This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft File: tgcVWH7cyzJajXwPWkLY8EOHHbc.mft (raw, json) Hash identifier: L+A9WZQsSPat1zNGqjKMv7uJch2/mxKuD+NkWsI9YS0= Subject key identifier: 98:9F:9C:4E:3A:FB:65:28:66:9A:72:98:31:A8:63:A5:7F:0D:32:F1 Authority key identifier: B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7 Certificate issuer: /CN=b60715587edccb325a8d7c0f5a42d8f043871db7 Certificate serial: 019B3E6E2766E0FD0FF9B8E476AAC2561A47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft Manifest number: 02AE Signing time: Sun 21 Dec 2025 01:02:44 +0000 Manifest this update: Sun 21 Dec 2025 01:02:44 +0000 Manifest next update: Mon 22 Dec 2025 01:02:44 +0000 Files and hashes: 1: tgcVWH7cyzJajXwPWkLY8EOHHbc.crl (hash: 90vJ5o4qfXYFYDG5PbDVSB4SP+l0EubdRuHiAHOi7sM=) 2: zAVl6KN24j-HKETuiZlV3hao63U.roa (hash: djF473q/t5BuBhPbvFB06yhsIPQKmfmJ61GIeE/TTOg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6e:27:66:e0:fd:0f:f9:b8:e4:76:aa:c2:56:1a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b60715587edccb325a8d7c0f5a42d8f043871db7 Validity Not Before: Dec 21 01:02:44 2025 GMT Not After : Dec 22 01:02:44 2025 GMT Subject: CN=989f9c4e3afb6528669a729831a863a57f0d32f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:89:8e:54:5c:dc:1b:06:17:f5:d3:04:ac:fe: 92:59:fc:44:d4:38:e4:e7:da:7b:b9:7a:ae:6f:9a: 63:53:c0:d1:41:ae:c7:97:7e:fa:7f:92:e8:b8:2f: 2d:ae:d5:5d:07:a6:e0:31:1d:d1:14:a5:85:d4:b6: bd:6e:4d:40:76:09:40:45:a2:0d:19:45:3d:43:dd: 32:56:62:26:70:24:ca:7f:1c:cf:b5:1c:06:ef:7d: 1c:3b:87:a1:14:ec:50:2e:ce:2a:fe:48:9c:0b:08: 7f:f0:7d:65:c9:8b:ac:ab:30:23:26:6f:dc:13:3e: 3d:db:97:9f:3f:f4:65:28:b2:b8:18:ca:21:dc:b4: 2f:93:34:23:b4:c4:34:82:ce:59:9e:b3:4d:7d:bb: 81:19:a8:2f:5f:76:1b:e9:6f:1d:f5:3e:a4:e7:45: 10:5e:d5:c6:09:8c:a9:58:54:54:f2:be:9e:ea:cf: 60:fd:37:71:8b:e0:67:11:c8:9f:99:df:03:23:1c: 61:50:1d:82:c1:e9:62:6e:53:96:43:e1:14:17:9d: fd:0a:ff:2e:f3:54:2d:44:dd:b3:40:a8:95:66:3f: a4:5e:8d:94:e3:d5:cc:c8:6c:f2:33:1b:d0:66:61: a5:68:27:b8:43:fb:ac:36:c1:b3:51:dc:5d:6e:03: ac:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9F:9C:4E:3A:FB:65:28:66:9A:72:98:31:A8:63:A5:7F:0D:32:F1 X509v3 Authority Key Identifier: keyid:B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:9a:ee:df:03:ba:35:aa:47:fd:de:f4:de:16:39:2b:7e:83: 0f:1c:0a:7e:74:21:e3:4e:f5:69:e1:78:75:59:0c:13:71:81: 