This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json) Hash identifier: 0Me+ni9wLNhc87655KQrJ/eMP+hWcJ6nx9y3So1q7jI= Subject key identifier: 6A:33:44:7E:12:B0:BB:A5:A8:5A:9A:9F:81:13:59:26:D7:21:5D:12 Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Certificate serial: 019B679F6F273D428AD8084EB568501D4A49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft Manifest number: 179C Signing time: Mon 29 Dec 2025 01:01:00 +0000 Manifest this update: Mon 29 Dec 2025 01:01:00 +0000 Manifest next update: Tue 30 Dec 2025 01:01:00 +0000 Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=) 2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: c7yL0YlTIhTH35+SOPUvqsIFqjLevUGprrlKMBrQAzk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 20:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:67:9f:6f:27:3d:42:8a:d8:08:4e:b5:68:50:1d:4a:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Validity Not Before: Dec 29 01:01:00 2025 GMT Not After : Dec 30 01:01:00 2025 GMT Subject: CN=6a33447e12b0bba5a85a9a9f81135926d7215d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9a:43:98:15:1a:de:53:e8:15:e4:aa:77:0c: da:be:35:2f:c1:87:4c:1e:c6:4f:20:84:f8:a3:ca: 16:25:4f:e4:8a:71:22:2c:01:78:a9:74:2f:07:ad: 7a:85:39:31:50:78:25:c5:33:30:e4:94:6a:2c:be: 8d:51:d7:04:98:f2:d4:33:f0:90:d1:e4:22:f7:27: 51:af:fc:25:f5:e4:8b:23:a1:81:9b:e5:ed:a5:c8: c5:94:cc:80:d2:ce:f2:91:10:c5:f5:de:83:ac:e7: ae:08:d9:a3:e2:55:d7:94:95:74:36:9b:c4:e9:e5: 18:9d:8d:a9:e1:30:2d:c7:ac:0c:b4:12:ba:8f:59: 74:24:1c:53:68:30:58:ef:fd:28:5e:ed:3d:19:9a: 51:f1:9e:b8:3c:cb:b3:65:b5:57:48:bb:a5:77:33: 3b:f1:c2:b1:54:2d:b3:29:b1:3d:84:cd:07:2c:51: 41:79:e8:f3:08:ed:94:c0:13:7c:c5:e2:12:0c:8f: 17:a8:e5:02:bc:6b:3c:a1:2d:32:e9:24:ec:a2:41: a8:cc:f4:d8:a0:c0:4a:c2:d1:34:4a:bf:97:87:3f: 19:53:61:d7:da:0d:b3:c8:41:46:69:f7:d4:77:24: 38:3e:ed:cb:dc:8f:09:df:4c:8d:3c:ae:e2:d3:df: 2e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:33:44:7E:12:B0:BB:A5:A8:5A:9A:9F:81:13:59:26:D7:21:5D:12 X509v3 Authority Key Identifier: keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:32:3b:ae:e0:db:e5:f5:fa:a9:45:0b:d4:64:89:d3:8d:07: 8f:cb:91:a5:77:6c:7e:8b:c2:c0:0a:4a:81:ab:72:09:7a:cb: 46:ea:ee:1d:75:85:bf:3a:a1:40:44:c8:c9:4a:fa:bc:9f:f7: f5:10:8d:36:6e:0b:8b:82:4e:df:5c:a8:fc:5d:0d:85:7d:fb: e9:88:1c:7f:a6:60:0e:04:2a:e0:26:2d:cf:6b:6f:b4:45:95: b1:02:55:80:b4:b3:74:b1:4e:7c:53:99:c2:b2:34:16:6c:99: 64:83:99:1d:59:4e:48:7b:35:06:cc:a4:cb:83:35:f7:b7:55: 38:59:d8:0d:ad:58:b5:7b:e0:63:a3:4a:26:b2:a2:11:71:fb: a1:fa:1a:9c:da:cf:b4:27:56:4c:81:dd:81:76:7c:51:3f:b6: 66:b7:e7:16:89:31:c3:74:7f:7a:77:ca:94:89:7f:18:77:a0: 19:81:e5:d7:e0:3d:58:ea:72:b5:48:47:e2:1c:6e:0c:c9:27: db:b2:2b:50:7e:59:18:d9:09:bd:c2:21:45:58:16:ba:a0:29: 69:5c:4c:0f:83:63:cf:c2:a6:5f:b7:92:f5:4d:29:23:ce:26: 0a:23:a1:11:15:4a:04:df:9d:cc:55:ef:39:ab:46:1d:28:e9: b8:e2:be:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtnn28nPUKK2AhOtWhQHUpJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0 Njg4OWEwHhcNMjUxMjI5MDEwMTAwWhcNMjUxMjMwMDEwMTAwWjAzMTEwLwYDVQQD Eyg2YTMzNDQ3ZTEyYjBiYmE1YTg1YTlhOWY4MTEzNTkyNmQ3MjE1ZDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZpDmBUa3lPoFeSqdwzavjUvwYdM HsZPIIT4o8oWJU/kinEiLAF4qXQvB616hTkxUHglxTMw5JRqLL6NUdcEmPLUM/CQ 0eQi9ydRr/wl9eSLI6GBm+XtpcjFlMyA0s7ykRDF9d6DrOeuCNmj4lXXlJV0NpvE 6eUYnY2p4TAtx6wMtBK6j1l0JBxTaDBY7/0oXu09GZpR8Z64PMuzZbVXSLuldzM7 8cKxVC2zKbE9hM0HLFFBeejzCO2UwBN8xeISDI8XqOUCvGs8oS0y6STsokGozPTY oMBKwtE0Sr+Xhz8ZU2HX2g2zyEFGaffUdyQ4Pu3L3I8J30yNPK7i098uuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGozRH4SsLulqFqan4ETWSbXIV0SMB8GA1UdIwQY MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5 LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjjI7ruDb 5fX6qUUL1GSJ040Hj8uRpXdsfovCwApKgatyCXrLRuruHXWFvzqhQETIyUr6vJ/3 9RCNNm4Li4JO31yo/F0NhX376Ygcf6ZgDgQq4CYtz2tvtEWVsQJVgLSzdLFOfFOZ wrI0FmyZZIOZHVlOSHs1Bsyky4M197dVOFnYDa1YtXvgY6NKJrKiEXH7ofoanNrP tCdWTIHdgXZ8UT+2ZrfnFokxw3R/enfKlIl/GHegGYHl1+A9WOpytUhH4hxuDMkn 27IrUH5ZGNkJvcIhRVgWuqApaVxMD4Njz8KmX7eS9U0pI84mCiOhERVKBN+dzFXv OatGHSjpuOK+Vw== -----END CERTIFICATE-----Generated at Mon Dec 29 02:38:31 2025 by rpki-client