This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json) Hash identifier: zdZTk73ox+fDdHEoJ6m8vEIOWP9x7G6KjtQyj6U+fZU= Subject key identifier: 61:65:C8:73:AB:19:01:B9:77:27:C1:51:A8:97:32:3C:5C:B0:EB:F9 Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37 Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737 Certificate serial: 019B3EDAA510B22E1A23CC6DD47744BA4552 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft Manifest number: 1789 Signing time: Sun 21 Dec 2025 03:01:15 +0000 Manifest this update: Sun 21 Dec 2025 03:01:15 +0000 Manifest next update: Mon 22 Dec 2025 03:01:15 +0000 Files and hashes: 1: jHERjwHQQByovrguIT9kNAenUlw.roa (hash: fC13Nqgu9Ca7tsn1KpGgJ5T6X5W9BeqrdrYm3SZE1Rs=) 2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: k/EDkqj1ZmXfXD1/hb9li9GtvCn+q4v8PvgposuHGWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 03:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:a5:10:b2:2e:1a:23:cc:6d:d4:77:44:ba:45:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737 Validity Not Before: Dec 21 03:01:15 2025 GMT Not After : Dec 22 03:01:15 2025 GMT Subject: CN=6165c873ab1901b97727c151a897323c5cb0ebf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:b5:97:d1:cb:89:6b:c4:fb:c9:b0:65:05: 7a:50:1f:c4:17:92:c7:71:0b:e5:60:8a:06:dc:04: ef:8a:bb:1f:58:fe:68:8a:cd:99:42:45:9d:3c:42: 4f:d6:96:36:13:30:8b:5a:c6:46:05:7d:50:82:a9: f1:8a:9e:38:e5:39:c5:69:55:16:c5:87:77:6b:12: f4:57:0a:4f:39:ff:9b:c5:8c:bc:74:a9:6a:75:9e: 29:e8:8c:9f:b9:d4:dc:0f:04:9d:69:58:7b:49:15: 29:f1:73:b9:76:48:d9:cd:32:78:ff:c0:15:e8:01: 54:7d:bc:be:10:8d:40:22:6e:f4:35:1e:41:c7:2b: 03:1d:3c:38:c9:a4:28:7f:b6:d2:bc:21:59:72:57: 56:4c:8d:cf:c9:b8:67:82:fe:07:9a:d7:a3:e4:e6: 6e:cb:ae:26:48:0a:20:cd:ec:1c:4f:32:7e:3e:82: 35:d6:de:fb:0e:b2:5d:16:04:db:21:f6:9c:62:56: a6:c1:ec:4e:e1:25:82:2f:4e:91:1c:1a:f0:e3:41: 8b:89:70:b8:35:8f:84:0e:9f:26:84:b1:00:bd:d3: c3:47:85:3c:0d:bf:25:a4:e4:71:ee:3b:06:8f:9d: 8d:30:1d:86:08:15:d0:51:e0:c6:a5:c1:67:80:9a: ef:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:65:C8:73:AB:19:01:B9:77:27:C1:51:A8:97:32:3C:5C:B0:EB:F9 X509v3 Authority Key Identifier: keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:89:51:91:27:bd:66:6a:45:0f:c0:d9:70:c8:f6:24:08:76: 67:a5:12:e1:cb:d7:25:03:c1:5e:7a:58:d9:82:7d:6f:69:c0: 0f:ed:a8:f4:61:1e:31:ef:6b:5b:3c:53:1e:cb:fe:0c:90:3c: 38:f5:5d:4e:12:95:32:b3:a5:24:8d:54:fd:b0:58:f1:c8:ee: 7a:a5:97:0d:19:c0:50:86:69:92:e4:15:72:74:9e:cf:a8:a5: 69:d8:51:44:ee:83:ba:7e:46:42:e9:a4:35:b5:bd:4b:65:7f: 9d:13:81:9f:03:90:ca:f6:d1:b4:36:4e:c9:bf:0d:e8:c3:04: 0d:94:fb:e0:b1:8e:74:2c:97:ae:6c:53:69:fa:49:36:2e:37: dc:e4:c2:7d:8f:51:4b:da:6e:e2:cc:de:bc:87:23:4e:df:2b: 92:6b:84:0b:c2:04:31:a7:26:c1:65:74:98:55:40:47:d8:af: 1c:fe:c3:09:19:06:31:d9:22:a7:2a:5b:cb:68:de:a7:4f:5e: ba:ec:7c:fd:e9:b5:b4:b4:22:4b:52:1f:d7:fe:f0:45:9a:48: 2b:f6:75:ee:cf:92:ca:0b:60:5b:2f:5b:a6:e2:7d:d4:2a:c9: 92:28:e8:91:df:7e:bd:f3:60:75:31:44:08:30:64:67:0b:3c: 5b:a4:ff:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2qUQsi4aI8xt1HdEukVSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ODEwZDdjOWJmYzU4YjllMGExZTU5MTY5YzNkZDMyMmRl OWY3MzcwHhcNMjUxMjIxMDMwMTE1WhcNMjUxMjIyMDMwMTE1WjAzMTEwLwYDVQQD Eyg2MTY1Yzg3M2FiMTkwMWI5NzcyN2MxNTFhODk3MzIzYzVjYjBlYmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0i1l9HLiWvE+8mwZQV6UB/EF5LH cQvlYIoG3ATvirsfWP5ois2ZQkWdPEJP1pY2EzCLWsZGBX1Qgqnxip445TnFaVUW xYd3axL0VwpPOf+bxYy8dKlqdZ4p6IyfudTcDwSdaVh7SRUp8XO5dkjZzTJ4/8AV 6AFUfby+EI1AIm70NR5BxysDHTw4yaQof7bSvCFZcldWTI3Pybhngv4Hmtej5OZu y64mSAogzewcTzJ+PoI11t77DrJdFgTbIfacYlamwexO4SWCL06RHBrw40GLiXC4 NY+EDp8mhLEAvdPDR4U8Db8lpORx7jsGj52NMB2GCBXQUeDGpcFngJrv4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGFlyHOrGQG5dyfBUaiXMjxcsOv5MB8GA1UdIwQY MBaAFLSBDXyb/Fi54KHlkWnD3TIt6fc3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdElFTmZKdjhXTG5nb2VXUmFjUGRNaTNwOXpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8zZDRjNDYtNzU0NS00YjNkLThmMWMt MmE2MzQwMmJlYzY2LzEvdElFTmZKdjhXTG5nb2VXUmFjUGRNaTNwOXpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8zZDRjNDYtNzU0NS00YjNkLThmMWMtMmE2MzQwMmJlYzY2 LzEvdElFTmZKdjhXTG5nb2VXUmFjUGRNaTNwOXpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMolRkSe9 ZmpFD8DZcMj2JAh2Z6US4cvXJQPBXnpY2YJ9b2nAD+2o9GEeMe9rWzxTHsv+DJA8 OPVdThKVMrOlJI1U/bBY8cjueqWXDRnAUIZpkuQVcnSez6iladhRRO6Dun5GQumk NbW9S2V/nROBnwOQyvbRtDZOyb8N6MMEDZT74LGOdCyXrmxTafpJNi433OTCfY9R S9pu4szevIcjTt8rkmuEC8IEMacmwWV0mFVAR9ivHP7DCRkGMdkipypby2jep09e uux8/em1tLQiS1If1/7wRZpIK/Z17s+SygtgWy9bpuJ91CrJkijokd9+vfNgdTFE CDBkZws8W6T/kw== -----END CERTIFICATE-----Generated at Sun Dec 21 12:11:12 2025 by rpki-client