This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft File: toqZTkLmDaT0pUdbFfXidRbHzxQ.mft (raw, json) Hash identifier: 19L8V+81Vtgr+PZG93bK8yTGgJp8bL7jGCh0noBd+Fg= Subject key identifier: 2C:65:30:84:38:4E:03:3B:17:39:7D:2D:97:86:BA:6F:A0:FD:C8:A6 Authority key identifier: B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14 Certificate issuer: /CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14 Certificate serial: 019AF2403767BE0A2CFB2416AE15BFCF5AF1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 06:01:25 +0000 Manifest this update: Sat 06 Dec 2025 06:01:25 +0000 Manifest next update: Sun 07 Dec 2025 06:01:25 +0000 Files and hashes: 1: qKf3kSwed1sQ8jIUt0CVeHwDYyo.roa (hash: JvCwYzHwZc3gc1jfWnqqm/e28zS68AlD89E8H1B2hTo=) 2: toqZTkLmDaT0pUdbFfXidRbHzxQ.crl (hash: b5LvkMbjF5i6JOINRMLKLfcXjMzYVd6TP5N6JVHr+mg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:37:67:be:0a:2c:fb:24:16:ae:15:bf:cf:5a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b68a994e42e60da4f4a5475b15f5e27516c7cf14 Validity Not Before: Dec 6 06:01:25 2025 GMT Not After : Dec 7 06:01:25 2025 GMT Subject: CN=2c653084384e033b17397d2d9786ba6fa0fdc8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:63:b9:a1:df:f3:b3:33:0c:8f:86:a4:6d:51: 62:a5:46:dc:7a:6c:cb:51:30:65:81:fa:e6:91:3b: df:29:3a:37:cc:59:9b:d3:b9:8b:cc:e3:a2:bd:d6: 6b:7c:4f:f6:58:1a:49:a5:1c:64:23:1a:6c:cd:28: 96:39:d3:3c:2e:59:97:a9:7b:a3:a7:95:b2:ff:63: 03:c6:1d:27:1f:25:53:23:2f:20:4a:91:eb:7b:a4: 85:78:ae:bd:ea:56:e5:7e:7e:28:dc:0d:9d:8b:65: 93:2e:99:58:fa:66:01:ca:7d:7e:8a:82:91:98:19: 54:97:55:32:9f:29:6e:5f:bf:34:96:18:de:14:e1: a7:b2:9e:6a:29:43:3f:34:5f:c1:80:8d:17:00:c0: 87:1f:48:4f:2d:a8:0f:e1:ff:f6:6d:b4:71:e7:2e: 3a:d9:58:9c:9d:d3:9b:1a:54:3b:88:46:fe:d2:55: 13:02:19:90:ca:f9:84:25:25:31:26:b3:3d:b4:9c: 51:39:82:dc:49:a4:5d:0c:72:5f:bb:48:11:be:24: f2:98:83:1c:af:60:9f:e6:5e:59:b6:95:bb:9c:17: db:84:a2:00:04:4f:73:39:ba:8a:d8:c3:4d:17:84: f3:ab:75:ab:3e:68:f1:53:ca:e9:38:f4:45:bc:b3: 89:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:65:30:84:38:4E:03:3B:17:39:7D:2D:97:86:BA:6F:A0:FD:C8:A6 X509v3 Authority Key Identifier: keyid:B6:8A:99:4E:42:E6:0D:A4:F4:A5:47:5B:15:F5:E2:75:16:C7:CF:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toqZTkLmDaT0pUdbFfXidRbHzxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f3804d-e8ad-4d08-990e-bd3bebcddeb3/1/toqZTkLmDaT0pUdbFfXidRbHzxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:66:e6:f0:91:0e:70:5f:40:da:1c:1b:d7:0e:24:b4:c1:69: 