This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft File: TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft (raw, json) Hash identifier: od0TkwsGhcdjvFoeIQoNVz3v/r/ulu98UXxoWOwGL1A= Subject key identifier: 01:09:79:F5:88:4F:64:D1:98:65:93:9D:14:36:6B:2E:C3:DC:D6:4F Authority key identifier: 4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35 Certificate issuer: /CN=4ce90379bd8d04374b3adef060d51ae215710935 Certificate serial: 019AF12E5011B418791E18652CD2501C63F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft Manifest number: 0149 Signing time: Sat 06 Dec 2025 01:02:15 +0000 Manifest this update: Sat 06 Dec 2025 01:02:15 +0000 Manifest next update: Sun 07 Dec 2025 01:02:15 +0000 Files and hashes: 1: 1-78e97Jrk9Uh_jE37kqFne1h0ac.roa (hash: z20HWJG9MeJX/qHD5qtfUrm0n+lWcEMp1qD7mshzZJo=) 2: 1zKIP7xP-3mviAaLxu-Q9kO8TDw.roa (hash: i+hbxTxfZVrUKiiV4ml6H+EfTXIaAVLa/rzpycnZQE0=) 3: TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl (hash: q6AJIFj1xdF/LAJgiszf6UmZTsO/wRqBM4mEAyU3un0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:50:11:b4:18:79:1e:18:65:2c:d2:50:1c:63:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ce90379bd8d04374b3adef060d51ae215710935 Validity Not Before: Dec 6 01:02:15 2025 GMT Not After : Dec 7 01:02:15 2025 GMT Subject: CN=010979f5884f64d19865939d14366b2ec3dcd64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5e:6e:cb:bd:81:02:d3:81:78:ae:e6:62:79: 71:be:c6:a8:62:65:a7:e6:6e:c0:62:9b:cc:3a:36: 9c:c7:5d:29:4e:9c:e1:73:96:6b:92:9e:29:58:1e: 53:e2:58:83:c5:06:63:51:23:ca:e7:3b:9a:14:67: e4:97:af:47:eb:3e:df:d8:1c:bd:14:53:a9:be:cc: 5b:85:1a:d3:29:5a:65:87:ea:9c:9f:cd:8b:97:35: c8:db:f3:1e:f5:1a:4b:85:0b:38:4c:9d:14:3f:cf: 25:79:c3:80:26:52:ad:76:58:c4:e4:31:f4:9c:aa: 7b:70:d2:13:f7:d3:ca:0a:7f:b6:a4:2e:82:14:31: 2e:a4:ce:21:45:a9:53:bb:ae:c3:39:26:8e:ff:d7: bb:bf:66:f9:71:a9:3c:77:fd:7f:2c:7c:0b:44:31: f0:da:76:8a:db:c7:f3:44:80:fd:e2:29:d4:82:2a: 8b:2f:22:ca:df:46:52:0b:a0:1f:bb:d3:72:eb:ea: 9c:7a:36:7e:db:a1:c4:ee:c3:1c:a3:54:1b:7d:39: 87:a3:75:66:9a:58:10:34:51:f6:ab:55:01:5b:e5: 75:95:7b:70:23:4e:e1:a7:0e:45:72:36:e0:78:04: 3f:f5:79:7d:71:69:79:83:26:2a:f0:9a:dc:2c:ff: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:09:79:F5:88:4F:64:D1:98:65:93:9D:14:36:6B:2E:C3:DC:D6:4F X509v3 Authority Key Identifier: keyid:4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4b:27:b6:fe:17:3d:da:73:6f:89:c9:9d:d3:c2:61:a5:3c: