This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json) Hash identifier: bEhUeiUkbO2sciBQclE0zHLMl42qCb9LoZC5aJ2Wfyc= Subject key identifier: AD:50:CA:9B:9E:5C:63:EB:AC:11:00:48:B7:34:3E:FC:39:2E:8F:7B Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e Certificate serial: 019AF23FB8B17201E65DC2058D6611BC36AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft Manifest number: 034C Signing time: Sat 06 Dec 2025 06:00:53 +0000 Manifest this update: Sat 06 Dec 2025 06:00:53 +0000 Manifest next update: Sun 07 Dec 2025 06:00:53 +0000 Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=) 2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: veCSz51XjY8Ktpx1iEckt8gBB/i/SZ9JtlXOW0IvIX0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:b8:b1:72:01:e6:5d:c2:05:8d:66:11:bc:36:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e Validity Not Before: Dec 6 06:00:53 2025 GMT Not After : Dec 7 06:00:53 2025 GMT Subject: CN=ad50ca9b9e5c63ebac110048b7343efc392e8f7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f1:11:d4:27:f3:69:0a:36:2c:d2:f8:fa:ac: 92:27:b7:40:25:8b:65:d2:be:0b:a7:15:5d:69:27: 21:fa:61:d4:06:1d:fe:3b:07:33:be:e7:3e:f5:30: 87:ec:1e:e1:18:51:bc:00:c7:60:b1:7a:8c:c2:00: 6e:4d:78:53:a0:44:92:1f:73:a0:db:4d:a4:65:36: fb:22:24:16:79:3e:b5:aa:44:a0:c1:70:e7:23:39: f4:26:50:0d:62:85:42:d2:0d:01:04:86:c7:39:10: d5:25:b3:9b:54:79:7f:1d:9c:e1:5e:2b:87:4b:05: 50:04:8d:bd:25:72:73:08:7a:f5:4e:fc:18:2d:dc: f1:5d:bc:75:6d:e0:71:7b:be:5a:29:d8:19:11:15: 7a:d0:bc:8c:2a:e1:d1:08:01:e1:95:04:8b:57:44: d6:36:22:d0:75:b3:b3:d9:24:06:43:75:2c:40:ed: 7d:b5:c8:45:d2:22:fe:c0:0a:a9:2a:15:28:60:4c: 8b:9b:6c:82:c9:89:99:80:3c:71:f7:bc:ff:2e:ee: cb:e3:53:a4:83:bb:67:05:a0:1f:1e:87:82:7f:c0: 2e:61:39:30:e3:d2:c3:87:3f:84:ce:04:47:71:1a: 89:41:be:aa:0d:c6:f2:f0:e1:6a:03:ad:11:c7:e4: c1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:50:CA:9B:9E:5C:63:EB:AC:11:00:48:B7:34:3E:FC:39:2E:8F:7B X509v3 Authority Key Identifier: keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:71:9c:18:93:94:d4:8d:e5:77:8f:26:5c:56:05:e7:90:9f: d9:fd:48:c5:c3:04:48:1e:e7:46:6c:d5:87:0f:40:20:84:a7: 39:37:6d:3b:29:27:98:7a:17:dd:34:ae:77:c5:c2:25:9e:bd: e0:f1:83:4c:18:5f:b4:1b:d7:bf:90:20:0c:d3:c2:b6:1a:62: d6:ec:a1:8f:a7:98:a4:34:97:67:b2:96:f7:d4:66:d4:4d:d1: 8e:b1:b5:de:75:6c:d3:15:0c:5c:9a:fa:51:b9:c4:ba:cf:fc: c1:28:39:78:5e:41:c4:19:58:29:f7:f1:76:dc:db:16:38:1b: 0b:40:b9:84:f3:2d:a5:48:d8:35:87:60:ec:fe:da:cc:0d:7d: f1:68:d9:9b:0c:fe:50:bb:4c:a2:bd:62:9a:28:56:43:98:07: 30:05:ea:01:b5:96:7c:b8:f5:ab:fd:ac:e9:2a:03:0c:c9:cd: 50:27:d3:82:54:bf:91:02:f2:0a:86:b2:66:38:e1:cc:57:2a: 19:96:20:76:2d:dd:f5:b1:5b:b1:49:f2:37:c4:bc:ab:4f:b2: d6:dc:e8:95:30:79:b6:39:b0:97:3c:4a:a5:03:ff:4d:9a:23: 9a:a1:16:51:17:26:38:51:f7:76:13:bb:19:91:c2:23:51:03: 67:e4:ba:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP7ixcgHmXcIFjWYRvDasMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlYmY2YjM3Yjk0Zjk1YjQ5MDVjZjhjNmEyMWQ4ODAzZWFi ZmE3N2UwHhcNMjUxMjA2MDYwMDUzWhcNMjUxMjA3MDYwMDUzWjAzMTEwLwYDVQQD EyhhZDUwY2E5YjllNWM2M2ViYWMxMTAwNDhiNzM0M2VmYzM5MmU4ZjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvER1CfzaQo2LNL4+qySJ7dAJYtl 0r4LpxVdaSch+mHUBh3+Owczvuc+9TCH7B7hGFG8AMdgsXqMwgBuTXhToESSH3Og 202kZTb7IiQWeT61qkSgwXDnIzn0JlANYoVC0g0BBIbHORDVJbObVHl/HZzhXiuH SwVQBI29JXJzCHr1TvwYLdzxXbx1beBxe75aKdgZERV60LyMKuHRCAHhlQSLV0TW NiLQdbOz2SQGQ3UsQO19tchF0iL+wAqpKhUoYEyLm2yCyYmZgDxx97z/Lu7L41Ok g7tnBaAfHoeCf8AuYTkw49LDhz+EzgRHcRqJQb6qDcby8OFqA60Rx+TBCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK1QypueXGPrrBEASLc0Pvw5Lo97MB8GA1UdIwQY MBaAFE6/aze5T5W0kFz4xqIdiAPqv6d+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2Yt ZTdlNzRkYjcyMWQyLzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2YtZTdlNzRkYjcyMWQy LzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhXGcGJOU 1I3ld48mXFYF55Cf2f1IxcMESB7nRmzVhw9AIISnOTdtOyknmHoX3TSud8XCJZ69 4PGDTBhftBvXv5AgDNPCthpi1uyhj6eYpDSXZ7KW99Rm1E3RjrG13nVs0xUMXJr6 UbnEus/8wSg5eF5BxBlYKffxdtzbFjgbC0C5hPMtpUjYNYdg7P7azA198WjZmwz+ ULtMor1imihWQ5gHMAXqAbWWfLj1q/2s6SoDDMnNUCfTglS/kQLyCoayZjjhzFcq GZYgdi3d9bFbsUnyN8S8q0+y1tzolTB5tjmwlzxKpQP/TZojmqEWURcmOFH3dhO7 GZHCI1EDZ+S6YQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:42 2025 by rpki-client