This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft File: Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json) Hash identifier: aY2XYzacCL6DlDIhLwvv3+XMnqOtUO9pVq+9KZX8sHI= Subject key identifier: 9A:09:7C:4B:30:E4:91:66:60:8D:C6:65:C7:8E:C1:AC:55:ED:08:A0 Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 Certificate issuer: /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Certificate serial: 019AF31D0C5D59B46D8FA8C66CE80E09B9EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft Manifest number: 1087 Signing time: Sat 06 Dec 2025 10:02:38 +0000 Manifest this update: Sat 06 Dec 2025 10:02:38 +0000 Manifest next update: Sun 07 Dec 2025 10:02:38 +0000 Files and hashes: 1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: qUFo7XqmcTvB+vL2xKJlEanaQ2yyJXt/rElU5JzkW/s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:0c:5d:59:b4:6d:8f:a8:c6:6c:e8:0e:09:b9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Validity Not Before: Dec 6 10:02:38 2025 GMT Not After : Dec 7 10:02:38 2025 GMT Subject: CN=9a097c4b30e49166608dc665c78ec1ac55ed08a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2d:22:97:11:61:9b:b7:11:27:29:e3:08:fa: ba:e1:02:ef:3a:90:48:30:68:f3:1a:45:99:7e:01: fe:8d:e1:d7:13:e0:13:9e:5b:50:25:1b:91:40:74: 23:e8:93:6b:82:e7:9d:79:1b:eb:e9:d6:2b:78:64: f2:fd:d2:62:ce:1f:12:2a:a8:79:4e:4e:4a:1c:bf: f2:35:42:a5:2a:bb:03:6d:b4:77:56:77:b8:66:1a: 6e:04:ad:fc:e9:34:29:f6:ec:a9:5c:24:80:8d:f2: fe:17:0a:0d:cf:54:0b:b2:f2:1b:5c:ca:ee:ec:42: 20:a6:cb:49:86:55:ec:8d:e2:a1:de:14:c3:ec:f6: ce:ac:65:bb:90:0a:37:59:38:88:ee:be:93:bd:7a: 79:1c:75:8b:fe:26:37:9e:aa:89:f2:dd:f9:2a:c9: 3b:ff:39:f0:d3:8b:23:82:87:ca:c7:6c:83:e6:28: 80:c0:cf:0a:7d:f9:ba:b1:5e:1e:89:eb:09:90:ea: a6:6b:d1:ef:d6:c2:a1:a6:30:2a:8b:da:34:1b:6c: 5f:5e:2d:44:1f:c0:f4:33:42:ee:38:6c:e5:c7:a9: d7:ee:d7:29:3a:82:26:c3:64:a3:13:20:83:92:57: 4f:f2:64:9e:96:ea:08:31:23:d0:5c:64:29:f8:cc: 10:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:09:7C:4B:30:E4:91:66:60:8D:C6:65:C7:8E:C1:AC:55:ED:08:A0 X509v3 Authority Key Identifier: keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:b3:ea:f1:40:dd:29:02:a9:18:28:da:67:66:22:c0:1e:38: c2:ac:dc:3c:e6:f9:e0:c3:35:28:9a:d0:eb:55:e9:1a:15:7a: a8:f3:cc:28:5b:60:ca:7c:69:8c:64:c0:2d:d9:f7:6b:bf:d4: 7f:1e:30:b4:12:eb:59:53:b7:a1:60:1d:69:83:76:5b:15:1d: bf:2f:dc:1e:3f:e5:00:67:a3:69:0e:4e:46:1c:7a:46:8f:98: 43:d2:3c:3b:96:be:85:34:42:75:08:dd:e0:21:79:35:89:07: a8:31:89:2f:30:d6:4f:89:7d:e9:0a:57:2d:51:1d:6e:dd:df: 43:57:f0:c3:51:c9:38:9a:cb:92:f9:9d:a8:0b:07:9f:f9:88: 79:56:2a:18:e0:cb:1c:82:30:ef:39:94:8f:f2:55:f7:60:ec: 50:b2:32:0e:2b:6b:b5:81:79:9a:42:87:ce:94:03:b1:ef:d2: ed:90:20:9a:09:0a:c7:98:fd:0a:ab:9c:1b:19:47:e3:5a:af: 4d:82:a8:89:67:1f:59:65:56:3b:82:fe:c8:15:0f:25:6a:c8: d5:81:05:ee:85:1b:c4:d5:03:00:ac:07:a0:bb:56:e0:02:44: c1:b9:01:75:90:03:88:bc:ca:28:3f:3e:73:cf:fd:63:aa:eb: a9:d5:4b:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHQxdWbRtj6jGbOgOCbnuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNTdiYTc2Y2I3ZDZkMmFlYzA1MjAzY2Y0MWI4ZTY3MTZl ZTdlYTAwHhcNMjUxMjA2MTAwMjM4WhcNMjUxMjA3MTAwMjM4WjAzMTEwLwYDVQQD Eyg5YTA5N2M0YjMwZTQ5MTY2NjA4ZGM2NjVjNzhlYzFhYzU1ZWQwOGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0y0ilxFhm7cRJynjCPq64QLvOpBI MGjzGkWZfgH+jeHXE+ATnltQJRuRQHQj6JNrguedeRvr6dYreGTy/dJizh8SKqh5 Tk5KHL/yNUKlKrsDbbR3Vne4ZhpuBK386TQp9uypXCSAjfL+FwoNz1QLsvIbXMru 7EIgpstJhlXsjeKh3hTD7PbOrGW7kAo3WTiI7r6TvXp5HHWL/iY3nqqJ8t35Ksk7 /znw04sjgofKx2yD5iiAwM8Kffm6sV4eiesJkOqma9Hv1sKhpjAqi9o0G2xfXi1E H8D0M0LuOGzlx6nX7tcpOoImw2SjEyCDkldP8mSeluoIMSPQXGQp+MwQ5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJoJfEsw5JFmYI3GZceOwaxV7QigMB8GA1UdIwQY MBaAFE5XunbLfW0q7AUgPPQbjmcW7n6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEt YjcyZDdhZGJmYjk2LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEtYjcyZDdhZGJmYjk2 LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAabPq8UDd KQKpGCjaZ2YiwB44wqzcPOb54MM1KJrQ61XpGhV6qPPMKFtgynxpjGTALdn3a7/U fx4wtBLrWVO3oWAdaYN2WxUdvy/cHj/lAGejaQ5ORhx6Ro+YQ9I8O5a+hTRCdQjd 4CF5NYkHqDGJLzDWT4l96QpXLVEdbt3fQ1fww1HJOJrLkvmdqAsHn/mIeVYqGODL HIIw7zmUj/JV92DsULIyDitrtYF5mkKHzpQDse/S7ZAgmgkKx5j9CqucGxlH41qv TYKoiWcfWWVWO4L+yBUPJWrI1YEF7oUbxNUDAKwHoLtW4AJEwbkBdZADiLzKKD8+ c8/9Y6rrqdVLlg== -----END CERTIFICATE-----Generated at Sat Dec 6 17:12:16 2025 by rpki-client