This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft File: _ToehGW_xN9wCJQ3LQuYCOi2Keo.mft (raw, json) Hash identifier: jPz1/iZlbSFiwAv8dr2BgugJPn97xk/tGtvyhGp+VMw= Subject key identifier: 3F:C1:B1:87:8B:F9:57:82:C5:D3:C0:56:6E:8F:19:60:67:AE:89:7E Authority key identifier: FD:3A:1E:84:65:BF:C4:DF:70:08:94:37:2D:0B:98:08:E8:B6:29:EA Certificate issuer: /CN=fd3a1e8465bfc4df700894372d0b9808e8b629ea Certificate serial: 019AF3C075176A4672DA935C26259EEE3BC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ToehGW_xN9wCJQ3LQuYCOi2Keo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 13:01:07 +0000 Manifest this update: Sat 06 Dec 2025 13:01:07 +0000 Manifest next update: Sun 07 Dec 2025 13:01:07 +0000 Files and hashes: 1: _ToehGW_xN9wCJQ3LQuYCOi2Keo.crl (hash: akOfrZ4QfcOEWU7zSitA6cxAmEnxkPyvKlK4XNMKG/M=) 2: dQcGvMsR-By8rmf63OPVeRoG1kI.roa (hash: UUTwEFWKXd8UKczRmcM1HwJqB9u2VJL8KBgLmOxv5wQ=) 3: dyesQZ9bNc_exbNvHrSwjqGWp5E.roa (hash: SPDtAhHddz/awjfh8C86lGD8fC38ASE+0AD196Bu4A4=) 4: mTK71BiAahOGNOj1gIjcUiycIis.roa (hash: Kml3f2UysjEUhXvE3jKGWnv4uk2wh6/Ey/fuSSOhyUc=) 5: ysibzsONFpyNAtuXpUifxvA1QaM.roa (hash: zC93yIFX6WjKFEjG+j03DkiiYurXSe8yZy0kiGE5C2E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.crl rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft rsync://rpki.ripe.net/repository/DEFAULT/_ToehGW_xN9wCJQ3LQuYCOi2Keo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:75:17:6a:46:72:da:93:5c:26:25:9e:ee:3b:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd3a1e8465bfc4df700894372d0b9808e8b629ea Validity Not Before: Dec 6 13:01:07 2025 GMT Not After : Dec 7 13:01:07 2025 GMT Subject: CN=3fc1b1878bf95782c5d3c0566e8f196067ae897e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d2:86:a1:0e:67:ee:aa:37:ea:09:97:bc:68: 80:1c:d2:65:07:a4:0a:0c:7d:3f:68:04:bc:c2:c7: a9:4c:b1:23:40:de:b8:13:92:3d:0d:eb:6d:c6:2e: ce:33:b1:b3:05:c2:6b:b7:b0:14:26:0a:07:20:82: 36:86:93:4a:24:d9:6b:0e:b4:8e:86:fc:49:ba:64: 7f:23:62:86:2d:c4:58:0f:d5:28:0e:c1:c9:fc:97: fa:b3:8e:33:c4:6c:94:c5:79:69:00:a1:13:aa:8b: cf:af:d0:05:a2:f6:ff:11:a3:83:8e:8a:60:25:86: e5:ff:f7:ee:b5:3e:cb:0c:be:3c:cc:bc:4b:ff:41: 96:69:50:4d:1e:50:7d:5f:a4:a2:42:1d:bf:69:17: 1a:96:89:6e:3b:48:56:cf:86:77:23:c9:e1:5c:f2: ad:bc:f7:4f:f7:04:d2:2a:4f:35:e2:ca:e3:e5:0e: f3:fe:dd:1e:3b:e4:bc:f1:7e:6c:47:a5:87:58:b9: 64:86:c5:40:2b:51:d4:a9:94:16:20:10:b7:17:d6: 14:f1:8c:fd:1b:82:8d:d6:02:1d:87:1b:09:01:48: 97:6f:13:96:dd:c3:55:05:63:76:a5:88:4e:33:2d: 6e:87:88:a2:57:79:83:a6:87:97:b7:de:aa:2a:5e: dc:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C1:B1:87:8B:F9:57:82:C5:D3:C0:56:6E:8F:19:60:67:AE:89:7E X509v3 Authority Key