ab:39:81:91:76:e9:f6:89:36:79:60:9e:83:eb:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3 Validity Not Before: Dec 14 07:02:44 2025 GMT Not After : Dec 15 07:02:44 2025 GMT Subject: CN=b2e6408f5d2a711d1e8e68614abdfaabb326a325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:06:bc:80:34:1f:68:ad:24:88:a6:f1:f0:65: 20:e6:31:1e:ac:37:dd:55:fa:93:98:cc:e9:8e:2c: d4:ba:e1:6c:be:01:09:b0:7f:73:a9:4b:a6:5b:80: 42:8d:d9:c3:ab:bf:aa:34:32:70:dc:f8:59:1c:22: 43:d0:e2:c7:5a:c3:42:3f:0f:f4:95:9b:6b:65:8e: dd:46:62:ad:5f:1c:3a:b5:33:b9:02:a9:a3:40:fa: ba:36:71:db:af:fc:ac:e3:4a:69:d5:9a:b1:26:aa: 96:15:30:53:11:96:d7:a5:8f:09:a6:9b:fc:37:74: 85:52:7d:84:e7:d8:d8:63:b2:47:9b:11:a4:e6:27: 3f:f9:37:74:b2:f4:a9:ed:23:19:20:c2:c7:29:c2: 18:0a:cf:51:59:67:ae:c8:d0:d8:d2:47:ab:9d:fb: d1:f2:bc:29:b5:62:c5:70:2c:b2:91:d1:da:50:cf: dc:fb:5c:6d:40:d1:df:e4:e1:43:d8:b6:fe:b2:cf: e2:42:ea:51:77:21:58:43:a3:71:ed:eb:f2:2a:9f: 1b:c5:6b:23:ed:61:a9:54:ce:a7:0d:8c:7f:c2:53: 4d:af:dd:91:23:22:56:26:dc:b1:9b:d5:e5:4c:73: 4f:c0:97:0b:5e:03:c1:c1:98:2a:14:32:f1:c6:3f: 07:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E6:40:8F:5D:2A:71:1D:1E:8E:68:61:4A:BD:FA:AB:B3:26:A3:25 X509v3 Authority Key Identifier: keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:ca:f4:05:58:af:ef:6d:06:9a:4c:10:c3:47:9c:93:fe:54: 84:f5:0d:c9:6e:44:86:3a:67:03:10:61:a4:8c:a3:d3:14:47: 4d:30:53:c1:c8:2e:b1:c7:c7:6e:8e:c1:91:c4:4f:84:7a:df: b1:27:4c:44:3b:c0:50:96:24:36:27:f0:ed:b2:11:20:94:b7: 86:cd:70:e8:2b:51:fd:5c:48:e5:c8:ad:e0:53:99:af:32:45: d9:6f:88:15:61:46:82:12:2b:78:ec:bd:c5:bd:a2:c1:5a:07: cb:78:3a:31:10:10:97:f0:dc:ab:05:9e:2b:b8:c3:fd:31:dc: 8d:ee:db:74:1c:5f:a0:88:8d:db:10:f0:72:46:09:c5:f1:6f: 73:14:ee:33:3b:e3:03:37:00:0f:1f:9e:bf:0e:2a:9e:1f:d7: a3:32:4d:db:9e:b8:8c:86:56:32:f9:b3:f2:f9:09:4b:b4:61: a9:1f:3c:df:78:12:6d:cc:93:66:83:60:c8:51:28:ae:04:e8: 24:32:a5:87:46:fc:0e:a0:df:de:d1:59:1b:8a:8a:6b:9a:51: 0c:28:b8:05:ec:53:df:48:28:df:7e:d9:ef:dc:d3:22:1b:64: 46:44:bc:0d:dc:64:22:4a:5a:97:d8:53:7e:56:48:09:09:bc: cf:7f:ff:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqzmBkXbp9ok2eWCeg+t6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYzBiN2QzNDVjZmFlNTM0N2QzY2U5OGI0MjQxYjkwMGU0 YTllZjMwHhcNMjUxMjE0MDcwMjQ0WhcNMjUxMjE1MDcwMjQ0WjAzMTEwLwYDVQQD EyhiMmU2NDA4ZjVkMmE3MTFkMWU4ZTY4NjE0YWJkZmFhYmIzMjZhMzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAa8gDQfaK0kiKbx8GUg5jEerDfd VfqTmMzpjizUuuFsvgEJsH9zqUumW4BCjdnDq7+qNDJw3PhZHCJD0OLHWsNCPw/0 lZtrZY7dRmKtXxw6tTO5AqmjQPq6NnHbr/ys40pp1ZqxJqqWFTBTEZbXpY8Jppv8 N3SFUn2E59jYY7JHmxGk5ic/+Td0svSp7SMZIMLHKcIYCs9RWWeuyNDY0kernfvR 8rwptWLFcCyykdHaUM/c+1xtQNHf5OFD2Lb+ss/iQupRdyFYQ6Nx7evyKp8bxWsj 7WGpVM6nDYx/wlNNr92RIyJWJtyxm9XlTHNPwJcLXgPBwZgqFDLxxj8H1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLLmQI9dKnEdHo5oYUq9+quzJqMlMB8GA1UdIwQY MBaAFEzAt9NFz65TR9POmLQkG5AOSp7zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE1DMzAwWFBybE5IMDg2WXRDUWJrQTVLbnZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xNmQzNzAtZjYzMi00Y2ExLThiOTYt MWJlMzI1ZjdhMmUzLzEvVE1DMzAwWFBybE5IMDg2WXRDUWJrQTVLbnZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xNmQzNzAtZjYzMi00Y2ExLThiOTYtMWJlMzI1ZjdhMmUz LzEvVE1DMzAwWFBybE5IMDg2WXRDUWJrQTVLbnZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMr0BViv 720GmkwQw0eck/5UhPUNyW5EhjpnAxBhpIyj0xRHTTBTwcguscfHbo7BkcRPhHrf sSdMRDvAUJYkNifw7bIRIJS3hs1w6CtR/VxI5cit4FOZrzJF2W+IFWFGghIreOy9 xb2iwVoHy3g6MRAQl/DcqwWeK7jD/THcje7bdBxfoIiN2xDwckYJxfFvcxTuMzvj AzcADx+evw4qnh/XozJN2564jIZWMvmz8vkJS7RhqR8833gSbcyTZoNgyFEorgTo JDKlh0b8DqDf3tFZG4qKa5pRDCi4BexT30go337Z79zTIhtkRkS8DdxkIkpal9hT flZICQm8z3//EA== -----END CERTIFICATE-----Generated at Sun Dec 14 17:29:39 2025 by rpki-client