This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft File: TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json) Hash identifier: 66laoeBFHnGrfBzPLXfDRoKd3f2SS8XIWesoy3gHUs0= Subject key identifier: 19:92:3B:CC:0E:1D:AC:29:B5:E2:CD:1B:96:F9:A6:DD:90:F8:E7:03 Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea Certificate serial: 019B058FDDA15260BEEBBEDEB7FDB79D833C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft Manifest number: 176D Signing time: Wed 10 Dec 2025 00:01:12 +0000 Manifest this update: Wed 10 Dec 2025 00:01:12 +0000 Manifest next update: Thu 11 Dec 2025 00:01:12 +0000 Files and hashes: 1: 6aBtyL1HCBLQz8Fcxx2-wbI-JSY.roa (hash: s+Yjky9WV0WGtiJ2UXV97kZc6gRv1napm2o37+mL6NI=) 2: R0B0S-Vvq6PSGq8IAqKsdnjdNUo.roa (hash: jZBNXVMhAxnq4wWzeXUVcxAP1mha5zeShrdHGeYvBL4=) 3: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: gOpQXUIesedplX4UpFVVW9lcAMlZmxXhsqdLUkPFYSQ=) 4: snxuxsWrIVBOH4PJX-798Ws3-_I.roa (hash: eUyKfNa1R42Kf80mOcHHq43jou6WV27ocUUMJBjr/10=) 5: wnKhG27ddvv9DbopEcZ0e8BfSyE.roa (hash: 5bhpzUqfkiYr3WyfWoYZHsfUt3MVDy9FbR7pi02+AvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 00:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:8f:dd:a1:52:60:be:eb:be:de:b7:fd:b7:9d:83:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea Validity Not Before: Dec 10 00:01:12 2025 GMT Not After : Dec 11 00:01:12 2025 GMT Subject: CN=19923bcc0e1dac29b5e2cd1b96f9a6dd90f8e703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d2:be:16:83:2f:44:7f:30:67:43:1c:41:3d: 3a:b7:58:a3:d5:17:66:61:00:6a:dc:37:e7:cf:ea: 1e:23:9f:12:43:7c:d0:1a:b8:0e:1d:0a:ea:a7:e4: 26:00:82:1a:86:26:e7:cf:da:8a:20:97:3d:09:6f: 8d:a7:8e:4c:12:35:05:9d:b4:d3:8a:a7:0e:c6:a3: ec:d9:81:8e:5d:bc:f6:69:ce:7a:ef:b2:b5:28:3b: 70:85:23:54:4c:33:0c:f1:97:bc:8a:11:ea:82:b9: 7f:db:9c:4f:c3:21:ce:82:ce:54:9c:f7:4f:97:c0: 12:37:f9:e2:6c:3d:ff:76:0a:06:b2:0d:6b:a4:9b: 07:ea:0b:66:23:75:fb:ef:5c:32:d8:f0:42:2c:fd: e9:c7:ab:76:43:37:62:16:0e:1d:47:d4:18:aa:d1: e6:05:60:b2:67:35:7d:40:66:af:0f:c8:77:65:e9: 76:79:7c:0b:53:bc:9f:1b:01:d2:4b:d2:21:60:81: de:37:ed:dd:5a:fa:b3:d4:fe:bb:b9:87:99:33:22: 6f:4d:e0:3a:87:f2:d6:b3:c2:92:18:b4:e9:91:18: db:c3:73:e9:dc:5a:87:1c:11:df:14:9a:d9:56:ae: ab:fa:88:6c:53:65:69:a1:df:7a:ef:db:d9:e7:7a: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:92:3B:CC:0E:1D:AC:29:B5:E2:CD:1B:96:F9:A6:DD:90:F8:E7:03 X509v3 Authority Key