This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft File: _TSxP72Tgd-Exofwa80HTkp1WAM.mft (raw, json) Hash identifier: Lf4jUjOiBmx68AjyYobFSMjy2kQei5D1ZCTnOCL0NE8= Subject key identifier: C8:75:16:9C:87:CA:20:C1:05:35:C7:D9:75:31:8A:84:49:EC:70:2D Authority key identifier: FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03 Certificate issuer: /CN=fd34b13fbd9381df84c687f06bcd074e4a755803 Certificate serial: 019AF12D02C0F4A257D997AA34617F4498FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 01:00:50 +0000 Manifest this update: Sat 06 Dec 2025 01:00:50 +0000 Manifest next update: Sun 07 Dec 2025 01:00:50 +0000 Files and hashes: 1: 0BpZrCwCrh0nhCnBWsTx8npHw5Y.roa (hash: dghoAHC17Ez/jlFwmLW4wwi4h/yLfo/iz9cDa/mgf8U=) 2: _TSxP72Tgd-Exofwa80HTkp1WAM.crl (hash: gd/5MNxbhknhja33fsH9/inj1w7SzSbjOfmvY6iGLqA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:02:c0:f4:a2:57:d9:97:aa:34:61:7f:44:98:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd34b13fbd9381df84c687f06bcd074e4a755803 Validity Not Before: Dec 6 01:00:50 2025 GMT Not After : Dec 7 01:00:50 2025 GMT Subject: CN=c875169c87ca20c10535c7d975318a8449ec702d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a0:b6:e1:0f:55:0c:25:89:3f:6c:ea:59:8c: 09:28:da:61:10:23:d7:36:bc:0c:54:36:8f:c0:17: 9a:cb:27:88:83:e6:6c:8b:fc:a6:6b:c6:3f:06:b4: 56:1a:28:cb:1d:a2:fe:04:4a:dc:fb:cc:ad:c9:10: 71:7e:9e:c7:6a:71:95:08:aa:77:cd:24:0c:6d:a1: c1:06:3a:79:f3:a6:a3:00:e5:f7:76:26:4c:75:9b: 2e:4b:56:24:5b:9f:d8:68:3e:0e:ab:3e:cf:be:f8: 52:a6:84:3c:51:b8:d6:7f:5c:ef:48:1f:02:3b:26: 76:71:42:e8:fd:06:84:ed:05:78:e5:a6:cf:cc:7c: 11:89:46:1b:59:27:37:30:ed:fe:40:53:0f:4f:1d: 36:93:ee:97:fc:fb:fb:b8:fb:07:f8:00:fd:d4:db: 03:8a:b3:e1:09:ed:10:75:69:02:61:74:1a:14:11: d3:82:99:75:6c:ac:02:2a:f0:ca:91:1d:f2:07:79: 9c:0c:f2:89:e6:41:85:72:30:15:c9:ed:51:a5:10: 4f:6d:05:a1:20:8b:95:90:cb:39:e0:9b:a7:25:55: 92:06:7b:25:78:cd:02:19:c5:6f:9f:c5:3e:26:d5: 72:34:d8:ba:48:61:c8:e9:9f:ed:b1:fb:97:79:8e: 7c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:75:16:9C:87:CA:20:C1:05:35:C7:D9:75:31:8A:84:49:EC:70:2D X509v3 Authority Key Identifier: keyid:FD:34:B1:3F:BD:93:81:DF:84:C6:87:F0:6B:CD:07:4E:4A:75:58:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TSxP72Tgd-Exofwa80HTkp1WAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0196f1-4339-4bdc-8034-2eb2f2ed3029/1/_TSxP72Tgd-Exofwa80HTkp1WAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:01:b5:ca:f5:bb:d5:a6:4b:7e:b4:4a:09:20:ac:d7:78:0c: 