This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft File: tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft (raw, json) Hash identifier: 1kIfm7APmMJ5Th1ccSW2h9pMMWCGHhwsDnbITipj/jk= Subject key identifier: 7E:E3:8F:42:4E:98:99:0D:78:99:84:DC:94:B3:96:49:64:1C:06:A9 Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97 Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297 Certificate serial: 019B405ABA44C9EB08C3EB3E837E735D8552 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft Manifest number: 0CEB Signing time: Sun 21 Dec 2025 10:00:46 +0000 Manifest this update: Sun 21 Dec 2025 10:00:46 +0000 Manifest next update: Mon 22 Dec 2025 10:00:46 +0000 Files and hashes: 1: 9ie56jozGctsQMPeP2PnRQlQSUc.roa (hash: 5kDUdIA6jw7l4e4ssTIC7py/rMtiw/D++uBoc2CI0Qo=) 2: mT-8_dVnmXbsJKgoN35LXNaAywM.roa (hash: o5cN5KMUIwn/VQVHMV9OAvcCU4Z7KPV9dR9Yvh1kUlg=) 3: tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl (hash: EHVCkstkhbKH+5t9tHxEHJIUApVrF2FobpQOkpvJAP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5a:ba:44:c9:eb:08:c3:eb:3e:83:7e:73:5d:85:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b414b09beeab905ff41e6813256054b182294297 Validity Not Before: Dec 21 10:00:46 2025 GMT Not After : Dec 22 10:00:46 2025 GMT Subject: CN=7ee38f424e98990d789984dc94b39649641c06a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7a:f1:9f:90:23:a7:9f:ea:97:5a:1b:6f:59: 72:d4:4e:d3:f0:96:43:ee:2d:a3:d6:9e:bc:4c:22: c9:69:2e:ec:3d:0a:83:8b:cf:c1:f1:97:14:d2:72: b2:1a:58:58:8b:73:f0:73:9b:15:fa:4b:6c:66:91: 98:c7:23:2a:f3:85:c7:77:f5:a3:6f:8e:90:e1:3a: 09:c1:08:8e:16:95:fa:de:94:ff:f6:82:60:43:33: c8:5d:f4:80:b8:56:be:9e:4f:05:2f:1a:1a:67:26: 29:fc:c5:87:2e:5b:90:4e:7e:5b:7c:0b:5d:b0:19: 3f:5b:e0:7d:df:d6:d7:91:f8:51:dc:80:a0:db:01: ea:7c:0d:02:8a:22:ef:42:d7:bc:9b:2c:6a:33:c3: e7:0e:72:f8:13:c0:4e:1a:3c:71:e8:cd:cd:ca:28: 6a:27:0f:3e:13:27:95:5b:af:08:19:2f:d9:cb:4e: 3b:66:50:fd:68:31:ae:42:29:d1:40:50:82:e3:db: 82:3b:76:cb:78:ab:d7:1a:d9:47:8f:0a:96:a6:8f: 32:cc:c2:40:15:58:01:8c:30:9a:db:0b:ca:6d:d8: cb:db:c5:b1:d9:cc:24:fe:58:4b:a6:80:7d:d1:90: 30:2c:24:c7:e1:3d:25:de:9b:5c:5a:dc:b7:20:2c: a7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E3:8F:42:4E:98:99:0D:78:99:84:DC:94:B3:96:49:64:1C:06:A9 X509v3 Authority Key Identifier: keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:fe:db:83:6f:b1:55:6c:fd:36:8c:14:41:6b:51:0f:55:18: 25:9d:2e:77:54:50:38:56:fe:84:9f:8f:7c:2e:1b:a4:05:62: 1a:66:1d:f5:e6:9c:53:82:2e:7c:3d:28:6b:16:bc:29:b2:36: 1f:82:53:69:90:b4:15:44:24:d3:b1:28:1d:ce:ed:aa:2f:96: eb:8e:2c:7b:3f:10:31:08:53:bf:de:d3:8c:68:b0:84:ad:7d: dc:a5:26:ed:4f:46:8e:28:e5:f2:2a:c9:a3:31:08:51:b2:49: 28:5b:6d:e8:3e:b5:46:60:14:f0:d9:8f:f6:73:11:db:bc:4c: a4:bb:d5:0a:57:e3:74:db:69:97:0d:70:86:95:76:88:26:03: d9:0d:5d:68:a4:46:6f:85:33:2f:97:23:91:17:1f:83:74:7b: 71:66:39:53:c0:49:e6:fa:09:c1:76:f5:29:24:ae:bb:8f:bf: 2d:7f:18:c9:76:8d:49:a8:08:8f:c8:71:3e:b0:5c:6b:7f:c4: ef:f5:b9:50:d9:03:5d:da:1d:89:33:88:4a:25:ed:0b:9c:30: 72:5b:d9:11:e5:60:19:cc:f8:2a:23:58:6b:f0:9e:d7:06:9c: dd:a1:d8:c8:4a:fd:9c:68:e5:c9:1e:01:23:d2:9f:a4:1b:28: 81:79:6e:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWrpEyesIw+s+g35zXYVSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MTRiMDliZWVhYjkwNWZmNDFlNjgxMzI1NjA1NGIxODIy OTQyOTcwHhcNMjUxMjIxMTAwMDQ2WhcNMjUxMjIyMTAwMDQ2WjAzMTEwLwYDVQQD Eyg3ZWUzOGY0MjRlOTg5OTBkNzg5OTg0ZGM5NGIzOTY0OTY0MWMwNmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Hrxn5Ajp5/ql1obb1ly1E7T8JZD 7i2j1p68TCLJaS7sPQqDi8/B8ZcU0nKyGlhYi3Pwc5sV+ktsZpGYxyMq84XHd/Wj b46Q4ToJwQiOFpX63pT/9oJgQzPIXfSAuFa+nk8FLxoaZyYp/MWHLluQTn5bfAtd sBk/W+B939bXkfhR3ICg2wHqfA0CiiLvQte8myxqM8PnDnL4E8BOGjxx6M3Nyihq Jw8+EyeVW68IGS/Zy047ZlD9aDGuQinRQFCC49uCO3bLeKvXGtlHjwqWpo8yzMJA FVgBjDCa2wvKbdjL28Wx2cwk/lhLpoB90ZAwLCTH4T0l3ptcWty3ICynawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH7jj0JOmJkNeJmE3JSzlklkHAapMB8GA1UdIwQY MBaAFLQUsJvuq5Bf9B5oEyVgVLGCKUKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDIt NGJjZTQyNDcyM2Q5LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDItNGJjZTQyNDcyM2Q5 LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqP7bg2+x VWz9NowUQWtRD1UYJZ0ud1RQOFb+hJ+PfC4bpAViGmYd9eacU4IufD0oaxa8KbI2 H4JTaZC0FUQk07EoHc7tqi+W644sez8QMQhTv97TjGiwhK193KUm7U9Gjijl8irJ ozEIUbJJKFtt6D61RmAU8NmP9nMR27xMpLvVClfjdNtplw1whpV2iCYD2Q1daKRG b4UzL5cjkRcfg3R7cWY5U8BJ5voJwXb1KSSuu4+/LX8YyXaNSagIj8hxPrBca3/E 7/W5UNkDXdodiTOISiXtC5wwclvZEeVgGcz4KiNYa/Ce1wac3aHYyEr9nGjlyR4B I9KfpBsogXluFA== -----END CERTIFICATE-----Generated at Sun Dec 21 19:27:05 2025 by rpki-client