This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json) Hash identifier: nTA/X7K1WnZPnCa/17TDckaejQwBqPCP1I6bpLWdjRY= Subject key identifier: 9D:ED:99:66:20:B6:ED:D3:A7:7E:28:EA:84:9D:AE:32:D3:AD:CC:07 Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e Certificate serial: 019B31FAE2D313838EC8925EA2EA8254DC1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft Manifest number: 036D Signing time: Thu 18 Dec 2025 15:01:24 +0000 Manifest this update: Thu 18 Dec 2025 15:01:24 +0000 Manifest next update: Fri 19 Dec 2025 15:01:24 +0000 Files and hashes: 1: 2YHBxyZ_z4Fcrt68TQqMf0wkwmM.roa (hash: KMD/ALL2N2LqU8y7+1f9YpFqy5OsmhRXi+hfcZ2aIxY=) 2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: uFsJ2CA8xY2K7t3qLgxOQZ7+3wlA5bcyG/Mw9iYpyV8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:fa:e2:d3:13:83:8e:c8:92:5e:a2:ea:82:54:dc:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e Validity Not Before: Dec 18 15:01:24 2025 GMT Not After : Dec 19 15:01:24 2025 GMT Subject: CN=9ded996620b6edd3a77e28ea849dae32d3adcc07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:aa:24:13:11:eb:9d:f3:0e:bc:be:fc:00:75: 73:e0:13:72:f4:9a:c5:f7:1c:57:d2:96:f4:d2:e9: 05:5c:65:78:35:7d:4b:26:58:eb:97:dc:fc:5c:ef: d2:5e:fb:a9:1a:b7:73:cb:3f:49:b7:01:d6:0a:24: b5:75:81:ef:9c:4e:f3:08:fd:a0:4a:bb:8d:a1:78: a9:a8:5e:75:95:1c:68:08:a3:8f:8b:2b:51:f1:f2: 7b:55:cd:5d:ea:2d:7f:ee:70:83:78:95:69:2d:94: b8:25:69:4c:24:4c:f9:c4:e4:91:19:c5:f1:8c:11: 41:db:a0:e5:14:33:75:0d:08:1f:64:20:76:8a:84: f0:03:7a:fb:bb:00:04:a4:90:5a:10:5d:7f:b5:05: ff:35:0a:22:b7:94:dc:f3:f8:c0:e4:c8:2e:93:31: b3:4a:0c:32:71:8b:53:de:47:44:d8:e8:17:ac:56: 74:84:59:f2:3b:7e:58:b0:de:3e:a6:43:e2:56:e8: 35:2c:cb:68:4d:54:57:1f:6e:c5:16:d6:60:67:4d: df:65:cd:d4:2a:e3:f4:b7:92:28:5b:02:26:84:66: 97:18:7e:84:96:01:13:1d:76:32:b6:e0:7a:e3:47: 4e:72:aa:15:d3:f2:ec:ed:db:05:63:b7:33:34:e4: cd:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:ED:99:66:20:B6:ED:D3:A7:7E:28:EA:84:9D:AE:32:D3:AD:CC:07 X509v3 Authority Key Identifier: keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:f7:94:e2:27:1e:29:8c:5c:3e:ee:a8:79:02:3e:9b:ef:ef: a1:b9:9b:a1:6d:05:8b:9c:89:7b:01:9f:23:00:2f:56:01:c3: 94:71:03:31:83:cb:9a:2b:56:a6:8c:0a:97:25:60:a2:98:24: f9:6a:89:3d:80:04:13:5d:a7:68:a8:5a:6d:43:ae:2e:18:a6: 57:f2:9b:95:55:13:54:ef:fa:3b:13:06:53:5e:12:be:27:f4: 94:fe:d9:00:96:7d:e6:b5:27:f5:37:8e:e4:7a:1c:bd:76:a4: 7e:9a:8c:f4:ad:19:9d:32:86:24:62:e0:4a:21:33:6c:e6:56: cd:20:fb:ce:7f:b9:22:10:b7:de:a1:f1:99:55:fb:81:3d:f8: 0e:3e:f3:33:a2:6b:64:2d:3e:b6:1e:c9:06:c6:e4:86:2d:91: 9c:9e:cf:41:6f:58:7d:71:5b:63:d9:52:89:f3:0a:c6:82:46: 37:31:aa:19:1f:e8:1a:68:10:4a:6f:e6:70:a2:cb:c8:e2:ba: 6b:ac:4a:a0:12:a5:f2:47:04:76:73:81:13:81:6f:02:30:22: 1e:91:ce:dd:54:3b:b1:04:86:37:51:61:14:dd:e9:1b:04:ac: b3:23:02:05:96:2e:06:44:2b:04:8c:2a:4b:2f:25:06:b0:2d: d4:9f:6a:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsx+uLTE4OOyJJeouqCVNwfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlYmY2YjM3Yjk0Zjk1YjQ5MDVjZjhjNmEyMWQ4ODAzZWFi ZmE3N2UwHhcNMjUxMjE4MTUwMTI0WhcNMjUxMjE5MTUwMTI0WjAzMTEwLwYDVQQD Eyg5ZGVkOTk2NjIwYjZlZGQzYTc3ZTI4ZWE4NDlkYWUzMmQzYWRjYzA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6okExHrnfMOvL78AHVz4BNy9JrF 9xxX0pb00ukFXGV4NX1LJljrl9z8XO/SXvupGrdzyz9JtwHWCiS1dYHvnE7zCP2g SruNoXipqF51lRxoCKOPiytR8fJ7Vc1d6i1/7nCDeJVpLZS4JWlMJEz5xOSRGcXx jBFB26DlFDN1DQgfZCB2ioTwA3r7uwAEpJBaEF1/tQX/NQoit5Tc8/jA5MgukzGz SgwycYtT3kdE2OgXrFZ0hFnyO35YsN4+pkPiVug1LMtoTVRXH27FFtZgZ03fZc3U KuP0t5IoWwImhGaXGH6ElgETHXYytuB640dOcqoV0/Ls7dsFY7czNOTNQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ3tmWYgtu3Tp34o6oSdrjLTrcwHMB8GA1UdIwQY MBaAFE6/aze5T5W0kFz4xqIdiAPqv6d+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2Yt ZTdlNzRkYjcyMWQyLzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9hMjE3MmQtYjY1MS00M2RhLThhY2YtZTdlNzRkYjcyMWQy LzEvVHI5ck43bFBsYlNRWFBqR29oMklBLXFfcDM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh/eU4ice KYxcPu6oeQI+m+/vobmboW0Fi5yJewGfIwAvVgHDlHEDMYPLmitWpowKlyVgopgk +WqJPYAEE12naKhabUOuLhimV/KblVUTVO/6OxMGU14Svif0lP7ZAJZ95rUn9TeO 5HocvXakfpqM9K0ZnTKGJGLgSiEzbOZWzSD7zn+5IhC33qHxmVX7gT34Dj7zM6Jr ZC0+th7JBsbkhi2RnJ7PQW9YfXFbY9lSifMKxoJGNzGqGR/oGmgQSm/mcKLLyOK6 a6xKoBKl8kcEdnOBE4FvAjAiHpHO3VQ7sQSGN1FhFN3pGwSssyMCBZYuBkQrBIwq Sy8lBrAt1J9qXg== -----END CERTIFICATE-----Generated at Thu Dec 18 19:06:51 2025 by rpki-client