This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json) Hash identifier: sUEf1MpDX/UobQNG89SfRTZy86YbH9CGdfK70qbwApY= Subject key identifier: A0:C8:8E:A0:06:00:87:5E:CA:2D:95:06:65:7D:1F:89:D3:60:E0:7E Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3 Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3 Certificate serial: 019B4ADF38669F4A27888AE547DC58713E8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft Manifest number: 1063 Signing time: Tue 23 Dec 2025 11:01:41 +0000 Manifest this update: Tue 23 Dec 2025 11:01:41 +0000 Manifest next update: Wed 24 Dec 2025 11:01:41 +0000 Files and hashes: 1: AQvnwjdpCCJVGghqg0nwe9L0mVk.roa (hash: lmMkrxQHgFH9/tCkdiNxxBNSfZZ+AeKUjyZG6YnOW/4=) 2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: wwaFumM/mjMtp1FcI7xx7rHlQxFmMqdI8VCkMbE5QZ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:df:38:66:9f:4a:27:88:8a:e5:47:dc:58:71:3e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3 Validity Not Before: Dec 23 11:01:41 2025 GMT Not After : Dec 24 11:01:41 2025 GMT Subject: CN=a0c88ea00600875eca2d9506657d1f89d360e07e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c0:72:70:95:c5:65:90:f2:e3:b8:ff:02:98: e5:94:2b:ea:6b:83:75:83:f4:8c:f8:c6:f9:76:e4: 7f:6a:87:ed:ad:48:d5:71:b0:85:cd:81:31:a0:81: 6c:fc:a0:30:9b:60:34:24:15:19:28:e9:54:60:0e: 01:08:8f:de:ff:d9:29:d9:21:71:04:03:c6:a2:03: fb:f5:3e:6f:5b:5e:ba:aa:68:a3:83:0b:2f:38:d1: 05:87:75:9c:e5:49:5e:a8:a3:8c:fe:30:c8:95:a6: b9:c0:96:3d:08:64:36:fe:d8:4c:3f:58:12:b9:5e: 43:ae:1f:96:51:49:a4:ab:5f:e3:40:68:42:16:90: ab:e8:45:2a:87:91:80:64:9f:e8:09:e5:e0:1f:14: 90:d8:6f:67:5a:44:27:26:d2:42:1d:54:d9:11:81: 41:fa:37:1a:83:04:60:a3:e8:4a:84:d3:32:05:8d: a0:41:ff:f6:df:eb:89:33:cc:bc:1f:d3:ef:6c:82: f4:21:6d:77:7f:3a:94:70:e9:af:c4:4f:2e:97:2a: 39:94:1f:01:90:29:1b:50:e2:06:40:e1:f7:37:d0: f6:c0:f1:e0:8a:12:3c:03:c7:c3:c7:57:50:61:a3: fd:b8:57:7e:39:dd:1f:ec:44:86:92:e3:00:7b:9b: 77:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C8:8E:A0:06:00:87:5E:CA:2D:95:06:65:7D:1F:89:D3:60:E0:7E X509v3 Authority Key Identifier: keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:d6:a6:8a:f7:1e:dd:0f:1b:26:3c:86:ca:ee:8e:3c:6b:bc: 22:63:82:f5:fa:97:8d:5e:bf:b1:17:0f:33:86:94:d4:39:7b: a4:30:05:ad:ac:74:16:d1:1a:a1:cc:75:f6:bf:06:e4:3d:a1: a6:e9:3d:26:ed:07:a4:3c:31:28:c0:eb:0f:55:59:62:61:cf: 0a:52:c8:26:90:9d:d3:f9:ae:99:52:65:97:49:2b:49:38:69: bd:51:37:1e:05:a9:78:ea:d9:8d:6f:24:57:ef:2c:3b:10:e5: c5:2f:93:93:55:bf:5c:40:33:2d:a0:10:86:3c:b2:b7:c6:2a: 48:98:33:5f:11:a3:46:a1:02:f2:6b:f7:1a:85:a6:78:c5:6a: 2a:06:11:eb:73:ca:9a:c3:c4:fd:dd:6f:4b:2a:0f:bd:9e:ed: c4:5f:e5:1f:63:d4:e7:92:19:f4:c9:a0:8e:40:32:b1:6b:50: 33:eb:e8:4e:79:f3:5c:e8:53:5d:a9:38:e2:ff:06:7c:1e:12: b6:a6:66:d9:02:05:08:1b:a9:39:b2:4d:73:d2:6b:a9:a1:9d: 13:8c:79:9f:34:c0:dd:e2:b9:f1:f7:70:3f:98:bf:50:ae:0a: 93:38:69:91:45:a2:e8:1d:09:2d:17:26:09:f5:54:dc:24:f5: 5c:ef:00:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtK3zhmn0oniIrlR9xYcT6LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OTFkMDBiZGI2MjZhZTU3MzA3ZDVjZDRlOGFkZGQ5NDc1 NjgwYjMwHhcNMjUxMjIzMTEwMTQxWhcNMjUxMjI0MTEwMTQxWjAzMTEwLwYDVQQD EyhhMGM4OGVhMDA2MDA4NzVlY2EyZDk1MDY2NTdkMWY4OWQzNjBlMDdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMBycJXFZZDy47j/ApjllCvqa4N1 g/SM+Mb5duR/aoftrUjVcbCFzYExoIFs/KAwm2A0JBUZKOlUYA4BCI/e/9kp2SFx BAPGogP79T5vW166qmijgwsvONEFh3Wc5UleqKOM/jDIlaa5wJY9CGQ2/thMP1gS uV5Drh+WUUmkq1/jQGhCFpCr6EUqh5GAZJ/oCeXgHxSQ2G9nWkQnJtJCHVTZEYFB +jcagwRgo+hKhNMyBY2gQf/23+uJM8y8H9PvbIL0IW13fzqUcOmvxE8ulyo5lB8B kCkbUOIGQOH3N9D2wPHgihI8A8fDx1dQYaP9uFd+Od0f7ESGkuMAe5t37QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKDIjqAGAIdeyi2VBmV9H4nTYOB+MB8GA1UdIwQY MBaAFLaR0AvbYmrlcwfVzU6K3dlHVoCzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEt NDUwYWQ1NWQzMjVhLzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8zZTNkMDgtZTRjNS00ZjNkLWJlMDEtNDUwYWQ1NWQzMjVh LzEvdHBIUUM5dGlhdVZ6QjlYTlRvcmQyVWRXZ0xNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtamivce 3Q8bJjyGyu6OPGu8ImOC9fqXjV6/sRcPM4aU1Dl7pDAFrax0FtEaocx19r8G5D2h puk9Ju0HpDwxKMDrD1VZYmHPClLIJpCd0/mumVJll0krSThpvVE3HgWpeOrZjW8k V+8sOxDlxS+Tk1W/XEAzLaAQhjyyt8YqSJgzXxGjRqEC8mv3GoWmeMVqKgYR63PK msPE/d1vSyoPvZ7txF/lH2PU55IZ9MmgjkAysWtQM+voTnnzXOhTXak44v8GfB4S tqZm2QIFCBupObJNc9JrqaGdE4x5nzTA3eK58fdwP5i/UK4KkzhpkUWi6B0JLRcm CfVU3CT1XO8AtA== -----END CERTIFICATE-----Generated at Tue Dec 23 12:37:22 2025 by rpki-client