This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json) Hash identifier: 25XD+D7JVmm1qe3W1e3Dge+5ntw42vfIkW7EasZ08HE= Subject key identifier: E6:2F:96:AC:41:0F:C0:BB:39:25:D9:08:FF:25:F2:A9:B3:43:F0:DB Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Certificate serial: 019B65B13F891A943FD97F55A48EF3D559C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft Manifest number: 179B Signing time: Sun 28 Dec 2025 16:01:13 +0000 Manifest this update: Sun 28 Dec 2025 16:01:13 +0000 Manifest next update: Mon 29 Dec 2025 16:01:13 +0000 Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=) 2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: GnJLC20jfgidMKzAiZt7nZW9jR2mSpGT750fj+DHieI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 16:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:65:b1:3f:89:1a:94:3f:d9:7f:55:a4:8e:f3:d5:59:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Validity Not Before: Dec 28 16:01:13 2025 GMT Not After : Dec 29 16:01:13 2025 GMT Subject: CN=e62f96ac410fc0bb3925d908ff25f2a9b343f0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2f:9b:3c:35:c1:bc:61:76:7f:92:8c:51:c8: 66:27:93:4d:64:b7:f8:9d:3e:4a:9a:88:a5:99:9e: d5:d3:c1:0c:d7:82:15:bd:c5:de:9f:3c:0e:8e:50: 80:f4:6a:0e:12:10:01:b7:fd:30:a8:93:0b:1d:37: a6:89:29:9d:90:d9:ed:18:bf:c2:13:43:04:be:12: 73:9e:67:44:73:ce:92:ab:1f:15:a7:85:f4:de:52: f9:46:93:91:02:e0:c5:08:32:13:c9:68:bb:1b:74: 0a:81:4b:53:69:6b:69:51:95:6d:af:6a:19:35:ad: 24:e2:52:69:be:49:bd:2b:72:ce:e7:10:c5:09:21: 38:ba:a8:93:c4:d3:96:47:4d:43:c6:b8:25:fb:c9: ae:c7:70:d2:b6:af:38:b6:45:09:49:7c:f3:d1:c2: 09:0c:18:35:8f:4b:a1:57:0f:2e:77:71:8f:7b:78: 5d:52:eb:8f:5e:b1:13:df:ed:a2:54:00:74:d9:cc: 01:f1:a1:c4:9e:47:44:62:4a:86:fb:09:3d:14:62: 0f:bc:ca:d6:aa:50:0d:0b:7c:13:0a:28:9a:b4:9f: b7:ed:fe:5d:91:95:bd:a9:25:8f:de:14:76:72:81: d1:34:2e:da:ae:89:e8:0f:ad:68:cf:7a:5a:ac:3b: 5a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2F:96:AC:41:0F:C0:BB:39:25:D9:08:FF:25:F2:A9:B3:43:F0:DB X509v3 Authority Key Identifier: keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:fc:9f:30:a2:81:a2:30:96:e3:c2:73:17:80:23:52:0d:3c: d0:83:45:c9:fe:4a:11:1d:95:22:fb:7c:f1:73:c9:02:b8:eb: fb:ee:52:0d:2f:77:14:d5:b8:ca:f5:94:d3:c9:f6:aa:53:50: 3f:21:58:fa:50:e9:ed:8d:db:a1:51:1f:d7:9a:87:7f:ed:2a: a4:5c:68:65:5f:96:aa:39:0a:0c:fc:62:ee:0c:1b:eb:7e:9e: 29:dc:f6:08:cf:f7:59:9b:3a:a0:07:f1:47:fa:64:cc:dc:f1: 8d:96:79:15:a0:9d:d8:e7:e7:b6:21:a5:ec:d7:a8:68:fc:76: 58:55:ad:db:61:0b:0c:41:ff:61:1e:b6:d9:ee:d4:83:b6:4d: 87:39:16:b5:f7:ea:02:14:4c:71:45:9c:94:ce:a9:c8:83:bd: 5f:be:f3:6f:6d:89:bf:ed:72:c4:db:b7:83:46:d2:42:1d:08: 06:dd:6a:9c:b2:41:5f:6b:cf:b1:54:26:0b:24:84:88:89:1e: 2f:bf:48:4f:25:50:bb:6d:12:25:99:9b:58:3c:7e:7a:b8:94: d6:52:67:a8:24:a4:54:40:ab:7f:ec:af:d1:00:51:00:49:a4: fb:2d:dc:97:60:87:d5:64:0a:1c:8f:08:99:7e:ca:9b:dd:82: d2:f2:a2:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtlsT+JGpQ/2X9VpI7z1VnAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0 Njg4OWEwHhcNMjUxMjI4MTYwMTEzWhcNMjUxMjI5MTYwMTEzWjAzMTEwLwYDVQQD EyhlNjJmOTZhYzQxMGZjMGJiMzkyNWQ5MDhmZjI1ZjJhOWIzNDNmMGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4C+bPDXBvGF2f5KMUchmJ5NNZLf4 nT5KmoilmZ7V08EM14IVvcXenzwOjlCA9GoOEhABt/0wqJMLHTemiSmdkNntGL/C E0MEvhJznmdEc86Sqx8Vp4X03lL5RpORAuDFCDITyWi7G3QKgUtTaWtpUZVtr2oZ Na0k4lJpvkm9K3LO5xDFCSE4uqiTxNOWR01Dxrgl+8mux3DStq84tkUJSXzz0cIJ DBg1j0uhVw8ud3GPe3hdUuuPXrET3+2iVAB02cwB8aHEnkdEYkqG+wk9FGIPvMrW qlANC3wTCiiatJ+37f5dkZW9qSWP3hR2coHRNC7aronoD61oz3parDtapQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOYvlqxBD8C7OSXZCP8l8qmzQ/DbMB8GA1UdIwQY MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5 LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgvyfMKKB ojCW48JzF4AjUg080INFyf5KER2VIvt88XPJArjr++5SDS93FNW4yvWU08n2qlNQ PyFY+lDp7Y3boVEf15qHf+0qpFxoZV+WqjkKDPxi7gwb636eKdz2CM/3WZs6oAfx R/pkzNzxjZZ5FaCd2OfntiGl7NeoaPx2WFWt22ELDEH/YR622e7Ug7ZNhzkWtffq AhRMcUWclM6pyIO9X77zb22Jv+1yxNu3g0bSQh0IBt1qnLJBX2vPsVQmCySEiIke L79ITyVQu20SJZmbWDx+eriU1lJnqCSkVECrf+yv0QBRAEmk+y3cl2CH1WQKHI8I mX7Km92C0vKi6Q== -----END CERTIFICATE-----Generated at Mon Dec 29 00:53:23 2025 by rpki-client