This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft File: tsaaSiFb3h0yk03chd6vj9nJRHk.mft (raw, json) Hash identifier: b7p8aSXhvkqaJTPaBDko/uSTB2YWhCQesDHggLyQdhc= Subject key identifier: 30:01:03:AE:37:F7:A8:51:7E:4E:7C:E0:78:13:FC:3E:95:F9:A7:99 Authority key identifier: B6:C6:9A:4A:21:5B:DE:1D:32:93:4D:DC:85:DE:AF:8F:D9:C9:44:79 Certificate issuer: /CN=b6c69a4a215bde1d32934ddc85deaf8fd9c94479 Certificate serial: 019AF19B1B64C59939029AF4458F0A1A34C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tsaaSiFb3h0yk03chd6vj9nJRHk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft Manifest number: 0F0D Signing time: Sat 06 Dec 2025 03:01:05 +0000 Manifest this update: Sat 06 Dec 2025 03:01:05 +0000 Manifest next update: Sun 07 Dec 2025 03:01:05 +0000 Files and hashes: 1: tsaaSiFb3h0yk03chd6vj9nJRHk.crl (hash: iAFgU7T34ddow/Dvd5WpwBGcrJspF/CAEyxo0EbAT9E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.crl rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft rsync://rpki.ripe.net/repository/DEFAULT/tsaaSiFb3h0yk03chd6vj9nJRHk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:1b:64:c5:99:39:02:9a:f4:45:8f:0a:1a:34:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6c69a4a215bde1d32934ddc85deaf8fd9c94479 Validity Not Before: Dec 6 03:01:05 2025 GMT Not After : Dec 7 03:01:05 2025 GMT Subject: CN=300103ae37f7a8517e4e7ce07813fc3e95f9a799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:81:4d:e2:3e:78:a7:9b:5f:00:34:f1:af:91: 7c:e5:7a:f3:80:fd:71:f7:fe:5a:8f:f9:8e:89:3a: 1a:96:94:29:e4:17:d9:47:ed:2c:97:04:1a:6c:87: 7a:5c:c2:19:e9:c9:e0:7c:fa:bf:62:cd:68:d5:49: f3:16:4d:a4:0d:48:ae:dd:77:51:a6:7b:57:ea:68: ff:5e:17:e9:8d:42:5c:2a:69:38:33:35:a4:45:31: 9f:77:17:5a:9c:c0:be:bc:5a:dd:1e:c1:9f:ae:83: 02:91:34:39:a6:68:5e:4b:09:c2:4b:93:2e:ae:77: 6b:0c:0b:31:d3:e8:7a:4d:5c:28:b4:b8:c5:92:cf: 30:d8:12:5c:d3:2c:cb:fd:0b:2a:b0:bc:7a:e3:0f: ec:8b:2e:ba:f7:85:21:6a:7d:31:1d:55:76:0b:67: 09:22:27:f6:41:9d:9c:10:8f:83:f7:92:f1:ef:67: e8:07:7e:c7:5f:df:23:3e:12:fc:74:af:fd:4d:3b: 2a:aa:2f:b3:3b:72:61:bc:4a:92:b6:17:4b:89:a7: 31:27:dc:23:47:ff:cd:6e:98:1a:78:b8:72:5a:15: 8e:43:0e:5a:10:43:f0:9c:32:de:4f:98:84:8f:c3: e5:1c:c6:0d:ff:67:13:d6:67:bb:13:a7:3a:f7:21: dc:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:01:03:AE:37:F7:A8:51:7E:4E:7C:E0:78:13:FC:3E:95:F9:A7:99 X509v3 Authority Key Identifier: keyid:B6:C6:9A:4A:21:5B:DE:1D:32:93:4D:DC:85:DE:AF:8F:D9:C9:44:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tsaaSiFb3h0yk03chd6vj9nJRHk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:ac:b3:08:a3:3e:8e:94:f5:7f:53:3a:4c:72:ed:01:a0:86: 