This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft File: TtMkzMCQuDGCmReur3ODTwg0Ss4.mft (raw, json) Hash identifier: /0SNEGCNv0s/LqF7BViN4sH4TzFX3M9+DqtqCFX45bE= Subject key identifier: D2:DF:59:8B:BE:8F:5A:E0:F6:FA:41:78:C5:68:16:BF:91:10:B9:C5 Authority key identifier: 4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE Certificate issuer: /CN=4ed324ccc090b831829917aeaf73834f08344ace Certificate serial: 019B3757B565B236C289AE70D7690DFA97AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft Manifest number: 0295 Signing time: Fri 19 Dec 2025 16:00:53 +0000 Manifest this update: Fri 19 Dec 2025 16:00:53 +0000 Manifest next update: Sat 20 Dec 2025 16:00:53 +0000 Files and hashes: 1: LpPDa_hMKwPOheYcHrNv5BDTWog.roa (hash: 2CoZfLFeobkKqc9qZWTYrYW94wPP5u5Zmz2xUC1WQvs=) 2: TtMkzMCQuDGCmReur3ODTwg0Ss4.crl (hash: JzuhnlKHGRu1ltQwgR4/Noc8Gl6cfhQyZVpbFqg/DdQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:57:b5:65:b2:36:c2:89:ae:70:d7:69:0d:fa:97:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ed324ccc090b831829917aeaf73834f08344ace Validity Not Before: Dec 19 16:00:53 2025 GMT Not After : Dec 20 16:00:53 2025 GMT Subject: CN=d2df598bbe8f5ae0f6fa4178c56816bf9110b9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4f:06:f2:ad:d8:c0:ad:c9:e2:8a:f5:91:09: f8:22:f1:bb:8c:4a:17:ae:c1:fd:52:49:d3:8e:92: 45:66:38:60:2b:40:cb:94:bc:c6:83:ae:d1:2e:fa: 4a:18:72:2b:5c:bc:ca:fc:12:61:1c:f0:fe:29:81: 0b:98:80:ad:bd:9e:f2:ad:38:9f:a1:74:80:37:54: e7:1f:b4:4a:f4:67:c0:9c:9a:be:c6:d1:76:f9:af: 03:5a:0b:92:89:ec:ac:a7:f3:63:c4:60:56:e5:3f: 8a:6a:2e:47:2c:af:d4:4e:2d:05:6f:92:c6:25:03: e0:90:c6:23:eb:be:23:06:07:f3:ce:b3:7e:39:99: 7a:5f:97:2a:bd:41:ed:ac:ad:f4:76:5a:ac:27:b1: 47:6a:00:15:0b:63:66:af:98:73:47:05:77:7c:f4: 8f:da:48:fa:f2:5f:a2:48:46:17:1b:39:bc:2c:12: 32:7b:c0:f0:cb:fc:c0:48:e2:b9:90:e9:7f:1b:a7: 12:ab:ee:99:00:b5:68:8c:81:39:a7:41:1f:dd:1d: f8:3c:37:73:6e:de:eb:bb:81:b5:2c:66:6f:6f:bb: ad:01:55:18:ba:51:63:c7:d9:50:46:78:bd:1f:d9: d5:15:a7:9c:3a:67:dd:34:4f:0a:23:5d:77:9b:4d: 50:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:DF:59:8B:BE:8F:5A:E0:F6:FA:41:78:C5:68:16:BF:91:10:B9:C5 X509v3 Authority Key Identifier: keyid:4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:60:5e:3d:2d:7d:e2:38:7f:7b:c6:6c:df:40:06:4f:c4:bb: 1a:16:69:4a:a2:b2:06:dc:01:ae:d7:4e:29:bb:e7:fe:af:a2: 