This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft File: tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft (raw, json) Hash identifier: Q7FerFcQ51dZPGcJDdIRu19rXCbWYodjJ4qhi8wT1oM= Subject key identifier: C2:7A:89:A9:34:D7:33:6B:95:A6:2B:D0:BB:DD:67:9A:0C:7F:87:FD Authority key identifier: B6:91:FF:C8:65:9E:2E:63:A6:DE:CE:C7:D6:F3:6D:60:B6:64:09:61 Certificate issuer: /CN=b691ffc8659e2e63a6decec7d6f36d60b6640961 Certificate serial: 019AF0F5C7AE09980461199691BD51CACAE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft Manifest number: 0B Signing time: Sat 06 Dec 2025 00:00:30 +0000 Manifest this update: Sat 06 Dec 2025 00:00:30 +0000 Manifest next update: Sun 07 Dec 2025 00:00:30 +0000 Files and hashes: 1: CnAOgW0v2FHhY7xG5Ek16W61Xwo.asa (hash: BYtVtXvNLu7yhVLJxNiUtZ/vkS0B93JK13XOxYFj8W8=) 2: tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl (hash: ybb5+xpQoaxV+CoOGrTDTVPnHW4NwjA8PMz3NTFwEaM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:c7:ae:09:98:04:61:19:96:91:bd:51:ca:ca:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b691ffc8659e2e63a6decec7d6f36d60b6640961 Validity Not Before: Dec 6 00:00:30 2025 GMT Not After : Dec 7 00:00:30 2025 GMT Subject: CN=c27a89a934d7336b95a62bd0bbdd679a0c7f87fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9b:0c:11:0e:2f:a3:89:c5:22:c5:d1:94:e1: a7:22:a3:38:15:47:c7:af:b6:54:9d:ce:f6:aa:d5: 1d:74:fa:1e:da:48:4f:3d:a8:ab:38:42:ab:12:33: 51:a5:23:74:f9:7d:ef:09:cd:47:be:9c:9e:68:36: 2f:cc:14:bf:52:64:32:a4:f8:bd:15:39:5f:58:77: e5:91:e6:4e:34:df:98:1f:44:62:e5:d3:57:bc:e9: 71:14:80:d7:54:21:47:18:5f:64:b8:aa:a5:e3:df: 8a:87:00:f8:4b:8e:19:ee:94:2c:a3:78:bb:60:dd: 12:d5:24:a5:c9:10:d7:bf:1a:f3:fd:b8:b2:ee:40: 77:cc:53:02:03:01:9d:f2:25:c5:78:bf:3b:8e:af: fe:5d:d1:7c:35:95:95:4f:fc:5a:6f:4f:5f:5a:a9: 10:cd:d2:94:93:1b:e3:ea:c0:69:e2:01:e6:41:70: 73:e9:80:75:f1:46:cd:7f:63:37:e4:27:97:fe:88: ec:35:1a:a7:6b:d4:5d:4f:c9:24:09:28:e2:f8:4a: 96:de:b3:db:aa:4f:3d:ed:da:0e:3a:3e:f4:fc:ee: 5b:f6:88:21:07:4c:87:85:21:7e:0e:4c:c8:74:bd: ce:35:cb:47:92:68:d0:15:45:80:ff:a5:51:92:10: 2d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7A:89:A9:34:D7:33:6B:95:A6:2B:D0:BB:DD:67:9A:0C:7F:87:FD X509v3 Authority Key Identifier: keyid:B6:91:FF:C8:65:9E:2E:63:A6:DE:CE:C7:D6:F3:6D:60:B6:64:09:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fa:ad:dd:b3:3b:07:4b:0d:36:15:b9:e3:4c:bf:d0:d8:e7: 