This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.mft File: tPljRdPyLts5XSR_e4bS1z5KAJE.mft (raw, json) Hash identifier: /hesk6Lrb0aq6S98HvfyoHwRmg1vwErM3st6ldOHgkg= Subject key identifier: 39:19:A0:9F:19:D2:B2:BE:FA:2A:50:50:F5:AC:3B:5E:47:32:5F:AD Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91 Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091 Certificate serial: 019B3A8FF9499A818220A7EBBF4C973E66AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.mft Manifest number: 1411 Signing time: Sat 20 Dec 2025 07:01:12 +0000 Manifest this update: Sat 20 Dec 2025 07:01:12 +0000 Manifest next update: Sun 21 Dec 2025 07:01:12 +0000 Files and hashes: 1: 7DedS6FKqqRxhMQdTMsredCO-ec.roa (hash: UwXIiKkoxxbOonWsbkKsBFAofpKEdgb0a8h9Hm8rEFk=) 2: BO7jnm4hZ2aIhx-khbNXbsOaSwQ.roa (hash: WMiILjjnrmajQgVmU1EugIe9vhf+6CD9w7bhvMc/t+k=) 3: DQvnB8g8ydfr1eRuAPBU05IBCSY.roa (hash: 3PoHiqHAODeR+6H4KfoCCFru1dqX91tPZMvp0yS6YsQ=) 4: DefjgqgW3k0sn_tO0MEiDyeFL90.roa (hash: +8yaQDhhnZ95vny+dtdrD/Qy2l/JoW7VG40b+SfRWeM=) 5: Gg6X3rP4M_HU28IjArylySmkiPs.roa (hash: re0xx12aRVyU3Oz5YoKZNUQdKDWH3+edRSy/XUXja/E=) 6: Ng9Th0WDUlHnwzKfFfciBEcUafA.roa (hash: eNw7usxld6+OlHNgMwiycOJ5x4cMD7CEt+8UU1lok4E=) 7: Te45-h1SuAziXt4gVKN1aT8O4hM.roa (hash: r0d2Q2QSYYn2bF4r/tEM54zYpJ86K8TqM7RMI3N+2F4=) 8: tAGyNizHA9sFqrgwZZwFr5MvlyU.roa (hash: Y4agyqG7qiLYbwUkz0iIRFGAZQO0vld2Qe+1AH++h04=) 9: tPljRdPyLts5XSR_e4bS1z5KAJE.crl (hash: E63sEiX6YbifeHXg0LWZOBtB5hXvBkBj0tp5Lase7c0=) 10: taNbwNau2XMQKfIJe9yRvRtEQBY.roa (hash: vkYzoX5sZUla1YZ3xFWl02lzIlXI/hyjdmA2wlgSifs=) 11: xOyDXDSjlESISzzf5hUO9Zxj8rA.roa (hash: CFmR+zkfzBWyhYtIYt+hp8mhkI6GySeOyqTa7/nfcIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.mft rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:8f:f9:49:9a:81:82:20:a7:eb:bf:4c:97:3e:66:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091 Validity Not Before: Dec 20 07:01:12 2025 GMT Not After : Dec 21 07:01:12 2025 GMT Subject: CN=3919a09f19d2b2befa2a5050f5ac3b5e47325fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:d5:c8:2c:14:5e:75:26:d5:1f:d7:8e:93: 5f:e3:84:f8:17:2b:03:75:cd:ec:e6:e3:3b:f3:31: 0f:fe:a9:bc:21:a7:64:38:2e:4f:36:1f:cc:e9:ba: be:84:66:d2:24:e1:3e:8a:d8:a3:82:b8:00:7b:b0: eb:bc:ea:ca:2b:b3:94:7c:30:a6:02:e8:d7:0f:8a: 3c:6d:6e:67:06:87:89:1d:55:32:fb:f5:83:11:f7: c6:1b:7e:37:be:85:8e:9d:a5:35:9a:2b:41:47:5a: 97:43:b1:cb:ed:b9:e9:f1:18:d4:de:62:76:f4:c3: c6:47:26:d2:6a:e4:71:38:10:1b:6a:0b:bf:de:e7: 5e:99:36:70:0a:b7:10:ab:8d:68:ab:49:2d:b0:9d: a3:b7:5f:84:71:bc:07:45:3a:b7:5f:ad:b1:70:0c: