This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: jPGR0zD5zaldIFVcrPTB8vIft0BxsA3/TiobdsdIsVc= Subject key identifier: AA:36:E1:D2:F2:9A:E6:1F:2A:15:A9:7A:28:AB:AE:D4:9F:B2:C0:49 Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019B37FC99D1AD670A076F2ADEC92BD89AA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 17A2 Signing time: Fri 19 Dec 2025 19:00:59 +0000 Manifest this update: Fri 19 Dec 2025 19:00:59 +0000 Manifest next update: Sat 20 Dec 2025 19:00:59 +0000 Files and hashes: 1: 3m24X-EciRhk0jIJsdLBkFHw4Vc.roa (hash: 4191ER+HI71G/WcSYBdVlGxJt+on8LpGReotMNSci7U=) 2: BWY_6iX1eFA1wINEV3UFtZmQLVc.roa (hash: ieExeoISyHbhbY82Esso3kgMYn1eA+NJEZI1EbJUVxo=) 3: OW3nOicLkrmXZdp3r5orx47eGJQ.roa (hash: 5EmIochVR6v8ogsSzgwpakcQSlqncNbG0N7JC4GvEpY=) 4: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: uNjr5Q7eDHpzztdgNnmZYk28N7cRsLoNoF6RJRMOKxU=) 5: XRjqskDJfCb5PURI6gE2z-7afCI.roa (hash: lC6CdL71ZqZQFEg499ebGpokdZd/v2A2IJbWINe+nqc=) 6: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=) 7: yCdRlY1dy91_yoXt5TFoEdJrw-o.roa (hash: KareyGqAsZ0sDsSq6dTpkWiy0kkcW1Zx+0QaG17jqGs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:fc:99:d1:ad:67:0a:07:6f:2a:de:c9:2b:d8:9a:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Dec 19 19:00:59 2025 GMT Not After : Dec 20 19:00:59 2025 GMT Subject: CN=aa36e1d2f29ae61f2a15a97a28abaed49fb2c049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:84:5d:db:7c:b5:da:a9:3e:34:10:d2:b6:23: be:ff:2b:5a:1e:91:da:14:d2:8a:20:b6:18:32:dd: 3e:18:c2:98:fb:72:f2:73:02:c5:e3:d7:d8:b2:a5: 6b:53:23:be:17:0d:e9:d0:3d:f8:d3:09:62:c6:86: 7e:16:a9:26:80:c9:16:2b:fd:63:bc:44:95:1f:4b: 82:25:4b:90:bc:ed:27:60:3a:d9:08:59:98:d6:90: 22:45:de:ec:51:06:48:19:be:23:4d:7c:e3:4e:57: c2:fd:0d:78:f8:0c:96:c7:3b:eb:ba:2e:bb:94:0e: 4d:f8:77:84:b3:0d:84:81:24:77:3f:5d:87:b4:52: 75:6f:bf:f6:0a:9c:33:77:04:97:66:10:bd:37:e2: f9:5b:e5:06:17:90:99:c3:82:cc:d5:8e:8e:b3:2d: 16:b7:8f:60:ff:b7:b1:5a:6b:6e:44:f5:64:5b:b8: c6:b0:72:e4:a8:54:ab:75:06:d6:47:eb:d6:6e:2c: be:bd:94:2c:a0:af:e4:d2:14:55:cc:d4:99:75:33: 5d:5b:ba:fc:a2:e9:1f:c6:32:9b:85:2a:55:2d:6e: 13:48:3d:b2:80:37:bc:11:9d:cc:c0:c6:9a:c5:04: 83:5f:17:62:7f:c2:02:30:aa:39:9a:0f:7d:6b:9a: 41:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:36:E1:D2:F2:9A:E6:1F:2A:15:A9:7A:28:AB:AE:D4:9F:B2:C0:49 X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:b0:b0:59:55:81:98:49:1f:bb:cb:06:4e:a5:9d:a9:6d:d9: 87:bc:37:b5:e7:bb:2e:d3:24:c6:ec:03:53:5d:ea:1a:c2:42: d1:da:f1:9f:59:b9:d5:a9:70:f8:15:8d:be:41:87:80:83:86: 03:4e:5d:e0:11:2a:01:e7:c0:80:8a:76:09:4d:fd:b4:40:6b: b0:17:c5:c8:95:d6:64:ed:a1:de:1a:63:15:30:63:49:a5:2a: 2d:bb:b4:b4:03:76:5b:83:e1:1d:4d:d2:42:53:c3:e8:ad:14: 2d:dc:8f:51:68:69:d7:fc:66:1d:49:22:78:8f:53:bf:55:21: 61:b7:ee:fd:97:8c:a4:58:c6:b8:21:3c:da:b2:99:2a:8d:ba: 7b:77:f4:68:63:93:56:a0:d9:7c:d9:0e:55:72:2c:5b:8c:11: f3:45:de:3f:5a:2c:0d:46:5e:af:ce:ef:9f:8e:b4:cc:60:4a: 1b:dd:d1:c2:ae:37:01:e9:3a:03:cf:7f:9a:3d:66:93:f4:db: 2f:f5:08:c4:36:b4:64:2b:53:e0:2b:ef:db:52:3a:06:17:41: df:4d:9c:22:5a:82:eb:de:64:2a:96:0a:62:b5:db:5b:fb:c4: bd:69:c4:f9:62:34:09:33:3e:a8:29:a9:c0:41:72:b2:42:61: 87:75:94:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3/JnRrWcKB28q3skr2JqmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjUxMjE5MTkwMDU5WhcNMjUxMjIwMTkwMDU5WjAzMTEwLwYDVQQD EyhhYTM2ZTFkMmYyOWFlNjFmMmExNWE5N2EyOGFiYWVkNDlmYjJjMDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4Rd23y12qk+NBDStiO+/ytaHpHa FNKKILYYMt0+GMKY+3LycwLF49fYsqVrUyO+Fw3p0D340wlixoZ+FqkmgMkWK/1j vESVH0uCJUuQvO0nYDrZCFmY1pAiRd7sUQZIGb4jTXzjTlfC/Q14+AyWxzvrui67 lA5N+HeEsw2EgSR3P12HtFJ1b7/2CpwzdwSXZhC9N+L5W+UGF5CZw4LM1Y6Osy0W t49g/7exWmtuRPVkW7jGsHLkqFSrdQbWR+vWbiy+vZQsoK/k0hRVzNSZdTNdW7r8 oukfxjKbhSpVLW4TSD2ygDe8EZ3MwMaaxQSDXxdif8ICMKo5mg99a5pBuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKo24dLymuYfKhWpeiirrtSfssBJMB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJrCwWVWB mEkfu8sGTqWdqW3Zh7w3tee7LtMkxuwDU13qGsJC0drxn1m51alw+BWNvkGHgIOG A05d4BEqAefAgIp2CU39tEBrsBfFyJXWZO2h3hpjFTBjSaUqLbu0tAN2W4PhHU3S QlPD6K0ULdyPUWhp1/xmHUkieI9Tv1UhYbfu/ZeMpFjGuCE82rKZKo26e3f0aGOT VqDZfNkOVXIsW4wR80XeP1osDUZer87vn460zGBKG93Rwq43Aek6A89/mj1mk/Tb L/UIxDa0ZCtT4Cvv21I6BhdB302cIlqC695kKpYKYrXbW/vEvWnE+WI0CTM+qCmp wEFyskJhh3WUHA== -----END CERTIFICATE-----Generated at Fri Dec 19 20:27:48 2025 by rpki-client