Identifier: keyid:FD:3A:1E:84:65:BF:C4:DF:70:08:94:37:2D:0B:98:08:E8:B6:29:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ToehGW_xN9wCJQ3LQuYCOi2Keo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:97:1e:28:d2:b5:2c:2d:28:6c:7d:c0:12:81:d8:27:ff:d3: 8a:3e:a8:f2:41:98:72:50:4f:2d:60:9e:ea:0c:d5:bb:f2:b2: 35:82:53:cd:34:86:1f:12:ef:7e:a0:c8:be:2b:09:19:e2:fe: b1:6d:3b:fe:49:6d:df:ee:69:a9:58:eb:75:ec:df:e7:a9:0f: ae:2e:9f:c7:db:0f:48:65:d4:1d:69:2b:d1:8e:8e:58:4a:1b: d4:b2:3f:67:f8:32:e1:c2:1c:9d:a7:76:8e:01:b5:94:d9:2f: f7:e0:bb:fe:56:d9:4b:91:dd:a6:5b:f2:15:36:c9:5b:cd:11: 81:18:f5:86:f8:18:77:6d:8f:f7:8d:27:b4:52:1c:03:c8:03: 1c:52:bb:2e:30:c5:1a:bd:77:4d:43:05:01:b9:63:3d:93:96: a4:e3:1a:85:63:7a:4f:a8:9f:28:fe:5e:38:17:cf:a9:36:82: 2c:92:8b:b2:7a:0d:5a:68:d5:72:29:0f:9a:2e:f7:1c:46:c4: e1:38:13:00:d1:73:5a:12:3e:9c:ff:c9:b8:35:4d:28:46:84: 7d:ee:d9:32:8a:05:e3:0e:0e:5f:dc:3f:a8:e1:fd:4c:1a:6e: 58:fd:35:5c:cf:e4:fc:ef:8f:40:ba:55:f8:fe:45:b7:5f:b3: 5a:bf:5b:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwHUXakZy2pNcJiWe7jvIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkM2ExZTg0NjViZmM0ZGY3MDA4OTQzNzJkMGI5ODA4ZThi NjI5ZWEwHhcNMjUxMjA2MTMwMTA3WhcNMjUxMjA3MTMwMTA3WjAzMTEwLwYDVQQD EygzZmMxYjE4NzhiZjk1NzgyYzVkM2MwNTY2ZThmMTk2MDY3YWU4OTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NKGoQ5n7qo36gmXvGiAHNJlB6QK DH0/aAS8wsepTLEjQN64E5I9Dettxi7OM7GzBcJrt7AUJgoHIII2hpNKJNlrDrSO hvxJumR/I2KGLcRYD9UoDsHJ/Jf6s44zxGyUxXlpAKETqovPr9AFovb/EaODjopg JYbl//futT7LDL48zLxL/0GWaVBNHlB9X6SiQh2/aRcaloluO0hWz4Z3I8nhXPKt vPdP9wTSKk814srj5Q7z/t0eO+S88X5sR6WHWLlkhsVAK1HUqZQWIBC3F9YU8Yz9 G4KN1gIdhxsJAUiXbxOW3cNVBWN2pYhOMy1uh4iiV3mDpoeXt96qKl7cxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/BsYeL+VeCxdPAVm6PGWBnrol+MB8GA1UdIwQY MBaAFP06HoRlv8TfcAiUNy0LmAjotinqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1RvZWhHV194Tjl3Q0pRM0xRdVlDT2kyS2VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS81MTM3MzQtYTQ4NS00YzI4LThhYTYt OTU1NWQzMGY2ZjhmLzEvX1RvZWhHV194Tjl3Q0pRM0xRdVlDT2kyS2VvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS81MTM3MzQtYTQ4NS00YzI4LThhYTYtOTU1NWQzMGY2Zjhm LzEvX1RvZWhHV194Tjl3Q0pRM0xRdVlDT2kyS2VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpceKNK1 LC0obH3AEoHYJ//Tij6o8kGYclBPLWCe6gzVu/KyNYJTzTSGHxLvfqDIvisJGeL+ sW07/klt3+5pqVjrdezf56kPri6fx9sPSGXUHWkr0Y6OWEob1LI/Z/gy4cIcnad2 jgG1lNkv9+C7/lbZS5HdplvyFTbJW80RgRj1hvgYd22P940ntFIcA8gDHFK7LjDF Gr13TUMFAbljPZOWpOMahWN6T6ifKP5eOBfPqTaCLJKLsnoNWmjVcikPmi73HEbE 4TgTANFzWhI+nP/JuDVNKEaEfe7ZMooF4w4OX9w/qOH9TBpuWP01XM/k/O+PQLpV +P5Ft1+zWr9btQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:14:34 2025 by rpki-client