Identifier: keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:96:81:8d:7a:cb:0c:42:98:38:8b:56:72:4a:5b:b1:ff:b3: fe:8f:0a:78:4f:41:c7:02:d1:c0:43:3d:61:bf:03:fc:ab:1e: ed:f8:fc:4e:1e:67:c0:c0:f9:a2:19:73:30:61:f8:f4:e9:36: 6e:e1:0b:da:c0:13:f6:d1:92:c2:60:0a:e2:24:27:ce:11:b4: ae:fe:79:26:ca:1a:b5:1f:50:6b:df:97:01:dd:7d:b6:85:64: 5a:fc:27:6f:d0:32:e8:6a:3f:22:13:45:45:10:b3:6e:f3:c9: 48:08:ea:61:b0:e5:d6:c0:f6:d2:1f:8f:10:c4:92:57:2e:08: 99:3d:46:df:0b:47:b7:50:c1:53:30:f1:b6:b8:e6:43:93:62: 4b:41:eb:75:59:5a:49:ab:53:75:ee:c5:1d:7a:f1:c4:f0:24: 6f:33:e4:89:49:6d:64:01:aa:11:34:b7:f2:8d:0d:f9:3d:00: d8:e3:66:dc:b0:0d:25:4a:09:fe:ae:c3:2f:17:4e:81:a6:57: 4a:46:de:f4:27:5d:8d:c8:80:fc:45:cc:e9:f5:fa:d8:fd:e5: 8c:4b:4e:35:1b:5f:00:6f:8f:30:95:d9:4e:ae:70:67:6f:07: 4b:16:24:d2:fc:b9:2b:b8:04:02:84:ba:b4:19:81:f9:07:39: b1:db:bb:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsFj92hUmC+677et/23nYM8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmM2JkNTZlOGI1NGU2ZGEyN2JiZTY2MjJkYWM2N2NiZjAy YTgxZWEwHhcNMjUxMjEwMDAwMTEyWhcNMjUxMjExMDAwMTEyWjAzMTEwLwYDVQQD EygxOTkyM2JjYzBlMWRhYzI5YjVlMmNkMWI5NmY5YTZkZDkwZjhlNzAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNK+FoMvRH8wZ0McQT06t1ij1Rdm YQBq3Dfnz+oeI58SQ3zQGrgOHQrqp+QmAIIahibnz9qKIJc9CW+Np45MEjUFnbTT iqcOxqPs2YGOXbz2ac5677K1KDtwhSNUTDMM8Ze8ihHqgrl/25xPwyHOgs5UnPdP l8ASN/nibD3/dgoGsg1rpJsH6gtmI3X771wy2PBCLP3px6t2QzdiFg4dR9QYqtHm BWCyZzV9QGavD8h3Zel2eXwLU7yfGwHSS9IhYIHeN+3dWvqz1P67uYeZMyJvTeA6 h/LWs8KSGLTpkRjbw3Pp3FqHHBHfFJrZVq6r+ohsU2Vpod9679vZ53rZwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmSO8wOHawpteLNG5b5pt2Q+OcDMB8GA1UdIwQY MBaAFE871W6LVObaJ7vmYi2sZ8vwKoHqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS82ZmUxNDktOGE3Mi00N2ZkLTg3MzUt N2RjNWJkZGY5MWI1LzEvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS82ZmUxNDktOGE3Mi00N2ZkLTg3MzUtN2RjNWJkZGY5MWI1 LzEvVHp2VmJvdFU1dG9udS1aaUxheG55X0FxZ2VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALJaBjXrL DEKYOItWckpbsf+z/o8KeE9BxwLRwEM9Yb8D/Kse7fj8Th5nwMD5ohlzMGH49Ok2 buEL2sAT9tGSwmAK4iQnzhG0rv55JsoatR9Qa9+XAd19toVkWvwnb9Ay6Go/IhNF RRCzbvPJSAjqYbDl1sD20h+PEMSSVy4ImT1G3wtHt1DBUzDxtrjmQ5NiS0HrdVla SatTde7FHXrxxPAkbzPkiUltZAGqETS38o0N+T0A2ONm3LANJUoJ/q7DLxdOgaZX Skbe9CddjciA/EXM6fX62P3ljEtONRtfAG+PMJXZTq5wZ28HSxYk0vy5K7gEAoS6 tBmB+Qc5sdu7iw== -----END CERTIFICATE-----Generated at Wed Dec 10 06:16:51 2025 by rpki-client