b5:28:c5:a7:dc:96:b9:6d:4a:89:78:84:7e:20:15: 0b:e4:61:2d:6b:5e:97:f2:77:2c:7a:bc:3a:b9:02: f0:c2:f0:0f:8d:6f:22:7e:c5:a6:61:7b:bd:d7:72: 76:34:d2:f9:86:d2:17:35:d8:b8:3b:41:1e:cd:f6: ca:e4:aa:3e:78:f6:05:d2:e3:49:94:0a:93:97:ca: ca:01:ad:a9:52:f7:de:7c:3f:b0:60:39:c8:07:82: 06:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:19:A0:9F:19:D2:B2:BE:FA:2A:50:50:F5:AC:3B:5E:47:32:5F:AD X509v3 Authority Key Identifier: keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:3a:65:2a:5a:ae:7f:3b:8a:69:18:81:3d:78:dc:fd:ab:b8: 92:66:ee:1e:39:3d:cd:9f:b4:7d:f1:90:15:e7:1c:90:e3:c6: 09:0c:ba:8b:b3:40:9a:06:4d:51:07:8b:62:8f:a3:f4:ba:c6: 8b:80:76:e6:9b:80:20:71:0a:76:92:bc:fc:63:b4:b4:bf:34: 64:33:35:b6:cb:bd:c2:5f:98:d6:2e:e9:7f:89:0c:73:06:23: 54:b8:d0:d1:5f:a4:1d:98:7d:af:4a:ca:42:ed:10:75:70:ff: e8:0c:7a:d0:49:bf:3b:25:d4:88:72:af:47:a9:05:f0:b0:c7: 36:78:a4:39:d0:06:73:26:a1:c5:97:cb:66:c8:0c:2d:bd:1c: a4:fd:93:f1:1b:d5:a0:fa:b5:bf:50:0e:f1:a9:c1:23:57:bf: 0a:20:05:11:61:f6:5b:ae:a0:ce:f7:55:f8:8a:88:0d:39:83: 03:1b:71:1e:94:3a:df:56:92:12:02:fa:72:3f:b4:05:67:83: b9:f7:8f:a5:8a:49:71:9e:9c:63:72:63:cc:bb:af:d8:9a:13: 78:f3:70:57:09:5c:27:f5:09:79:3e:2f:2c:03:cd:b3:87:e0: 60:e8:5b:2e:af:1e:bc:05:bc:c8:23:4e:63:49:04:d7:f3:6d: 52:9d:1c:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6j/lJmoGCIKfrv0yXPmavMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0 YTAwOTEwHhcNMjUxMjIwMDcwMTEyWhcNMjUxMjIxMDcwMTEyWjAzMTEwLwYDVQQD EygzOTE5YTA5ZjE5ZDJiMmJlZmEyYTUwNTBmNWFjM2I1ZTQ3MzI1ZmFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcTVyCwUXnUm1R/XjpNf44T4FysD dc3s5uM78zEP/qm8IadkOC5PNh/M6bq+hGbSJOE+itijgrgAe7DrvOrKK7OUfDCm AujXD4o8bW5nBoeJHVUy+/WDEffGG343voWOnaU1mitBR1qXQ7HL7bnp8RjU3mJ2 9MPGRybSauRxOBAbagu/3udemTZwCrcQq41oq0ktsJ2jt1+EcbwHRTq3X62xcAy1 KMWn3Ja5bUqJeIR+IBUL5GEta16X8ncserw6uQLwwvAPjW8ifsWmYXu913J2NNL5 htIXNdi4O0EezfbK5Ko+ePYF0uNJlAqTl8rKAa2pUvfefD+wYDnIB4IGawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDkZoJ8Z0rK++ipQUPWsO15HMl+tMB8GA1UdIwQY MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt NmZjMzQzZDc3Y2QyLzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALTplKlqu fzuKaRiBPXjc/au4kmbuHjk9zZ+0ffGQFecckOPGCQy6i7NAmgZNUQeLYo+j9LrG i4B25puAIHEKdpK8/GO0tL80ZDM1tsu9wl+Y1i7pf4kMcwYjVLjQ0V+kHZh9r0rK Qu0QdXD/6Ax60Em/OyXUiHKvR6kF8LDHNnikOdAGcyahxZfLZsgMLb0cpP2T8RvV oPq1v1AO8anBI1e/CiAFEWH2W66gzvdV+IqIDTmDAxtxHpQ631aSEgL6cj+0BWeD ufePpYpJcZ6cY3JjzLuv2JoTePNwVwlcJ/UJeT4vLAPNs4fgYOhbLq8evAW8yCNO Y0kE1/NtUp0c9A== -----END CERTIFICATE-----Generated at Sat Dec 20 15:26:57 2025 by rpki-client