This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft File: TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft (raw, json) Hash identifier: qd+nKgupx6wRvIMprDLRi1qly2v9n8XbqTkC2pFv908= Subject key identifier: 52:9B:6D:B4:19:AE:E4:35:46:62:52:38:79:17:F7:6A:73:17:D6:20 Authority key identifier: 4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE Certificate issuer: /CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee Certificate serial: 019B3FED0596FFCE391C8CF47F58816E8037 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft Manifest number: 01D0 Signing time: Sun 21 Dec 2025 08:00:56 +0000 Manifest this update: Sun 21 Dec 2025 08:00:56 +0000 Manifest next update: Mon 22 Dec 2025 08:00:56 +0000 Files and hashes: 1: QQ_XASovNo3q1eWLyoB1-wbVIbw.roa (hash: +nHnAk51WEvv/rAlJaGO2P/ZVC3It8+Q00l0lZIdxpE=) 2: TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl (hash: tLxhr3EQQ/zWulcMDe4LAdCngcE3Zh2F/4upYTO/bUo=) 3: nD6BDJDA_dWwFQl4pf7gAHlOGhg.roa (hash: 1WAvivFyuRPy1SS+2soFEsbLPwjNLXdysbcvAmnfq4I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ed:05:96:ff:ce:39:1c:8c:f4:7f:58:81:6e:80:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee Validity Not Before: Dec 21 08:00:56 2025 GMT Not After : Dec 22 08:00:56 2025 GMT Subject: CN=529b6db419aee435466252387917f76a7317d620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:43:d7:0a:21:f8:e2:8f:26:e8:65:7a:15:7d: a6:8f:43:7a:0b:33:68:a7:28:bf:08:f8:82:d2:26: 85:80:ca:07:f3:12:a5:bf:66:76:87:82:2e:47:7b: 64:12:2a:28:7f:6e:db:96:e0:1c:4f:37:51:19:37: f5:3d:ab:de:77:62:e1:b4:ef:fb:29:d2:52:95:e1: 89:8e:fc:a4:af:f9:59:9a:7d:ca:2a:5c:2a:31:e8: 58:31:a7:26:69:d4:3f:24:95:bb:4e:a1:ac:1a:e6: 10:80:20:4b:d3:10:d2:1e:a6:38:e3:f8:79:b1:6e: 13:47:8e:5f:5b:6e:cf:df:6a:a4:22:d7:d4:e8:9a: 99:6d:ec:2f:9d:51:42:61:b4:ee:49:96:c6:6b:6d: 45:bc:d7:22:f7:71:dc:33:84:f3:a6:fb:15:28:8b: 24:6f:ff:8c:f4:f2:60:2f:0b:b3:62:2c:4d:1d:90: 13:b0:50:6a:4a:55:b3:5d:b8:ba:44:f5:bb:ae:81: a0:e1:f4:66:cd:0a:f2:7a:4e:70:e3:a7:88:f2:49: c6:d6:45:6f:1b:06:3d:18:33:92:5a:24:4b:be:eb: bc:42:78:08:f4:ab:4d:c8:b2:0f:e5:39:45:b6:e1: c1:3f:54:5a:6a:f8:43:68:28:ee:b4:58:6b:8b:f4: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:9B:6D:B4:19:AE:E4:35:46:62:52:38:79:17:F7:6A:73:17:D6:20 X509v3 Authority Key Identifier: keyid:4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:cf:0e:fc:3b:74:33:fb:f2:e4:12:d0:f3:2e:b3:54:98:0f: 