This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json) Hash identifier: 0IYHnszNOPcS/GfGqVo2nWHjDoLexTHUvTl8Kcb1l3I= Subject key identifier: B8:27:F9:33:13:58:55:CE:7A:E7:BB:95:6B:F1:DB:56:CA:FC:BF:E8 Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff Certificate serial: 019B4EBB93B5C0E9AF9539B4689C61E3EEF5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft Manifest number: 0E73 Signing time: Wed 24 Dec 2025 05:01:14 +0000 Manifest this update: Wed 24 Dec 2025 05:01:14 +0000 Manifest next update: Thu 25 Dec 2025 05:01:14 +0000 Files and hashes: 1: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: uAaCKTHhvIMJ0qKIw7yifAz+dS7yxEmDkMyxnOSGUY4=) 2: ehQIMYmYwJQIMwezxzrnCxQWXrQ.roa (hash: K5j8O7wSUuuth3uj2946HM7L4q3WosF43ObE+K/eL8k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 05:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:bb:93:b5:c0:e9:af:95:39:b4:68:9c:61:e3:ee:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff Validity Not Before: Dec 24 05:01:14 2025 GMT Not After : Dec 25 05:01:14 2025 GMT Subject: CN=b827f933135855ce7ae7bb956bf1db56cafcbfe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:db:2f:b7:27:4b:90:16:18:5e:77:fa:12:9d: 20:ed:68:16:47:be:7b:81:53:43:1e:be:5d:01:8a: d6:3b:54:0a:02:06:12:9c:b1:d8:41:91:75:a0:b2: 74:3a:e1:a7:8f:38:8a:19:b1:f3:eb:23:c4:90:2a: 77:c8:c4:4f:e0:1e:cd:f7:02:09:02:50:a8:50:1c: 80:23:13:1a:eb:4d:8f:64:43:af:db:6e:7c:35:19: f0:c7:1b:3f:ce:7d:23:a6:c8:f4:9a:f0:e4:9e:28: 0e:5b:10:8b:d3:55:5f:e4:ab:66:44:19:d4:4e:82: 65:36:d4:33:37:dd:e6:fc:dc:f7:5b:f3:f5:53:a0: 57:de:31:29:eb:66:f7:b0:41:e0:27:4a:6e:57:5a: b1:a3:a4:4e:da:50:a4:5c:b1:4b:5d:a9:60:c9:05: 30:07:f2:69:54:7a:35:d9:07:01:83:f8:4d:e6:f9: 52:b3:b5:4b:2d:c3:c3:c0:9a:d7:2a:5a:2a:cf:1f: 08:7d:44:62:29:f8:08:86:49:85:a1:b2:0f:47:03: a1:02:bc:42:b4:25:5d:12:5b:40:76:dc:c7:ff:7a: f0:d9:d7:47:73:74:64:55:68:dc:93:6d:8f:e9:24: c7:6c:05:a1:b4:bd:54:fd:7a:80:c8:3c:f0:b0:b5: 36:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:27:F9:33:13:58:55:CE:7A:E7:BB:95:6B:F1:DB:56:CA:FC:BF:E8 X509v3 Authority Key Identifier: keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:72:90:2b:80:84:3d:1c:87:0e:e2:ff:cd:8b:c0:d2:a6:77: 1b:dc:cc:f2:5a:83:47:18:4f:e0:0a:f9:20:ce:21:2f:3f:08: 13:c3:1a:08:1d:c6:cb:6d:7b:98:f7:2b:d2:96:d7:08:f9:e0: 30:5c:01:5f:49:d5:8a:eb:2a:a6:44:8f:3b:9b:48:82:3f:23: 5d:c0:aa:bc:0b:a1:3d:fc:3b:85:43:a5:9d:fa:9b:5a:e1:2e: cc:5c:ce:68:af:6c:96:5d:32:9d:cd:29:4e:33:96:73:3e:04: 8c:97:c9:09:76:4b:ed:61:0b:9f:ed:d2:eb:c4:b5:23:58:19: 3a:5a:81:92:e7:dd:06:ec:04:9f:35:f8:b3:35:90:65:b2:8e: 5b:4d:cf:75:eb:4c:b6:fc:72:1e:fd:85:d5:92:c0:d8:f9:bf: 92:b4:ba:c6:ae:07:5f:22:9a:9a:1d:1f:80:7a:9d:ce:49:58: 0f:c5:aa:39:30:21:68:c0:c8:29:35:13:d9:01:50:3c:32:16: e9:fd:53:f1:5e:b3:f6:ee:3c:38:2f:bc:c5:ac:d4:b2:42:8e: 56:d5:d2:38:70:30:c3:5d:15:61:ec:f7:77:a3:c0:00:35:63: 82:99:2b:7d:56:bd:db:7c:cd:de:a9:29:90:cf:aa:a5:e1:67: 5a:a2:24:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOu5O1wOmvlTm0aJxh4+71MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk YTdjZmYwHhcNMjUxMjI0MDUwMTE0WhcNMjUxMjI1MDUwMTE0WjAzMTEwLwYDVQQD EyhiODI3ZjkzMzEzNTg1NWNlN2FlN2JiOTU2YmYxZGI1NmNhZmNiZmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNsvtydLkBYYXnf6Ep0g7WgWR757 gVNDHr5dAYrWO1QKAgYSnLHYQZF1oLJ0OuGnjziKGbHz6yPEkCp3yMRP4B7N9wIJ AlCoUByAIxMa602PZEOv2258NRnwxxs/zn0jpsj0mvDknigOWxCL01Vf5KtmRBnU ToJlNtQzN93m/Nz3W/P1U6BX3jEp62b3sEHgJ0puV1qxo6RO2lCkXLFLXalgyQUw B/JpVHo12QcBg/hN5vlSs7VLLcPDwJrXKloqzx8IfURiKfgIhkmFobIPRwOhArxC tCVdEltAdtzH/3rw2ddHc3RkVWjck22P6STHbAWhtL1U/XqAyDzwsLU2ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLgn+TMTWFXOeue7lWvx21bK/L/oMB8GA1UdIwQY MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1 LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjnKQK4CE PRyHDuL/zYvA0qZ3G9zM8lqDRxhP4Ar5IM4hLz8IE8MaCB3Gy217mPcr0pbXCPng MFwBX0nViusqpkSPO5tIgj8jXcCqvAuhPfw7hUOlnfqbWuEuzFzOaK9sll0ync0p TjOWcz4EjJfJCXZL7WELn+3S68S1I1gZOlqBkufdBuwEnzX4szWQZbKOW03PdetM tvxyHv2F1ZLA2Pm/krS6xq4HXyKamh0fgHqdzklYD8WqOTAhaMDIKTUT2QFQPDIW 6f1T8V6z9u48OC+8xazUskKOVtXSOHAww10VYez3d6PAADVjgpkrfVa923zN3qkp kM+qpeFnWqIkbQ== -----END CERTIFICATE-----Generated at Wed Dec 24 11:31:51 2025 by rpki-client