This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft File: tRYDJr5-XNw1tcA2RBFjzSWkl00.mft (raw, json) Hash identifier: zxUoi+pDY1uLc7Hwwq6pxiUw0PwPIUUvRFe2SmqjS70= Subject key identifier: 55:4A:72:8D:FD:93:18:66:83:64:E8:CC:E2:59:73:89:BB:AD:8B:9D Authority key identifier: B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D Certificate issuer: /CN=b5160326be7e5cdc35b5c036441163cd25a4974d Certificate serial: 019AF2AD815A0D96AD4A5780993FFD4EC860 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 08:00:48 +0000 Manifest this update: Sat 06 Dec 2025 08:00:48 +0000 Manifest next update: Sun 07 Dec 2025 08:00:48 +0000 Files and hashes: 1: 8ia-FfbPiHzFeisz5Ltz_iH4NuE.roa (hash: 2vUluYbn/ZjPa8MjPMnro3n0N0IitO4q9I7893CE2pw=) 2: tRYDJr5-XNw1tcA2RBFjzSWkl00.crl (hash: fPvqn6uco62O126khO5MTHYFoF2VC3u0oA4huJFtnRs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:81:5a:0d:96:ad:4a:57:80:99:3f:fd:4e:c8:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5160326be7e5cdc35b5c036441163cd25a4974d Validity Not Before: Dec 6 08:00:48 2025 GMT Not After : Dec 7 08:00:48 2025 GMT Subject: CN=554a728dfd9318668364e8cce2597389bbad8b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:50:18:a3:ec:6d:a7:45:ae:d1:12:20:1c:9d: 8c:97:53:b8:30:c5:d9:0c:ea:a8:c1:4e:07:64:38: ac:ca:b4:dd:52:01:b1:32:08:29:13:ac:f9:9e:10: cf:1c:87:53:1a:c4:59:1d:16:6a:33:40:98:26:b4: 39:8a:9d:5c:e5:ed:5a:ce:5f:7c:0a:74:78:f9:96: 0b:17:1f:03:5c:69:a0:83:28:dc:c4:56:54:7f:f8: 9b:54:1a:88:d7:be:d3:c2:0f:91:12:27:3e:e7:68: e3:8a:38:b3:08:c2:19:7d:38:74:23:c9:f9:25:a4: 7c:52:52:96:85:92:ed:bf:b8:d6:2b:63:a5:f5:5c: 2d:44:d4:b3:0f:c6:95:e5:47:56:70:21:3f:f0:8f: 2d:00:6e:16:fa:b3:35:81:54:2f:a2:c3:18:1a:44: ba:cc:c2:d8:c4:b1:51:4e:69:87:bd:d2:16:63:98: 2a:32:0e:31:d2:23:78:d2:7d:9d:62:78:8c:fa:7a: 6a:04:b6:7d:8f:87:07:45:d3:81:1a:8c:61:0e:dc: 04:f8:92:d3:e0:e5:28:5c:5f:92:ac:9d:54:ff:f2: f9:de:9c:d3:1c:67:4b:4b:70:35:65:56:46:1a:04: 3e:6d:ef:33:56:69:13:c2:6d:62:74:75:ac:f6:f9: 2d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4A:72:8D:FD:93:18:66:83:64:E8:CC:E2:59:73:89:BB:AD:8B:9D X509v3 Authority Key Identifier: keyid:B5:16:03:26:BE:7E:5C:DC:35:B5:C0:36:44:11:63:CD:25:A4:97:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRYDJr5-XNw1tcA2RBFjzSWkl00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0e5aa2-8409-47a0-b479-f48aa2e754e5/1/tRYDJr5-XNw1tcA2RBFjzSWkl00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:15:04:21:e6:5f:0c:87:74:23:a8:a7:3d:6d:c1:4e:09:60: