This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft File: THGxR-uHN6vMM1-AIJUbJf8mVqY.mft (raw, json) Hash identifier: D3SowjCXcc6tBtcgllvV6LluSfP+9QUjRQdD+5Pi9VU= Subject key identifier: 81:B0:C3:E2:27:76:F4:26:73:9A:8A:D7:18:81:AA:43:43:D5:B7:C7 Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6 Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6 Certificate serial: 019AF208EF7968E0A2F425B189BC067F263F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft Manifest number: 0BFB Signing time: Sat 06 Dec 2025 05:01:02 +0000 Manifest this update: Sat 06 Dec 2025 05:01:02 +0000 Manifest next update: Sun 07 Dec 2025 05:01:02 +0000 Files and hashes: 1: THGxR-uHN6vMM1-AIJUbJf8mVqY.crl (hash: bOvx5ghgOP19mPQAh4L5oMpQUXnSuzgozhP5rlmHu7I=) 2: aZp_-IqiVFoAaaD08gi82AqrlBM.roa (hash: xAjdvDvJZRM8tEfeaFE3V9XsMT9Nsdi0raaN7LzCKfw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ef:79:68:e0:a2:f4:25:b1:89:bc:06:7f:26:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6 Validity Not Before: Dec 6 05:01:02 2025 GMT Not After : Dec 7 05:01:02 2025 GMT Subject: CN=81b0c3e22776f426739a8ad71881aa4343d5b7c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:9e:41:22:ba:23:2b:c2:a0:31:42:5f:36:9a: 85:f7:f7:34:76:d4:97:45:73:f5:b1:4a:ec:6e:1e: 9e:42:b5:fb:f0:bb:8d:c1:c7:a2:0e:74:2f:87:1a: 52:5c:b2:7d:04:c3:e7:f9:ca:f2:28:1a:2b:74:dd: 1e:be:17:f7:7f:b0:bf:72:82:00:81:95:10:ad:76: 9c:fa:a5:87:df:fb:51:a8:74:3f:3e:cd:50:30:50: d7:de:be:df:9a:04:43:d6:a5:94:c2:30:75:61:8b: 49:22:c6:83:c1:a9:4d:4d:de:15:46:95:84:e8:6b: b0:de:01:e2:e2:09:82:f9:b2:3a:7c:76:59:06:19: c4:3e:37:0f:af:6b:1a:ca:df:d5:cb:5d:78:81:3a: 1a:a1:f4:f0:9a:d1:50:65:37:98:14:24:63:d0:57: 83:3c:ba:49:9c:ce:56:1b:9e:a6:95:98:79:43:0d: 25:c1:42:1b:46:8e:55:e3:4a:ad:47:53:ff:78:0c: f6:05:03:b8:f4:81:30:1e:2c:ab:22:0e:e9:53:cc: 44:e4:eb:56:03:ac:49:7f:c8:c3:f9:4a:23:ba:29: d0:6a:df:35:13:d7:fe:a2:69:34:d6:72:8f:06:72: e1:7c:3c:b8:09:9b:c1:d3:e8:0e:a9:ca:aa:7d:d1: 2a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B0:C3:E2:27:76:F4:26:73:9A:8A:D7:18:81:AA:43:43:D5:B7:C7 X509v3 Authority Key Identifier: keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:f9:77:3d:80:01:2e:c8:02:db:38:7b:9d:2b:8b:3f:5a:f6: 12:f2:f7:f8:c1:7e:e3:0c:cc:60:aa:72:d1:0d:1f:dd:10:58: 87:cc:9e:4b:5a:5d:34:ed:0e:f0:13:26:4d:5b:70:71:5c:ba: 8e:7d:5a:69:7c:8f:dd:71:9a:db:ad:38:2c:4c:48:b0:15:82: 92:f0:7f:30:e3:c0:d8:33:67:e7:11:f2:3e:74:01:5d:e1:0e: ae:6a:15:9e:5f:41:94:24:53:64:93:a8:59:75:c8:26:6b:f8: 66:80:4e:ec:cd:40:b2:21:e0:81:f4:e5:19:ad:70:5d:ba:6c: f0:6d:b6:68:d8:ef:97:cb:50:d2:79:b0:f8:f9:cf:ca:b3:dd: 9f:53:cd:e0:99:e5:86:a0:12:b0:92:11:e3:01:a0:ca:da:38: 93:50:69:ec:dd:3f:3c:40:69:5e:cd:cb:7b:6f:da:25:39:39: 72:ca:4b:d4:fc:ea:78:d0:94:df:ba:e7:3d:06:0e:c6:13:77: f9:74:e6:dd:5a:1d:65:0c:06:a4:28:7b:46:17:75:44:d8:32: bc:b0:44:7a:11:96:4b:ed:34:75:f0:43:49:74:01:99:1e:97: 3f:16:dc:44:60:9c:dd:8a:19:d9:81:92:9d:9c:99:a5:b4:b0: d8:10:d8:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCO95aOCi9CWxibwGfyY/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjNzFiMTQ3ZWI4NzM3YWJjYzMzNWY4MDIwOTUxYjI1ZmYy NjU2YTYwHhcNMjUxMjA2MDUwMTAyWhcNMjUxMjA3MDUwMTAyWjAzMTEwLwYDVQQD Eyg4MWIwYzNlMjI3NzZmNDI2NzM5YThhZDcxODgxYWE0MzQzZDViN2M3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjp5BIrojK8KgMUJfNpqF9/c0dtSX RXP1sUrsbh6eQrX78LuNwceiDnQvhxpSXLJ9BMPn+cryKBordN0evhf3f7C/coIA gZUQrXac+qWH3/tRqHQ/Ps1QMFDX3r7fmgRD1qWUwjB1YYtJIsaDwalNTd4VRpWE 6Guw3gHi4gmC+bI6fHZZBhnEPjcPr2sayt/Vy114gToaofTwmtFQZTeYFCRj0FeD PLpJnM5WG56mlZh5Qw0lwUIbRo5V40qtR1P/eAz2BQO49IEwHiyrIg7pU8xE5OtW A6xJf8jD+UojuinQat81E9f+omk01nKPBnLhfDy4CZvB0+gOqcqqfdEqpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIGww+IndvQmc5qK1xiBqkND1bfHMB8GA1UdIwQY MBaAFExxsUfrhzerzDNfgCCVGyX/JlamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMt MDcxYjk5MWFmMDFmLzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMtMDcxYjk5MWFmMDFm LzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/l3PYAB LsgC2zh7nSuLP1r2EvL3+MF+4wzMYKpy0Q0f3RBYh8yeS1pdNO0O8BMmTVtwcVy6 jn1aaXyP3XGa2604LExIsBWCkvB/MOPA2DNn5xHyPnQBXeEOrmoVnl9BlCRTZJOo WXXIJmv4ZoBO7M1AsiHggfTlGa1wXbps8G22aNjvl8tQ0nmw+PnPyrPdn1PN4Jnl hqASsJIR4wGgyto4k1Bp7N0/PEBpXs3Le2/aJTk5cspL1PzqeNCU37rnPQYOxhN3 +XTm3VodZQwGpCh7Rhd1RNgyvLBEehGWS+00dfBDSXQBmR6XPxbcRGCc3YoZ2YGS nZyZpbSw2BDYwA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:51 2025 by rpki-client