This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft File: tUMb1z4KfwN965fYLRqV_NZxBRw.mft (raw, json) Hash identifier: /Su2hhr1GcdHBrzfqf3v8bKRtUGI27PihyipyCBD+dI= Subject key identifier: 1B:CD:B5:BB:21:62:15:C6:34:66:40:9C:E0:10:E9:B4:97:5F:C1:B4 Authority key identifier: B5:43:1B:D7:3E:0A:7F:03:7D:EB:97:D8:2D:1A:95:FC:D6:71:05:1C Certificate issuer: /CN=b5431bd73e0a7f037deb97d82d1a95fcd671051c Certificate serial: 019AF209781E6A3FD007E69ACF61BD3B08AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUMb1z4KfwN965fYLRqV_NZxBRw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft Manifest number: 34 Signing time: Sat 06 Dec 2025 05:01:38 +0000 Manifest this update: Sat 06 Dec 2025 05:01:38 +0000 Manifest next update: Sun 07 Dec 2025 05:01:38 +0000 Files and hashes: 1: cyBrpEHhqKNbSMHCKzs3cSq3M_g.roa (hash: RzBDnjaJmm2030+8C/HDxAp6HA2Wxhb+u2VbToBRA9U=) 2: tUMb1z4KfwN965fYLRqV_NZxBRw.crl (hash: Nj7pekhkoE7wy0GijNPSvB/5WJr7HlFhpTb/haDn3Ns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft rsync://rpki.ripe.net/repository/DEFAULT/tUMb1z4KfwN965fYLRqV_NZxBRw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:78:1e:6a:3f:d0:07:e6:9a:cf:61:bd:3b:08:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5431bd73e0a7f037deb97d82d1a95fcd671051c Validity Not Before: Dec 6 05:01:38 2025 GMT Not After : Dec 7 05:01:38 2025 GMT Subject: CN=1bcdb5bb216215c63466409ce010e9b4975fc1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4e:5a:5a:42:72:02:18:70:d9:9a:ca:18:2a: cc:07:17:cf:65:cf:18:34:dd:a8:d6:0f:79:47:1b: 5d:45:2e:55:41:46:26:a8:54:6c:09:dc:c9:bf:2d: 3c:fc:50:bb:26:93:4d:64:83:cc:dc:8f:0f:50:18: 29:10:0d:3a:be:94:b5:d6:fb:69:9e:cf:8f:14:33: c1:49:f9:17:e3:fa:e0:3a:b1:fc:75:a3:e3:fb:f7: 9f:45:49:e7:49:82:30:26:3b:fe:2d:7a:20:b7:2c: f7:80:b4:73:67:23:6c:af:36:11:54:04:d5:3e:ef: cf:47:45:52:7a:4f:d0:35:a7:17:35:e0:10:e1:68: 3f:4a:42:af:8a:5a:d4:ab:5b:7a:82:75:af:4e:82: 3c:64:8c:f1:a6:f4:d9:be:a6:24:bc:39:7f:91:1a: 1d:d4:02:5c:0f:18:e3:f5:13:7b:b1:a8:70:fa:d2: 53:ea:94:8b:26:65:de:93:64:25:40:b5:97:7b:7c: 82:22:c4:a8:ab:bf:6a:14:65:d7:8f:74:0d:89:90: 32:47:82:a4:de:b9:73:58:2a:1d:61:8c:d2:71:d7: 3c:cf:1b:a2:46:c7:99:bd:f6:ab:c9:54:2f:f3:02: 45:c3:72:60:94:96:c9:bc:63:21:e6:03:32:7c:2e: a9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:CD:B5:BB:21:62:15:C6:34:66:40:9C:E0:10:E9:B4:97:5F:C1:B4 X509v3 Authority Key Identifier: keyid:B5:43:1B:D7:3E:0A:7F:03:7D:EB:97:D8:2D:1A:95:FC:D6:71:05:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUMb1z4KfwN965fYLRqV_NZxBRw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/a12629-8bdf-4cdd-8672-1fd9f2c98956/1/tUMb1z4KfwN965fYLRqV_NZxBRw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a0:a0:b5:c3:10:7b:92:b6:90:4b:90:23:2f:d7:39:c4:8e: 