This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json) Hash identifier: s6t72Pts0833NW1lMC8x8rX0Vyasa+urtCcaMOreq8o= Subject key identifier: 39:B8:FA:40:40:09:97:8D:23:79:83:6B:06:8C:A1:62:28:39:80:CF Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1 Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1 Certificate serial: 019B586377840299088C26E981E361282D58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft Manifest number: 0C67 Signing time: Fri 26 Dec 2025 02:01:12 +0000 Manifest this update: Fri 26 Dec 2025 02:01:12 +0000 Manifest next update: Sat 27 Dec 2025 02:01:12 +0000 Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=) 2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: Mc8/QoaCnLZATodiFFo4XOfU/Rgq3f6f7ABo8EyfhHc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 02:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:58:63:77:84:02:99:08:8c:26:e9:81:e3:61:28:2d:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1 Validity Not Before: Dec 26 02:01:12 2025 GMT Not After : Dec 27 02:01:12 2025 GMT Subject: CN=39b8fa404009978d2379836b068ca162283980cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:45:a8:67:e7:ab:7d:bd:76:7d:27:b1:0d:e3: 52:c3:8e:c9:b7:5c:ee:d1:75:db:21:2e:90:38:3c: bb:ff:af:0e:62:cb:88:f2:a1:1f:1c:40:8b:33:8f: 93:80:fc:74:e0:95:01:91:09:a0:15:af:b8:04:d7: 50:d3:3a:a5:da:fc:fb:9a:6e:66:da:2b:01:c1:1f: 05:85:bb:9d:86:58:b0:77:b2:ce:a2:4b:67:d8:aa: 98:3f:5f:55:25:1e:6c:5a:3d:e5:6e:0e:82:19:23: 95:a5:40:e3:6c:15:18:52:09:aa:eb:ab:d4:d0:e0: 3d:d6:88:33:22:11:75:19:f8:66:f2:ff:2c:26:39: 4b:2e:02:9e:57:5c:11:84:83:f3:08:b1:b1:f8:59: e7:ce:24:1c:83:32:96:dd:ba:23:19:f0:ca:52:62: 0a:90:5f:34:91:a0:d6:8d:f1:4c:4c:a1:90:ad:0d: 8d:70:63:97:25:28:cf:5c:eb:f9:a4:2b:3e:e1:5b: e9:39:3b:d5:26:03:33:0e:c1:7b:f8:b6:aa:73:49: 76:94:20:d9:7c:b3:ea:9d:a2:1b:15:74:76:74:97: 1d:b3:14:e4:75:b2:58:42:3b:9e:40:ed:86:f4:c8: 07:7d:d0:39:97:c2:ed:a9:43:dd:bb:bf:d1:0d:8c: 33:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B8:FA:40:40:09:97:8D:23:79:83:6B:06:8C:A1:62:28:39:80:CF X509v3 Authority Key Identifier: keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:6f:68:94:52:3b:5e:54:bb:27:fb:9f:5a:88:34:77:cc:69: 67:0a:44:7e:50:93:4a:a1:97:56:5a:b6:37:34:c0:91:61:63: e8:dc:bd:8e:56:26:e6:5c:cb:37:2e:4c:3d:57:5e:34:f6:28: 09:ef:bf:06:03:4f:a8:a8:65:8c:2f:0a:a4:73:d6:c5:38:ac: ba:fd:88:cf:8b:a0:ae:4a:b9:c4:36:17:1f:5c:f9:db:71:9e: a3:a8:57:54:52:a5:da:54:7b:75:8e:06:e5:43:8f:66:c7:3e: 1c:3b:67:59:48:ba:fb:e6:c8:9d:0d:e8:3c:45:61:4f:41:99: 19:0c:cc:f7:ef:4f:0d:a9:56:06:5e:e1:e3:f4:58:9b:26:ca: c1:1b:27:91:43:7c:d7:2a:99:6a:9d:23:cb:37:79:85:55:62: 2c:0e:1c:10:31:f6:18:c9:95:f6:61:be:88:e1:ec:96:97:10: fb:fd:b5:55:3e:f6:44:fa:c0:90:75:e1:ae:9f:e5:2e:2a:8b: 0b:7f:f8:94:c0:85:66:cf:70:bb:5c:60:64:ba:f0:9c:83:dd: 13:bc:48:04:07:39:90:eb:17:bd:d6:50:86:e3:51:e9:87:5e: cf:6a:ac:17:4e:eb:9e:9a:59:4a:bd:53:bf:80:40:d1:f4:d1: cd:67:8a:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtYY3eEApkIjCbpgeNhKC1YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2Q0ZTlmZTNhNTQ4N2QyMGYxMDAwMTkxNjI5MTUwZjYy OGYzYTEwHhcNMjUxMjI2MDIwMTEyWhcNMjUxMjI3MDIwMTEyWjAzMTEwLwYDVQQD EygzOWI4ZmE0MDQwMDk5NzhkMjM3OTgzNmIwNjhjYTE2MjI4Mzk4MGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUWoZ+erfb12fSexDeNSw47Jt1zu 0XXbIS6QODy7/68OYsuI8qEfHECLM4+TgPx04JUBkQmgFa+4BNdQ0zql2vz7mm5m 2isBwR8Fhbudhliwd7LOoktn2KqYP19VJR5sWj3lbg6CGSOVpUDjbBUYUgmq66vU 0OA91ogzIhF1Gfhm8v8sJjlLLgKeV1wRhIPzCLGx+FnnziQcgzKW3bojGfDKUmIK kF80kaDWjfFMTKGQrQ2NcGOXJSjPXOv5pCs+4VvpOTvVJgMzDsF7+Laqc0l2lCDZ fLPqnaIbFXR2dJcdsxTkdbJYQjueQO2G9MgHfdA5l8LtqUPdu7/RDYwzwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDm4+kBACZeNI3mDawaMoWIoOYDPMB8GA1UdIwQY MBaAFLQ9Tp/jpUh9IPEAAZFikVD2KPOhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2It OWY3ODhmZDI3NTIwLzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8xOGQwMzUtMzQ5NC00YWI3LWE1Y2ItOWY3ODhmZDI3NTIw LzEvdEQxT24tT2xTSDBnOFFBQmtXS1JVUFlvODZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANW9olFI7 XlS7J/ufWog0d8xpZwpEflCTSqGXVlq2NzTAkWFj6Ny9jlYm5lzLNy5MPVdeNPYo Ce+/BgNPqKhljC8KpHPWxTisuv2Iz4ugrkq5xDYXH1z523Geo6hXVFKl2lR7dY4G 5UOPZsc+HDtnWUi6++bInQ3oPEVhT0GZGQzM9+9PDalWBl7h4/RYmybKwRsnkUN8 1yqZap0jyzd5hVViLA4cEDH2GMmV9mG+iOHslpcQ+/21VT72RPrAkHXhrp/lLiqL C3/4lMCFZs9wu1xgZLrwnIPdE7xIBAc5kOsXvdZQhuNR6Ydez2qsF07rnppZSr1T v4BA0fTRzWeKDA== -----END CERTIFICATE-----Generated at Fri Dec 26 11:00:26 2025 by rpki-client