This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json) Hash identifier: RVm9cLjosyIYVOLd/AjVx1w6SZ+fz5AhSVnZtGt5mSk= Subject key identifier: 34:F9:4E:56:9F:9A:7E:AA:BC:94:95:0C:74:50:EA:17:82:98:AD:4E Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Certificate serial: 019AF1D22D2B9A1925059CED013DF38F36B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 04:01:14 +0000 Manifest this update: Sat 06 Dec 2025 04:01:14 +0000 Manifest next update: Sun 07 Dec 2025 04:01:14 +0000 Files and hashes: 1: ojB_2XE9-VR6PiNiRu6ANmUyiuo.roa (hash: YbnnkO0HBRUHzkxo3r5IQRGQe30uxmuUwdAmB24B6sc=) 2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: 8EftxR7J/mMRdoyQTW524lwHLckYKUGpw6sEZ6uHzVs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:2d:2b:9a:19:25:05:9c:ed:01:3d:f3:8f:36:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Validity Not Before: Dec 6 04:01:14 2025 GMT Not After : Dec 7 04:01:14 2025 GMT Subject: CN=34f94e569f9a7eaabc94950c7450ea178298ad4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:47:74:13:56:1e:47:48:d7:8d:97:af:71:7c: cc:ad:c3:19:d0:bf:c6:aa:a2:52:50:78:ed:2c:f8: 13:f9:4f:5e:67:a4:d9:b7:23:4a:ae:57:88:04:fc: 49:73:4c:bb:b7:67:b9:5e:89:59:41:44:78:e3:22: b7:b3:ec:71:26:0c:a1:60:cb:52:b5:81:0f:ed:b9: d4:4c:6b:9f:f0:b8:c6:d4:2b:d8:e1:06:c9:9c:11: 92:8a:2b:df:f2:33:1d:e2:f3:c2:f1:d9:7a:fd:6c: 6b:65:2d:f6:5a:45:f0:ac:7e:68:ed:e7:e2:f1:21: 87:dd:a3:ba:e6:63:f2:40:18:e1:37:e6:aa:31:ae: b6:7f:fb:5d:08:b2:3d:16:5a:fc:c2:5b:38:01:44: 42:43:18:00:63:1e:c6:d9:ef:d1:1a:a5:c6:5a:0e: c2:2d:3d:bd:b4:2b:8d:b9:c2:c6:40:f5:6f:26:ed: e9:52:ef:b5:d6:44:28:dd:1f:f9:65:cb:bf:4f:26: ae:17:cb:ae:1c:07:a6:4b:1f:50:ff:00:94:31:4b: cb:a8:44:26:30:ee:b1:fe:53:b7:a4:07:4c:ed:8b: b2:c4:79:ee:16:2d:1b:0f:ff:26:1e:b4:09:17:1b: ce:6b:ea:ee:a6:9e:72:43:a4:b0:75:cb:98:ef:f7: 55:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:4E:56:9F:9A:7E:AA:BC:94:95:0C:74:50:EA:17:82:98:AD:4E X509v3 Authority Key Identifier: keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:fe:5e:53:70:0b:61:cc:f9:82:cf:79:1a:99:92:b6:5c:5e: c3:c3:06:d5:3d:fd:db:1d:2a:19:97:2d:e8:bd:80:07:45:12: bb:87:68:e5:83:21:1a:62:54:aa:b6:54:e1:45:fe:b1:a3:fd: ce:20:fd:45:ab:9d:98:60:02:01:21:95:a3:67:62:38:63:b4: e4:83:b2:41:a6:12:e4:de:fa:51:82:93:2a:aa:bd:21:7c:2e: 2e:82:41:0e:b3:27:16:22:d4:50:69:cd:09:1a:50:cb:79:ec: d3:5e:40:c8:c3:c5:19:62:f2:73:b6:a6:18:01:1c:fe:be:95: d8:32:76:14:de:75:4a:ec:67:a0:b0:85:24:3d:82:e4:39:2f: c5:6e:ce:c5:da:02:aa:b0:76:dc:9d:37:53:89:c6:af:bc:be: 30:bd:00:82:05:83:f2:e5:07:ca:fd:65:fa:1f:49:85:e1:45: db:55:21:8e:7d:dc:54:fa:c0:41:bd:7e:b3:d7:38:50:cb:77: ed:bc:30:83:eb:1a:d2:73:4a:3b:6c:e2:6e:b1:fa:08:e2:b5: ce:a6:ad:a6:9c:02:7d:53:02:9c:df:49:3f:0e:96:a6:9c:c2: 88:54:0c:64:b7:f4:85:41:3f:75:4a:06:ad:f7:59:6b:ac:71: 33:84:2b:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0i0rmhklBZztAT3zjzaxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0 Njg4OWEwHhcNMjUxMjA2MDQwMTE0WhcNMjUxMjA3MDQwMTE0WjAzMTEwLwYDVQQD EygzNGY5NGU1NjlmOWE3ZWFhYmM5NDk1MGM3NDUwZWExNzgyOThhZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0d0E1YeR0jXjZevcXzMrcMZ0L/G qqJSUHjtLPgT+U9eZ6TZtyNKrleIBPxJc0y7t2e5XolZQUR44yK3s+xxJgyhYMtS tYEP7bnUTGuf8LjG1CvY4QbJnBGSiivf8jMd4vPC8dl6/WxrZS32WkXwrH5o7efi 8SGH3aO65mPyQBjhN+aqMa62f/tdCLI9Flr8wls4AURCQxgAYx7G2e/RGqXGWg7C LT29tCuNucLGQPVvJu3pUu+11kQo3R/5Zcu/TyauF8uuHAemSx9Q/wCUMUvLqEQm MO6x/lO3pAdM7YuyxHnuFi0bD/8mHrQJFxvOa+rupp5yQ6SwdcuY7/dVuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDT5Tlafmn6qvJSVDHRQ6heCmK1OMB8GA1UdIwQY MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5 LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYv5eU3AL Ycz5gs95GpmStlxew8MG1T392x0qGZct6L2AB0USu4do5YMhGmJUqrZU4UX+saP9 ziD9RaudmGACASGVo2diOGO05IOyQaYS5N76UYKTKqq9IXwuLoJBDrMnFiLUUGnN CRpQy3ns015AyMPFGWLyc7amGAEc/r6V2DJ2FN51SuxnoLCFJD2C5DkvxW7OxdoC qrB23J03U4nGr7y+ML0AggWD8uUHyv1l+h9JheFF21Uhjn3cVPrAQb1+s9c4UMt3 7bwwg+sa0nNKO2zibrH6COK1zqatppwCfVMCnN9JPw6WppzCiFQMZLf0hUE/dUoG rfdZa6xxM4Qrfg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:12:15 2025 by rpki-client