7d:a9:a4:a7:a0:3d:f9:cd:7b:c1:c6:36:8b:ce:c8:46:4d:34: 25:8d:f9:30:25:0e:dc:1b:72:61:e0:d5:1f:42:cc:40:31:16: 57:e3:1f:38:f6:5a:51:dd:72:98:c0:f0:d0:71:b8:cb:fe:19: e4:8d:06:39:16:f7:32:cf:f5:4b:f1:e2:3d:3c:6c:a0:61:7e: 35:2d:07:8c:7d:12:96:7f:02:e6:1d:78:fc:ec:c9:07:50:0d: 5f:fb:a2:84:19:25:62:56:64:ef:0a:ed:be:8a:29:ba:29:d6: a6:5a:3f:4b:da:7a:4a:75:29:d7:27:87:3f:b8:ca:5e:db:8f: 1d:58:2b:a2:d4:c2:cf:f9:90:99:1e:aa:b1:9e:33:21:ef:9d: 8a:c2:92:dc:44:a2:56:68:7e:8d:1a:b5:b0:34:d2:8d:c4:2d: 7e:4d:bc:2c:d5:57:57:df:e0:f7:2c:f1:42:9d:48:43:c4:8a: 47:b8:5a:48:47:cc:d9:cd:52:2f:22:7e:42:66:76:62:2a:fc: f7:aa:ac:66:7e:ca:bd:25:09:9e:36:23:1c:2b:51:d7:7f:c8: f1:13:33:b0:66:4b:0f:99:22:e5:52:4a:23:34:58:f2:76:2e: 56:d8:2f:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmxtkxZk5Apr0RY8KGjTEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2YzY5YTRhMjE1YmRlMWQzMjkzNGRkYzg1ZGVhZjhmZDlj OTQ0NzkwHhcNMjUxMjA2MDMwMTA1WhcNMjUxMjA3MDMwMTA1WjAzMTEwLwYDVQQD EygzMDAxMDNhZTM3ZjdhODUxN2U0ZTdjZTA3ODEzZmMzZTk1ZjlhNzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYFN4j54p5tfADTxr5F85XrzgP1x 9/5aj/mOiToalpQp5BfZR+0slwQabId6XMIZ6cngfPq/Ys1o1UnzFk2kDUiu3XdR pntX6mj/XhfpjUJcKmk4MzWkRTGfdxdanMC+vFrdHsGfroMCkTQ5pmheSwnCS5Mu rndrDAsx0+h6TVwotLjFks8w2BJc0yzL/QsqsLx64w/siy6694Uhan0xHVV2C2cJ Iif2QZ2cEI+D95Lx72foB37HX98jPhL8dK/9TTsqqi+zO3JhvEqSthdLiacxJ9wj R//NbpgaeLhyWhWOQw5aEEPwnDLeT5iEj8PlHMYN/2cT1me7E6c69yHc7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDABA64396hRfk584HgT/D6V+aeZMB8GA1UdIwQY MBaAFLbGmkohW94dMpNN3IXer4/ZyUR5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHNhYVNpRmIzaDB5azAzY2hkNnZqOW5KUkhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny81NzdhN2ItNWRjYy00M2E3LWE4OWMt ZTNiYzZiNDk5ZTdiLzEvdHNhYVNpRmIzaDB5azAzY2hkNnZqOW5KUkhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny81NzdhN2ItNWRjYy00M2E3LWE4OWMtZTNiYzZiNDk5ZTdi LzEvdHNhYVNpRmIzaDB5azAzY2hkNnZqOW5KUkhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEKyzCKM+ jpT1f1M6THLtAaCGfamkp6A9+c17wcY2i87IRk00JY35MCUO3BtyYeDVH0LMQDEW V+MfOPZaUd1ymMDw0HG4y/4Z5I0GORb3Ms/1S/HiPTxsoGF+NS0HjH0Sln8C5h14 /OzJB1ANX/uihBklYlZk7wrtvoopuinWplo/S9p6SnUp1yeHP7jKXtuPHVgrotTC z/mQmR6qsZ4zIe+disKS3ESiVmh+jRq1sDTSjcQtfk28LNVXV9/g9yzxQp1IQ8SK R7haSEfM2c1SLyJ+QmZ2Yir896qsZn7KvSUJnjYjHCtR13/I8RMzsGZLD5ki5VJK IzRY8nYuVtgvfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:36:47 2025 by rpki-client