This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json) Hash identifier: KaZodPE8I+1KPB66mFB+wMBGEm6QgXu/lrZQ2AOfGY4= Subject key identifier: CC:8F:FB:70:4C:1C:E7:A0:35:09:37:8C:0C:04:B8:75:AC:08:06:A2 Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40 Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40 Certificate serial: 019B2FD5643F53839C8968C2D5F30F959C87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft Manifest number: 04B2 Signing time: Thu 18 Dec 2025 05:01:12 +0000 Manifest this update: Thu 18 Dec 2025 05:01:12 +0000 Manifest next update: Fri 19 Dec 2025 05:01:12 +0000 Files and hashes: 1: kdQZ4QS0sUqXnywKZ8M79hUmfTA.roa (hash: xGG3G4XfdVhcDuFzw8EOPzLUi5vn/b3D8pkyEY9PSkc=) 2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: KzR3R+02KXovq1TZq9/br0Zjj8Bfwdg+9fK0Fmj2dMo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:64:3f:53:83:9c:89:68:c2:d5:f3:0f:95:9c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40 Validity Not Before: Dec 18 05:01:12 2025 GMT Not After : Dec 19 05:01:12 2025 GMT Subject: CN=cc8ffb704c1ce7a03509378c0c04b875ac0806a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:92:58:45:9e:b1:fd:aa:f4:39:57:9f:74:a3: 04:6f:bc:7b:26:e4:6f:15:60:af:79:0f:16:33:1f: a2:88:6b:de:4b:fc:52:92:79:8e:fe:6c:4a:9a:d0: 3c:88:9d:ec:78:99:b8:a8:ba:41:bd:27:c4:1e:f5: c6:b6:70:13:d5:74:27:0a:72:e9:e3:55:49:54:b2: 89:45:1a:af:ca:44:09:ce:bb:23:da:bd:0d:ce:f1: af:0b:7c:8b:01:72:3c:c9:be:26:97:df:ad:f6:3e: c4:d2:3d:61:23:02:8e:0b:20:5a:c4:e2:6e:97:93: 1d:01:44:85:08:97:ed:62:78:0c:cd:84:af:93:af: 2d:02:f4:6c:e5:66:27:3f:98:35:f8:30:d5:4f:bb: 99:76:0c:b5:6e:b2:02:08:18:6e:99:b3:a8:22:65: ab:4e:a0:9c:a2:d7:56:6d:0b:6d:f0:b6:af:0b:3d: 15:36:4f:b3:05:24:bf:58:d6:68:ed:7d:ab:fa:29: 8f:78:9f:c1:31:2c:cf:0e:61:d3:90:47:8d:f0:b2: 2d:c5:ee:4d:c4:d9:58:74:93:01:6e:0a:10:05:0e: 47:a6:95:4e:d5:a9:a9:dd:7d:f7:56:01:33:e7:4b: 76:41:9d:91:32:ee:a7:fd:31:5d:6d:66:f0:23:cc: 41:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8F:FB:70:4C:1C:E7:A0:35:09:37:8C:0C:04:B8:75:AC:08:06:A2 X509v3 Authority Key Identifier: keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:4a:b0:0f:8a:61:ed:8d:b1:e2:a8:53:76:12:43:ae:2b:af: 1b:dc:86:4b:54:1f:93:03:9c:f1:e8:71:9b:0d:89:35:ee:a7: b1:bd:a0:b2:00:0d:1e:6f:e3:a9:2c:55:ac:d9:74:10:e3:3c: d8:a2:74:83:f2:c5:25:0e:f0:ce:fc:a5:52:c8:8d:4a:38:9e: 4a:51:ea:45:48:29:4a:a2:a0:80:76:07:fd:b6:e1:1a:41:25: bb:10:31:f1:2a:61:ff:65:1b:c2:e0:bb:ef:6f:f0:3f:02:1f: 2e:62:85:60:59:71:6c:96:98:b0:4d:4b:1d:f8:de:87:9c:85: 81:f5:cd:be:ae:34:18:77:6d:69:a3:05:ef:66:69:ab:90:67: 4f:07:75:47:59:65:19:e2:9d:93:47:c7:2d:94:86:27:8e:62: 60:0e:7d:5d:b5:70:c5:6c:96:ff:dc:0b:ff:23:94:cc:9a:02: e9:d3:5f:34:43:3c:04:12:bb:bf:56:bb:0f:c6:7c:1e:3d:fb: f1:80:6e:1e:6f:2b:7d:dc:d7:8d:15:72:71:48:3b:cc:e5:fb: 58:82:18:df:3a:0e:ad:f9:52:8f:a2:0a:9f:ea:55:6d:f2:15: af:9a:bc:99:0f:55:ea:0b:0e:4f:4b:04:2e:33:0d:a5:88:4a: 2b:9c:17:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1WQ/U4OciWjC1fMPlZyHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MzZjMGYwZWM4YmJlZGYwZjYwODQ0ZGZlNGZlOTM5MzY5 YTRiNDAwHhcNMjUxMjE4MDUwMTEyWhcNMjUxMjE5MDUwMTEyWjAzMTEwLwYDVQQD EyhjYzhmZmI3MDRjMWNlN2EwMzUwOTM3OGMwYzA0Yjg3NWFjMDgwNmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupJYRZ6x/ar0OVefdKMEb7x7JuRv FWCveQ8WMx+iiGveS/xSknmO/mxKmtA8iJ3seJm4qLpBvSfEHvXGtnAT1XQnCnLp 41VJVLKJRRqvykQJzrsj2r0NzvGvC3yLAXI8yb4ml9+t9j7E0j1hIwKOCyBaxOJu l5MdAUSFCJftYngMzYSvk68tAvRs5WYnP5g1+DDVT7uZdgy1brICCBhumbOoImWr TqCcotdWbQtt8LavCz0VNk+zBSS/WNZo7X2r+imPeJ/BMSzPDmHTkEeN8LItxe5N xNlYdJMBbgoQBQ5HppVO1amp3X33VgEz50t2QZ2RMu6n/TFdbWbwI8xBKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMyP+3BMHOegNQk3jAwEuHWsCAaiMB8GA1UdIwQY MBaAFLQ2wPDsi77fD2CETf5P6Tk2mktAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgt ZGQ4YjVhZmNlZTNiLzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kYjY2YWItNzBhYy00MWFkLTk5NTgtZGQ4YjVhZmNlZTNi LzEvdERiQThPeUx2dDhQWUlSTl9rX3BPVGFhUzBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiEqwD4ph 7Y2x4qhTdhJDriuvG9yGS1QfkwOc8ehxmw2JNe6nsb2gsgANHm/jqSxVrNl0EOM8 2KJ0g/LFJQ7wzvylUsiNSjieSlHqRUgpSqKggHYH/bbhGkEluxAx8Sph/2UbwuC7 72/wPwIfLmKFYFlxbJaYsE1LHfjeh5yFgfXNvq40GHdtaaMF72Zpq5BnTwd1R1ll GeKdk0fHLZSGJ45iYA59XbVwxWyW/9wL/yOUzJoC6dNfNEM8BBK7v1a7D8Z8Hj37 8YBuHm8rfdzXjRVycUg7zOX7WIIY3zoOrflSj6IKn+pVbfIVr5q8mQ9V6gsOT0sE LjMNpYhKK5wXjw== -----END CERTIFICATE-----Generated at Thu Dec 18 10:23:42 2025 by rpki-client