This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft File: a-tglLyrS9Ox9vVsUYK6EiDiK28.mft (raw, json) Hash identifier: gLb9bLx9AnGqWpSSBGZ7Zm8PFENXklYwXwPh5GEDarg= Subject key identifier: 29:8D:51:C4:D4:8A:6E:05:A9:E9:FB:CC:7A:8D:59:54:36:3E:E2:CC Authority key identifier: 6B:EB:60:94:BC:AB:4B:D3:B1:F6:F5:6C:51:82:BA:12:20:E2:2B:6F Certificate issuer: /CN=6beb6094bcab4bd3b1f6f56c5182ba1220e22b6f Certificate serial: 019AF240303FA63758CB02ED2DAB86EEF146 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft Manifest number: 05E2 Signing time: Sat 06 Dec 2025 06:01:24 +0000 Manifest this update: Sat 06 Dec 2025 06:01:24 +0000 Manifest next update: Sun 07 Dec 2025 06:01:24 +0000 Files and hashes: 1: L9wB2eCiGrQVdqjtR3WK4rFjf6g.roa (hash: 8HjGoSjZyhDJ7ORk3md8JJBIJ1vliN8f3KLntfz6OjE=) 2: VKGWBQGS7SeVBS2cT0MnCVHp0Lw.roa (hash: 4IJezR4ygpGaPpy/eoPBqgPKujvYmQipK8AUc6lPIEQ=) 3: a-tglLyrS9Ox9vVsUYK6EiDiK28.crl (hash: wfLXRevmf0lY8ENIqRKmVK9YiJb4GSBQVHGzpgtD4mU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:30:3f:a6:37:58:cb:02:ed:2d:ab:86:ee:f1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6beb6094bcab4bd3b1f6f56c5182ba1220e22b6f Validity Not Before: Dec 6 06:01:24 2025 GMT Not After : Dec 7 06:01:24 2025 GMT Subject: CN=298d51c4d48a6e05a9e9fbcc7a8d5954363ee2cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:56:14:55:d0:62:16:b7:28:ab:e6:28:f6:b4: 40:1e:b7:77:73:e9:3d:e6:9f:d2:dc:44:46:df:f2: 0b:39:5a:0b:8d:b6:a0:96:6a:4a:44:ec:e6:6f:ab: ad:fa:9a:c6:25:d8:a7:85:f4:09:88:45:10:e1:69: 8e:ab:b7:7a:bd:30:f3:32:1e:a3:21:ca:96:20:3c: 1e:e7:5c:06:c1:30:ce:40:ad:0a:f5:af:a3:3d:37: 2b:fb:61:ad:f2:ca:98:85:d5:a8:6d:e6:48:03:ec: 1d:00:3f:78:75:61:7b:e1:61:bc:8e:77:c5:8a:04: f8:a5:d4:5e:61:4b:de:ba:92:ce:bb:92:96:38:e8: a5:e9:e6:7f:04:3e:27:65:98:cf:ff:66:ae:1a:81: 2e:73:11:7a:fd:9f:b8:23:e5:7a:a1:7a:a7:16:56: b9:ee:02:9a:45:88:78:d4:01:97:6f:e8:f1:19:16: 38:ed:b4:3e:84:e6:fb:05:98:68:1e:5c:2c:8e:d7: 34:74:21:36:7e:08:0a:f3:44:a6:ef:72:a1:1c:df: 11:1f:11:ba:8a:0e:e4:a5:1c:26:7f:eb:3d:a3:9c: 35:8c:c8:88:cf:98:38:19:0b:c2:93:2a:4c:fd:13: a3:30:e7:27:c5:e6:53:dc:0e:cc:39:3e:95:51:99: c8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:8D:51:C4:D4:8A:6E:05:A9:E9:FB:CC:7A:8D:59:54:36:3E:E2:CC X509v3 Authority Key Identifier: keyid:6B:EB:60:94:BC:AB:4B:D3:B1:F6:F5:6C:51:82:BA:12:20:E2:2B:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-tglLyrS9Ox9vVsUYK6EiDiK28.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/ba4640-163e-465f-90f9-ea587fd658b2/1/a-tglLyrS9Ox9vVsUYK6EiDiK28.