This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft File: TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json) Hash identifier: 83rPEO5iW6VPwX7g+Xayjh5xUVSH/40LTtOoMBi5qpc= Subject key identifier: 8D:3F:9F:65:16:19:2D:D0:4B:C8:D5:76:EF:D3:24:5C:D2:91:3F:A7 Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A Certificate issuer: /CN=4e430c003b000d355ed169e55d8ccf393837e20a Certificate serial: 019AF19B5B97622C2DB109E069B6B9FDBA21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft Manifest number: 0EE5 Signing time: Sat 06 Dec 2025 03:01:21 +0000 Manifest this update: Sat 06 Dec 2025 03:01:21 +0000 Manifest next update: Sun 07 Dec 2025 03:01:21 +0000 Files and hashes: 1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: lwefdsuoQ1jrSHrs7RScLc3Zss72d5/baJY44aZIA1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5b:97:62:2c:2d:b1:09:e0:69:b6:b9:fd:ba:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a Validity Not Before: Dec 6 03:01:21 2025 GMT Not After : Dec 7 03:01:21 2025 GMT Subject: CN=8d3f9f6516192dd04bc8d576efd3245cd2913fa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:14:dd:a7:43:33:73:5b:c0:98:01:90:54:e6: 0b:a8:be:45:c1:fa:c7:a8:47:32:fa:c9:81:95:ed: 22:72:f6:b7:a3:44:f2:73:b0:ae:ed:53:1a:20:e5: c8:a1:f8:ee:c8:4e:01:4a:73:c5:8b:20:2a:0a:c6: 7e:27:64:d4:61:29:ad:e8:73:4c:1e:1b:27:aa:d3: 2f:2b:40:ed:7d:ba:31:86:db:de:e1:a3:c1:5a:89: ee:ae:65:27:75:4a:85:5d:95:e1:7c:62:39:ae:39: a1:6f:aa:c9:77:df:30:60:07:94:d5:23:82:f4:10: 66:8a:e0:34:d2:5d:b4:41:84:1d:24:b2:01:a0:09: 9e:a6:dc:f0:1d:a1:03:b9:f0:89:7c:9d:ea:15:ff: 69:0b:54:b9:c8:c1:1d:dd:4c:bd:d8:d8:8c:90:b5: ea:c9:a0:ad:a3:1f:b1:c2:13:6c:65:7d:ae:4a:61: 19:7c:59:81:65:87:af:35:b9:5d:39:01:1f:10:b4: 56:50:99:8e:b5:43:86:4b:56:9d:31:89:cd:2a:84: 3a:57:c3:ba:6c:46:0b:4a:00:48:c2:48:e6:85:cb: 5e:70:98:e9:fd:a9:2e:ea:c8:08:84:b0:fa:b8:e0: cf:be:36:50:5a:d2:19:65:fb:bc:80:1f:e6:15:b0: 9d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3F:9F:65:16:19:2D:D0:4B:C8:D5:76:EF:D3:24:5C:D2:91:3F:A7 X509v3 Authority Key Identifier: keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:14:b0:e4:ee:51:a1:ba:1c:45:f8:35:9a:d7:fc:d2:96:80: c8:8f:7b:e9:0b:9a:ab:95:96:56:f7:29:15:db:33:1f:b8:99: 7a:24:6d:50:29:ad:26:cb:a4:7e:5d:c6:3d:af:d5:e6:75:f1: a6:a1:cf:3e:c0:00:35:92:45:4f:58:82:05:ee:86:b3:5c:b9: 16:37:71:83:9b:4a:6b:9c:44:28:70:42:57:45:f4:ee:95:1e: b9:5c:d8:03:73:c0:e4:f9:7f:66:6b:60:f3:3f:77:1f:6b:d2: 93:62:f5:0d:fa:6d:5c:92:4b:13:f5:14:d6:14:8b:02:81:c7: 14:a1:a9:c3:f0:a2:84:6b:7c:fe:bc:91:26:28:bc:ae:ae:45: c3:ff:f5:5d:a8:9f:c1:8d:0a:de:17:9a:2b:e3:c9:73:17:65: 55:71:78:ce:9b:92:0b:d2:7b:5b:64:97:93:64:e5:2c:b3:9f: f2:ab:0a:ae:da:72:3b:11:8a:a1:f0:a1:e9:24:38:be:8f:e0: d5:10:e5:6d:ec:18:42:f8:13:27:f4:07:2c:e7:89:8d:ab:bf: 20:27:1d:17:6d:98:2d:40:48:4e:2a:bb:6e:79:8e:f9:f2:bf: 61:ad:4f:31:9f:2a:a8:2c:b3:7b:8e:17:d3:19:f0:99:4b:c8: 6d:aa:f9:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1uXYiwtsQngaba5/bohMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNDMwYzAwM2IwMDBkMzU1ZWQxNjllNTVkOGNjZjM5Mzgz N2UyMGEwHhcNMjUxMjA2MDMwMTIxWhcNMjUxMjA3MDMwMTIxWjAzMTEwLwYDVQQD Eyg4ZDNmOWY2NTE2MTkyZGQwNGJjOGQ1NzZlZmQzMjQ1Y2QyOTEzZmE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRTdp0Mzc1vAmAGQVOYLqL5FwfrH qEcy+smBle0icva3o0Tyc7Cu7VMaIOXIofjuyE4BSnPFiyAqCsZ+J2TUYSmt6HNM HhsnqtMvK0Dtfboxhtve4aPBWonurmUndUqFXZXhfGI5rjmhb6rJd98wYAeU1SOC 9BBmiuA00l20QYQdJLIBoAmeptzwHaEDufCJfJ3qFf9pC1S5yMEd3Uy92NiMkLXq yaCtox+xwhNsZX2uSmEZfFmBZYevNbldOQEfELRWUJmOtUOGS1adMYnNKoQ6V8O6 bEYLSgBIwkjmhctecJjp/aku6sgIhLD6uODPvjZQWtIZZfu8gB/mFbCdewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI0/n2UWGS3QS8jVdu/TJFzSkT+nMB8GA1UdIwQY MBaAFE5DDAA7AA01XtFp5V2Mzzk4N+IKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2It ODhkODIzNGE2ZDNlLzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2ItODhkODIzNGE2ZDNl LzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbBSw5O5R obocRfg1mtf80paAyI976Quaq5WWVvcpFdszH7iZeiRtUCmtJsukfl3GPa/V5nXx pqHPPsAANZJFT1iCBe6Gs1y5Fjdxg5tKa5xEKHBCV0X07pUeuVzYA3PA5Pl/Zmtg 8z93H2vSk2L1DfptXJJLE/UU1hSLAoHHFKGpw/CihGt8/ryRJii8rq5Fw//1Xaif wY0K3heaK+PJcxdlVXF4zpuSC9J7W2SXk2TlLLOf8qsKrtpyOxGKofCh6SQ4vo/g 1RDlbewYQvgTJ/QHLOeJjau/ICcdF22YLUBITiq7bnmO+fK/Ya1PMZ8qqCyze44X 0xnwmUvIbar5OA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:21:26 2025 by rpki-client