This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft File: TKZvPA8ld05pbSpGcjJ365YRKMM.mft (raw, json) Hash identifier: r9lnkvMa73RKqz/bviYYC0/XEmUpS6BZRD4OLt1XtA4= Subject key identifier: 6D:DE:E3:B3:91:A3:20:ED:7D:BE:47:62:F0:8A:CE:FB:19:EB:A1:84 Authority key identifier: 4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 Certificate issuer: /CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Certificate serial: 019B6D33263F0927A28B32C1C6110134B133 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft Manifest number: 17BE Signing time: Tue 30 Dec 2025 03:00:27 +0000 Manifest this update: Tue 30 Dec 2025 03:00:27 +0000 Manifest next update: Wed 31 Dec 2025 03:00:27 +0000 Files and hashes: 1: 3m24X-EciRhk0jIJsdLBkFHw4Vc.roa (hash: 4191ER+HI71G/WcSYBdVlGxJt+on8LpGReotMNSci7U=) 2: BWY_6iX1eFA1wINEV3UFtZmQLVc.roa (hash: ieExeoISyHbhbY82Esso3kgMYn1eA+NJEZI1EbJUVxo=) 3: OW3nOicLkrmXZdp3r5orx47eGJQ.roa (hash: 5EmIochVR6v8ogsSzgwpakcQSlqncNbG0N7JC4GvEpY=) 4: TKZvPA8ld05pbSpGcjJ365YRKMM.crl (hash: G0X/3aYqvg6OFB3OtXm4tl7r+JhimYdbnKaUZy8ojkY=) 5: XRjqskDJfCb5PURI6gE2z-7afCI.roa (hash: lC6CdL71ZqZQFEg499ebGpokdZd/v2A2IJbWINe+nqc=) 6: aVSDFG9S0qVagyGCDyRaZCcj4uM.roa (hash: 10vd3ei8CEhJdvfMHANX2v90tno0+7P3mxjOYtPwbi4=) 7: yCdRlY1dy91_yoXt5TFoEdJrw-o.roa (hash: KareyGqAsZ0sDsSq6dTpkWiy0kkcW1Zx+0QaG17jqGs=) 8: zQOZPp0VUdzZwmvDdBIkolKBo5Y.roa (hash: aMsmujrcjfYF2sjeUamuDdpHxMQCONRXkGStSS53lTQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:33:26:3f:09:27:a2:8b:32:c1:c6:11:01:34:b1:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca66f3c0f25774e696d2a46723277eb961128c3 Validity Not Before: Dec 30 03:00:27 2025 GMT Not After : Dec 31 03:00:27 2025 GMT Subject: CN=6ddee3b391a320ed7dbe4762f08acefb19eba184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:79:dc:67:21:4b:1a:27:5a:0b:7b:64:a3:c6: 1f:aa:8a:01:18:f0:4d:18:32:dd:0b:da:f6:36:15: ba:42:90:00:fa:61:6d:a5:5a:81:8b:b1:68:5a:b1: 76:8e:74:26:32:b2:e9:ac:24:9e:99:be:27:74:48: 4e:d0:ff:fa:5a:44:66:95:e1:f8:96:3d:43:49:6c: 1f:cb:51:55:01:1a:92:6e:f6:52:29:12:3e:1a:d6: e4:22:9d:f6:4b:50:17:06:95:45:34:81:78:b8:47: bf:03:3e:db:17:5f:28:de:18:a8:9e:ee:22:51:d7: 73:af:b6:94:16:c2:f4:9e:de:26:ae:5d:47:d5:f4: 99:c8:4a:5b:c9:4d:74:5d:d5:f7:8b:2a:fb:26:ab: 82:65:0e:d8:7a:1b:18:c3:85:a2:f7:1c:ae:46:76: b0:4d:d0:10:6b:f0:e4:40:f3:7d:05:8a:fb:77:6e: 1b:4f:3b:b6:0f:24:65:5a:d8:a2:57:81:3b:a9:4a: c2:21:a6:e9:f1:0e:b5:16:9b:21:e5:d3:5e:54:10: be:25:93:87:b3:2a:65:e7:61:4c:1d:17:bc:97:38: 5d:58:47:78:76:33:df:45:a9:1b:f0:b2:fb:27:84: fa:c2:a4:9a:5a:6c:3f:01:e1:2a:6b:57:63:8e:30: 62:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DE:E3:B3:91:A3:20:ED:7D:BE:47:62:F0:8A:CE:FB:19:EB:A1:84 