This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft File: TkB_fq2BapVV9HrxCQPvRcgXC4I.mft (raw, json) Hash identifier: Cxym/gKcZMJr/6pBW619ha3TA+C7KDgNo5zu3gMjcms= Subject key identifier: 13:31:A6:0A:37:84:56:12:01:5B:1E:BE:95:5B:2E:2A:6D:0C:61:1B Authority key identifier: 4E:40:7F:7E:AD:81:6A:95:55:F4:7A:F1:09:03:EF:45:C8:17:0B:82 Certificate issuer: /CN=4e407f7ead816a9555f47af10903ef45c8170b82 Certificate serial: 019AF20953EA99C90798B66A62BCA92927EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft Manifest number: 0846 Signing time: Sat 06 Dec 2025 05:01:28 +0000 Manifest this update: Sat 06 Dec 2025 05:01:28 +0000 Manifest next update: Sun 07 Dec 2025 05:01:28 +0000 Files and hashes: 1: TkB_fq2BapVV9HrxCQPvRcgXC4I.crl (hash: yryn42FkHpZDlTiis9jwmXX0Bnw2XP+AhT6lPo6ny1M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:53:ea:99:c9:07:98:b6:6a:62:bc:a9:29:27:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e407f7ead816a9555f47af10903ef45c8170b82 Validity Not Before: Dec 6 05:01:28 2025 GMT Not After : Dec 7 05:01:28 2025 GMT Subject: CN=1331a60a37845612015b1ebe955b2e2a6d0c611b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:ee:7f:e7:35:f3:02:ed:35:bd:59:18:0c: 66:56:d2:b2:73:c3:37:7e:5a:db:25:be:21:a6:5f: 14:16:a3:23:a6:a9:86:2e:ee:91:76:c0:a7:d9:7a: f1:9f:51:f9:cc:85:b3:a0:7a:3a:0f:93:a6:9e:76: af:75:30:bd:d1:de:de:e4:1f:bb:21:9b:a6:5a:53: f0:ba:b3:90:98:fa:59:b9:86:cb:88:df:b6:74:22: 19:0e:b8:12:f4:0f:9c:0c:22:ef:50:91:49:35:a5: 85:33:cb:e5:12:94:82:80:92:04:4e:fa:b4:e6:93: 4d:81:e8:11:8a:dd:0e:9e:34:db:72:60:0c:2a:d3: 20:65:b4:35:d9:4f:7e:92:79:0b:e3:12:99:63:5c: c2:79:0c:3e:8c:bf:f5:4b:88:38:9d:e8:ac:10:d6: d3:33:1f:a0:f0:35:60:c3:94:a1:fd:5e:ea:d2:be: e6:a4:d1:33:44:02:10:3e:f9:e3:96:b4:39:66:26: f1:59:05:12:d9:df:db:89:e8:fa:d8:71:30:80:be: d9:e5:3a:17:ff:6d:a2:ac:2a:a3:dc:65:ab:78:fb: 00:b3:a9:1a:c5:ab:72:9e:12:a9:20:99:c1:8e:fb: 8a:aa:e6:1f:f1:ec:d9:00:21:5c:e2:62:b8:94:8e: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:31:A6:0A:37:84:56:12:01:5B:1E:BE:95:5B:2E:2A:6D:0C:61:1B X509v3 Authority Key Identifier: keyid:4E:40:7F:7E:AD:81:6A:95:55:F4:7A:F1:09:03:EF:45:C8:17:0B:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:5d:cb:d2:fb:9e:13:84:6c:06:36:9a:53:5d:f1:27:6d:5d: 19:47:dc:32:96:56:fd:20:49:50:40:b7:16:32:f4:52:ad:55: 