This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json) Hash identifier: OJ9podKaP4Fdorp/Uhn2B/FvZDCLHXjLQcGUs7QjcG8= Subject key identifier: 63:D8:C8:ED:AD:53:4B:FC:94:E3:10:34:85:9A:96:4D:CD:0E:0F:30 Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1 Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1 Certificate serial: 019B5A5197A945A25BE78CD778CDB605A326 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft Manifest number: 0C68 Signing time: Fri 26 Dec 2025 11:00:55 +0000 Manifest this update: Fri 26 Dec 2025 11:00:55 +0000 Manifest next update: Sat 27 Dec 2025 11:00:55 +0000 Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=) 2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: KHcwHfnE7cv90BwM+Nvsxz3ScQAL774x4XFMbrq7LqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:97:a9:45:a2:5b:e7:8c:d7:78:cd:b6:05:a3:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1 Validity Not Before: Dec 26 11:00:55 2025 GMT Not After : Dec 27 11:00:55 2025 GMT Subject: CN=63d8c8edad534bfc94e31034859a964dcd0e0f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c8:41:33:cc:d9:bb:7c:2c:c7:3d:29:5b:74: 40:31:78:be:8d:9d:de:10:a1:5e:aa:63:52:16:ed: 93:2c:87:a3:7d:21:e4:d7:e5:b0:ad:ad:a7:29:98: f6:b5:ef:c5:68:c8:5e:6e:1a:bc:46:57:26:be:f4: 27:fb:80:03:74:84:f7:44:7d:86:1d:f6:ba:56:93: 3a:e0:2e:31:62:26:89:62:27:e6:df:e6:fa:00:00: 91:e4:68:1b:84:b7:e4:d8:02:87:37:2b:02:0c:b6: 2f:76:da:5c:c2:26:b8:f9:29:2d:12:04:61:25:a6: c0:62:54:98:7d:e6:22:9c:ea:85:32:ac:8b:f9:94: 13:8a:c5:94:cf:0b:35:4d:ee:95:f5:1a:ad:66:36: 35:6c:0a:85:92:cd:70:28:dc:ab:95:8e:ef:22:73: 93:21:ad:54:8d:25:40:e7:3a:3b:db:ea:ae:46:80: 1e:4e:d1:9a:37:d0:3f:96:b9:84:cf:91:fb:02:8a: 30:1f:52:46:83:ae:e6:8e:2f:49:a2:6d:ed:e2:e9: 43:15:db:6e:1c:eb:62:c1:a7:33:a8:60:02:9d:df: cb:bf:94:a0:e9:07:92:12:0b:60:04:27:29:e9:29: 4c:6f:5a:0c:fd:68:50:82:4e:52:78:ba:36:3b:af: 14:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D8:C8:ED:AD:53:4B:FC:94:E3:10:34:85:9A:96:4D:CD:0E:0F:30 X509v3 Authority Key Identifier: keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:9f:f0:e3:df:fb:9d:07:40:a1:91:9f:14:30:be:dd:ad:79: ff:8a:2f:a2:82:f5:73:a3:a6:ea:5d:c2:90:80:e8:cb:e0:ad: a2:37:90:0b:43:ac:b3:25:8d:01:99:98:b2:88:81:59:bb:2d: b0:e9:e2:f9:a0:a0:aa:5a:67:4e:bc:24:9a:3c:b5:8e:89:77: 6e:14:0f:64:a4:7e:c4:0b:29:0c:c6:69:e2:e4:58:d1:6c:5c: 46:f7:a7:e0:b6:8f:b5:03:86:ea:8c:9d:2b:b6:1f:a8:51:fc: 8d:c0:c8:b5:f0:e4:a2:f0:cd:6e:61:69:45:b1:30:60:cb:14: 5f:f8:01:dd:08:2d:19:af:82:4b:2e:27:11:a4:5d:9a:fe:95: 1e:15:1f:6e:dd:96:b4:a6:c5:7a:51:78:bc:17:b4:38:44:06: f5:db:36:a0:c8:38:68:8e:71:94:0a:8f:85:d6:d3:06:69:73: 3b:f2:9d:88:5e:e1:dd:85:7d:75:fe:55:ca:ac:57:76:87:1b: a4:3f:02:ee:38:01:8e:04:41:a2:de:b0:24:b3:e8:33:f6:7a: 88:5c:3a:45:21:10:18:91:06:bf:35:21:1e:c0:12:2d:5b:be: 2f:2a:67:81:7b:22:59:99:4d:73:69:6a:ac:f9:f0:d0:2c:e5: c7:11:40:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUZepRaJb54zXeM22BaMmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2Q0ZTlmZTNhNTQ4N2QyMGYxMDAwMTkxNjI5MTUwZjYy OGYzYTEwHhcNMjUxMjI2MTEwMDU1WhcNMjUxMjI3MTEwMDU1WjAzMTEwLwYDVQQD Eyg2M2Q4YzhlZGFkNTM0YmZjOTRlMzEwMzQ4NTlhOTY0ZGNkMGUwZjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxchBM8zZu3wsxz0pW3RAMXi+jZ3e EKFeqmNSFu2TLIejfSHk1+Wwra2nKZj2te/FaMhebhq8RlcmvvQn+4ADdIT3RH2G Hfa6VpM64C4xYiaJYifm3+b6AACR5GgbhLfk2AKHNysCDLYvdtpcwia4+SktEgRh JabAYlSYfeYinOqFMqyL+ZQTisWUzws1Te6V9RqtZjY1bAqFks1wKNyrlY7vInOT Ia1UjSVA5zo72+quRoAeTtGaN9A/lrmEz5H7AoowH1JGg67mji9Jom3t4ulDFdtu HOtiwaczqGACnd/Lv5Sg6QeSEgtgBCcp6SlMb1oM/WhQgk5SeLo2O68U+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPYyO2tU0v8lOMQNIWalk3NDg8wMB8GA1UdIwQY MBaAFLQ9Tp/jpUh9IPEAAZFikVD2KPOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2It OWY3ODhmZDI3NTIwLzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2ItOWY3ODhmZDI3NTIw LzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAZ/w49/7 nQdAoZGfFDC+3a15/4ovooL1c6Om6l3CkIDoy+CtojeQC0OssyWNAZmYsoiBWbst sOni+aCgqlpnTrwkmjy1jol3bhQPZKR+xAspDMZp4uRY0WxcRven4LaPtQOG6oyd K7YfqFH8jcDItfDkovDNbmFpRbEwYMsUX/gB3QgtGa+CSy4nEaRdmv6VHhUfbt2W tKbFelF4vBe0OEQG9ds2oMg4aI5xlAqPhdbTBmlzO/KdiF7h3YV9df5VyqxXdocb pD8C7jgBjgRBot6wJLPoM/Z6iFw6RSEQGJEGvzUhHsASLVu+LypngXsiWZlNc2lq rPnw0CzlxxFA7w== -----END CERTIFICATE-----Generated at Fri Dec 26 12:51:17 2025 by rpki-client