This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft File: TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft (raw, json) Hash identifier: CgUIbxIIdqn6OQktqDgZa3W7/oawGs0wWn6Elot1cUw= Subject key identifier: 7C:9A:B2:5C:9A:E0:D6:96:58:48:94:55:0C:62:4D:78:82:EE:A4:E8 Authority key identifier: 4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61 Certificate issuer: /CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561 Certificate serial: 019AF19BA82318406A13BD4C9F4DD757E9D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft Manifest number: 16BE Signing time: Sat 06 Dec 2025 03:01:41 +0000 Manifest this update: Sat 06 Dec 2025 03:01:41 +0000 Manifest next update: Sun 07 Dec 2025 03:01:41 +0000 Files and hashes: 1: TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl (hash: 9gNc6SqS24aKIzQ6zuW/qyrVofYb8O/z+44ORRxul8U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:a8:23:18:40:6a:13:bd:4c:9f:4d:d7:57:e9:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c0006e05896f6ffb30161e7c8dda2f9ad05b561 Validity Not Before: Dec 6 03:01:41 2025 GMT Not After : Dec 7 03:01:41 2025 GMT Subject: CN=7c9ab25c9ae0d696584894550c624d7882eea4e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:df:16:1b:35:4b:a0:31:4e:be:e0:f9:7e: 20:4c:6e:b5:d5:6e:51:37:d5:8c:68:ce:9d:a9:d4: 0b:ce:18:76:66:bb:7d:82:82:e2:dd:0f:a1:a3:ce: c2:a2:56:09:4e:bc:69:d3:dc:43:a2:ad:4d:ac:f2: 20:5e:cd:8c:ce:14:fd:f5:dc:6e:71:f8:bb:c4:40: 9f:66:4e:8f:ce:dc:7f:1c:a7:01:36:a4:c6:0f:55: 73:a5:a3:6b:dd:a1:20:24:50:5e:52:45:38:d1:6e: 41:06:29:8a:bb:2b:40:45:a5:16:d2:4a:ff:60:bf: 10:ad:6a:d8:0f:11:74:56:a4:80:b3:a3:11:01:15: 14:31:18:db:62:e0:6f:0c:70:8f:c5:63:98:e2:8f: ca:9d:f4:91:bc:c8:13:bf:eb:31:f5:36:0d:e8:da: e1:d6:aa:5a:b5:49:03:88:59:c9:98:bd:8d:93:19: fb:e6:60:7e:61:ab:d6:f1:ad:d6:12:90:85:4f:17: 0f:1d:3b:95:f9:72:7c:e9:32:ff:c2:1d:df:12:e9: b9:5d:1d:7c:ff:02:7f:fe:03:00:33:79:30:1c:13: 65:df:98:28:64:96:29:32:19:06:6b:f8:b5:ba:3d: 2c:01:4c:4b:8e:e1:ff:40:5e:24:e8:dc:b5:63:1c: 17:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9A:B2:5C:9A:E0:D6:96:58:48:94:55:0C:62:4D:78:82:EE:A4:E8 X509v3 Authority Key Identifier: keyid:4C:00:06:E0:58:96:F6:FF:B3:01:61:E7:C8:DD:A2:F9:AD:05:B5:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TAAG4FiW9v-zAWHnyN2i-a0FtWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/b7f839-c680-45ea-a8ee-13087bebd1e4/1/TAAG4FiW9v-zAWHnyN2i-a0FtWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:16:25:7c:7d:9a:88:f6:82:46:23:b7:4b:87:52:62:1e:17: cd:bc:97:de:1b:9c:aa:0e:0a:38:93:73:5e:bd:6f:80:d6:d0: df:c8:fb:74:83:45:fc:8a:8e:15:fb:9a:26:d6:3f:a4:4e:b7: 8a:76:95:22:c6:85:81:dd:3a:0d:21:4b:5b:43:9c:9e:84:77: f6:e6:80:c3:71:b5:c4:ec:95:3c:62:d7:df:7d:1d:43:40:18: 1e:65:ae:1e:ef:04:e0:62:18:ed:c6:30:6b:4a:02:f0:5d:e7: 7f:90:48:ef:b3:f1:8e:7b:27:8d:b0:7f:4e:53:f8:27:11:78: 4a:0a:1c:d4:83:fe:26:43:f8:a7:91:c7:8c:f4:5c:70:1a:2d: ec:e1:fe:d0:ee:06:02:0c:c8:47:89:f3:92:cf:ae:f4:47:cb: eb:2f:cc:02:63:49:b8:c2:a9:92:f9:95:6e:4a:c9:d8:23:f9: 96:2f:34:47:0e:08:c2:8e:34:a7:7d:2b:f4:f0:2b:d2:f1:0e: ce:d3:95:0e:91:77:b9:a6:f1:16:0b:15:21:12:fd:d0:bf:21: ba:9f:a6:23:8e:6a:b3:f0:cb:d9:f9:df:2d:16:b2:fd:c8:29: e2:1c:32:7e:19:7e:0d:b6:48:c0:25:86:dd:c5:f0:c6:e1:94: 0b:3e:c7:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm6gjGEBqE71Mn03XV+nUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjMDAwNmUwNTg5NmY2ZmZiMzAxNjFlN2M4ZGRhMmY5YWQw NWI1NjEwHhcNMjUxMjA2MDMwMTQxWhcNMjUxMjA3MDMwMTQxWjAzMTEwLwYDVQQD Eyg3YzlhYjI1YzlhZTBkNjk2NTg0ODk0NTUwYzYyNGQ3ODgyZWVhNGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslrfFhs1S6AxTr7g+X4gTG611W5R N9WMaM6dqdQLzhh2Zrt9goLi3Q+ho87ColYJTrxp09xDoq1NrPIgXs2MzhT99dxu cfi7xECfZk6Pztx/HKcBNqTGD1VzpaNr3aEgJFBeUkU40W5BBimKuytARaUW0kr/ YL8QrWrYDxF0VqSAs6MRARUUMRjbYuBvDHCPxWOY4o/KnfSRvMgTv+sx9TYN6Nrh 1qpatUkDiFnJmL2Nkxn75mB+YavW8a3WEpCFTxcPHTuV+XJ86TL/wh3fEum5XR18 /wJ//gMAM3kwHBNl35goZJYpMhkGa/i1uj0sAUxLjuH/QF4k6Ny1YxwX+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHyaslya4NaWWEiUVQxiTXiC7qToMB8GA1UdIwQY MBaAFEwABuBYlvb/swFh58jdovmtBbVhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEFBRzRGaVc5di16QVdIbnlOMmktYTBGdFdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9iN2Y4MzktYzY4MC00NWVhLWE4ZWUt MTMwODdiZWJkMWU0LzEvVEFBRzRGaVc5di16QVdIbnlOMmktYTBGdFdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9iN2Y4MzktYzY4MC00NWVhLWE4ZWUtMTMwODdiZWJkMWU0 LzEvVEFBRzRGaVc5di16QVdIbnlOMmktYTBGdFdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANRYlfH2a iPaCRiO3S4dSYh4XzbyX3hucqg4KOJNzXr1vgNbQ38j7dINF/IqOFfuaJtY/pE63 inaVIsaFgd06DSFLW0OcnoR39uaAw3G1xOyVPGLX330dQ0AYHmWuHu8E4GIY7cYw a0oC8F3nf5BI77PxjnsnjbB/TlP4JxF4Sgoc1IP+JkP4p5HHjPRccBot7OH+0O4G AgzIR4nzks+u9EfL6y/MAmNJuMKpkvmVbkrJ2CP5li80Rw4Iwo40p30r9PAr0vEO ztOVDpF3uabxFgsVIRL90L8hup+mI45qs/DL2fnfLRay/cgp4hwyfhl+DbZIwCWG 3cXwxuGUCz7HxQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:37:00 2025 by rpki-client