0b:a0:33:2c:cd:f4:bd:c9:43:ce:d9:7a:bc:6a:d1:d5:fd:30: 49:29:21:ff:1f:77:24:cc:11:88:8e:09:25:4c:aa:fa:c4:f4: 3c:6d:67:b4:72:46:a4:4e:da:c7:e5:31:d8:8f:9a:f8:54:7c: bc:b5:f1:38:df:2e:4e:74:39:f5:e1:16:29:81:b0:a8:98:1e: 14:a4:5e:81:69:5c:1d:5b:46:a4:f7:92:5e:19:27:1c:24:76: 18:65:84:4a:d3:ad:08:a6:ad:8a:f8:6d:68:b8:76:6e:c3:8c: c1:70:2c:29:ec:36:27:bd:99:2b:ca:12:02:7a:97:12:ef:12: a2:4f:93:59:d4:ae:f6:82:eb:3c:c2:ff:38:02:2e:5c:73:27: 36:13:b5:e6:44:0f:0d:af:e5:1d:b9:0a:2d:fb:89:ab:13:0a: 03:d8:29:8a:6e:16:0f:6f:12:07:e0:1f:8e:fb:27:ef:ce:a5: 45:c4:58:c9:2c:ca:6c:f2:f9:16:7a:03:80:06:32:a7:e2:f6: 34:0e:23:fc:26:36:85:d9:55:2e:43:4f:63:c8:a0:68:c1:61: aa:04:52:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCVPqmckHmLZqYrypKSfsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNDA3ZjdlYWQ4MTZhOTU1NWY0N2FmMTA5MDNlZjQ1Yzgx NzBiODIwHhcNMjUxMjA2MDUwMTI4WhcNMjUxMjA3MDUwMTI4WjAzMTEwLwYDVQQD EygxMzMxYTYwYTM3ODQ1NjEyMDE1YjFlYmU5NTViMmUyYTZkMGM2MTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAzuf+c18wLtNb1ZGAxmVtKyc8M3 flrbJb4hpl8UFqMjpqmGLu6RdsCn2Xrxn1H5zIWzoHo6D5OmnnavdTC90d7e5B+7 IZumWlPwurOQmPpZuYbLiN+2dCIZDrgS9A+cDCLvUJFJNaWFM8vlEpSCgJIETvq0 5pNNgegRit0OnjTbcmAMKtMgZbQ12U9+knkL4xKZY1zCeQw+jL/1S4g4neisENbT Mx+g8DVgw5Sh/V7q0r7mpNEzRAIQPvnjlrQ5ZibxWQUS2d/biej62HEwgL7Z5ToX /22irCqj3GWrePsAs6kaxatynhKpIJnBjvuKquYf8ezZACFc4mK4lI6VzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBMxpgo3hFYSAVsevpVbLiptDGEbMB8GA1UdIwQY MBaAFE5Af36tgWqVVfR68QkD70XIFwuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGtCX2ZxMkJhcFZWOUhyeENRUHZSY2dYQzRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8zNTY1NTItMzEyYS00NGNlLTg2Nzct NDA1NTA1ZmM0NjBlLzEvVGtCX2ZxMkJhcFZWOUhyeENRUHZSY2dYQzRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8zNTY1NTItMzEyYS00NGNlLTg2NzctNDA1NTA1ZmM0NjBl LzEvVGtCX2ZxMkJhcFZWOUhyeENRUHZSY2dYQzRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqF3L0vue E4RsBjaaU13xJ21dGUfcMpZW/SBJUEC3FjL0Uq1VC6AzLM30vclDztl6vGrR1f0w SSkh/x93JMwRiI4JJUyq+sT0PG1ntHJGpE7ax+Ux2I+a+FR8vLXxON8uTnQ59eEW KYGwqJgeFKRegWlcHVtGpPeSXhknHCR2GGWEStOtCKativhtaLh2bsOMwXAsKew2 J72ZK8oSAnqXEu8Sok+TWdSu9oLrPML/OAIuXHMnNhO15kQPDa/lHbkKLfuJqxMK A9gpim4WD28SB+Afjvsn786lRcRYySzKbPL5FnoDgAYyp+L2NA4j/CY2hdlVLkNP Y8igaMFhqgRS2w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:15:54 2025 by rpki-client