This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft File: Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft (raw, json) Hash identifier: jDrI0xMMD9UjZqd4f2if7n0l/4aRqqlyZJpWMBf933M= Subject key identifier: CC:64:B7:54:98:81:35:84:C8:D8:A2:50:FA:93:BA:79:40:AE:0E:B2 Authority key identifier: 4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92 Certificate issuer: /CN=4eaf14b67e051cfbd5e1b1d51693d44682392792 Certificate serial: 019AF12DB35FA485328F927B3EF981329DCC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft Manifest number: 1771 Signing time: Sat 06 Dec 2025 01:01:35 +0000 Manifest this update: Sat 06 Dec 2025 01:01:35 +0000 Manifest next update: Sun 07 Dec 2025 01:01:35 +0000 Files and hashes: 1: 3h4uNQ-eHV25TPT3_E5l_yB3jcs.asa (hash: +n8cfnczvffDxczQzCZSc5S0iS+H58G3zef9yb8kOjI=) 2: 5jwygws2szQICkFAbQDt0DfTE24.roa (hash: CRuVg76LibQeWgQvKJXvsry4Ac92m/NILVupnVOrdIE=) 3: M-D765qKLa5rpx98GwEizjipWV0.roa (hash: sZVekYH0lnyQrwkjPmHgYKbukfVk03AtK4DNYJI9l9w=) 4: Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl (hash: 2wakHRLI60+HU6RJIUuvscQE30XSWvPKBQhXIDHXVGw=) 5: a-UKyjPVbfvB5nGnW_sM9iqHV-0.roa (hash: /Bwt55jk116q+lxQ7IGg3arCYNFTOLtnT0qJFoL9z44=) 6: tP9fulbTqgErLJMLyNiej2oTlqI.roa (hash: OanCM+SUDUM8rJKJtYI8xzsLY8yEkCq/CQ5zcDS0hpw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:b3:5f:a4:85:32:8f:92:7b:3e:f9:81:32:9d:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4eaf14b67e051cfbd5e1b1d51693d44682392792 Validity Not Before: Dec 6 01:01:35 2025 GMT Not After : Dec 7 01:01:35 2025 GMT Subject: CN=cc64b75498813584c8d8a250fa93ba7940ae0eb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e1:07:f9:10:e2:12:06:1e:64:b3:de:5d:3e: 51:06:fd:4c:71:da:81:f9:bc:5d:a1:64:c4:8a:63: 55:d4:85:7c:7e:31:14:94:4f:68:2b:85:e8:e9:1a: af:63:04:1b:de:df:93:ed:2b:d0:1c:59:e7:6f:a4: 5b:77:ec:6c:a3:c6:1c:1c:d9:6f:92:ac:8b:3b:06: 20:a3:bf:e7:e9:83:55:e5:48:3c:1f:87:5a:db:38: 0f:6a:28:00:df:1e:2b:be:c6:cf:d8:6a:38:db:05: 2a:24:e1:ea:62:48:01:f4:a0:fe:f1:0a:d5:e2:bb: be:9f:d4:d9:94:a5:e1:e3:9c:b2:1b:c3:bc:ea:99: 20:20:b8:c5:95:7b:82:73:8c:6b:9f:01:1c:7a:ee: cd:e7:09:5f:0d:01:1d:be:91:b7:78:01:b3:df:82: 64:51:aa:16:38:73:e2:df:e7:17:3e:9f:1f:5d:3c: c5:84:0c:85:9c:04:00:2e:5a:5f:ac:61:60:8e:19: 7f:f2:e4:24:16:cd:38:a8:49:ee:ee:e2:f1:4a:16: 00:c4:d2:44:0b:59:9c:c7:c0:28:20:ff:84:26:63: 28:99:47:19:02:10:10:e5:cf:56:06:9b:01:b7:66: 48:c0:81:41:5f:99:f2:0f:58:8b:f7:25:d6:c9:c7: 29:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:64:B7:54:98:81:35:84:C8:D8:A2:50:FA:93:BA:79:40:AE:0E:B2 