d4:e8:65:78:e0:81:ba:5c:cf:1e:44:1f:8b:65:15:07:7f:87: d1:72:49:e8:1b:35:d7:f3:17:ab:d2:62:8f:ee:7d:87:af:83: 81:a4:d1:e2:71:61:6c:52:1a:b0:0c:bd:d1:4b:29:36:83:cc: f5:df:0c:7c:ec:72:68:1d:09:63:df:a4:28:60:8f:f6:c0:fa: 91:f6:76:15:fd:53:07:0d:bd:67:9c:d6:93:50:88:fc:18:76: dd:2c:d0:3c:8f:96:39:3b:62:00:6c:3d:aa:f7:d2:44:15:fa: f3:7b:7a:7d:3b:5b:b6:d1:88:65:67:6f:59:25:02:40:55:36: 73:97:64:7c:95:ad:40:2b:a6:63:be:42:e4:24:4c:4a:20:06: b4:98:0c:27:ee:e7:b6:41:fd:25:49:cc:8a:5b:03:da:67:1c: db:60:6b:a9:5b:e5:43:5e:7a:ef:9b:41:b3:a1:16:14:de:43: db:08:66:6b:01:38:45:24:99:4b:ee:9b:e6:0b:42:e0:52:7b: 78:8e:7e:0c:31:0e:97:02:a4:96:e9:53:b5:10:da:f7:fd:03: ee:51:4a:de:a7:af:01:65:4b:7f:30:11:64:6a:b9:4d:62:96: aa:21:6e:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrYFaDZatSleAmT/9TshgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MTYwMzI2YmU3ZTVjZGMzNWI1YzAzNjQ0MTE2M2NkMjVh NDk3NGQwHhcNMjUxMjA2MDgwMDQ4WhcNMjUxMjA3MDgwMDQ4WjAzMTEwLwYDVQQD Eyg1NTRhNzI4ZGZkOTMxODY2ODM2NGU4Y2NlMjU5NzM4OWJiYWQ4YjlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA61AYo+xtp0Wu0RIgHJ2Ml1O4MMXZ DOqowU4HZDisyrTdUgGxMggpE6z5nhDPHIdTGsRZHRZqM0CYJrQ5ip1c5e1azl98 CnR4+ZYLFx8DXGmggyjcxFZUf/ibVBqI177Twg+REic+52jjijizCMIZfTh0I8n5 JaR8UlKWhZLtv7jWK2Ol9VwtRNSzD8aV5UdWcCE/8I8tAG4W+rM1gVQvosMYGkS6 zMLYxLFRTmmHvdIWY5gqMg4x0iN40n2dYniM+npqBLZ9j4cHRdOBGoxhDtwE+JLT 4OUoXF+SrJ1U//L53pzTHGdLS3A1ZVZGGgQ+be8zVmkTwm1idHWs9vktGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFVKco39kxhmg2TozOJZc4m7rYudMB8GA1UdIwQY MBaAFLUWAya+flzcNbXANkQRY80lpJdNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFJZREpyNS1YTncxdGNBMlJCRmp6U1drbDAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wZTVhYTItODQwOS00N2EwLWI0Nzkt ZjQ4YWEyZTc1NGU1LzEvdFJZREpyNS1YTncxdGNBMlJCRmp6U1drbDAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wZTVhYTItODQwOS00N2EwLWI0NzktZjQ4YWEyZTc1NGU1 LzEvdFJZREpyNS1YTncxdGNBMlJCRmp6U1drbDAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwxUEIeZf DId0I6inPW3BTglg1OhleOCBulzPHkQfi2UVB3+H0XJJ6Bs11/MXq9Jij+59h6+D gaTR4nFhbFIasAy90UspNoPM9d8MfOxyaB0JY9+kKGCP9sD6kfZ2Ff1TBw29Z5zW k1CI/Bh23SzQPI+WOTtiAGw9qvfSRBX683t6fTtbttGIZWdvWSUCQFU2c5dkfJWt QCumY75C5CRMSiAGtJgMJ+7ntkH9JUnMilsD2mcc22BrqVvlQ15675tBs6EWFN5D 2whmawE4RSSZS+6b5gtC4FJ7eI5+DDEOlwKklulTtRDa9/0D7lFK3qevAWVLfzAR ZGq5TWKWqiFuNA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:07:22 2025 by rpki-client