a7:59:07:67:7b:62:41:a2:36:62:8e:8a:1a:cd:dc:c3:10:8e: 17:2a:37:cb:5e:ba:40:93:e1:7a:ce:28:0e:d7:79:1c:97:24: 3b:cb:c9:dd:30:bc:41:51:02:67:b5:24:a4:4b:30:69:7f:b7: 0a:83:f0:1d:a7:6e:7b:54:36:44:3c:83:71:20:2b:91:f0:ee: b8:c3:5a:d5:f1:d2:42:c0:bc:a5:6b:a0:b2:b5:fa:37:77:c2: 18:03:c7:5b:2a:b0:b3:2f:e1:82:1c:8d:f8:91:c6:87:8b:af: 21:c9:f5:6d:ee:cf:fe:10:5e:9f:97:1e:cc:fb:7e:d2:8c:a3: a7:9f:28:c9:cd:05:d4:1f:4b:bc:08:2b:d8:62:32:da:d5:2d: 96:67:e6:e9:11:1f:af:9b:85:1e:1f:c3:6e:c3:5b:4d:96:e6: 4e:6f:1e:aa:bd:80:39:bf:47:ed:77:7e:15:69:28:e5:30:ac: 68:91:c4:d1:e9:81:a2:75:71:46:e8:81:d7:e7:62:45:cb:ec: da:a1:4b:a5:a9:b8:5a:47:f7:85:07:ff:d5:f1:c6:ca:53:5c: 23:00:0f:9d:ee:3e:8a:e4:65:79:39:2f:c4:fd:18:d8:97:e0: 3b:cd:33:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlARtBh5HhhlLNJQHGP0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZTkwMzc5YmQ4ZDA0Mzc0YjNhZGVmMDYwZDUxYWUyMTU3 MTA5MzUwHhcNMjUxMjA2MDEwMjE1WhcNMjUxMjA3MDEwMjE1WjAzMTEwLwYDVQQD EygwMTA5NzlmNTg4NGY2NGQxOTg2NTkzOWQxNDM2NmIyZWMzZGNkNjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApF5uy72BAtOBeK7mYnlxvsaoYmWn 5m7AYpvMOjacx10pTpzhc5Zrkp4pWB5T4liDxQZjUSPK5zuaFGfkl69H6z7f2By9 FFOpvsxbhRrTKVplh+qcn82LlzXI2/Me9RpLhQs4TJ0UP88lecOAJlKtdljE5DH0 nKp7cNIT99PKCn+2pC6CFDEupM4hRalTu67DOSaO/9e7v2b5cak8d/1/LHwLRDHw 2naK28fzRID94inUgiqLLyLK30ZSC6Afu9Ny6+qcejZ+26HE7sMco1QbfTmHo3Vm mlgQNFH2q1UBW+V1lXtwI07hpw5FcjbgeAQ/9Xl9cWl5gyYq8JrcLP/fiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAEJefWIT2TRmGWTnRQ2ay7D3NZPMB8GA1UdIwQY MBaAFEzpA3m9jQQ3Szre8GDVGuIVcQk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE9rRGViMk5CRGRMT3Q3d1lOVWE0aFZ4Q1RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85YmFjZjgtMTQ2Yy00YjYzLTlkMzYt ODIwMGI4NjYwM2IxLzEvVE9rRGViMk5CRGRMT3Q3d1lOVWE0aFZ4Q1RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85YmFjZjgtMTQ2Yy00YjYzLTlkMzYtODIwMGI4NjYwM2Ix LzEvVE9rRGViMk5CRGRMT3Q3d1lOVWE0aFZ4Q1RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXEsntv4X Pdpzb4nJndPCYaU8p1kHZ3tiQaI2Yo6KGs3cwxCOFyo3y166QJPhes4oDtd5HJck O8vJ3TC8QVECZ7UkpEswaX+3CoPwHadue1Q2RDyDcSArkfDuuMNa1fHSQsC8pWug srX6N3fCGAPHWyqwsy/hghyN+JHGh4uvIcn1be7P/hBen5cezPt+0oyjp58oyc0F 1B9LvAgr2GIy2tUtlmfm6REfr5uFHh/DbsNbTZbmTm8eqr2AOb9H7Xd+FWko5TCs aJHE0emBonVxRuiB1+diRcvs2qFLpam4Wkf3hQf/1fHGylNcIwAPne4+iuRleTkv xP0Y2JfgO80z3w== -----END CERTIFICATE-----Generated at Sat Dec 6 11:37:30 2025 by rpki-client