This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft File: TLbePNkQ87_3_4Xe1FLEMbHopSA.mft (raw, json) Hash identifier: zZvndLmiMHLsTCczq7Ydob48QGBW/LZGnMhmI5BrflE= Subject key identifier: 83:34:DC:45:59:D0:5F:8C:77:8E:50:E6:22:7D:3A:BC:C7:A7:BE:D1 Authority key identifier: 4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20 Certificate issuer: /CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520 Certificate serial: 019B2E5499F42E0D85D0B5487C76C901E009 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft Manifest number: 1782 Signing time: Wed 17 Dec 2025 22:00:54 +0000 Manifest this update: Wed 17 Dec 2025 22:00:54 +0000 Manifest next update: Thu 18 Dec 2025 22:00:54 +0000 Files and hashes: 1: TLbePNkQ87_3_4Xe1FLEMbHopSA.crl (hash: HROHNMOnJJljXC5/CiQfUI7Y8ZfVM9pFoIxsr+IFSuQ=) 2: kE8LdGAFW614HUcjN1MoZxFokJs.roa (hash: XYMGtkKoA87TX5nzm+UQ3ylduTU9EvUGKlmdAtXqyu4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 22:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:54:99:f4:2e:0d:85:d0:b5:48:7c:76:c9:01:e0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520 Validity Not Before: Dec 17 22:00:54 2025 GMT Not After : Dec 18 22:00:54 2025 GMT Subject: CN=8334dc4559d05f8c778e50e6227d3abcc7a7bed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b3:10:79:52:6a:5c:92:ee:83:fd:4e:a1:b4: 4b:65:e5:a8:4c:54:f8:f8:68:70:27:e7:60:df:84: f1:50:ba:da:9e:7a:1a:26:57:fc:ce:d2:c4:45:4c: a7:12:b0:97:18:d6:a6:bc:c6:a6:aa:84:fa:11:91: f9:8e:59:72:aa:d8:a4:e2:f8:66:88:13:be:b4:0a: 3b:b1:03:45:8e:df:b8:fa:9a:ee:ad:ab:6f:70:00: 5c:17:ef:5b:56:3d:7d:f7:a6:4a:6a:77:49:e8:2b: eb:bf:85:e7:00:1b:7c:b4:0e:42:6d:bd:01:e4:89: e1:81:7e:16:e1:6b:6c:c1:52:5b:bc:e9:a2:e4:79: ae:95:b5:e5:ea:4f:bf:f0:17:e1:d3:b7:50:28:3a: a9:0e:c6:71:c1:7e:85:b7:76:8d:8c:42:bf:c9:a9: 5d:08:1e:16:af:c4:8f:b8:a2:95:74:ea:28:64:55: 86:02:73:de:f0:0f:3a:67:c5:f6:5c:a4:de:28:ae: e9:cf:27:77:f0:da:18:89:a1:c7:f3:06:85:0b:50: 13:8f:04:a9:b6:d5:8e:b2:78:9a:e9:a5:11:77:fb: 9f:79:de:3e:8e:7c:5b:88:e1:98:6b:03:f1:00:95: b9:dc:fe:6c:2a:98:85:ce:3e:0f:9a:eb:59:18:d5: 19:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:34:DC:45:59:D0:5F:8C:77:8E:50:E6:22:7D:3A:BC:C7:A7:BE:D1 X509v3 Authority Key Identifier: keyid:4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:9e:20:18:7e:f7:77:46:30:02:c5:bf:a5:f9:40:30:9d:f2: cb:7d:18:d5:06:c3:ee:c3:e1:e2:1c:6d:e8:fd:e6:6a:44:0e: d8:2a:d4:c3:8a:be:04:47:11:80:51:eb:77:31:11:c7:f8:b9: 16:b7:cc:06:5c:2a:cb:ff:8f:cb:44:f3:ce:7a:f8:ca:8c:16: 52:05:07:90:eb:fc:d5:ca:dd:a4:37:e7:7b:b8:5b:26:49:5d: 9f:65:d8:10:0a:80:62:1f:52:90:a3:6f:79:33:dc:34:9b:41: 7b:a2:35:be:03:66:da:93:87:6c:72:f3:ce:5a:a0:5e:67:f6: b9:9e:01:c9:1d:99:26:37:64:11:1b:2b:20:bf:1f:9e:d2:4b: 2c:60:55:de:9d:80:b1:43:b0:23:10:58:b9:b9:7a:1a:61:88: 44:db:1d:ec:a9:33:fe:3e:bb:61:33:0c:c9:8b:5c:81:72:d1: 8d:2e:78:21:66:87:70:bb:1e:40:e8:2d:6f:55:d9:84:68:16: 6e:28:5d:69:d3:50:cf:f9:3c:29:ed:a5:53:86:23:d5:38:9b: 00:ed:b2:c1:9a:3a:86:99:8e:cc:51:57:a0:47:fb:a1:be:c2: e7:bf:3a:6b:81:e8:6d:39:f7:3d:8a:7a:67:fb:66:15:54:95: f4:b2:66:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsuVJn0Lg2F0LVIfHbJAeAJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYjZkZTNjZDkxMGYzYmZmN2ZmODVkZWQ0NTJjNDMxYjFl OGE1MjAwHhcNMjUxMjE3MjIwMDU0WhcNMjUxMjE4MjIwMDU0WjAzMTEwLwYDVQQD Eyg4MzM0ZGM0NTU5ZDA1ZjhjNzc4ZTUwZTYyMjdkM2FiY2M3YTdiZWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17MQeVJqXJLug/1OobRLZeWoTFT4 +GhwJ+dg34TxULrannoaJlf8ztLERUynErCXGNamvMamqoT6EZH5jllyqtik4vhm iBO+tAo7sQNFjt+4+pruratvcABcF+9bVj1996ZKandJ6Cvrv4XnABt8tA5Cbb0B 5InhgX4W4WtswVJbvOmi5HmulbXl6k+/8Bfh07dQKDqpDsZxwX6Ft3aNjEK/yald CB4Wr8SPuKKVdOooZFWGAnPe8A86Z8X2XKTeKK7pzyd38NoYiaHH8waFC1ATjwSp ttWOsnia6aURd/ufed4+jnxbiOGYawPxAJW53P5sKpiFzj4PmutZGNUZrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIM03EVZ0F+Md45Q5iJ9OrzHp77RMB8GA1UdIwQY MBaAFEy23jzZEPO/9/+F3tRSxDGx6KUgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVExiZVBOa1E4N18zXzRYZTFGTEVNYkhvcFNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS84ZmEzNTQtNGJkNS00NTRkLWIyZDgt MDNmNjA0MzI0ZmNmLzEvVExiZVBOa1E4N18zXzRYZTFGTEVNYkhvcFNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS84ZmEzNTQtNGJkNS00NTRkLWIyZDgtMDNmNjA0MzI0ZmNm LzEvVExiZVBOa1E4N18zXzRYZTFGTEVNYkhvcFNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq54gGH73 d0YwAsW/pflAMJ3yy30Y1QbD7sPh4hxt6P3makQO2CrUw4q+BEcRgFHrdzERx/i5 FrfMBlwqy/+Py0Tzznr4yowWUgUHkOv81crdpDfne7hbJkldn2XYEAqAYh9SkKNv eTPcNJtBe6I1vgNm2pOHbHLzzlqgXmf2uZ4ByR2ZJjdkERsrIL8fntJLLGBV3p2A sUOwIxBYubl6GmGIRNsd7Kkz/j67YTMMyYtcgXLRjS54IWaHcLseQOgtb1XZhGgW bihdadNQz/k8Ke2lU4Yj1TibAO2ywZo6hpmOzFFXoEf7ob7C5786a4HobTn3PYp6 Z/tmFVSV9LJmDA== -----END CERTIFICATE-----Generated at Thu Dec 18 06:55:22 2025 by rpki-client