This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft File: TRMSiBUQNXRBfKenBBLaOrO4RRE.mft (raw, json) Hash identifier: W2/auS6YYxUHagSyCTCgjbDCgDl8SS29OeRPswxrCyU= Subject key identifier: B7:7F:ED:C5:30:A6:6D:2E:2A:DF:19:18:3B:97:1A:ED:8B:88:CA:C4 Authority key identifier: 4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11 Certificate issuer: /CN=4d13128815103574417ca7a70412da3ab3b84511 Certificate serial: 019B2B8A76388040DC1338BEE0EB87CC5655 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft Manifest number: 1782 Signing time: Wed 17 Dec 2025 09:00:52 +0000 Manifest this update: Wed 17 Dec 2025 09:00:52 +0000 Manifest next update: Thu 18 Dec 2025 09:00:52 +0000 Files and hashes: 1: RbRcN6wl0nEFVsWYx8c9XyFYSpY.roa (hash: BVR+Y8S7WJeuusRjWoFe5ZeYBx8jVE+CDBxd/rFYYkU=) 2: TRMSiBUQNXRBfKenBBLaOrO4RRE.crl (hash: nI4bjgvi9mqVz9fsD5UdSRXubIcXndFtGssUU8iN8Us=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:8a:76:38:80:40:dc:13:38:be:e0:eb:87:cc:56:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d13128815103574417ca7a70412da3ab3b84511 Validity Not Before: Dec 17 09:00:52 2025 GMT Not After : Dec 18 09:00:52 2025 GMT Subject: CN=b77fedc530a66d2e2adf19183b971aed8b88cac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3c:ef:92:37:40:a9:4b:b5:16:90:62:ca:ce: b0:df:9d:aa:5c:cf:d2:ce:a6:5a:85:c6:e3:8b:1c: da:0d:e3:b0:c1:17:be:bb:62:3b:d9:10:f4:4b:b3: 60:5d:1a:ef:67:3a:90:16:66:f1:e9:fe:d9:bc:d5: 02:3e:4a:39:df:91:e4:b5:40:d4:32:75:92:2b:90: 7e:51:56:13:a4:37:cd:88:e1:d2:08:b9:6e:aa:73: c9:79:38:22:ba:99:24:51:35:55:55:00:f7:a7:0e: 0d:1d:b2:9f:02:92:b5:87:84:ef:da:4a:86:86:32: 2e:79:c0:14:ba:f8:11:bf:70:16:45:69:d7:ee:3b: d4:85:ce:aa:db:19:77:8a:4c:13:50:d9:55:08:74: ca:0f:a3:fa:04:b0:44:95:cb:9d:aa:4c:3b:56:ff: 1a:a3:15:8f:fe:4f:02:da:cb:91:a0:05:69:f1:20: 01:f4:d3:e6:15:6d:66:b3:44:a5:26:69:18:61:79: cf:47:96:d3:82:67:b8:f3:6e:b9:40:61:1b:3d:5d: 0d:b3:7d:d7:88:33:05:8e:7c:f4:da:98:60:5b:e1: ad:c1:8e:d6:cf:16:a0:25:38:09:03:5e:bd:91:23: dc:7a:1b:06:ca:cd:bd:f6:86:b7:4a:25:f2:fb:d1: 8c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7F:ED:C5:30:A6:6D:2E:2A:DF:19:18:3B:97:1A:ED:8B:88:CA:C4 X509v3 Authority Key Identifier: keyid:4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:34:08:9b:95:67:06:7f:bd:37:09:39:e5:d6:d4:8d:e8:1e: 51:17:61:05:68:3a:35:c2:1d:be:d3:a0:b5:20:2a:de:0f:97: 