0c:21:2a:49:03:cd:2d:2d:34:c3:87:9b:f9:87:b1:41:77:f4: 8a:3d:34:67:31:ea:7d:05:db:9b:cc:73:d2:ec:eb:60:16:17: 82:59:96:92:48:77:aa:12:64:7a:84:8b:0a:d2:19:c2:83:1e: 78:ea:a6:9d:98:42:8d:7e:0c:ad:dc:e1:5d:bd:1a:43:5a:7b: 9a:bf:82:bd:0c:f0:99:9c:53:64:38:a3:aa:a5:d7:8b:29:db: 37:4d:4b:e6:70:e8:3c:5b:bc:23:54:9d:4d:a5:97:df:03:24: b1:66:41:bd:93:5a:cf:02:f5:ba:6c:44:a8:18:39:4d:8c:39: dd:d1:0c:6a:70:5a:f3:7d:8a:45:a1:aa:e7:4f:f6:6a:1c:99: 86:fc:10:55:b0:f6:3b:ee:54:39:3e:27:6c:97:b0:fe:9a:1b: b3:8c:b7:d9:08:8b:14:51:5f:d2:16:09:a6:8e:b1:dc:42:38: cb:0f:9e:42:11:bb:f2:07:c8:c7:31:d6:49:3b:80:59:70:c8: 90:ef:37:aa:6a:f9:8f:bd:f9:49:bb:e5:a0:a8:0d:f3:4f:86: ac:27:55:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bidm4P0P+bjkdqrCVhpHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MDcxNTU4N2VkY2NiMzI1YThkN2MwZjVhNDJkOGYwNDM4 NzFkYjcwHhcNMjUxMjIxMDEwMjQ0WhcNMjUxMjIyMDEwMjQ0WjAzMTEwLwYDVQQD Eyg5ODlmOWM0ZTNhZmI2NTI4NjY5YTcyOTgzMWE4NjNhNTdmMGQzMmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYmOVFzcGwYX9dMErP6SWfxE1Djk 59p7uXqub5pjU8DRQa7Hl376f5LouC8trtVdB6bgMR3RFKWF1La9bk1AdglARaIN GUU9Q90yVmImcCTKfxzPtRwG730cO4ehFOxQLs4q/kicCwh/8H1lyYusqzAjJm/c Ez4925efP/RlKLK4GMoh3LQvkzQjtMQ0gs5ZnrNNfbuBGagvX3Yb6W8d9T6k50UQ XtXGCYypWFRU8r6e6s9g/Tdxi+BnEcifmd8DIxxhUB2CweliblOWQ+EUF539Cv8u 81QtRN2zQKiVZj+kXo2U49XMyGzyMxvQZmGlaCe4Q/usNsGzUdxdbgOsvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJifnE46+2UoZppymDGoY6V/DTLxMB8GA1UdIwQY MBaAFLYHFVh+3MsyWo18D1pC2PBDhx23MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGdjVldIN2N5ekphalh3UFdrTFk4RU9ISGJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8zNTlkNzEtMWU5ZS00MzlmLTkzZjEt MWY1NDI4Njg0ZmM3LzEvdGdjVldIN2N5ekphalh3UFdrTFk4RU9ISGJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8zNTlkNzEtMWU5ZS00MzlmLTkzZjEtMWY1NDI4Njg0ZmM3 LzEvdGdjVldIN2N5ekphalh3UFdrTFk4RU9ISGJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHpru3wO6 NapH/d703hY5K36DDxwKfnQh4071aeF4dVkME3GBDCEqSQPNLS00w4eb+YexQXf0 ij00ZzHqfQXbm8xz0uzrYBYXglmWkkh3qhJkeoSLCtIZwoMeeOqmnZhCjX4Mrdzh Xb0aQ1p7mr+CvQzwmZxTZDijqqXXiynbN01L5nDoPFu8I1SdTaWX3wMksWZBvZNa zwL1umxEqBg5TYw53dEManBa832KRaGq50/2ahyZhvwQVbD2O+5UOT4nbJew/pob s4y32QiLFFFf0hYJpo6x3EI4yw+eQhG78gfIxzHWSTuAWXDIkO83qmr5j735Sbvl oKgN80+GrCdVXg== -----END CERTIFICATE-----Generated at Sun Dec 21 10:34:50 2025 by rpki-client