This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft File: c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft (raw, json) Hash identifier: Kswt2CF4IytYF+X0Qhvan4nGww4TO83pdz/r9yrq2tY= Subject key identifier: 64:72:E7:E9:56:E7:C7:21:D1:64:FF:59:AC:DD:48:BA:57:4D:63:3E Authority key identifier: 73:84:E5:08:E3:AD:F8:ED:D6:F2:A2:42:CD:AD:6B:DE:9A:5A:D0:18 Certificate issuer: /CN=7384e508e3adf8edd6f2a242cdad6bde9a5ad018 Certificate serial: 019B3FB62700E41D28155535221305DE37CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft Manifest number: 1C Signing time: Sun 21 Dec 2025 07:01:00 +0000 Manifest this update: Sun 21 Dec 2025 07:01:00 +0000 Manifest next update: Mon 22 Dec 2025 07:01:00 +0000 Files and hashes: 1: 9O4IBBfmEECPTdHl1EfJXdQViDA.roa (hash: Sse+xDRukI4H9zJNAkpRk2yXjCfDGUfbJDIbylBubc0=) 2: c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl (hash: RxiS1LUwZvMdRc923qYAo2/fV+S9WZWD+KDWpvNaM5c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 07:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:b6:27:00:e4:1d:28:15:55:35:22:13:05:de:37:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7384e508e3adf8edd6f2a242cdad6bde9a5ad018 Validity Not Before: Dec 21 07:01:00 2025 GMT Not After : Dec 22 07:01:00 2025 GMT Subject: CN=6472e7e956e7c721d164ff59acdd48ba574d633e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:48:3c:b3:e5:a4:c3:e0:91:c9:f1:58:c0: f2:2f:24:99:bf:58:2e:2f:f7:58:72:41:e5:7a:2b: 9e:c5:39:0f:5f:7d:0a:d6:dd:28:bd:6b:f3:5f:56: 14:04:43:53:43:a1:6a:57:ac:58:8d:c9:24:b4:6e: 31:54:2b:3d:2c:fc:8b:37:7f:26:d5:4a:8e:08:f1: 2a:b2:39:30:c8:83:70:1e:df:c8:f3:80:f8:e2:ab: 89:8a:d9:32:bf:55:4c:9e:85:eb:0a:7b:56:80:2c: c0:7f:4f:d5:67:58:59:59:1c:95:d7:fa:ef:5a:d0: 3c:dd:bc:10:8b:38:f0:58:2e:47:55:11:b1:4f:37: 35:8d:b1:5d:81:24:39:31:e0:ce:98:96:95:0c:d1: b9:5d:c2:1f:26:c1:84:15:b4:ff:e7:27:7d:0f:61: 58:af:ad:6f:d1:be:25:58:aa:c4:9f:de:00:67:33: 36:0f:97:32:23:36:bd:ce:09:0c:26:b4:9d:f5:b0: 9a:c8:83:fd:b4:a9:52:4d:ae:30:4e:23:35:51:ad: cb:94:8f:23:a1:6a:19:8d:1b:46:ed:7f:0a:d9:03: 4d:59:cf:c2:94:75:c3:87:21:ec:54:a8:1b:54:a3: 72:b1:e3:a4:70:e7:e2:f7:62:7b:08:8b:e8:1d:c1: d5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:72:E7:E9:56:E7:C7:21:D1:64:FF:59:AC:DD:48:BA:57:4D:63:3E X509v3 Authority Key Identifier: keyid:73:84:E5:08:E3:AD:F8:ED:D6:F2:A2:42:CD:AD:6B:DE:9A:5A:D0:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4TlCOOt-O3W8qJCza1r3ppa0Bg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/066db2-d35c-481f-ba55-55b677235eb3/1/c4TlCOOt-O3W8qJCza1r3ppa0Bg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:82:27:de:ca:b2:4f:13:86:b5:36:a2:33:fb:42:e1:db:f4: 