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d2:54:93:c9:d7:f5:5f:5c:ff:df:a5:47:7e:e9:08:24:d4: 64:e0:30:f7:14:8c:c5:e3:ef:9a:e0:62:ab:fd:cf:16:1a:f6: 70:b1:33:f3:bb:dc:48:ca:90:90:2d:d4:19:f3:e1:f0:b8:aa: d1:52:9a:34:b7:a9:54:fd:35:5c:d4:c2:75:40:87:80:d0:25: f0:b4:1b:e8:cd:ea:5a:9e:e2:c1:ea:ef:57:04:d4:55:45:36: 18:f1:29:3a:db:f8:cf:e5:1b:60:e6:82:00:70:b5:25:4d:41: 15:5b:6c:fe:23:dd:20:5e:02:61:2c:ed:51:a6:87:f2:db:35: 85:08:86:6d:1a:22:52:55:b3:5f:64:ca:b5:1e:be:c8:d6:32: d0:0f:76:3f:55:b1:14:95:1b:b5:b9:9a:a7:c7:5a:54:4d:59: 8b:1e:2a:97:b1:1a:ac:1a:b4:92:75:37:1e:8c:01:28:ab:a4: 8b:2c:66:79:86:8e:cb:fe:fd:57:c3:dc:42:93:13:35:c1:e2: 08:0b:b6:b2:af:73:17:c1:ac:b5:74:70:b7:95:04:46:09:e9: ce:d3:03:b0:74:37:04:55:77:2d:f3:88:cb:e2:14:ee:e5:53: 69:65:94:9d:d5:75:b1:67:47:70:45:55:08:5d:5b:e3:0e:4f: 2c:c1:b1:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQDA/pjdYywLtLauG7vFGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiZWI2MDk0YmNhYjRiZDNiMWY2ZjU2YzUxODJiYTEyMjBl MjJiNmYwHhcNMjUxMjA2MDYwMTI0WhcNMjUxMjA3MDYwMTI0WjAzMTEwLwYDVQQD EygyOThkNTFjNGQ0OGE2ZTA1YTllOWZiY2M3YThkNTk1NDM2M2VlMmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1YUVdBiFrcoq+Yo9rRAHrd3c+k9 5p/S3ERG3/ILOVoLjbaglmpKROzmb6ut+prGJdinhfQJiEUQ4WmOq7d6vTDzMh6j IcqWIDwe51wGwTDOQK0K9a+jPTcr+2Gt8sqYhdWobeZIA+wdAD94dWF74WG8jnfF igT4pdReYUveupLOu5KWOOil6eZ/BD4nZZjP/2auGoEucxF6/Z+4I+V6oXqnFla5 7gKaRYh41AGXb+jxGRY47bQ+hOb7BZhoHlwsjtc0dCE2fggK80Sm73KhHN8RHxG6 ig7kpRwmf+s9o5w1jMiIz5g4GQvCkypM/ROjMOcnxeZT3A7MOT6VUZnIYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCmNUcTUim4Fqen7zHqNWVQ2PuLMMB8GA1UdIwQY MBaAFGvrYJS8q0vTsfb1bFGCuhIg4itvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYS10Z2xMeXJTOU94OXZWc1VZSzZFaURpSzI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iYTQ2NDAtMTYzZS00NjVmLTkwZjkt ZWE1ODdmZDY1OGIyLzEvYS10Z2xMeXJTOU94OXZWc1VZSzZFaURpSzI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9iYTQ2NDAtMTYzZS00NjVmLTkwZjktZWE1ODdmZDY1OGIy LzEvYS10Z2xMeXJTOU94OXZWc1VZSzZFaURpSzI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPdJUk8nX 9V9c/9+lR37pCCTUZOAw9xSMxePvmuBiq/3PFhr2cLEz87vcSMqQkC3UGfPh8Liq 0VKaNLepVP01XNTCdUCHgNAl8LQb6M3qWp7iwervVwTUVUU2GPEpOtv4z+UbYOaC AHC1JU1BFVts/iPdIF4CYSztUaaH8ts1hQiGbRoiUlWzX2TKtR6+yNYy0A92P1Wx FJUbtbmap8daVE1Zix4ql7EarBq0knU3HowBKKukiyxmeYaOy/79V8PcQpMTNcHi CAu2sq9zF8GstXRwt5UERgnpztMDsHQ3BFV3LfOIy+IU7uVTaWWUndV1sWdHcEVV CF1b4w5PLMGxoA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:37:21 2025 by rpki-client