87:63:e1:d4:ec:b8:4d:91:29:67:bc:64:c7:24:af:3c:3a:b7: a2:2d:1a:d6:8b:76:d3:28:47:be:37:08:85:fa:48:b9:6f:70: 62:4a:5e:88:b2:9e:cf:33:fa:99:7c:6b:ef:42:12:05:05:56: 46:43:74:29:28:60:9b:1e:86:74:56:ef:67:db:32:19:6b:b0: aa:f3:5c:95:18:df:e4:1c:27:cc:51:c9:b9:27:d8:12:88:79: 20:13:eb:d9:c8:95:ab:cc:f8:30:cf:ba:9e:3c:5b:97:e1:31: 96:66:f1:7b:10:25:8e:cd:3c:29:63:b4:3e:f7:e9:d2:0d:aa: 45:51:49:fe:72:0a:36:6b:24:e9:bd:f4:00:b4:31:5c:71:6b: 77:3c:ed:f0:87:5f:f2:52:a5:11:20:7d:65:37:50:b5:d2:d4: 77:e2:00:e3:ec:8b:2c:92:45:3f:87:0b:54:8b:f4:db:97:7b: 9a:01:8f:e9:f1:ae:d8:12:82:a8:1b:9f:f0:24:0e:84:46:45: 00:4d:e5:eb:46:32:95:39:28:37:a1:d6:fa:8d:80:26:70:a1: e8:9d:e6:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3V7VlsjbCia5w12kN+peuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZDMyNGNjYzA5MGI4MzE4Mjk5MTdhZWFmNzM4MzRmMDgz NDRhY2UwHhcNMjUxMjE5MTYwMDUzWhcNMjUxMjIwMTYwMDUzWjAzMTEwLwYDVQQD EyhkMmRmNTk4YmJlOGY1YWUwZjZmYTQxNzhjNTY4MTZiZjkxMTBiOWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApE8G8q3YwK3J4or1kQn4IvG7jEoX rsH9UknTjpJFZjhgK0DLlLzGg67RLvpKGHIrXLzK/BJhHPD+KYELmICtvZ7yrTif oXSAN1TnH7RK9GfAnJq+xtF2+a8DWguSieysp/NjxGBW5T+Kai5HLK/UTi0Fb5LG JQPgkMYj674jBgfzzrN+OZl6X5cqvUHtrK30dlqsJ7FHagAVC2Nmr5hzRwV3fPSP 2kj68l+iSEYXGzm8LBIye8Dwy/zASOK5kOl/G6cSq+6ZALVojIE5p0Ef3R34PDdz bt7ru4G1LGZvb7utAVUYulFjx9lQRni9H9nVFaecOmfdNE8KI113m01QpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNLfWYu+j1rg9vpBeMVoFr+RELnFMB8GA1UdIwQY MBaAFE7TJMzAkLgxgpkXrq9zg08INErOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHRNa3pNQ1F1REdDbVJldXIzT0RUd2cwU3M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy8wMTdjMzctNjFiNi00ZDQwLTg4MWEt NTNhMDg0MzkwNTI3LzEvVHRNa3pNQ1F1REdDbVJldXIzT0RUd2cwU3M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy8wMTdjMzctNjFiNi00ZDQwLTg4MWEtNTNhMDg0MzkwNTI3 LzEvVHRNa3pNQ1F1REdDbVJldXIzT0RUd2cwU3M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmmBePS19 4jh/e8Zs30AGT8S7GhZpSqKyBtwBrtdOKbvn/q+ih2Ph1Oy4TZEpZ7xkxySvPDq3 oi0a1ot20yhHvjcIhfpIuW9wYkpeiLKezzP6mXxr70ISBQVWRkN0KShgmx6GdFbv Z9syGWuwqvNclRjf5BwnzFHJuSfYEoh5IBPr2ciVq8z4MM+6njxbl+ExlmbxexAl js08KWO0Pvfp0g2qRVFJ/nIKNmsk6b30ALQxXHFrdzzt8Idf8lKlESB9ZTdQtdLU d+IA4+yLLJJFP4cLVIv025d7mgGP6fGu2BKCqBuf8CQOhEZFAE3l60YylTkoN6HW +o2AJnCh6J3mXQ== -----END CERTIFICATE-----Generated at Fri Dec 19 22:52:16 2025 by rpki-client