This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft File: TK0YVBTBauXSKaiqK_oV_vxxoiI.mft (raw, json) Hash identifier: ARll3mhWRpvTr6EqC6pLs3JlgQBR2NOYrgnUNnV3Hik= Subject key identifier: 58:1B:3D:02:99:52:81:53:52:A7:F1:81:E7:15:69:76:84:CB:1D:85 Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22 Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222 Certificate serial: 019B54BDCB4EF12493517A9E67523A936777 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft Manifest number: 1728 Signing time: Thu 25 Dec 2025 09:01:23 +0000 Manifest this update: Thu 25 Dec 2025 09:01:23 +0000 Manifest next update: Fri 26 Dec 2025 09:01:23 +0000 Files and hashes: 1: TK0YVBTBauXSKaiqK_oV_vxxoiI.crl (hash: yMmOxJSI5EMmaq++aAPdth7qcL4IYm9njW/AL2XzfvE=) 2: dxfaqcbOBYRpYzoiD3a-nfzNgyI.roa (hash: 9S4UtPoorxm2Y5jeo5Ht7EgjOkb+pCS05uOlyENLKPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:bd:cb:4e:f1:24:93:51:7a:9e:67:52:3a:93:67:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222 Validity Not Before: Dec 25 09:01:23 2025 GMT Not After : Dec 26 09:01:23 2025 GMT Subject: CN=581b3d029952815352a7f181e715697684cb1d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:89:5e:0e:41:3d:da:0f:53:bd:a6:29:10:4a: f5:11:54:41:74:36:f6:53:2f:70:42:00:ef:13:40: c6:3c:fd:40:64:3f:d9:e2:0a:c6:59:4f:fa:89:76: 9b:2c:38:62:74:8a:39:0d:ef:55:c0:a2:7e:93:8b: c0:4a:2f:8d:cd:1c:1b:1d:a2:ff:86:a3:e7:c9:74: 78:9e:c5:b4:ef:1b:34:b5:f6:f6:4e:45:66:21:6a: 21:19:cc:48:a0:5d:b2:47:b4:a1:51:9a:35:82:4a: 99:b7:f0:4f:93:1e:35:fe:a6:45:08:67:3f:1e:db: 72:4f:71:5f:2f:27:f1:10:cf:0a:3e:14:aa:86:1a: 9b:46:ce:2b:29:6a:83:ab:6c:c7:31:e0:9e:d0:bd: 14:f5:c1:82:6c:34:7a:88:61:e7:da:2b:b0:a2:16: a7:f3:7b:fd:9f:39:c4:3a:58:f3:8b:dd:fd:dd:86: ff:70:ae:1e:6a:f3:ce:78:65:c2:81:f7:94:98:c8: 00:95:9b:1b:56:7b:a0:40:4b:72:a8:6e:67:0d:5f: 8f:9e:12:94:86:99:31:a2:b1:c5:10:26:a7:e1:24: eb:2e:b3:67:62:26:cd:0c:fd:44:a2:7a:92:43:95: b5:23:c4:90:85:98:f3:bf:59:2e:03:ff:75:1f:35: 0c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1B:3D:02:99:52:81:53:52:A7:F1:81:E7:15:69:76:84:CB:1D:85 X509v3 Authority Key Identifier: keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:84:e0:07:c7:87:6e:e9:b3:70:a1:7b:11:c7:07:b0:76:7b: ac:1e:2e:0d:5a:c7:ee:0c:70:b1:18:b7:b0:3b:1e:ce:ec:3e: d3:ac:99:9e:38:c6:60:4b:70:a6:51:9a:bd:c0:c8:5f:d0:f4: 0d:8f:bf:3f:5d:39:e6:d7:fb:79:f9:66:bf:c4:7d:77:35:91: ce:60:ac:8c:87:3d:cb:79:7f:fd:47:bd:9a:f9:ab:42:ea:d3: 8f:ad:1f:64:72:0e:ab:3b:fb:c7:48:90:ba:d7:40:e5:67:fd: b9:10:d8:cb:5a:e3:13:2b:f8:02:57:ce:88:53:06:61:6b:74: 7c:fd:5a:39:48:0a:f6:2a:a1:0f:91:3f:18:20:bb:e9:4b:22: d7:f7:0a:0a:82:cb:04:1d:29:47:83:35:f5:8c:25:9f:81:5f: 34:02:b4:a7:bf:32:cb:85:14:d5:9a:dc:8b:e1:15:f9:e6:80: 3c:3c:6a:82:ad:90:d7:4d:c4:42:57:dc:ac:2f:61:06:56:1b: d7:b3:1b:cb:9d:d9:c6:0c:7d:d9:eb:59:b5:b6:ca:18:bf:9c: c0:fc:02:51:84:00:7b:16:b5:83:8e:03:95:7f:82:a2:74:c0: a8:bc:c4:75:0b:27:ae:6e:f0:89:e3:bc:ac:c5:bb:7d:b1:e0: 12:e4:e4:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUvctO8SSTUXqeZ1I6k2d3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYWQxODU0MTRjMTZhZTVkMjI5YThhYTJiZmExNWZlZmM3 MWEyMjIwHhcNMjUxMjI1MDkwMTIzWhcNMjUxMjI2MDkwMTIzWjAzMTEwLwYDVQQD Eyg1ODFiM2QwMjk5NTI4MTUzNTJhN2YxODFlNzE1Njk3Njg0Y2IxZDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsoleDkE92g9TvaYpEEr1EVRBdDb2 Uy9wQgDvE0DGPP1AZD/Z4grGWU/6iXabLDhidIo5De9VwKJ+k4vASi+NzRwbHaL/ hqPnyXR4nsW07xs0tfb2TkVmIWohGcxIoF2yR7ShUZo1gkqZt/BPkx41/qZFCGc/ HttyT3FfLyfxEM8KPhSqhhqbRs4rKWqDq2zHMeCe0L0U9cGCbDR6iGHn2iuwohan 83v9nznEOljzi9393Yb/cK4eavPOeGXCgfeUmMgAlZsbVnugQEtyqG5nDV+PnhKU hpkxorHFECan4STrLrNnYibNDP1EonqSQ5W1I8SQhZjzv1kuA/91HzUMNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFgbPQKZUoFTUqfxgecVaXaEyx2FMB8GA1UdIwQY MBaAFEytGFQUwWrl0imoqiv6Ff78caIiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81Yjc4OGUtZjg0Ny00ZGY5LTkzMzQt OTY0Y2NhNzIyZjczLzEvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS81Yjc4OGUtZjg0Ny00ZGY5LTkzMzQtOTY0Y2NhNzIyZjcz LzEvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg4TgB8eH bumzcKF7EccHsHZ7rB4uDVrH7gxwsRi3sDsezuw+06yZnjjGYEtwplGavcDIX9D0 DY+/P1055tf7eflmv8R9dzWRzmCsjIc9y3l//Ue9mvmrQurTj60fZHIOqzv7x0iQ utdA5Wf9uRDYy1rjEyv4AlfOiFMGYWt0fP1aOUgK9iqhD5E/GCC76Usi1/cKCoLL BB0pR4M19Ywln4FfNAK0p78yy4UU1Zrci+EV+eaAPDxqgq2Q103EQlfcrC9hBlYb 17Mby53Zxgx92etZtbbKGL+cwPwCUYQAexa1g44DlX+ConTAqLzEdQsnrm7wieO8 rMW7fbHgEuTk4g== -----END CERTIFICATE-----Generated at Thu Dec 25 11:18:45 2025 by rpki-client