X509v3 Authority Key Identifier: keyid:4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:68:4a:35:8b:01:e0:5e:46:1f:e7:33:13:6b:ce:86:a3:6d: a6:44:fe:e6:ee:50:91:3a:eb:a6:b8:ff:8b:26:8f:21:42:27: 47:44:18:7b:f4:0b:bc:e0:9f:38:e4:f8:bd:b0:d9:91:79:29: cb:bf:85:c5:a7:60:14:06:b7:7f:3c:a8:03:4b:6a:24:f6:2a: 5c:8b:25:c3:6d:f5:bf:a7:e0:47:6a:0e:08:92:2e:10:6e:35: 57:30:53:78:5f:0b:b3:52:53:fd:88:1d:17:38:9c:45:85:ae: 07:ff:be:cb:19:d7:c7:e1:61:0a:92:5a:7b:06:f5:a1:cd:fb: df:05:a4:a3:59:a4:ac:f6:21:8c:b2:f1:95:3e:71:34:3d:8f: f0:c7:e2:be:d2:3e:a1:7f:58:59:6f:26:e6:04:26:18:b4:80: 56:46:94:a3:a6:aa:81:fa:29:61:c9:db:c2:12:0d:e7:45:0e: 50:7f:42:e6:8d:50:0e:73:15:2a:a8:38:5e:f1:b9:7f:ea:79: f8:d2:ff:e8:3f:23:15:f9:c6:46:f7:a1:60:25:2a:1d:ce:fd: 30:66:2d:41:d2:12:49:76:e0:33:11:64:27:0e:c8:34:b6:4d: 68:8f:4f:a0:39:1f:10:e6:80:25:a1:9b:d0:26:48:4d:1e:ab: da:5f:be:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLbNfpIUyj5J7PvmBMp3MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlYWYxNGI2N2UwNTFjZmJkNWUxYjFkNTE2OTNkNDQ2ODIz OTI3OTIwHhcNMjUxMjA2MDEwMTM1WhcNMjUxMjA3MDEwMTM1WjAzMTEwLwYDVQQD EyhjYzY0Yjc1NDk4ODEzNTg0YzhkOGEyNTBmYTkzYmE3OTQwYWUwZWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuEH+RDiEgYeZLPeXT5RBv1McdqB +bxdoWTEimNV1IV8fjEUlE9oK4Xo6RqvYwQb3t+T7SvQHFnnb6Rbd+xso8YcHNlv kqyLOwYgo7/n6YNV5Ug8H4da2zgPaigA3x4rvsbP2Go42wUqJOHqYkgB9KD+8QrV 4ru+n9TZlKXh45yyG8O86pkgILjFlXuCc4xrnwEceu7N5wlfDQEdvpG3eAGz34Jk UaoWOHPi3+cXPp8fXTzFhAyFnAQALlpfrGFgjhl/8uQkFs04qEnu7uLxShYAxNJE C1mcx8AoIP+EJmMomUcZAhAQ5c9WBpsBt2ZIwIFBX5nyD1iL9yXWyccpZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxkt1SYgTWEyNiiUPqTunlArg6yMB8GA1UdIwQY MBaAFE6vFLZ+BRz71eGx1RaT1EaCOSeSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHE4VXRuNEZIUHZWNGJIVkZwUFVSb0k1SjVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS84Y2Y1MWMtNTRkNy00YzNhLTkwYzQt YmQ1MTJlZDU4Zjc4LzEvVHE4VXRuNEZIUHZWNGJIVkZwUFVSb0k1SjVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS84Y2Y1MWMtNTRkNy00YzNhLTkwYzQtYmQ1MTJlZDU4Zjc4 LzEvVHE4VXRuNEZIUHZWNGJIVkZwUFVSb0k1SjVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmhKNYsB 4F5GH+czE2vOhqNtpkT+5u5QkTrrprj/iyaPIUInR0QYe/QLvOCfOOT4vbDZkXkp y7+FxadgFAa3fzyoA0tqJPYqXIslw231v6fgR2oOCJIuEG41VzBTeF8Ls1JT/Ygd FzicRYWuB/++yxnXx+FhCpJaewb1oc373wWko1mkrPYhjLLxlT5xND2P8MfivtI+ oX9YWW8m5gQmGLSAVkaUo6aqgfopYcnbwhIN50UOUH9C5o1QDnMVKqg4XvG5f+p5 +NL/6D8jFfnGRvehYCUqHc79MGYtQdISSXbgMxFkJw7INLZNaI9PoDkfEOaAJaGb 0CZITR6r2l++yA== -----END CERTIFICATE-----Generated at Sat Dec 6 05:05:10 2025 by rpki-client