This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft File: 4mthhRZS_I_twBGm8i966ba-sKM.mft (raw, json) Hash identifier: bU2oXypcldjqrJ53yZxJ4RHpyAVtR1hNIBdM2tAXpAo= Subject key identifier: 4F:39:77:D3:3E:1D:55:73:92:40:F8:39:D1:98:43:48:AA:56:15:7C Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3 Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3 Certificate serial: 019B40C89394873B89FDAB530FFB87B7C3A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft Manifest number: 0BB6 Signing time: Sun 21 Dec 2025 12:00:45 +0000 Manifest this update: Sun 21 Dec 2025 12:00:45 +0000 Manifest next update: Mon 22 Dec 2025 12:00:45 +0000 Files and hashes: 1: 4mthhRZS_I_twBGm8i966ba-sKM.crl (hash: 4LAghKMjfA4ozG+XgCT9+fNXZeD7IcEHX4yQKl6vLHU=) 2: bp1oEKvy0k4AWur_R9trAhI-EY0.roa (hash: 1L++/xzP2iQbZgWJOfAhv8wOoNcuV9GiE8g7Q92+ZBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 12:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:c8:93:94:87:3b:89:fd:ab:53:0f:fb:87:b7:c3:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3 Validity Not Before: Dec 21 12:00:45 2025 GMT Not After : Dec 22 12:00:45 2025 GMT Subject: CN=4f3977d33e1d55739240f839d1984348aa56157c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5e:e2:90:ef:1c:ac:57:66:3b:71:70:32:d2: 49:bd:cd:80:67:78:02:46:39:23:ed:7b:9d:24:71: 6d:67:e6:7b:80:21:81:62:f8:27:c4:43:cc:86:74: 79:3a:f2:d8:45:bf:e6:c8:fc:8f:eb:09:b9:f7:2c: 24:c7:11:d8:0e:90:d1:dd:5f:08:75:b9:ff:04:fe: 60:34:7d:17:51:b3:c3:9e:a5:59:38:0a:6c:46:d2: 5c:7b:a7:86:bc:fb:ef:c0:bc:84:71:8e:78:8b:cb: 37:7b:3a:55:e4:e7:54:47:bf:b9:4f:b6:60:71:a7: 26:00:38:17:9a:7e:85:4b:be:2d:42:7b:a7:9f:18: 6f:b0:13:69:fd:82:8a:ca:56:58:95:78:b1:49:fe: 00:f1:a6:4f:0d:c4:27:8d:27:20:83:74:f3:71:22: 0c:5e:33:28:43:3f:b9:9b:85:0b:38:83:af:ac:2b: 46:1a:81:23:dc:44:c4:e2:97:cc:9d:87:0a:e6:84: 7a:2c:3d:5d:87:18:6c:e9:9a:ad:a1:84:74:b1:56: 66:df:82:12:96:21:35:b3:28:96:34:ff:b5:b0:da: f2:a9:11:6b:2b:94:68:e7:dc:37:d7:19:ed:59:34: 48:e4:9e:4c:c3:4a:f7:71:8f:1e:c5:f2:1b:d9:7e: 95:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:39:77:D3:3E:1D:55:73:92:40:F8:39:D1:98:43:48:AA:56:15:7C X509v3 Authority Key Identifier: keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:2a:e3:f6:d2:f9:1d:32:1c:d7:e3:ff:ea:4b:bd:54:e8:53: ad:36:7d:36:f9:35:d1:1b:66:ab:01:80:2e:12:c9:72:6e:29: 