5a:fb:47:c4:93:2a:f0:d7:59:12:d4:b5:e2:ad:a1:61:23:c7: 8f:38:55:a7:7b:d3:00:3c:9e:23:6d:1c:21:4e:57:1b:f0:bb: 43:71:b1:fa:3a:aa:76:01:fb:49:96:44:fa:8a:a6:6b:b4:8c: 31:f9:3b:68:f6:35:7e:f6:79:d7:b5:8e:7d:b1:fb:04:c1:4e: 4b:51:27:bc:c6:4e:5b:b8:19:6a:f0:eb:d8:cd:ba:5f:b2:8c: cd:08:30:ff:bc:5f:c1:36:84:a4:4b:e6:6e:0b:62:49:ba:08: a0:b9:06:47:8b:d4:27:03:4e:d1:02:69:ca:2c:76:b2:e2:f0: ce:4e:81:3a:e6:ba:d1:8c:87:4f:ca:df:6d:c0:ce:70:67:4e: 9d:36:d3:b9:9f:67:57:8e:41:a1:28:6c:56:73:2e:fe:37:3e: 27:0e:4e:03:88:4a:dc:cd:49:04:f9:99:b3:d9:33:74:9a:8c: 18:9e:4e:e1:e1:8f:2b:9e:19:f0:f0:89:f4:e2:9a:20:06:2c: af:a6:45:ed:f9:d1:8a:0a:41:2c:20:e3:af:bd:f2:1e:1c:4e: d2:bb:17:19:78:36:b9:29:9c:52:3c:1c:45:bd:c7:cb:10:64: e1:f5:de:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9ceuCZgEYRmWkb1RysroMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OTFmZmM4NjU5ZTJlNjNhNmRlY2VjN2Q2ZjM2ZDYwYjY2 NDA5NjEwHhcNMjUxMjA2MDAwMDMwWhcNMjUxMjA3MDAwMDMwWjAzMTEwLwYDVQQD EyhjMjdhODlhOTM0ZDczMzZiOTVhNjJiZDBiYmRkNjc5YTBjN2Y4N2ZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypsMEQ4vo4nFIsXRlOGnIqM4FUfH r7ZUnc72qtUddPoe2khPPairOEKrEjNRpSN0+X3vCc1HvpyeaDYvzBS/UmQypPi9 FTlfWHflkeZONN+YH0Ri5dNXvOlxFIDXVCFHGF9kuKql49+KhwD4S44Z7pQso3i7 YN0S1SSlyRDXvxrz/biy7kB3zFMCAwGd8iXFeL87jq/+XdF8NZWVT/xab09fWqkQ zdKUkxvj6sBp4gHmQXBz6YB18UbNf2M35CeX/ojsNRqna9RdT8kkCSji+EqW3rPb qk897doOOj70/O5b9oghB0yHhSF+DkzIdL3ONctHkmjQFUWA/6VRkhAtLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMJ6iak01zNrlaYr0LvdZ5oMf4f9MB8GA1UdIwQY MBaAFLaR/8hlni5jpt7Ox9bzbWC2ZAlhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHBIX3lHV2VMbU9tM3M3SDF2TnRZTFprQ1dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yNGM0ZDEtODYzZi00NGMzLTg2YWQt OWEyOTRjNzBjNzBlLzEvdHBIX3lHV2VMbU9tM3M3SDF2TnRZTFprQ1dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8yNGM0ZDEtODYzZi00NGMzLTg2YWQtOWEyOTRjNzBjNzBl LzEvdHBIX3lHV2VMbU9tM3M3SDF2TnRZTFprQ1dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADPqt3bM7 B0sNNhW540y/0NjnWvtHxJMq8NdZEtS14q2hYSPHjzhVp3vTADyeI20cIU5XG/C7 Q3Gx+jqqdgH7SZZE+oqma7SMMfk7aPY1fvZ517WOfbH7BMFOS1EnvMZOW7gZavDr 2M26X7KMzQgw/7xfwTaEpEvmbgtiSboIoLkGR4vUJwNO0QJpyix2suLwzk6BOua6 0YyHT8rfbcDOcGdOnTbTuZ9nV45BoShsVnMu/jc+Jw5OA4hK3M1JBPmZs9kzdJqM GJ5O4eGPK54Z8PCJ9OKaIAYsr6ZF7fnRigpBLCDjr73yHhxO0rsXGXg2uSmcUjwc Rb3HyxBk4fXeyw== -----END CERTIFICATE-----Generated at Sat Dec 6 05:37:24 2025 by rpki-client