This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json) Hash identifier: CcEO7Ybot2pEO9v1S59pnrEE8tabQHTCMbvN0lB7Sq0= Subject key identifier: 61:78:09:DA:E9:7A:F0:C3:96:62:C6:C9:13:1A:BD:64:18:30:4F:BF Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be Certificate serial: 019AF6C10E7DBD07AF60C3B13503208011BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft Manifest number: 0ABE Signing time: Sun 07 Dec 2025 03:00:38 +0000 Manifest this update: Sun 07 Dec 2025 03:00:38 +0000 Manifest next update: Mon 08 Dec 2025 03:00:38 +0000 Files and hashes: 1: 5moGvKAoN95-3rdirRXOwCahhvs.roa (hash: SkhAzMm5Jb5vcIiM14h4SYz3DQTRyqaR2eF+qq4Rdl0=) 2: RuuQV8FVAOprAh_8jcQjyKszeBc.roa (hash: kX89cdA0JPKtfSqgIarOumMCZ1cTxgD0uR8aSG1ObUs=) 3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: YnYVazj0Ty+IK9lLDeAtt7g26VLHgIAuC67Y3a7KcNM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:c1:0e:7d:bd:07:af:60:c3:b1:35:03:20:80:11:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be Validity Not Before: Dec 7 03:00:38 2025 GMT Not After : Dec 8 03:00:38 2025 GMT Subject: CN=617809dae97af0c39662c6c9131abd6418304fbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b9:36:21:18:46:0d:75:52:25:ed:30:ce:3a: 9b:42:8c:ad:47:e4:2b:f0:0d:fe:06:ec:ad:33:53: 22:55:6b:9e:2a:0d:75:41:05:dc:22:27:d7:2f:54: 82:c6:ca:15:c3:e1:2d:07:0c:f3:ac:0f:a2:c2:0f: 2c:af:0a:b8:d8:cb:24:54:b9:8b:90:33:26:e4:76: 64:2f:4e:d4:58:f9:4e:01:25:83:63:17:94:0c:10: 88:ef:b9:ae:88:42:24:7a:57:1c:9d:a3:fc:a0:93: 1b:2e:8f:0c:97:07:4c:b6:71:ea:7c:7a:ff:b1:92: ee:25:14:7a:82:99:05:e7:a5:95:17:4b:1e:f0:6c: b8:80:73:69:ec:4e:46:c0:1a:57:3a:67:9d:e6:bd: 84:25:12:95:97:e1:e8:f8:27:16:1a:cc:7e:83:87: b1:59:0f:a2:4f:f0:5c:93:02:82:b2:9a:d8:e7:5a: e3:6a:f0:93:a3:d4:69:29:4f:a5:db:c1:95:76:78: b7:ad:db:22:a0:bb:6d:17:40:76:84:38:c3:22:83: 1c:79:70:66:21:c4:37:5b:9a:1a:9f:ac:1a:d5:dd: ef:ed:9e:84:4f:9a:d9:91:43:f1:20:f9:07:08:02: b0:83:3b:ab:ba:d1:ea:bf:f7:a7:c9:7d:b2:23:65: b8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:78:09:DA:E9:7A:F0:C3:96:62:C6:C9:13:1A:BD:64:18:30:4F:BF X509v3 Authority Key Identifier: keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:80:88:2a:e1:5a:43:67:96:d5:1d:42:96:d8:99:08:e8:98: e6:46:38:32:87:3a:38:27:e6:3e:10:69:be:78:ff:bf:f3:4e: 07:c5:b8:f2:d4:67:53:0c:61:0e:f8:d6:42:19:4f:7e:0e:d0: d1:5e:fc:17:47:0c:00:b0:95:79:75:c3:92:56:20:85:d8:6d: b1:4b:b8:8a:79:47:09:fa:7a:ca:8e:34:e9:fa:f8:86:71:0b: b2:f6:12:e1:3e:28:45:a0:33:20:45:aa:7a:a1:a3:8b:96:14: 19:e2:09:2b:f8:e1:7f:e8:4e:7c:38:be:01:45:f0:9a:df:16: 11:3b:ec:3a:30:a5:c2:8b:34:67:5c:b4:e4:e9:e1:9a:17:69: e6:0a:db:ef:37:2d:ef:b9:81:bd:6b:87:88:47:c9:6e:80:cc: bc:31:25:fe:d6:01:52:ab:b9:40:ed:10:db:9e:d9:63:cd:50: bf:12:e5:71:15:2a:51:c2:0d:2c:f6:8a:80:18:b1:49:e1:0d: b5:7c:7e:f4:7d:19:90:80:c7:63:04:69:71:92:53:c2:9a:1b: 12:fc:06:47:25:d5:eb:4f:e6:bc:63:0b:7f:5f:09:42:31:0b: 40:b5:23:cd:50:f1:21:58:3c:e2:dc:26:4f:59:5c:69:c0:e0: 2c:52:1b:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2wQ59vQevYMOxNQMggBG/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODUyMmRhYzZiY2RlOGM0ODEzMzM1OTkxMzJhMTYyMDBl NmE1YmUwHhcNMjUxMjA3MDMwMDM4WhcNMjUxMjA4MDMwMDM4WjAzMTEwLwYDVQQD Eyg2MTc4MDlkYWU5N2FmMGMzOTY2MmM2YzkxMzFhYmQ2NDE4MzA0ZmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLk2IRhGDXVSJe0wzjqbQoytR+Qr 8A3+BuytM1MiVWueKg11QQXcIifXL1SCxsoVw+EtBwzzrA+iwg8srwq42MskVLmL kDMm5HZkL07UWPlOASWDYxeUDBCI77muiEIkelccnaP8oJMbLo8MlwdMtnHqfHr/ sZLuJRR6gpkF56WVF0se8Gy4gHNp7E5GwBpXOmed5r2EJRKVl+Ho+CcWGsx+g4ex WQ+iT/BckwKCsprY51rjavCTo9RpKU+l28GVdni3rdsioLttF0B2hDjDIoMceXBm IcQ3W5oan6wa1d3v7Z6ET5rZkUPxIPkHCAKwgzurutHqv/enyX2yI2W4eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGF4CdrpevDDlmLGyRMavWQYME+/MB8GA1UdIwQY MBaAFLWFItrGvN6MSBMzWZEyoWIA5qW+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUt YmEzOTQ3YzliMjJiLzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC84YjVkMmEtNGJjNC00MDZmLTk3ZDUtYmEzOTQ3YzliMjJi LzEvdFlVaTJzYTgzb3hJRXpOWmtUS2hZZ0RtcGI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZICIKuFa Q2eW1R1CltiZCOiY5kY4Moc6OCfmPhBpvnj/v/NOB8W48tRnUwxhDvjWQhlPfg7Q 0V78F0cMALCVeXXDklYghdhtsUu4inlHCfp6yo406fr4hnELsvYS4T4oRaAzIEWq eqGji5YUGeIJK/jhf+hOfDi+AUXwmt8WETvsOjClwos0Z1y05Onhmhdp5grb7zct 77mBvWuHiEfJboDMvDEl/tYBUqu5QO0Q257ZY81QvxLlcRUqUcINLPaKgBixSeEN tXx+9H0ZkIDHYwRpcZJTwpobEvwGRyXV60/mvGMLf18JQjELQLUjzVDxIVg84twm T1lcacDgLFIb1A== -----END CERTIFICATE-----Generated at Sun Dec 7 08:11:33 2025 by rpki-client