5c:55:3a:12:f5:a8:42:67:db:f9:09:c2:70:69:80:98:f2:f1: 2b:4b:ba:a8:48:db:22:bb:5c:60:6c:a3:42:d8:e9:9f:12:05: 03:c5:a2:e5:19:5f:fb:a6:e4:45:ac:f6:dd:60:53:7a:b0:ad: 0a:98:2b:3c:e9:a8:b5:59:b8:56:17:a4:3a:6d:b8:c7:e6:9e: a6:6f:14:52:fc:3f:fe:89:9d:e1:66:e2:6d:5c:10:26:33:6b: 3c:a2:eb:7d:b8:c2:db:85:29:ca:fd:19:14:e1:97:08:1c:53: 56:38:80:51:53:eb:1e:39:ee:0c:a0:30:c5:b4:d1:eb:b6:13: a9:50:e2:ea:7b:41:2c:83:e1:ca:e9:75:aa:3d:5f:b3:d6:f7: 5d:b4:0e:fc:0b:45:a4:43:6a:72:b1:d4:1c:68:c2:d0:bb:e6: 94:ed:f7:df:5d:7b:37:43:1b:cb:c0:44:c6:33:62:48:cf:1b: 8b:ca:22:da:bd:de:90:83:fc:46:30:9f:48:32:aa:bb:fe:a8: 22:40:f7:44:2d:53:83:d2:c4:8a:d9:e5:9c:60:90:46:c1:cb: db:6e:16:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrinY4gEDcEzi+4OuHzFZVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMTMxMjg4MTUxMDM1NzQ0MTdjYTdhNzA0MTJkYTNhYjNi ODQ1MTEwHhcNMjUxMjE3MDkwMDUyWhcNMjUxMjE4MDkwMDUyWjAzMTEwLwYDVQQD EyhiNzdmZWRjNTMwYTY2ZDJlMmFkZjE5MTgzYjk3MWFlZDhiODhjYWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5DzvkjdAqUu1FpBiys6w352qXM/S zqZahcbjixzaDeOwwRe+u2I72RD0S7NgXRrvZzqQFmbx6f7ZvNUCPko535HktUDU MnWSK5B+UVYTpDfNiOHSCLluqnPJeTgiupkkUTVVVQD3pw4NHbKfApK1h4Tv2kqG hjIuecAUuvgRv3AWRWnX7jvUhc6q2xl3ikwTUNlVCHTKD6P6BLBElcudqkw7Vv8a oxWP/k8C2suRoAVp8SAB9NPmFW1ms0SlJmkYYXnPR5bTgme48265QGEbPV0Ns33X iDMFjnz02phgW+GtwY7WzxagJTgJA169kSPcehsGys299oa3SiXy+9GM6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLd/7cUwpm0uKt8ZGDuXGu2LiMrEMB8GA1UdIwQY MBaAFE0TEogVEDV0QXynpwQS2jqzuEURMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFJNU2lCVVFOWFJCZktlbkJCTGFPck80UlJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9mYWZmYzItOTUxNy00ZDE4LTg5OTMt ZjU1ZWE0OGNlNzVhLzEvVFJNU2lCVVFOWFJCZktlbkJCTGFPck80UlJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC9mYWZmYzItOTUxNy00ZDE4LTg5OTMtZjU1ZWE0OGNlNzVh LzEvVFJNU2lCVVFOWFJCZktlbkJCTGFPck80UlJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXDQIm5Vn Bn+9Nwk55dbUjegeURdhBWg6NcIdvtOgtSAq3g+XXFU6EvWoQmfb+QnCcGmAmPLx K0u6qEjbIrtcYGyjQtjpnxIFA8Wi5Rlf+6bkRaz23WBTerCtCpgrPOmotVm4Vhek Om24x+aepm8UUvw//omd4WbibVwQJjNrPKLrfbjC24Upyv0ZFOGXCBxTVjiAUVPr HjnuDKAwxbTR67YTqVDi6ntBLIPhyul1qj1fs9b3XbQO/AtFpENqcrHUHGjC0Lvm lO333117N0Mby8BExjNiSM8bi8oi2r3ekIP8RjCfSDKqu/6oIkD3RC1Tg9LEitnl nGCQRsHL224WfQ== -----END CERTIFICATE-----Generated at Wed Dec 17 18:41:19 2025 by rpki-client