55:8d:9d:23:63:1f:5c:9c:ff:4e:ea:b2:f6:a7:3e:e7:8d:5b: 59:49:69:96:09:7d:99:ac:24:0a:ee:cf:cb:ee:ef:26:75:1e: 6c:72:a4:e0:22:15:1d:1d:ba:bc:b6:3e:b1:94:3b:00:9c:8e: a8:77:a5:a6:ad:e7:bf:65:f8:45:78:60:5d:bb:cb:7f:51:a6: 81:5d:7d:12:74:01:14:96:0b:1d:00:5d:34:19:78:e4:ba:c6: 40:d9:bb:9c:59:3a:4c:64:48:fd:6f:20:27:c1:3b:6b:dd:e2: 6e:61:3c:ed:08:3d:17:18:35:58:94:a1:51:e2:8e:ee:25:2a: 2d:0c:3d:fc:65:d7:a9:9e:ce:28:a4:3f:b4:41:04:00:a1:58: 15:11:43:6c:f6:45:4d:cc:ca:3a:65:61:99:6d:bf:27:de:f8: 16:e6:a6:29:98:54:1c:ea:03:cb:50:44:05:96:8b:86:f6:fb: 42:fb:f3:34:ce:cc:b3:8d:ba:71:99:a6:c2:99:42:d8:42:1c: ab:b6:14:62:f2:55:c5:67:26:bb:f4:72:b3:d7:be:91:29:b4: 29:ce:35:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAyJOUhzuJ/atTD/uHt8OlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyNmI2MTg1MTY1MmZjOGZlZGMwMTFhNmYyMmY3YWU5YjZi ZWIwYTMwHhcNMjUxMjIxMTIwMDQ1WhcNMjUxMjIyMTIwMDQ1WjAzMTEwLwYDVQQD Eyg0ZjM5NzdkMzNlMWQ1NTczOTI0MGY4MzlkMTk4NDM0OGFhNTYxNTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2V7ikO8crFdmO3FwMtJJvc2AZ3gC Rjkj7XudJHFtZ+Z7gCGBYvgnxEPMhnR5OvLYRb/myPyP6wm59ywkxxHYDpDR3V8I dbn/BP5gNH0XUbPDnqVZOApsRtJce6eGvPvvwLyEcY54i8s3ezpV5OdUR7+5T7Zg cacmADgXmn6FS74tQnunnxhvsBNp/YKKylZYlXixSf4A8aZPDcQnjScgg3TzcSIM XjMoQz+5m4ULOIOvrCtGGoEj3ETE4pfMnYcK5oR6LD1dhxhs6ZqtoYR0sVZm34IS liE1syiWNP+1sNryqRFrK5Ro59w31xntWTRI5J5Mw0r3cY8exfIb2X6VlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE85d9M+HVVzkkD4OdGYQ0iqVhV8MB8GA1UdIwQY MBaAFOJrYYUWUvyP7cARpvIveum2vrCjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNG10aGhSWlNfSV90d0JHbThpOTY2YmEtc0tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9kNzA4MzMtNjhlYi00MTAwLTkxMjMt OTRlMWFiNTc1MDk0LzEvNG10aGhSWlNfSV90d0JHbThpOTY2YmEtc0tNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi9kNzA4MzMtNjhlYi00MTAwLTkxMjMtOTRlMWFiNTc1MDk0 LzEvNG10aGhSWlNfSV90d0JHbThpOTY2YmEtc0tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiCrj9tL5 HTIc1+P/6ku9VOhTrTZ9Nvk10RtmqwGALhLJcm4pVY2dI2MfXJz/Tuqy9qc+541b WUlplgl9mawkCu7Py+7vJnUebHKk4CIVHR26vLY+sZQ7AJyOqHelpq3nv2X4RXhg XbvLf1GmgV19EnQBFJYLHQBdNBl45LrGQNm7nFk6TGRI/W8gJ8E7a93ibmE87Qg9 Fxg1WJShUeKO7iUqLQw9/GXXqZ7OKKQ/tEEEAKFYFRFDbPZFTczKOmVhmW2/J974 FuamKZhUHOoDy1BEBZaLhvb7QvvzNM7Ms426cZmmwplC2EIcq7YUYvJVxWcmu/Ry s9e+kSm0Kc419Q== -----END CERTIFICATE-----Generated at Sun Dec 21 17:21:50 2025 by rpki-client