This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json) Hash identifier: wqs1a5RkG97CpDCIgVf6/GR7SZsWsMfGLmuRE+eDrCU= Subject key identifier: 2A:EF:B4:4F:B6:3A:81:30:69:75:D3:7C:D2:B2:9E:67:0F:EE:F1:8B Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0 Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0 Certificate serial: 019AF23F9EC54EE523622C05D8D774D2F047 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft Manifest number: 119D Signing time: Sat 06 Dec 2025 06:00:46 +0000 Manifest this update: Sat 06 Dec 2025 06:00:46 +0000 Manifest next update: Sun 07 Dec 2025 06:00:46 +0000 Files and hashes: 1: ggC5V29BMdNUn59EruOGoGZJaaQ.roa (hash: ttIpUsiJ4qeM8pCSgboK+Vkbkx0DrAYP7DxfAZL+EN4=) 2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: FgXcKvJKGSVu4w3u7KE4BOMDWOzAH4KUUn0wRFJ3ZDA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:9e:c5:4e:e5:23:62:2c:05:d8:d7:74:d2:f0:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0 Validity Not Before: Dec 6 06:00:46 2025 GMT Not After : Dec 7 06:00:46 2025 GMT Subject: CN=2aefb44fb63a81306975d37cd2b29e670feef18b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:90:a6:a3:c4:41:46:2d:ce:85:73:18:4e:b1: dc:59:57:9f:8f:d0:8d:51:31:e9:71:08:20:e8:a1: 43:b7:28:45:58:52:55:04:d9:6f:68:d8:ca:73:e3: c4:0d:58:dc:0c:0a:85:83:5e:93:13:64:39:11:79: d2:01:6b:24:67:d3:71:e8:13:50:a0:41:3d:a2:9c: 98:96:ad:13:b6:eb:e2:8e:5f:e9:25:b7:7e:be:e1: 9c:2a:5d:d9:0d:7b:7b:58:71:e6:7b:7e:d2:d7:91: d2:05:63:30:50:62:dc:b3:ab:e5:ce:f2:e7:14:c5: 4f:cf:1e:d3:2c:dd:cb:eb:43:1d:4e:87:08:39:5c: a3:aa:75:9a:07:df:55:b7:ef:e8:1b:e1:bb:73:06: 9a:31:79:e2:61:5d:78:32:89:a8:d7:e3:c5:32:f8: 75:cd:2b:83:a0:ae:e3:b5:2b:6c:22:58:2b:85:c1: e6:8a:2e:03:1c:bf:32:85:3a:b9:71:e9:82:a8:c4: a0:1d:4f:b0:b2:67:9d:67:8b:ee:00:66:0f:94:81: fa:37:8f:e2:26:8b:36:08:a3:34:c4:a6:36:e2:4f: 07:58:49:84:83:e3:88:57:38:f7:62:d2:55:8b:9a: e1:b5:f1:0f:e8:ef:ba:b8:1b:84:46:1d:23:cd:7a: be:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:EF:B4:4F:B6:3A:81:30:69:75:D3:7C:D2:B2:9E:67:0F:EE:F1:8B X509v3 Authority Key Identifier: keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:9e:9c:d3:8b:4b:93:25:80:b9:27:e7:76:5d:74:ea:e9:bb: e3:88:8e:f3:a7:39:39:16:1f:48:d6:6a:e2:26:9c:e3:71:bb: 37:22:c0:01:c3:9c:a9:a9:84:2c:21:30:29:a8:4b:c7:3b:a7: 88:86:0d:14:95:6a:ed:66:29:7f:bb:1b:f0:27:fe:6e:55:d9: 28:19:17:d3:f6:16:21:74:4f:53:57:02:75:e0:c5:58:68:a9: 0d:d3:4c:eb:39:16:05:04:cf:48:1b:56:c3:c2:58:b3:14:56: 8b:6c:6c:63:41:4a:59:9b:36:00:69:6d:18:97:8b:96:c7:9b: 88:c4:3e:2a:59:90:49:9c:66:4c:60:07:f3:0f:b5:f6:90:b2: 03:3a:d9:d1:7e:54:e2:60:b0:46:df:a9:22:bb:d2:4a:63:06: da:22:1d:52:e3:92:4a:03:6e:b0:87:ae:28:4e:6d:52:01:cd: 3d:f6:cb:81:e2:e2:b6:7c:1e:77:50:2c:7a:ff:55:cf:ae:de: 0f:39:1b:16:73:ee:db:04:71:0a:33:88:a9:fa:f8:4f:23:a4: b0:25:97:71:00:f2:03:75:09:6b:b1:c3:09:c2:1c:55:72:ec: 34:5e:be:d6:db:3f:97:b0:aa:48:4d:59:42:1a:a0:4d:a6:36: 20:86:25:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP57FTuUjYiwF2Nd00vBHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3MjBmM2NlYjBlNmI1OTdhMzgxNDVjNWE3NDMzNjljN2Y0 OTY2ZTAwHhcNMjUxMjA2MDYwMDQ2WhcNMjUxMjA3MDYwMDQ2WjAzMTEwLwYDVQQD EygyYWVmYjQ0ZmI2M2E4MTMwNjk3NWQzN2NkMmIyOWU2NzBmZWVmMThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpCmo8RBRi3OhXMYTrHcWVefj9CN UTHpcQgg6KFDtyhFWFJVBNlvaNjKc+PEDVjcDAqFg16TE2Q5EXnSAWskZ9Nx6BNQ oEE9opyYlq0Ttuvijl/pJbd+vuGcKl3ZDXt7WHHme37S15HSBWMwUGLcs6vlzvLn FMVPzx7TLN3L60MdTocIOVyjqnWaB99Vt+/oG+G7cwaaMXniYV14Momo1+PFMvh1 zSuDoK7jtStsIlgrhcHmii4DHL8yhTq5cemCqMSgHU+wsmedZ4vuAGYPlIH6N4/i Jos2CKM0xKY24k8HWEmEg+OIVzj3YtJVi5rhtfEP6O+6uBuERh0jzXq++wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCrvtE+2OoEwaXXTfNKynmcP7vGLMB8GA1UdIwQY MBaAFLcg886w5rWXo4FFxadDNpx/SWbgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kN2ZiNmQtZWJiZS00M2EyLWIxMTkt MzkzYzQ1NzQyMjU5LzEvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9kN2ZiNmQtZWJiZS00M2EyLWIxMTktMzkzYzQ1NzQyMjU5 LzEvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkZ6c04tL kyWAuSfndl106um744iO86c5ORYfSNZq4iac43G7NyLAAcOcqamELCEwKahLxzun iIYNFJVq7WYpf7sb8Cf+blXZKBkX0/YWIXRPU1cCdeDFWGipDdNM6zkWBQTPSBtW w8JYsxRWi2xsY0FKWZs2AGltGJeLlsebiMQ+KlmQSZxmTGAH8w+19pCyAzrZ0X5U 4mCwRt+pIrvSSmMG2iIdUuOSSgNusIeuKE5tUgHNPfbLgeLitnwed1Asev9Vz67e DzkbFnPu2wRxCjOIqfr4TyOksCWXcQDyA3UJa7HDCcIcVXLsNF6+1ts/l7CqSE1Z QhqgTaY2IIYliQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:15:14 2025 by rpki-client