This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json) Hash identifier: nn7DY+yZjUrKalTuj6Ga0eZmtMfkcWZ0yWtCf2MO8gE= Subject key identifier: 4C:6F:16:D4:A3:37:4D:74:D8:94:07:AC:33:B5:85:DD:ED:79:DC:8B Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e Certificate serial: 019AF23F885F1654588CCDC54D5487052EF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 06:00:41 +0000 Manifest this update: Sat 06 Dec 2025 06:00:41 +0000 Manifest next update: Sun 07 Dec 2025 06:00:41 +0000 Files and hashes: 1: DvRXNlTCR35yGxJPggKI6LQ1TXY.roa (hash: uCs5edSvBBj2KY6s6HL8wAMD7pMX49G3e3NvxavAQGo=) 2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: 0lT/Wjltm5KOinTIvtsIZYpXv4KeutywqEhc0SlybUc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:88:5f:16:54:58:8c:cd:c5:4d:54:87:05:2e:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e Validity Not Before: Dec 6 06:00:41 2025 GMT Not After : Dec 7 06:00:41 2025 GMT Subject: CN=4c6f16d4a3374d74d89407ac33b585dded79dc8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:37:7a:77:c9:4d:bf:7c:19:31:4c:9e:ac:ac: 6d:b5:be:56:de:37:e1:27:6c:bf:4b:e3:f8:b4:5c: 71:7a:ec:5d:70:c7:f6:7b:db:dc:85:d8:24:8a:11: 2e:a2:d1:d3:8c:a0:f5:0e:5b:23:17:5a:4f:6f:01: d7:92:81:03:6f:69:7c:47:6c:aa:9a:07:73:7d:3c: 10:ab:e7:1e:33:7d:72:d1:07:bc:3f:d4:90:f0:c9: f5:c1:f7:91:9f:5e:ad:22:4e:77:cf:70:2d:18:ff: 90:71:2d:bd:87:27:2a:92:61:49:64:84:4a:ba:27: dd:23:55:53:b2:f2:54:1c:5e:03:e6:65:53:2a:1c: be:a3:59:82:c3:d0:3d:fe:e5:da:b8:7c:f8:c0:6b: 1d:cc:a0:51:f5:a8:65:29:0c:93:e0:07:85:7d:08: 4b:d7:c1:f7:76:49:b7:65:8e:24:36:03:d1:26:ff: ae:db:bc:12:44:2b:53:18:8b:81:04:f2:1e:af:1e: 3b:cd:38:af:39:d4:7a:06:ef:d4:36:c9:e3:c5:80: 43:42:24:00:3d:93:23:5a:3b:c7:13:74:63:5c:62: db:b7:41:a8:90:75:d4:5f:87:1b:4d:9b:f5:4d:1a: 63:95:5d:7c:8e:d4:9f:e3:33:f2:3f:70:ff:4e:b4: c8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6F:16:D4:A3:37:4D:74:D8:94:07:AC:33:B5:85:DD:ED:79:DC:8B X509v3 Authority Key Identifier: keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:65:e0:50:c8:92:0e:0f:51:00:d0:57:91:8b:dc:f4:cc:e6: 3b:b9:58:b7:ce:01:28:6f:19:42:3d:4a:16:10:cf:be:8a:61: 03:60:e9:55:f8:12:eb:00:b7:d9:94:7f:b6:33:1f:cf:56:d3: 34:05:72:4c:03:82:f4:1f:72:2d:8b:19:7b:e1:c6:bd:15:ab: b9:40:7b:a4:18:5e:3f:45:00:60:a4:b9:85:0e:5c:66:e4:94: 84:b3:90:db:b7:e7:6b:e7:6e:12:69:9f:a5:2b:e0:7f:72:1f: b7:ae:69:dc:32:7b:9e:d0:0c:e9:6a:e1:6c:bb:8a:a9:1d:9d: 10:6e:d6:1b:4a:1e:d7:53:d3:8a:db:d4:9a:15:bd:bb:25:4f: 2c:4c:93:3e:8c:93:89:87:23:5c:be:b1:9c:78:71:43:85:5a: 04:85:98:be:20:86:14:08:3d:41:57:9a:39:08:8d:2a:2f:94: 0d:87:ce:a7:76:4e:4f:1d:a0:43:5c:b8:1c:9e:59:4b:b7:07: bc:2c:1f:12:7f:3e:c7:97:41:e8:54:37:e4:fd:0c:24:62:10: 54:ad:95:47:dd:b5:b3:5a:5b:09:03:84:bd:49:ec:f4:fc:82: 28:b5:91:e5:45:3c:c2:7b:32:11:d0:c1:58:3e:4f:76:7f:2d: 46:a9:65:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP4hfFlRYjM3FTVSHBS72MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ZmIzMzFmYTQyZmI0NTFlNDU1MWM2ZjkxY2JiOWMxOWVl MzdhNGUwHhcNMjUxMjA2MDYwMDQxWhcNMjUxMjA3MDYwMDQxWjAzMTEwLwYDVQQD Eyg0YzZmMTZkNGEzMzc0ZDc0ZDg5NDA3YWMzM2I1ODVkZGVkNzlkYzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDd6d8lNv3wZMUyerKxttb5W3jfh J2y/S+P4tFxxeuxdcMf2e9vchdgkihEuotHTjKD1DlsjF1pPbwHXkoEDb2l8R2yq mgdzfTwQq+ceM31y0Qe8P9SQ8Mn1wfeRn16tIk53z3AtGP+QcS29hycqkmFJZIRK uifdI1VTsvJUHF4D5mVTKhy+o1mCw9A9/uXauHz4wGsdzKBR9ahlKQyT4AeFfQhL 18H3dkm3ZY4kNgPRJv+u27wSRCtTGIuBBPIerx47zTivOdR6Bu/UNsnjxYBDQiQA PZMjWjvHE3RjXGLbt0GokHXUX4cbTZv1TRpjlV18jtSf4zPyP3D/TrTIkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExvFtSjN0102JQHrDO1hd3tedyLMB8GA1UdIwQY MBaAFLT7Mx+kL7RR5FUcb5HLucGe43pOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2It MDk5ZmQyMTAxMzg1LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9kOWE2NzItMjZjMy00YWI0LWI1M2ItMDk5ZmQyMTAxMzg1 LzEvdFBzekg2UXZ0RkhrVlJ4dmtjdTV3WjdqZWs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo2XgUMiS Dg9RANBXkYvc9MzmO7lYt84BKG8ZQj1KFhDPvophA2DpVfgS6wC32ZR/tjMfz1bT NAVyTAOC9B9yLYsZe+HGvRWruUB7pBheP0UAYKS5hQ5cZuSUhLOQ27fna+duEmmf pSvgf3Ift65p3DJ7ntAM6WrhbLuKqR2dEG7WG0oe11PTitvUmhW9uyVPLEyTPoyT iYcjXL6xnHhxQ4VaBIWYviCGFAg9QVeaOQiNKi+UDYfOp3ZOTx2gQ1y4HJ5ZS7cH vCwfEn8+x5dB6FQ35P0MJGIQVK2VR921s1pbCQOEvUns9PyCKLWR5UU8wnsyEdDB WD5Pdn8tRqllUw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:31 2025 by rpki-client