This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft File: RETHw600tpd_oYoiN8owa5vuCOA.mft (raw, json) Hash identifier: 4iPtw8ndAImPTuUTZT8U0KcyLGCHgm2Iun9Rn79dEKI= Subject key identifier: 68:AA:C5:4B:8E:11:D1:8D:C6:82:4B:FA:32:C6:FC:2E:82:C2:E1:57 Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0 Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0 Certificate serial: 019AF2E4524CC3C05C496C0145C269B4B55F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft Manifest number: 1261 Signing time: Sat 06 Dec 2025 09:00:40 +0000 Manifest this update: Sat 06 Dec 2025 09:00:40 +0000 Manifest next update: Sun 07 Dec 2025 09:00:40 +0000 Files and hashes: 1: 2V9yE_-2gPzUwYdccQgBOoOM18I.roa (hash: eOCHHWhfMlB35sI0btwTirM6dsTLjT95v8bNNnNalmA=) 2: NEq6MArjlQuQ-WIB1VyRrErjAd0.roa (hash: MidMhTk3ASBcuW3/c0/stqSyljlKyQu+afJNZt4dhek=) 3: RETHw600tpd_oYoiN8owa5vuCOA.crl (hash: ATwX4PCmiu2AQO6YacGTF9zeHmiCe5GhkMPtmXVMjGs=) 4: T9enhqzdG5yQEOgWkABkrQAk6M8.roa (hash: SxiuxM/I8FF8zreMQuHoAzLYfdJRNYC8zGUE4C2+MUg=) 5: YIWnRcAakVGioTGRMmr97QBMxt8.roa (hash: 0pAd524EgOV9gt8eDHTEF8KH00KSBimBO4oKROwsaA0=) 6: kaShJaLkR3B81NHQpcp6VAc_nlg.roa (hash: pqDRdBas3v1MNi9715+npvAM7Hsxyhh7JGLBbksQ+7E=) 7: lg3As9QftSBug7tpmYrQWLTzXlw.roa (hash: Zav5DG+USj65sND09nTQM5cgapiwyx+unRcWKNxbfPM=) 8: tLpYmjiy2-hs1MM_Lyatf45ocKg.roa (hash: /IX/rjwA4xnIpYI7Xf4mBV5PcdOdUpUQwLhk+QGjMLQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:e4:52:4c:c3:c0:5c:49:6c:01:45:c2:69:b4:b5:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0 Validity Not Before: Dec 6 09:00:40 2025 GMT Not After : Dec 7 09:00:40 2025 GMT Subject: CN=68aac54b8e11d18dc6824bfa32c6fc2e82c2e157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7d:0c:a6:47:c6:cd:1f:e3:41:93:fe:f5:71: cd:ff:46:a5:81:7a:54:e2:6f:f8:4f:08:bc:ff:94: bc:48:a0:21:ea:fe:e6:16:ca:24:f0:1a:b1:3f:e7: 2e:d6:47:41:02:cd:11:e3:74:38:ab:53:e1:5a:63: 30:b4:54:a7:0f:fd:3f:09:25:7a:2d:55:f8:dd:00: 64:59:d9:a0:d2:d1:63:48:a5:54:2c:74:23:a9:92: 50:47:e5:63:d0:4b:2c:05:62:c3:4c:31:5d:fb:3b: c7:0c:47:55:01:12:ef:48:07:72:98:fe:40:92:67: a3:d0:ed:59:d0:90:2a:a0:d8:0c:12:f1:8f:24:d3: 6d:86:fd:d8:1d:2f:5a:7a:23:78:8e:91:63:a5:71: 40:49:cb:11:fc:be:14:23:8f:03:69:db:66:de:92: 8c:1a:04:bc:df:31:8e:dc:c8:60:37:97:7a:c1:2e: c6:a1:dd:b7:9f:47:88:9e:08:53:48:f5:00:41:04: b4:3d:6b:03:ce:d3:21:83:4c:3a:04:fe:7f:29:f2: 2f:ba:9f:1d:3e:ff:44:1b:ff:f8:96:47:77:ad:ee: 30:9f:c2:82:84:fc:23:c5:69:db:f3:61:b9:0c:b7: 13:ff:5d:bd:ac:3d:d2:13:2e:5b:16:c6:57:90:a0: 66:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AA:C5:4B:8E:11:D1:8D:C6:82:4B:FA:32:C6:FC:2E:82:C2:E1:57 X509v3 Authority Key Identifier: keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:dd:7b:ce:a1:68:26:13:93:02:83:4f:31:bc:0e:ce:69:52: be:f3:ad:35:35:77:a9:0d:69:0c:30:8c:62:20:72:17:c9:bf: 0e:5c:42:4d:8b:de:6c:6a:49:2f:d5:2c:e9:54:67:0a:2a:76: 73:c1:d1:ae:1b:5b:47:c1:e6:76:11:ae:54:9d:b1:c7:85:df: 98:85:71:9e:10:4c:4b:ba:de:04:64:8f:cf:0d:fe:a4:09:8c: 5c:9f:82:50:a0:46:21:e9:d2:a6:7c:53:20:4e:f4:89:94:e2: 06:c9:e5:1b:cc:e5:f6:a2:87:1d:29:84:b7:f8:9c:c6:96:bf: 2b:92:a8:38:13:cd:c0:88:99:42:75:7f:5d:77:67:e2:9d:79: 6d:46:fa:25:03:18:bb:8e:ac:ef:33:dc:e2:5b:82:94:e5:90: c4:10:1b:bd:0d:47:64:7e:72:d5:0c:ad:31:3d:c2:e6:ad:7b: 03:ab:44:e6:1f:33:8c:de:9f:f8:22:16:93:ac:50:5b:b8:aa: 0e:d5:47:bd:eb:2a:52:84:25:31:45:7f:00:5e:fb:e8:69:f6: a0:8f:0b:6d:a9:3e:c9:c2:f7:27:14:f2:a2:85:15:10:1e:eb: 23:89:a9:4f:af:31:65:95:47:8e:d8:35:d5:3e:c7:13:1a:80: 11:3d:52:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZry5FJMw8BcSWwBRcJptLVfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0NDRjN2MzYWQzNGI2OTc3ZmExOGEyMjM3Y2EzMDZiOWJl ZTA4ZTAwHhcNMjUxMjA2MDkwMDQwWhcNMjUxMjA3MDkwMDQwWjAzMTEwLwYDVQQD Eyg2OGFhYzU0YjhlMTFkMThkYzY4MjRiZmEzMmM2ZmMyZTgyYzJlMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApX0MpkfGzR/jQZP+9XHN/0algXpU 4m/4Twi8/5S8SKAh6v7mFsok8BqxP+cu1kdBAs0R43Q4q1PhWmMwtFSnD/0/CSV6 LVX43QBkWdmg0tFjSKVULHQjqZJQR+Vj0EssBWLDTDFd+zvHDEdVARLvSAdymP5A kmej0O1Z0JAqoNgMEvGPJNNthv3YHS9aeiN4jpFjpXFAScsR/L4UI48Dadtm3pKM GgS83zGO3MhgN5d6wS7God23n0eInghTSPUAQQS0PWsDztMhg0w6BP5/KfIvup8d Pv9EG//4lkd3re4wn8KChPwjxWnb82G5DLcT/129rD3SEy5bFsZXkKBmRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGiqxUuOEdGNxoJL+jLG/C6CwuFXMB8GA1UdIwQY MBaAFEREx8OtNLaXf6GKIjfKMGub7gjgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9jOWM5ZmMtNTg2NC00MTRlLWFlMmEt ODYzYzliM2QzMmIwLzEvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9jOWM5ZmMtNTg2NC00MTRlLWFlMmEtODYzYzliM2QzMmIw LzEvUkVUSHc2MDB0cGRfb1lvaU44b3dhNXZ1Q09BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO917zqFo JhOTAoNPMbwOzmlSvvOtNTV3qQ1pDDCMYiByF8m/DlxCTYvebGpJL9Us6VRnCip2 c8HRrhtbR8HmdhGuVJ2xx4XfmIVxnhBMS7reBGSPzw3+pAmMXJ+CUKBGIenSpnxT IE70iZTiBsnlG8zl9qKHHSmEt/icxpa/K5KoOBPNwIiZQnV/XXdn4p15bUb6JQMY u46s7zPc4luClOWQxBAbvQ1HZH5y1QytMT3C5q17A6tE5h8zjN6f+CIWk6xQW7iq DtVHvesqUoQlMUV/AF776Gn2oI8Lbak+ycL3JxTyooUVEB7rI4mpT68xZZVHjtg1 1T7HExqAET1Sww== -----END CERTIFICATE-----Generated at Sat Dec 6 17:54:10 2025 by rpki-client