43:a8:ca:8a:66:1e:e7:41:33:d7:c5:bd:8b:f3:15:df:92:a5: 7b:24:42:6f:a5:ed:cd:34:b7:c0:e0:51:5b:f9:c4:ca:6a:3b: 3c:14:95:3d:59:cc:18:f4:5c:7c:6d:be:6b:0f:8b:8d:c7:23: be:e2:12:80:73:95:58:84:a5:ab:20:a8:6f:89:d7:ba:72:a8: 99:56:e4:0e:1e:df:85:6a:b4:e5:b6:66:27:1d:2b:10:f0:db: 9f:1f:26:15:85:6c:3b:fd:75:24:57:d3:fe:3d:91:d3:9e:06: d5:7e:85:9a:30:ed:49:1b:fc:0d:47:c5:db:51:8a:4f:d9:29: 73:4f:bb:ab:ad:11:0d:1b:c5:da:47:3a:bc:d4:bd:09:b1:33: 29:9f:a5:dd:cd:36:fc:8f:9f:ce:c1:ef:3b:5e:e3:58:82:cc: bf:bc:55:aa:e3:42:51:d8:b6:3a:d9:d0:19:d4:8b:2f:fc:90: f4:fb:30:4b:2a:64:64:16:a1:19:8e:ee:18:60:d1:f2:68:f9: 91:50:16:45:d2:e6:9d:55:45:d9:54:fa:fb:39:27:6b:da:f1: 7e:8c:b5:3c:18:5b:4d:b2:44:01:0e:38:cd:ac:2c:26:20:36: ac:a1:16:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCXgeaj/QB+aaz2G9OwivMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NDMxYmQ3M2UwYTdmMDM3ZGViOTdkODJkMWE5NWZjZDY3 MTA1MWMwHhcNMjUxMjA2MDUwMTM4WhcNMjUxMjA3MDUwMTM4WjAzMTEwLwYDVQQD EygxYmNkYjViYjIxNjIxNWM2MzQ2NjQwOWNlMDEwZTliNDk3NWZjMWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl05aWkJyAhhw2ZrKGCrMBxfPZc8Y NN2o1g95RxtdRS5VQUYmqFRsCdzJvy08/FC7JpNNZIPM3I8PUBgpEA06vpS11vtp ns+PFDPBSfkX4/rgOrH8daPj+/efRUnnSYIwJjv+LXogtyz3gLRzZyNsrzYRVATV Pu/PR0VSek/QNacXNeAQ4Wg/SkKvilrUq1t6gnWvToI8ZIzxpvTZvqYkvDl/kRod 1AJcDxjj9RN7sahw+tJT6pSLJmXek2QlQLWXe3yCIsSoq79qFGXXj3QNiZAyR4Kk 3rlzWCodYYzScdc8zxuiRseZvfaryVQv8wJFw3JglJbJvGMh5gMyfC6pfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBvNtbshYhXGNGZAnOAQ6bSXX8G0MB8GA1UdIwQY MBaAFLVDG9c+Cn8DfeuX2C0alfzWcQUcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFVNYjF6NEtmd045NjVmWUxScVZfTlp4QlJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9hMTI2MjktOGJkZi00Y2RkLTg2NzIt MWZkOWYyYzk4OTU2LzEvdFVNYjF6NEtmd045NjVmWUxScVZfTlp4QlJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9hMTI2MjktOGJkZi00Y2RkLTg2NzItMWZkOWYyYzk4OTU2 LzEvdFVNYjF6NEtmd045NjVmWUxScVZfTlp4QlJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjKCgtcMQ e5K2kEuQIy/XOcSOQ6jKimYe50Ez18W9i/MV35KleyRCb6XtzTS3wOBRW/nEymo7 PBSVPVnMGPRcfG2+aw+LjccjvuISgHOVWISlqyCob4nXunKomVbkDh7fhWq05bZm Jx0rEPDbnx8mFYVsO/11JFfT/j2R054G1X6FmjDtSRv8DUfF21GKT9kpc0+7q60R DRvF2kc6vNS9CbEzKZ+l3c02/I+fzsHvO17jWILMv7xVquNCUdi2OtnQGdSLL/yQ 9PswSypkZBahGY7uGGDR8mj5kVAWRdLmnVVF2VT6+zkna9rxfoy1PBhbTbJEAQ44 zawsJiA2rKEWNw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:55:49 2025 by rpki-client