This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json) Hash identifier: 07iL/ePAiMcjJ9cP39pV81vzNi1ZJVCqzZCRjRsTeZU= Subject key identifier: B8:DC:06:D8:C6:8A:77:77:BA:A6:40:69:E8:AE:66:A5:C3:9E:AB:36 Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92 Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292 Certificate serial: 019B3FED47E58C44FE92F868ED7D7D40DCD8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft Manifest number: 05AD Signing time: Sun 21 Dec 2025 08:01:13 +0000 Manifest this update: Sun 21 Dec 2025 08:01:13 +0000 Manifest next update: Mon 22 Dec 2025 08:01:13 +0000 Files and hashes: 1: 1-HTDTTyHqsL8qWvl7tdyMvlROZo.roa (hash: rDjH3KjSESto7R5VRIkalhKhlHHWAhNK5nCorKVRQGY=) 2: RXQQhNgKVihPcMVhthLhTg3n-Us.roa (hash: kG2eozK8NJSfX7hFrfDKG75LYSNAeBB7F12dBSasppU=) 3: UVLB6EC_S4cdufZlLeGb47V1ReM.roa (hash: +1SPWwuKyVjoCsUjj6tw92B1zG4mEC7h1VegEv3YxLE=) 4: YJ0iR_b-Nen1aOiqKaw4vZmo_5c.roa (hash: KZCgbqiRi9f7dw5nk4nyuo7z+mZsmVTjQi5EVZjEuks=) 5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: D1PK86sRsC8iEHjzEKBFRVl6bvSbhmkq/MBOWtUeGe8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ed:47:e5:8c:44:fe:92:f8:68:ed:7d:7d:40:dc:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292 Validity Not Before: Dec 21 08:01:13 2025 GMT Not After : Dec 22 08:01:13 2025 GMT Subject: CN=b8dc06d8c68a7777baa64069e8ae66a5c39eab36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a8:d5:f5:c6:d0:5e:23:ea:2b:35:4a:c6:1b: 26:6d:a1:12:fa:a2:ff:b0:88:60:64:62:9b:34:b2: 04:9d:e4:f2:6c:c4:ee:cc:1e:88:58:5b:de:cf:a1: 06:cc:74:8a:18:85:ca:66:cb:6c:43:4e:f6:af:61: 7f:a3:31:02:f3:6d:12:ef:d3:a7:0a:a5:df:a2:f0: 8f:9e:52:14:41:00:dc:cf:7c:04:29:92:ed:8f:be: 5b:c8:1d:68:5c:e0:ff:fe:09:ea:2a:1a:fe:de:21: a7:83:c2:28:bc:0f:e9:79:d0:e4:aa:15:4f:fb:f4: 53:67:e2:55:11:30:b1:5c:12:b1:6d:49:45:76:c4: 8b:a5:df:5b:47:2a:38:50:15:63:74:5d:c4:38:51: e6:a6:54:a3:15:41:35:c7:a5:28:26:ed:30:51:d4: c4:e3:a7:a4:60:04:8e:49:81:ff:0d:cf:62:6a:e1: 8a:ee:84:e9:54:c8:f3:45:3f:9a:e0:90:26:79:28: 80:75:62:f3:25:57:b6:f1:69:3a:b0:15:58:9d:94: 9b:49:d7:2c:2d:d0:12:a6:e3:c4:45:e8:80:40:2b: 72:c7:83:7c:c8:92:09:b8:85:6b:83:62:57:02:7e: 2f:31:2b:64:cb:37:c3:16:d8:43:77:0d:7c:db:8b: 11:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DC:06:D8:C6:8A:77:77:BA:A6:40:69:E8:AE:66:A5:C3:9E:AB:36 X509v3 Authority Key Identifier: keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c0:6d:8c:54:24:4d:da:00:32:ae:46:23:fd:22:5b:ff:e9: 97:c8:25:ba:7e:3c:5a:ea:ac:2a:58:b1:8f:8c:d4:18:31:6a: 89:3c:0d:51:88:67:73:07:e8:72:88:c9:db:4f:0e:5b:3d:b5: 34:16:a6:05:4b:e4:fb:79:ea:96:be:e1:cc:66:e1:47:54:fc: 65:12:eb:1a:a8:c3:9a:3b:15:77:f5:6b:e3:db:eb:84:c1:1a: 24:0a:08:5c:26:6d:82:52:3d:fc:b2:ba:79:22:d6:c0:49:70: d7:d4:31:95:f7:d0:64:3f:ce:a1:ed:a9:fb:46:9f:c6:94:e8: 61:26:07:a2:2a:ac:4c:5d:9a:b6:47:cc:5b:b0:9e:25:5f:65: aa:9e:2f:c0:b9:0f:a9:8d:a9:e2:4c:0d:ff:11:58:6b:53:1b: c7:e1:1c:a4:2d:3a:2c:b1:6e:e2:90:3f:26:80:c0:c4:1e:81: dd:09:72:22:a8:82:b9:ad:c2:fc:21:d3:3a:48:12:c1:d1:60: de:9a:35:cc:e6:18:35:f5:23:dd:f2:fc:90:9e:e1:e2:b1:d7: 33:03:e6:03:93:c6:ec:53:a1:0f:1f:3b:99:15:5a:59:05:6a: 4d:b3:15:32:82:79:06:8f:17:56:31:67:17:08:c3:ca:d0:e3: 81:47:1f:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7UfljET+kvho7X19QNzYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDE1NTgxODFmNzg2MzExOWJmNGExNTU0Yzc1ZGFiMWY2 YzUyOTIwHhcNMjUxMjIxMDgwMTEzWhcNMjUxMjIyMDgwMTEzWjAzMTEwLwYDVQQD EyhiOGRjMDZkOGM2OGE3Nzc3YmFhNjQwNjllOGFlNjZhNWMzOWVhYjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqjV9cbQXiPqKzVKxhsmbaES+qL/ sIhgZGKbNLIEneTybMTuzB6IWFvez6EGzHSKGIXKZstsQ072r2F/ozEC820S79On CqXfovCPnlIUQQDcz3wEKZLtj75byB1oXOD//gnqKhr+3iGng8IovA/pedDkqhVP +/RTZ+JVETCxXBKxbUlFdsSLpd9bRyo4UBVjdF3EOFHmplSjFUE1x6UoJu0wUdTE 46ekYASOSYH/Dc9iauGK7oTpVMjzRT+a4JAmeSiAdWLzJVe28Wk6sBVYnZSbSdcs LdASpuPEReiAQCtyx4N8yJIJuIVrg2JXAn4vMStkyzfDFthDdw1824sRewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLjcBtjGind3uqZAaeiuZqXDnqs2MB8GA1UdIwQY MBaAFLVBVYGB94YxGb9KFVTHXasfbFKSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi80ZGQxNjktOGRjYi00NjUzLThhMDMt NTcxYjZjNjEyYmVjLzEvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi80ZGQxNjktOGRjYi00NjUzLThhMDMtNTcxYjZjNjEyYmVj LzEvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPcBtjFQk TdoAMq5GI/0iW//pl8glun48WuqsKlixj4zUGDFqiTwNUYhncwfocojJ208OWz21 NBamBUvk+3nqlr7hzGbhR1T8ZRLrGqjDmjsVd/Vr49vrhMEaJAoIXCZtglI9/LK6 eSLWwElw19QxlffQZD/Ooe2p+0afxpToYSYHoiqsTF2atkfMW7CeJV9lqp4vwLkP qY2p4kwN/xFYa1Mbx+EcpC06LLFu4pA/JoDAxB6B3QlyIqiCua3C/CHTOkgSwdFg 3po1zOYYNfUj3fL8kJ7h4rHXMwPmA5PG7FOhDx87mRVaWQVqTbMVMoJ5Bo8XVjFn FwjDytDjgUcf5g== -----END CERTIFICATE-----Generated at Sun Dec 21 13:24:21 2025 by rpki-client