58:82:36:85:b4:c0:c8:49:c1:8c:9c:e0:25:3f:ef:34:d6:17: dc:c8:0d:a6:19:9a:54:79:30:55:b5:6d:88:08:99:7f:8b:e1: e5:c2:7b:73:87:d7:ef:36:cc:b2:77:10:65:fb:c3:f5:cc:b9: bf:de:26:06:ff:e1:45:59:c2:bb:22:3d:72:0b:a8:76:83:54: 9f:ea:13:1a:d3:87:d8:1b:b4:27:b0:fb:de:f4:9e:67:81:e8: 3a:79:5a:b4:d6:08:47:de:66:d3:d2:71:fb:5d:3a:a7:43:3e: c4:74:e0:1e:a4:6c:9c:c3:83:bc:1d:58:1f:33:f9:01:6a:f3: af:f8:4a:1f:35:18:c1:ec:aa:ad:d5:db:db:a5:f1:25:ef:ae: f4:62:bb:bd:20:5e:85:23:fc:00:8e:bc:a1:b2:af:12:85:a5: c3:b9:3c:ab:e7:a9:2d:cd:97:b8:18:ee:b1:5c:c0:b4:01:b3: c4:fc:77:13:39:88:ad:e0:5f:7b:39:7c:d7:f8:18:3a:ad:8a: 69:21:d1:74:ef:3c:8d:da:77:d8:53:27:1d:bc:c7:42:93:7b: a2:de:ce:dd:7c:72:d9:61:4a:06:5f:d3:e4:e2:e0:59:58:74: ba:27:eb:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQDdnvgos+yQWrhW/z1rxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OGE5OTRlNDJlNjBkYTRmNGE1NDc1YjE1ZjVlMjc1MTZj N2NmMTQwHhcNMjUxMjA2MDYwMTI1WhcNMjUxMjA3MDYwMTI1WjAzMTEwLwYDVQQD EygyYzY1MzA4NDM4NGUwMzNiMTczOTdkMmQ5Nzg2YmE2ZmEwZmRjOGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGO5od/zszMMj4akbVFipUbcemzL UTBlgfrmkTvfKTo3zFmb07mLzOOivdZrfE/2WBpJpRxkIxpszSiWOdM8LlmXqXuj p5Wy/2MDxh0nHyVTIy8gSpHre6SFeK696lblfn4o3A2di2WTLplY+mYByn1+ioKR mBlUl1UynyluX780lhjeFOGnsp5qKUM/NF/BgI0XAMCHH0hPLagP4f/2bbRx5y46 2VicndObGlQ7iEb+0lUTAhmQyvmEJSUxJrM9tJxROYLcSaRdDHJfu0gRviTymIMc r2Cf5l5ZtpW7nBfbhKIABE9zObqK2MNNF4Tzq3WrPmjxU8rpOPRFvLOJxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCxlMIQ4TgM7Fzl9LZeGum+g/cimMB8GA1UdIwQY MBaAFLaKmU5C5g2k9KVHWxX14nUWx88UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG9xWlRrTG1EYVQwcFVkYkZmWGlkUmJIenhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9mMzgwNGQtZThhZC00ZDA4LTk5MGUt YmQzYmViY2RkZWIzLzEvdG9xWlRrTG1EYVQwcFVkYkZmWGlkUmJIenhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9mMzgwNGQtZThhZC00ZDA4LTk5MGUtYmQzYmViY2RkZWIz LzEvdG9xWlRrTG1EYVQwcFVkYkZmWGlkUmJIenhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtmbm8JEO cF9A2hwb1w4ktMFpWII2hbTAyEnBjJzgJT/vNNYX3MgNphmaVHkwVbVtiAiZf4vh 5cJ7c4fX7zbMsncQZfvD9cy5v94mBv/hRVnCuyI9cguodoNUn+oTGtOH2Bu0J7D7 3vSeZ4HoOnlatNYIR95m09Jx+106p0M+xHTgHqRsnMODvB1YHzP5AWrzr/hKHzUY weyqrdXb26XxJe+u9GK7vSBehSP8AI68obKvEoWlw7k8q+epLc2XuBjusVzAtAGz xPx3EzmIreBfezl81/gYOq2KaSHRdO88jdp32FMnHbzHQpN7ot7O3Xxy2WFKBl/T 5OLgWVh0uifrng== -----END CERTIFICATE-----Generated at Sat Dec 6 10:15:45 2025 by rpki-client