This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json) Hash identifier: A+xjMbYS1YLW4qc/fFZY2xsuNJHfE2rX9COInv2gViY= Subject key identifier: B8:9C:EF:73:26:A7:63:5F:B0:AC:7C:66:AD:D2:7C:24:DF:DF:49:04 Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609 Certificate serial: 019B3E6C84C5EE733E11AA343EF60646702A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft Manifest number: 1332 Signing time: Sun 21 Dec 2025 01:00:57 +0000 Manifest this update: Sun 21 Dec 2025 01:00:57 +0000 Manifest next update: Mon 22 Dec 2025 01:00:57 +0000 Files and hashes: 1: M5OG91JsCAL60eSIC9Ad8J1tKCQ.roa (hash: 1YIYjfLNUonn/y5DvRwWqNtN3UGauHay3fPvlHRKB78=) 2: NLZJeEG7B459T5HRjzbaryRo4U4.roa (hash: D+Zc3p+KtPQCrkhD8NK/RsRz3Ozk8j3l3fx+in8YU8k=) 3: SX0Et8xCJ-oQPSZhA1vLwpgECss.roa (hash: GtBoUqmPl7+e01rEjLRBIu11uahmgFfyYOp4+G1ts2k=) 4: g3mWLx3QHER7jvUWO9_K86XjFvg.roa (hash: CQjC54kUHdxygPOZtU3D7Ni2Q4FQ2f8Z6SwCWy0D9f0=) 5: hvqfOijr6dDuZ5bH5DmTLJBSNC0.roa (hash: wnrweN82zW3L/i2kjShP1DGJ6lX6f745nj23KDLcERg=) 6: pkTSWC0kyyJmikpwefrKy0hYNBc.roa (hash: uJAe5aUPI71DUshehwa1+fSKLZdP9CODCdcESePQJgY=) 7: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: vQqyJ2Mq62A9VUH3qtDIts+8mjwvGTGM64lUre26KEQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:84:c5:ee:73:3e:11:aa:34:3e:f6:06:46:70:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609 Validity Not Before: Dec 21 01:00:57 2025 GMT Not After : Dec 22 01:00:57 2025 GMT Subject: CN=b89cef7326a7635fb0ac7c66add27c24dfdf4904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b7:c8:ef:d3:e7:7e:3d:02:1c:26:71:c2:52: 8e:02:c7:46:9f:2e:e6:a5:7c:2d:b9:3e:3e:bb:12: df:8f:cf:cf:fc:3b:67:53:59:6b:98:67:7c:76:69: ab:18:40:0e:b2:ec:d3:e8:45:68:48:54:ce:67:07: 13:65:88:80:db:ce:0c:9c:6c:a0:05:75:eb:c6:7a: 14:6a:a7:6d:d1:e0:6d:84:75:30:e6:d2:44:9f:68: 18:1e:9e:59:e5:cf:c9:65:c7:02:e9:8a:ba:88:78: 13:d6:bb:32:d0:f0:9b:6b:59:34:3e:e3:c0:74:90: 5a:2c:b7:fb:09:f7:7e:ff:c9:53:98:51:0c:0c:2c: a5:3e:6e:7a:ef:76:3b:14:6b:3b:e9:27:e5:40:d0: c9:3f:40:16:43:2d:2e:9c:64:1a:1e:ed:dd:72:4c: 11:89:ed:02:ba:bd:1f:83:f2:47:73:32:01:03:40: be:4b:3e:69:30:a7:f2:39:7f:d2:15:18:3e:d4:31: d6:70:c8:39:2b:5d:89:c0:cb:6f:d9:52:5b:8f:9d: df:71:0d:8c:4c:0e:35:88:4e:b6:b3:55:36:ba:3c: 27:73:9f:de:a0:db:0e:45:17:c0:ed:7c:f6:8a:01: 01:ce:f9:4b:44:e4:4f:f2:30:40:cc:03:12:bf:e9: d8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9C:EF:73:26:A7:63:5F:B0:AC:7C:66:AD:D2:7C:24:DF:DF:49:04 X509v3 Authority Key Identifier: keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:1a:73:ba:6d:98:ca:f8:2c:ce:5f:0e:89:07:77:e7:a6:b0: 09:00:7d:39:70:07:bc:d9:73:b0:ba:8c:31:58:e1:90:e7:63: a2:6c:86:da:2d:96:92:ed:74:1d:88:b5:d6:f2:8f:d1:1f:81: dd:f6:fc:8c:e3:fe:3e:56:33:63:72:98:b0:f2:90:21:09:37: ae:16:64:5e:2b:52:07:54:c1:89:1e:e6:f9:85:9d:4b:a4:c7: 06:c3:84:bd:b0:53:6f:88:c9:a4:e2:ac:bf:e4:b2:36:1f:da: 6b:9f:85:76:b7:df:31:69:0f:60:04:e6:82:59:c3:f7:67:19: 7b:d7:3a:03:ca:b3:2c:60:ce:72:e2:3c:b9:8b:be:57:c3:90: ec:57:ef:e9:1e:52:0d:35:82:e5:de:e6:4f:57:40:4d:c8:aa: 5c:a8:83:41:d6:0a:54:c3:4b:0f:86:33:ed:89:4d:e1:c6:89: 06:e1:02:67:a8:7e:7b:5f:9c:9e:3d:3f:e5:92:4d:67:c2:2f: d5:fb:a3:55:04:7d:46:2b:43:2c:57:84:49:97:a4:0b:16:8b: 40:91:71:80:93:8c:0d:af:b7:f7:31:06:5e:92:5f:72:d3:88: 60:6f:80:59:b8:c4:62:a2:36:ca:3a:84:b7:d2:11:f9:b1:fb: 95:5d:a9:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bITF7nM+Eao0PvYGRnAqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODZhODY0MzYzM2U5ODc0MTExYThiY2YzNTE4YTA5MDVm Mjg2MDkwHhcNMjUxMjIxMDEwMDU3WhcNMjUxMjIyMDEwMDU3WjAzMTEwLwYDVQQD EyhiODljZWY3MzI2YTc2MzVmYjBhYzdjNjZhZGQyN2MyNGRmZGY0OTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLfI79Pnfj0CHCZxwlKOAsdGny7m pXwtuT4+uxLfj8/P/DtnU1lrmGd8dmmrGEAOsuzT6EVoSFTOZwcTZYiA284MnGyg BXXrxnoUaqdt0eBthHUw5tJEn2gYHp5Z5c/JZccC6Yq6iHgT1rsy0PCba1k0PuPA dJBaLLf7Cfd+/8lTmFEMDCylPm5673Y7FGs76SflQNDJP0AWQy0unGQaHu3dckwR ie0Cur0fg/JHczIBA0C+Sz5pMKfyOX/SFRg+1DHWcMg5K12JwMtv2VJbj53fcQ2M TA41iE62s1U2ujwnc5/eoNsORRfA7Xz2igEBzvlLRORP8jBAzAMSv+nY4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLic73Mmp2NfsKx8Zq3SfCTf30kEMB8GA1UdIwQY MBaAFLWGqGQ2M+mHQRGovPNRigkF8oYJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMt NDQ5OWUzMjM5ZjFmLzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMtNDQ5OWUzMjM5ZjFm LzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANhpzum2Y yvgszl8OiQd356awCQB9OXAHvNlzsLqMMVjhkOdjomyG2i2Wku10HYi11vKP0R+B 3fb8jOP+PlYzY3KYsPKQIQk3rhZkXitSB1TBiR7m+YWdS6THBsOEvbBTb4jJpOKs v+SyNh/aa5+FdrffMWkPYATmglnD92cZe9c6A8qzLGDOcuI8uYu+V8OQ7Ffv6R5S DTWC5d7mT1dATciqXKiDQdYKVMNLD4Yz7YlN4caJBuECZ6h+e1+cnj0/5ZJNZ8Iv 1fujVQR9RitDLFeESZekCxaLQJFxgJOMDa+39zEGXpJfctOIYG+AWbjEYqI2yjqE t9IR+bH7lV2pNQ== -----END CERTIFICATE-----Generated at Sun Dec 21 03:16:24 2025 by rpki-client