05:e5:5a:bb:c8:04:dc:53:29:35:4a:40:62:2d:dc:81:65:f1: 5b:22:4a:f9:0a:e9:1c:df:1e:0c:5b:07:39:b2:94:34:af:1b: 9f:e3:b7:ce:d4:81:c9:a1:bf:72:59:80:df:ad:2b:3d:a5:fc: 4c:8c:49:db:45:f4:5a:05:13:e8:ee:98:52:0b:97:6d:77:15: 71:3e:c6:5c:2a:33:82:22:c3:8c:f2:08:3f:57:ab:f2:39:77: d1:52:88:45:c6:79:46:e2:4f:72:df:53:e3:50:e0:f9:2e:32: db:9c:13:26:96:9c:cc:ea:b3:75:b0:12:5f:98:a6:52:2d:63: cf:29:48:c0:d4:5f:15:77:b9:9e:fc:62:6f:3b:81:eb:69:19: f0:85:9c:78:81:89:46:47:92:21:7f:b1:1c:c9:eb:67:3d:56: 6a:0a:6a:9a:6b:cd:88:d6:b5:17:3c:5c:58:e1:4e:2a:21:41: a3:f0:18:c1:0c:34:9f:fa:fa:eb:81:15:51:43:11:c4:90:c0: 46:f1:44:99:12:69:e9:48:ce:ec:ba:45:f7:f8:86:7e:82:ce: 4d:b3:36:09:ec:78:0d:70:f8:b5:b1:30:0c:73:90:ac:19:a2: 73:04:dd:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLQLA9KJX2ZeqNGF/RJj8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMzRiMTNmYmQ5MzgxZGY4NGM2ODdmMDZiY2QwNzRlNGE3 NTU4MDMwHhcNMjUxMjA2MDEwMDUwWhcNMjUxMjA3MDEwMDUwWjAzMTEwLwYDVQQD EyhjODc1MTY5Yzg3Y2EyMGMxMDUzNWM3ZDk3NTMxOGE4NDQ5ZWM3MDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA46C24Q9VDCWJP2zqWYwJKNphECPX NrwMVDaPwBeayyeIg+Zsi/yma8Y/BrRWGijLHaL+BErc+8ytyRBxfp7HanGVCKp3 zSQMbaHBBjp586ajAOX3diZMdZsuS1YkW5/YaD4Oqz7PvvhSpoQ8UbjWf1zvSB8C OyZ2cULo/QaE7QV45abPzHwRiUYbWSc3MO3+QFMPTx02k+6X/Pv7uPsH+AD91NsD irPhCe0QdWkCYXQaFBHTgpl1bKwCKvDKkR3yB3mcDPKJ5kGFcjAVye1RpRBPbQWh IIuVkMs54JunJVWSBnsleM0CGcVvn8U+JtVyNNi6SGHI6Z/tsfuXeY58qQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMh1FpyHyiDBBTXH2XUxioRJ7HAtMB8GA1UdIwQY MBaAFP00sT+9k4HfhMaH8GvNB05KdVgDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMTk2ZjEtNDMzOS00YmRjLTgwMzQt MmViMmYyZWQzMDI5LzEvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8wMTk2ZjEtNDMzOS00YmRjLTgwMzQtMmViMmYyZWQzMDI5 LzEvX1RTeFA3MlRnZC1FeG9md2E4MEhUa3AxV0FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbgG1yvW7 1aZLfrRKCSCs13gMBeVau8gE3FMpNUpAYi3cgWXxWyJK+QrpHN8eDFsHObKUNK8b n+O3ztSByaG/clmA360rPaX8TIxJ20X0WgUT6O6YUguXbXcVcT7GXCozgiLDjPII P1er8jl30VKIRcZ5RuJPct9T41Dg+S4y25wTJpaczOqzdbASX5imUi1jzylIwNRf FXe5nvxibzuB62kZ8IWceIGJRkeSIX+xHMnrZz1WagpqmmvNiNa1FzxcWOFOKiFB o/AYwQw0n/r664EVUUMRxJDARvFEmRJp6UjO7LpF9/iGfoLOTbM2Cex4DXD4tbEw DHOQrBmicwTd4Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:06:58 2025 by rpki-client