This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json) Hash identifier: xnkpQMY1Cv9cQdfzih4H6UUfD3d4LKdWI2VQ4Jket3I= Subject key identifier: C4:DF:7B:9C:67:0D:61:B4:9C:BF:AA:E1:5E:5A:05:1F:39:8A:F8:27 Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce Certificate serial: 019B3E6C6F50170BACB4215313E34129D98D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft Manifest number: 09F4 Signing time: Sun 21 Dec 2025 01:00:52 +0000 Manifest this update: Sun 21 Dec 2025 01:00:52 +0000 Manifest next update: Mon 22 Dec 2025 01:00:52 +0000 Files and hashes: 1: 42VDtF9LMj3RUZlBTr5Tpxb7XhY.roa (hash: 06Fp4iuAbTOsazThfCr6hEmyN81BPyfi3nXeyKKT6d0=) 2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: G5abe9mu57Gcr9y+GdoK6WPOyXlYs1kGSr1XbyE4wWk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:6f:50:17:0b:ac:b4:21:53:13:e3:41:29:d9:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4df92658601094ed64985c64c6952be3416301ce Validity Not Before: Dec 21 01:00:52 2025 GMT Not After : Dec 22 01:00:52 2025 GMT Subject: CN=c4df7b9c670d61b49cbfaae15e5a051f398af827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:ef:16:78:4a:a8:76:62:45:ce:18:55:75: f1:96:ab:29:42:cf:eb:16:47:6c:47:70:f2:92:0a: 80:93:4b:c9:b6:a9:98:78:fa:9e:ef:2a:e8:7f:a6: 87:41:9d:18:44:2b:19:05:41:12:fa:ff:f7:94:6c: 82:eb:e6:4c:88:40:c4:8c:12:23:9a:38:63:e5:03: 64:6f:40:d7:44:22:c0:06:db:10:68:ca:72:8a:8b: 79:af:62:08:bc:50:cd:bb:7f:00:f8:b9:a1:e4:25: 67:ec:17:06:3c:9e:98:dd:56:bc:99:3b:cf:86:1b: c5:ec:19:12:33:21:1f:bb:88:8e:3a:f0:99:0b:d8: a5:5a:51:a6:cd:a5:87:91:79:d7:16:7b:1e:1d:21: c6:5f:8b:8a:4e:4b:b6:94:4b:de:91:39:80:b1:b0: bb:7f:b4:e2:c7:e1:0c:99:ad:67:5f:71:17:4f:de: 28:79:51:35:65:90:5d:e2:fb:46:4d:1c:14:6e:88: 25:27:0f:dc:81:84:7a:32:b6:5f:97:f0:91:4e:ca: bf:53:55:e3:54:cf:0c:d7:ba:79:80:35:16:51:7b: c7:e4:19:67:57:3f:56:85:66:fe:eb:fd:cf:7d:a0: ae:08:5f:c1:de:cd:00:af:35:34:89:20:58:8a:d2: 45:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DF:7B:9C:67:0D:61:B4:9C:BF:AA:E1:5E:5A:05:1F:39:8A:F8:27 X509v3 Authority Key Identifier: keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d4:bc:1a:e5:2f:c2:f4:85:f3:c0:40:1a:22:13:3a:58:1c: 74:ae:1b:55:32:31:33:e5:d8:94:36:1c:75:a8:d3:25:59:bf: 17:f6:90:6c:e9:54:1d:e9:f5:01:75:51:b9:69:5e:40:d9:e5: c6:29:9c:a2:0b:df:c2:ac:5f:01:52:46:2f:7b:35:e2:d3:97: 30:97:ea:d0:9b:f0:42:22:f9:ed:eb:be:98:49:1a:bd:7a:57: 2f:22:8d:ad:24:25:c4:40:03:27:69:24:ff:5c:25:6e:b8:b0: 33:f2:c1:40:e5:e3:cc:46:d7:ee:59:68:fa:fd:63:31:32:7b: 7d:8e:d8:3e:fe:f0:8c:40:e5:4c:96:64:15:c1:85:76:33:92: 60:e9:ac:5f:f6:15:5e:34:68:db:36:46:f1:dd:1b:06:88:0b: 9f:b3:15:4f:56:7e:bf:9b:ea:8d:c1:df:42:f4:1c:15:7e:97: cc:bd:8c:76:81:ee:59:ff:29:cc:5e:e5:fa:a5:bf:ad:1c:52: cd:c3:78:6f:7d:42:af:28:d6:70:4d:e3:8e:dc:74:95:21:89: 2c:8c:1e:87:6b:f4:51:0f:9f:bd:8b:38:a5:de:1f:e2:b4:f0: 37:28:bd:ea:ee:a1:8a:2c:ac:8b:aa:6b:c1:df:62:0d:5d:f0: f9:b6:5a:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bG9QFwustCFTE+NBKdmNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZjkyNjU4NjAxMDk0ZWQ2NDk4NWM2NGM2OTUyYmUzNDE2 MzAxY2UwHhcNMjUxMjIxMDEwMDUyWhcNMjUxMjIyMDEwMDUyWjAzMTEwLwYDVQQD EyhjNGRmN2I5YzY3MGQ2MWI0OWNiZmFhZTE1ZTVhMDUxZjM5OGFmODI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6nvFnhKqHZiRc4YVXXxlqspQs/r FkdsR3DykgqAk0vJtqmYePqe7yrof6aHQZ0YRCsZBUES+v/3lGyC6+ZMiEDEjBIj mjhj5QNkb0DXRCLABtsQaMpyiot5r2IIvFDNu38A+Lmh5CVn7BcGPJ6Y3Va8mTvP hhvF7BkSMyEfu4iOOvCZC9ilWlGmzaWHkXnXFnseHSHGX4uKTku2lEvekTmAsbC7 f7Tix+EMma1nX3EXT94oeVE1ZZBd4vtGTRwUboglJw/cgYR6MrZfl/CRTsq/U1Xj VM8M17p5gDUWUXvH5BlnVz9WhWb+6/3PfaCuCF/B3s0ArzU0iSBYitJFLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMTfe5xnDWG0nL+q4V5aBR85ivgnMB8GA1UdIwQY MBaAFE35JlhgEJTtZJhcZMaVK+NBYwHOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGZrbVdHQVFsTzFrbUZ4a3hwVXI0MEZqQWM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9hOWU1N2UtMjQ3OS00NTc2LWIyNzUt ODc0MzMxNTdhMjViLzEvVGZrbVdHQVFsTzFrbUZ4a3hwVXI0MEZqQWM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9hOWU1N2UtMjQ3OS00NTc2LWIyNzUtODc0MzMxNTdhMjVi LzEvVGZrbVdHQVFsTzFrbUZ4a3hwVXI0MEZqQWM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD9S8GuUv wvSF88BAGiITOlgcdK4bVTIxM+XYlDYcdajTJVm/F/aQbOlUHen1AXVRuWleQNnl ximcogvfwqxfAVJGL3s14tOXMJfq0JvwQiL57eu+mEkavXpXLyKNrSQlxEADJ2kk /1wlbriwM/LBQOXjzEbX7llo+v1jMTJ7fY7YPv7wjEDlTJZkFcGFdjOSYOmsX/YV XjRo2zZG8d0bBogLn7MVT1Z+v5vqjcHfQvQcFX6XzL2MdoHuWf8pzF7l+qW/rRxS zcN4b31CryjWcE3jjtx0lSGJLIweh2v0UQ+fvYs4pd4f4rTwNyi96u6hiiysi6pr wd9iDV3w+bZaaw== -----END CERTIFICATE-----Generated at Sun Dec 21 03:27:29 2025 by rpki-client