21:bb:30:e5:60:74:d6:95:c7:1e:3d:1a:63:40:54:fb:cc:27: 0e:d8:f3:0a:73:40:46:35:b7:86:c7:8e:68:a0:78:49:fc:4a: 5c:f3:4e:7e:57:e0:a4:4f:99:ea:9b:ab:21:f0:72:82:ed:49: 41:9a:e1:40:41:50:5d:a9:51:2b:7d:84:62:6f:01:5d:1f:c3: 72:08:bb:c3:60:b1:a9:ec:a9:f6:11:aa:e2:05:d3:17:c8:b4: 6a:fe:0f:69:f2:de:a6:9d:aa:56:91:99:04:a5:ab:4b:c3:db: 06:db:27:f7:e6:f2:72:4b:e2:80:dd:28:15:60:77:76:10:ac: 75:25:d4:99:72:03:9b:8d:e7:81:af:90:88:04:ef:93:c7:ad: e1:6e:5a:cf:37:38:75:2f:09:67:1b:6b:9d:1a:e7:af:12:8a: 1a:dc:61:e4:8b:36:e6:1d:a7:db:7f:e0:e9:18:13:bf:08:a6: cc:2c:11:fa:8c:a9:39:03:3b:ed:62:d7:d7:9e:df:4a:fd:fc: 05:d6:85:92:60:6e:ab:f5:c8:54:60:5a:52:4c:ba:96:57:ff: 79:69:9a:0d:e1:32:9b:fa:89:7f:94:42:03:36:74:f8:24:5d: df:72:35:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/ticA5B0oFVU1IhMF3jfNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczODRlNTA4ZTNhZGY4ZWRkNmYyYTI0MmNkYWQ2YmRlOWE1 YWQwMTgwHhcNMjUxMjIxMDcwMTAwWhcNMjUxMjIyMDcwMTAwWjAzMTEwLwYDVQQD Eyg2NDcyZTdlOTU2ZTdjNzIxZDE2NGZmNTlhY2RkNDhiYTU3NGQ2MzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJJIPLPlpMPgkcnxWMDyLySZv1gu L/dYckHleiuexTkPX30K1t0ovWvzX1YUBENTQ6FqV6xYjckktG4xVCs9LPyLN38m 1UqOCPEqsjkwyINwHt/I84D44quJitkyv1VMnoXrCntWgCzAf0/VZ1hZWRyV1/rv WtA83bwQizjwWC5HVRGxTzc1jbFdgSQ5MeDOmJaVDNG5XcIfJsGEFbT/5yd9D2FY r61v0b4lWKrEn94AZzM2D5cyIza9zgkMJrSd9bCayIP9tKlSTa4wTiM1Ua3LlI8j oWoZjRtG7X8K2QNNWc/ClHXDhyHsVKgbVKNyseOkcOfi92J7CIvoHcHVjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGRy5+lW58ch0WT/WazdSLpXTWM+MB8GA1UdIwQY MBaAFHOE5Qjjrfjt1vKiQs2ta96aWtAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzRUbENPT3QtTzNXOHFKQ3phMXIzcHBhMEJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNjZkYjItZDM1Yy00ODFmLWJhNTUt NTViNjc3MjM1ZWIzLzEvYzRUbENPT3QtTzNXOHFKQ3phMXIzcHBhMEJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wNjZkYjItZDM1Yy00ODFmLWJhNTUtNTViNjc3MjM1ZWIz LzEvYzRUbENPT3QtTzNXOHFKQ3phMXIzcHBhMEJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj4In3sqy TxOGtTaiM/tC4dv0Ibsw5WB01pXHHj0aY0BU+8wnDtjzCnNARjW3hseOaKB4SfxK XPNOflfgpE+Z6purIfBygu1JQZrhQEFQXalRK32EYm8BXR/Dcgi7w2Cxqeyp9hGq 4gXTF8i0av4PafLepp2qVpGZBKWrS8PbBtsn9+byckvigN0oFWB3dhCsdSXUmXID m43nga+QiATvk8et4W5azzc4dS8JZxtrnRrnrxKKGtxh5Is25h2n23/g6RgTvwim zCwR+oypOQM77WLX157fSv38BdaFkmBuq/XIVGBaUky6llf/eWmaDeEym/qJf5RC AzZ0+CRd33I1WA== -----END CERTIFICATE-----Generated at Sun Dec 21 14:56:26 2025 by rpki-client