This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json) Hash identifier: qlON699I4UyvyfkxrB7tF780/bInpbkZ0RQL16/LAw4= Subject key identifier: E8:38:D1:E2:36:BC:DC:93:27:7D:CB:46:B5:72:C2:49:55:F7:70:60 Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97 Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697 Certificate serial: 019B3456917BBD917B4B30ACEFFF536B0F36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft Manifest number: 1785 Signing time: Fri 19 Dec 2025 02:00:47 +0000 Manifest this update: Fri 19 Dec 2025 02:00:47 +0000 Manifest next update: Sat 20 Dec 2025 02:00:47 +0000 Files and hashes: 1: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: N1Wzz9vola2nLzlhHDdEfqKfcCxRBKxXw25d6JYZIEA=) 2: a6Whh1qMHaCLz9si7bMkIx4xg1Y.roa (hash: R/Syehgq2eEOSio/8bhqr2YXvz+4Ke3qpd0G80XikQo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 02:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:91:7b:bd:91:7b:4b:30:ac:ef:ff:53:6b:0f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d1527d1839bf830360d71590134354e6d904697 Validity Not Before: Dec 19 02:00:47 2025 GMT Not After : Dec 20 02:00:47 2025 GMT Subject: CN=e838d1e236bcdc93277dcb46b572c24955f77060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:23:6f:f1:a8:ab:e3:2c:1b:76:d7:f4:7e:aa: 51:c4:d0:8e:95:8b:06:a4:f8:71:88:02:da:f6:fc: f7:b0:bb:a6:dc:3d:ae:90:c6:ba:d9:da:64:4c:e9: e4:96:cf:f4:5f:09:2f:20:4f:e0:37:3b:d7:34:e5: c2:57:be:cb:1f:97:fd:f5:bb:05:5d:8d:dc:6d:16: f5:07:3d:0b:8a:78:c0:5b:9d:09:ab:6f:bb:9e:8b: 62:11:2e:2c:eb:b2:86:68:ca:bd:73:e5:29:e0:85: f6:40:21:73:f3:5f:c1:b3:12:96:23:37:35:b4:84: cb:e1:d4:72:17:6a:56:22:b5:8e:04:bd:d7:f2:9b: af:2f:01:c9:f4:84:55:7f:f7:2f:4e:61:b0:ee:f0: 00:b6:8c:96:8c:9c:38:70:9d:90:42:ee:6e:36:37: f9:fb:b8:de:d9:73:77:7f:6a:0c:aa:da:28:20:e1: 4c:7a:47:6a:a2:9d:2a:9c:85:9a:01:de:0d:8d:f6: 66:60:ae:02:36:13:7c:df:ba:28:03:e1:76:65:88: 9a:83:7b:84:ed:d0:33:8b:d0:49:de:fb:cb:12:5f: cf:78:b0:60:e4:c1:eb:74:a7:93:e8:2c:03:e8:50: e3:65:97:3c:57:1c:bc:9f:29:c7:29:0b:7c:38:57: 6d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:38:D1:E2:36:BC:DC:93:27:7D:CB:46:B5:72:C2:49:55:F7:70:60 X509v3 Authority Key Identifier: keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:19:55:54:15:b2:27:0b:24:66:46:f7:de:0b:a6:42:4b:42: 0d:ea:9c:0c:dc:da:6b:85:3b:75:2f:96:99:2e:42:0e:a3:e8: a5:67:64:62:e8:95:55:28:52:97:62:a9:9f:5b:75:5b:ed:e9: 95:90:9a:54:8b:6a:16:09:8d:e8:3a:70:5b:ad:59:dd:0c:ab: 13:62:76:a6:e2:bc:51:73:bf:55:93:05:3a:df:79:a0:7a:72: ee:05:bf:49:80:b6:c8:71:79:5f:6c:f8:d1:a7:8a:18:1d:5b: 7b:51:f5:25:79:01:fe:ac:55:b6:dd:3e:2b:72:f3:e7:ff:95: fe:9b:fd:63:ac:14:61:1e:44:02:04:e9:e0:56:81:a0:2f:1b: 68:fe:59:02:48:00:8c:a0:11:50:34:41:35:64:a2:4e:d0:b1: 9d:18:a1:56:52:50:64:44:52:e9:76:ef:49:36:31:24:26:97: b5:d5:99:a3:2c:81:aa:43:4f:13:a4:24:cd:df:7f:ba:0e:94: 5d:a3:04:84:f5:58:85:15:d3:5f:77:7a:aa:1e:c7:ab:b1:f0: d8:3b:f5:13:32:c7:e8:50:d5:6a:5b:8d:9c:86:b9:00:70:54: 24:f3:93:99:56:47:0e:57:08:3d:0d:56:77:3d:98:58:8c:28: a8:6d:3d:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0VpF7vZF7SzCs7/9Taw82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMTUyN2QxODM5YmY4MzAzNjBkNzE1OTAxMzQzNTRlNmQ5 MDQ2OTcwHhcNMjUxMjE5MDIwMDQ3WhcNMjUxMjIwMDIwMDQ3WjAzMTEwLwYDVQQD EyhlODM4ZDFlMjM2YmNkYzkzMjc3ZGNiNDZiNTcyYzI0OTU1Zjc3MDYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yNv8air4ywbdtf0fqpRxNCOlYsG pPhxiALa9vz3sLum3D2ukMa62dpkTOnkls/0XwkvIE/gNzvXNOXCV77LH5f99bsF XY3cbRb1Bz0LinjAW50Jq2+7notiES4s67KGaMq9c+Up4IX2QCFz81/BsxKWIzc1 tITL4dRyF2pWIrWOBL3X8puvLwHJ9IRVf/cvTmGw7vAAtoyWjJw4cJ2QQu5uNjf5 +7je2XN3f2oMqtooIOFMekdqop0qnIWaAd4NjfZmYK4CNhN837ooA+F2ZYiag3uE 7dAzi9BJ3vvLEl/PeLBg5MHrdKeT6CwD6FDjZZc8Vxy8nynHKQt8OFdtfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOg40eI2vNyTJ33LRrVywklV93BgMB8GA1UdIwQY MBaAFE0VJ9GDm/gwNg1xWQE0NU5tkEaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFJVbjBZT2ItREEyRFhGWkFUUTFUbTJRUnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8zMDlkMzYtYzQyMC00MzIxLTk1NDAt ZjNkZjY3M2VhNThjLzEvVFJVbjBZT2ItREEyRFhGWkFUUTFUbTJRUnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy8zMDlkMzYtYzQyMC00MzIxLTk1NDAtZjNkZjY3M2VhNThj LzEvVFJVbjBZT2ItREEyRFhGWkFUUTFUbTJRUnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbRlVVBWy JwskZkb33gumQktCDeqcDNzaa4U7dS+WmS5CDqPopWdkYuiVVShSl2Kpn1t1W+3p lZCaVItqFgmN6DpwW61Z3QyrE2J2puK8UXO/VZMFOt95oHpy7gW/SYC2yHF5X2z4 0aeKGB1be1H1JXkB/qxVtt0+K3Lz5/+V/pv9Y6wUYR5EAgTp4FaBoC8baP5ZAkgA jKARUDRBNWSiTtCxnRihVlJQZERS6XbvSTYxJCaXtdWZoyyBqkNPE6Qkzd9/ug6U XaMEhPVYhRXTX3d6qh7Hq7Hw2Dv1EzLH6FDValuNnIa5AHBUJPOTmVZHDlcIPQ1W dz2YWIwoqG09yA== -----END CERTIFICATE-----Generated at Fri Dec 19 08:49:57 2025 by rpki-client