This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json) Hash identifier: Uue7LtxOhzLPoFZ0bKsmRK3le6mKtriz3wsahFov09E= Subject key identifier: C8:74:BA:A9:D1:70:5A:37:E1:CA:E5:9D:FF:56:DA:87:ED:60:04:AA Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a Certificate serial: 019B11943DDDE63B770F41C36DDACC48F912 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft Manifest number: 1776 Signing time: Fri 12 Dec 2025 08:01:26 +0000 Manifest this update: Fri 12 Dec 2025 08:01:26 +0000 Manifest next update: Sat 13 Dec 2025 08:01:26 +0000 Files and hashes: 1: AwMEJfGD-_TNRZ72c5x-9dIRsd4.roa (hash: 6UVDM1JqxHmjbnJ4pDDIOsD2r8EQyy1bF6KNp9ocKGg=) 2: VJtvXDXYtAcS9C4LIbmlaqXh4Co.roa (hash: THcKGdc9aA5a+OjJYNnV65xxowh1d3kb8KQrHqiCPq4=) 3: fUXrv6-AqG-Sdl9xICl4cQAU7yA.roa (hash: jv2v4x0octz1D9witRg3iiWbwIrgi4wxjje3xLewI+U=) 4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: Hmho725lCfh1tDtGhfwOLozO5WAsjTwSF6BiN3ctogI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:94:3d:dd:e6:3b:77:0f:41:c3:6d:da:cc:48:f9:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a Validity Not Before: Dec 12 08:01:26 2025 GMT Not After : Dec 13 08:01:26 2025 GMT Subject: CN=c874baa9d1705a37e1cae59dff56da87ed6004aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:54:70:ee:ba:1e:89:09:86:81:da:b7:d7:5a: 6b:b3:63:74:0a:5f:9e:93:ba:79:99:91:04:0d:8c: ba:ea:e5:b0:2f:b8:db:17:16:61:8b:2f:ea:b7:35: cf:b1:c7:a7:00:fe:f0:cb:f7:1d:17:e5:84:dc:19: 1a:99:90:44:72:1c:08:cb:76:ad:e9:09:11:0a:3d: 2b:b4:fd:b3:d7:6e:32:c0:6e:8b:0d:0c:5c:59:d9: 60:9b:c9:e6:7d:37:48:de:f9:e9:93:61:76:c7:ee: 62:b0:4a:9c:57:a4:6f:21:46:68:59:da:25:a5:57: 3c:9c:ed:cc:7e:dc:42:3b:3f:36:d6:df:9d:82:e2: 90:e7:bb:5f:99:69:5f:f0:ee:5e:cc:39:ae:9e:21: 1e:ff:53:ee:a7:c9:55:b1:3c:fc:78:7a:13:b4:63: c1:9a:1f:72:62:76:14:08:c1:a3:42:f9:76:db:ac: 7c:bd:82:01:a5:a3:7d:fe:12:31:9e:3e:92:4e:a0: f7:12:38:e9:67:a3:25:de:53:e8:52:86:85:6f:99: dc:81:4d:65:b8:ef:a8:f8:cc:3f:a7:50:55:ec:35: 91:0f:f1:e1:2d:bd:16:33:1b:4d:f2:d3:46:db:99: 5f:0f:92:e1:63:4a:fd:c1:1d:07:9a:5d:7b:a4:3b: 83:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:74:BA:A9:D1:70:5A:37:E1:CA:E5:9D:FF:56:DA:87:ED:60:04:AA X509v3 Authority Key Identifier: keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:82:b8:85:f8:2b:15:68:aa:b7:a4:43:e5:fa:20:4e:23:42: eb:36:61:06:99:c3:e6:ef:9d:73:15:aa:a3:94:21:c6:47:8a: 19:1d:cf:e3:26:a7:54:15:8d:b4:20:51:e8:85:d0:15:e3:41: db:bf:ed:60:4f:8a:e6:0e:4e:0f:5f:a4:e9:ed:79:51:81:53: 49:6b:36:1b:76:7b:35:8a:d4:da:7d:9c:c9:94:27:b1:8b:b6: dc:df:de:51:ba:f1:78:88:87:19:bd:67:19:1c:6a:ea:67:31: 6c:d0:d0:7a:f6:dc:92:0b:df:0f:77:96:a0:39:af:1f:65:e1: 08:bd:d5:0f:17:74:d8:b9:d5:08:a8:92:cb:13:e8:32:8f:28: ef:cb:96:40:f1:18:6f:66:e1:e5:52:d7:1a:c9:07:eb:7a:54: d8:a8:ab:81:e8:66:60:b3:c5:60:c3:ff:3a:6b:74:76:c5:af: b9:88:ee:57:bb:7f:74:74:ae:b2:4b:72:b0:a9:01:00:47:5c: 3f:67:c8:8e:98:16:53:a7:0b:4d:23:23:f0:f2:1d:b9:ac:a4: ec:17:61:68:1a:2a:c3:53:b0:cf:b8:1b:51:54:e7:91:31:09: b4:67:f5:49:3b:10:f9:30:1c:e4:f1:07:64:a5:e9:9f:3d:e2: b5:e0:80:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRlD3d5jt3D0HDbdrMSPkSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDI3ZWE0OWY5NzJkMTljNTYzOTNhNjg5ZTdjYmViOTkw ZDVkN2EwHhcNMjUxMjEyMDgwMTI2WhcNMjUxMjEzMDgwMTI2WjAzMTEwLwYDVQQD EyhjODc0YmFhOWQxNzA1YTM3ZTFjYWU1OWRmZjU2ZGE4N2VkNjAwNGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5lRw7roeiQmGgdq311prs2N0Cl+e k7p5mZEEDYy66uWwL7jbFxZhiy/qtzXPscenAP7wy/cdF+WE3BkamZBEchwIy3at 6QkRCj0rtP2z124ywG6LDQxcWdlgm8nmfTdI3vnpk2F2x+5isEqcV6RvIUZoWdol pVc8nO3MftxCOz821t+dguKQ57tfmWlf8O5ezDmuniEe/1Pup8lVsTz8eHoTtGPB mh9yYnYUCMGjQvl226x8vYIBpaN9/hIxnj6STqD3EjjpZ6Ml3lPoUoaFb5ncgU1l uO+o+Mw/p1BV7DWRD/HhLb0WMxtN8tNG25lfD5LhY0r9wR0Hml17pDuDdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMh0uqnRcFo34crlnf9W2oftYASqMB8GA1UdIwQY MBaAFLVCfqSfly0ZxWOTponny+uZDV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1Mjgt MGM0OTU0NzdjYTEwLzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1MjgtMGM0OTU0NzdjYTEw LzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj4K4hfgr FWiqt6RD5fogTiNC6zZhBpnD5u+dcxWqo5QhxkeKGR3P4yanVBWNtCBR6IXQFeNB 27/tYE+K5g5OD1+k6e15UYFTSWs2G3Z7NYrU2n2cyZQnsYu23N/eUbrxeIiHGb1n GRxq6mcxbNDQevbckgvfD3eWoDmvH2XhCL3VDxd02LnVCKiSyxPoMo8o78uWQPEY b2bh5VLXGskH63pU2KirgehmYLPFYMP/Omt0dsWvuYjuV7t/dHSusktysKkBAEdc P2fIjpgWU6cLTSMj8PIduayk7BdhaBoqw1Owz7gbUVTnkTEJtGf1STsQ+TAc5PEH ZKXpnz3iteCA9w== -----END CERTIFICATE-----Generated at Fri Dec 12 15:40:46 2025 by rpki-client