This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft File: Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json) Hash identifier: mE/YZ9uWcotbyrVoijCEgB4Jpw3uji2of1Alw1ZxWx0= Subject key identifier: DC:07:66:F2:F8:D9:1D:C8:C0:03:BC:57:FD:65:FD:01:8B:5C:46:C8 Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 Certificate issuer: /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Certificate serial: 019B30E84855D4689947BAEC320EC7FBAF1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft Manifest number: 10A7 Signing time: Thu 18 Dec 2025 10:01:27 +0000 Manifest this update: Thu 18 Dec 2025 10:01:27 +0000 Manifest next update: Fri 19 Dec 2025 10:01:27 +0000 Files and hashes: 1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: Qr0L18ZmU7teGjnKwRd064/cP0e2rqqtERPCFzFpZSc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 10:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e8:48:55:d4:68:99:47:ba:ec:32:0e:c7:fb:af:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0 Validity Not Before: Dec 18 10:01:27 2025 GMT Not After : Dec 19 10:01:27 2025 GMT Subject: CN=dc0766f2f8d91dc8c003bc57fd65fd018b5c46c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c5:eb:85:34:2f:a7:21:c5:0c:d9:ea:2c:6f: 83:7c:9b:6d:70:4d:a3:a9:f7:e9:62:37:db:62:8d: 5e:c9:90:71:40:2f:02:1b:f8:b5:79:1b:59:2f:3e: d6:2d:be:97:7e:8f:9a:d3:40:0a:80:4f:24:67:6f: 76:a5:91:dc:e5:bb:da:ca:8e:d4:13:e9:60:21:c2: 78:40:fb:e7:cb:b5:d3:60:d0:a7:70:81:7b:d0:85: ba:7e:d3:1c:5a:01:46:c3:ca:02:e6:61:cc:e7:5d: 51:f6:0f:31:af:cf:76:d0:53:3c:65:e7:51:65:70: d7:0a:88:17:b7:85:89:b3:45:41:0b:a7:14:73:7b: 72:98:43:c1:f7:7e:c6:44:90:da:98:f7:61:5d:8d: e5:79:1c:e1:d6:f1:f5:c3:7f:c2:85:a4:65:50:ea: 92:76:21:07:5e:ef:67:0b:af:65:52:3b:6e:6f:02: d5:97:6e:1c:ae:fa:57:c6:5b:1c:da:92:3f:38:91: a0:78:f9:f5:aa:31:8e:da:fa:f1:1a:bd:7f:fa:ee: a6:c2:1e:ae:75:b4:6c:b8:06:0e:5d:88:21:91:a4: d5:7d:dd:c5:0a:63:9d:5e:b8:f7:67:ad:e8:d8:01: a2:6b:a0:23:4b:54:a7:5b:7c:18:99:ea:2f:bb:da: c2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:07:66:F2:F8:D9:1D:C8:C0:03:BC:57:FD:65:FD:01:8B:5C:46:C8 X509v3 Authority Key Identifier: keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:60:46:aa:1b:6a:c7:d0:49:75:d4:35:fd:c1:64:74:a5:f1: e4:02:4d:5a:e4:5c:87:f9:33:db:f0:a2:df:7d:d3:61:32:30: c5:a0:4d:f7:fc:58:27:ac:6e:1d:3c:0e:35:b4:3b:58:f5:d3: 64:0f:b7:fb:1f:d3:9e:32:d0:a0:56:89:59:db:b7:ad:da:32: 98:26:c9:02:c1:55:b8:46:f6:f8:05:9e:82:66:53:8c:ed:69: 72:78:18:ed:a6:74:1b:2b:4f:c9:69:8c:cc:bf:04:21:87:a2: 84:3c:3d:ca:68:4f:4a:6d:b8:07:b6:a3:59:b9:cd:17:93:fe: 19:1f:ad:c1:54:7a:ce:5c:fb:79:2b:8c:9b:3c:a4:7f:ac:b8: 0a:32:bd:38:12:d8:93:5d:b5:f2:b2:10:60:22:79:ce:ae:2c: af:26:32:dd:0e:d7:5d:c6:06:b0:bb:4a:8f:0f:d9:b5:d6:93: 77:65:bc:52:e6:92:cc:dc:03:36:02:9e:84:e5:11:91:6e:1e: c3:b5:83:5f:e4:41:c1:b7:fb:ae:aa:ec:2f:c6:2c:d9:8b:74: 56:7a:ac:12:6b:00:5b:01:f7:81:6a:77:bc:ea:c4:0f:f5:64: 9c:83:67:24:ce:ec:3d:f4:e7:23:71:40:93:43:11:96:2b:00: ac:8c:dd:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw6EhV1GiZR7rsMg7H+68cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlNTdiYTc2Y2I3ZDZkMmFlYzA1MjAzY2Y0MWI4ZTY3MTZl ZTdlYTAwHhcNMjUxMjE4MTAwMTI3WhcNMjUxMjE5MTAwMTI3WjAzMTEwLwYDVQQD EyhkYzA3NjZmMmY4ZDkxZGM4YzAwM2JjNTdmZDY1ZmQwMThiNWM0NmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MXrhTQvpyHFDNnqLG+DfJttcE2j qffpYjfbYo1eyZBxQC8CG/i1eRtZLz7WLb6Xfo+a00AKgE8kZ292pZHc5bvayo7U E+lgIcJ4QPvny7XTYNCncIF70IW6ftMcWgFGw8oC5mHM511R9g8xr8920FM8ZedR ZXDXCogXt4WJs0VBC6cUc3tymEPB937GRJDamPdhXY3leRzh1vH1w3/ChaRlUOqS diEHXu9nC69lUjtubwLVl24crvpXxlsc2pI/OJGgePn1qjGO2vrxGr1/+u6mwh6u dbRsuAYOXYghkaTVfd3FCmOdXrj3Z63o2AGia6AjS1SnW3wYmeovu9rCYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwHZvL42R3IwAO8V/1l/QGLXEbIMB8GA1UdIwQY MBaAFE5XunbLfW0q7AUgPPQbjmcW7n6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEt YjcyZDdhZGJmYjk2LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEtYjcyZDdhZGJmYjk2 LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXWBGqhtq x9BJddQ1/cFkdKXx5AJNWuRch/kz2/Ci333TYTIwxaBN9/xYJ6xuHTwONbQ7WPXT ZA+3+x/TnjLQoFaJWdu3rdoymCbJAsFVuEb2+AWegmZTjO1pcngY7aZ0GytPyWmM zL8EIYeihDw9ymhPSm24B7ajWbnNF5P+GR+twVR6zlz7eSuMmzykf6y4CjK9OBLY k1218rIQYCJ5zq4sryYy3Q7XXcYGsLtKjw/ZtdaTd2W8UuaSzNwDNgKehOURkW4e w7WDX+RBwbf7rqrsL8Ys2Yt0VnqsEmsAWwH3gWp3vOrED/VknINnJM7sPfTnI3FA k0MRlisArIzdDQ== -----END CERTIFICATE-----Generated at Thu Dec 18 15:44:32 2025 by rpki-client