X509v3 Authority Key Identifier: keyid:4C:A6:6F:3C:0F:25:77:4E:69:6D:2A:46:72:32:77:EB:96:11:28:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKZvPA8ld05pbSpGcjJ365YRKMM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/204017-f046-4b69-b3e5-319b0c874440/1/TKZvPA8ld05pbSpGcjJ365YRKMM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f8:82:e0:12:41:f6:b5:ea:b9:97:27:92:db:8a:dc:21:e6: 5d:df:1f:14:f9:5d:a5:86:11:8c:49:d9:7f:75:57:6f:aa:90: 4e:fa:98:db:22:17:6d:2d:6e:48:f3:8b:0c:ea:76:e4:09:db: b7:98:c5:92:52:3e:13:27:9e:bf:07:6d:8b:7d:e7:f3:92:99: 58:14:a1:80:48:b5:46:30:0d:35:ad:ec:2d:4d:6e:32:a6:ad: ae:c8:e9:0d:71:20:0d:7e:18:28:8c:fb:84:08:58:91:b2:24: 75:8a:20:56:4f:42:31:d8:84:87:95:70:98:03:52:f8:94:bf: 53:95:ae:a0:fd:ed:2e:63:22:e0:72:05:72:3e:83:87:5a:69: 5c:57:57:36:0b:e7:fc:df:62:ca:70:6b:a2:ee:99:e9:b0:b4: 92:23:25:d4:ee:74:55:88:df:8e:21:04:bb:9a:69:ad:05:4d: f6:6a:24:b9:e1:7a:dd:88:db:5b:06:27:1c:5c:28:62:a1:94: c0:31:b7:27:a5:b9:34:22:3a:f6:81:3f:f2:ec:0a:30:84:9a: ee:ee:35:0e:b6:84:d7:10:3c:21:29:b8:d0:dc:af:c5:b6:fe: 1a:5c:60:c8:ff:fa:52:38:d8:75:02:bb:36:d7:04:49:a7:05: 6f:f9:69:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttMyY/CSeiizLBxhEBNLEzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTY2ZjNjMGYyNTc3NGU2OTZkMmE0NjcyMzI3N2ViOTYx MTI4YzMwHhcNMjUxMjMwMDMwMDI3WhcNMjUxMjMxMDMwMDI3WjAzMTEwLwYDVQQD Eyg2ZGRlZTNiMzkxYTMyMGVkN2RiZTQ3NjJmMDhhY2VmYjE5ZWJhMTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt3ncZyFLGidaC3tko8YfqooBGPBN GDLdC9r2NhW6QpAA+mFtpVqBi7FoWrF2jnQmMrLprCSemb4ndEhO0P/6WkRmleH4 lj1DSWwfy1FVARqSbvZSKRI+GtbkIp32S1AXBpVFNIF4uEe/Az7bF18o3hionu4i Uddzr7aUFsL0nt4mrl1H1fSZyEpbyU10XdX3iyr7JquCZQ7YehsYw4Wi9xyuRnaw TdAQa/DkQPN9BYr7d24bTzu2DyRlWtiiV4E7qUrCIabp8Q61Fpsh5dNeVBC+JZOH sypl52FMHRe8lzhdWEd4djPfRakb8LL7J4T6wqSaWmw/AeEqa1djjjBiCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3e47ORoyDtfb5HYvCKzvsZ66GEMB8GA1UdIwQY MBaAFEymbzwPJXdOaW0qRnIyd+uWESjDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUt MzE5YjBjODc0NDQwLzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yMDQwMTctZjA0Ni00YjY5LWIzZTUtMzE5YjBjODc0NDQw LzEvVEtadlBBOGxkMDVwYlNwR2NqSjM2NVlSS01NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATPiC4BJB 9rXquZcnktuK3CHmXd8fFPldpYYRjEnZf3VXb6qQTvqY2yIXbS1uSPOLDOp25Anb t5jFklI+Eyeevwdti33n85KZWBShgEi1RjANNa3sLU1uMqatrsjpDXEgDX4YKIz7 hAhYkbIkdYogVk9CMdiEh5VwmANS+JS/U5WuoP3tLmMi4HIFcj6Dh1ppXFdXNgvn /N9iynBrou6Z6bC0kiMl1O50VYjfjiEEu5pprQVN9mokueF63YjbWwYnHFwoYqGU wDG3J6W5NCI69oE/8uwKMISa7u41DraE1xA8ISm40Nyvxbb+GlxgyP/6UjjYdQK7 NtcESacFb/lpzw== -----END CERTIFICATE-----Generated at Tue Dec 30 08:54:50 2025 by rpki-client