42:ff:9e:ed:4b:a9:6d:c9:53:86:cd:d3:0f:0b:ea:6d:d6:33: 54:43:e3:68:d3:e0:e4:af:53:1c:c3:cb:92:e4:04:f1:fe:42: 50:08:94:e9:d4:8c:7f:0c:4e:5e:16:3b:6d:fe:e7:0d:64:e8: 0e:32:db:66:b8:0a:27:3e:d6:39:3f:c9:b5:e5:e0:1a:10:f4: 74:94:0d:61:b5:61:10:cf:dc:90:12:13:97:b3:70:76:4c:f9: 43:a8:13:85:85:b4:8a:5d:ec:e8:63:d2:a7:80:9e:28:a4:fb: 39:35:44:aa:a4:8f:e6:fd:44:31:bf:ab:fd:b6:9e:57:24:4f: ec:e9:5b:06:5c:30:35:ec:04:7e:62:e8:74:36:27:b4:dd:f5: ff:5f:ca:fd:bd:8a:4e:ef:b2:7f:ae:e7:ba:fb:1b:06:8b:68: eb:91:06:15:8d:bd:89:f4:1f:0f:f6:c2:78:9a:35:2d:fb:64: 7d:ab:65:ec:89:29:5d:49:fc:d9:b0:91:09:cd:13:7f:7d:0d: aa:66:f3:42:74:fe:0d:05:7e:78:3d:d1:2d:a5:ed:cc:40:be: 54:47:c5:08:10:97:bd:ae:60:1d:1e:6a:9f:77:5e:e5:77:60: 13:7f:32:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7QWW/845HIz0f1iBboA3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjM2M2NjVlNTFjYzRjYjVjYWYwNWI4Mjk0ODQzZTI3MzNh MTNkZWUwHhcNMjUxMjIxMDgwMDU2WhcNMjUxMjIyMDgwMDU2WjAzMTEwLwYDVQQD Eyg1MjliNmRiNDE5YWVlNDM1NDY2MjUyMzg3OTE3Zjc2YTczMTdkNjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0PXCiH44o8m6GV6FX2mj0N6CzNo pyi/CPiC0iaFgMoH8xKlv2Z2h4IuR3tkEioof27bluAcTzdRGTf1Paved2LhtO/7 KdJSleGJjvykr/lZmn3KKlwqMehYMacmadQ/JJW7TqGsGuYQgCBL0xDSHqY44/h5 sW4TR45fW27P32qkItfU6JqZbewvnVFCYbTuSZbGa21FvNci93HcM4TzpvsVKIsk b/+M9PJgLwuzYixNHZATsFBqSlWzXbi6RPW7roGg4fRmzQryek5w46eI8knG1kVv GwY9GDOSWiRLvuu8QngI9KtNyLIP5TlFtuHBP1RaavhDaCjutFhri/SPGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFKbbbQZruQ1RmJSOHkX92pzF9YgMB8GA1UdIwQY MBaAFEw8Zl5RzEy1yvBbgpSEPiczoT3uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVER4bVhsSE1UTFhLOEZ1Q2xJUS1Kek9oUGU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS82YjY2YjQtMDY0Yy00MmVlLWE1ZWUt MWE2NWI5MWJlZTU4LzEvVER4bVhsSE1UTFhLOEZ1Q2xJUS1Kek9oUGU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS82YjY2YjQtMDY0Yy00MmVlLWE1ZWUtMWE2NWI5MWJlZTU4 LzEvVER4bVhsSE1UTFhLOEZ1Q2xJUS1Kek9oUGU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI88O/Dt0 M/vy5BLQ8y6zVJgPQv+e7UupbclThs3TDwvqbdYzVEPjaNPg5K9THMPLkuQE8f5C UAiU6dSMfwxOXhY7bf7nDWToDjLbZrgKJz7WOT/JteXgGhD0dJQNYbVhEM/ckBIT l7Nwdkz5Q6gThYW0il3s6GPSp4CeKKT7OTVEqqSP5v1EMb+r/baeVyRP7OlbBlww NewEfmLodDYntN31/1/K/b2KTu+yf67nuvsbBoto65EGFY29ifQfD/bCeJo1Lftk fatl7IkpXUn82bCRCc0Tf30NqmbzQnT+DQV+eD3RLaXtzEC+VEfFCBCXva5gHR5q n3de5XdgE38ykw== -----END CERTIFICATE-----Generated at Sun Dec 21 12:27:20 2025 by rpki-client