This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json) Hash identifier: qSvb2vS0bsyEb3/w+fgXNTlQ8isu4NayGSRYbEKJxiA= Subject key identifier: C6:08:FE:E2:C0:0E:F2:2B:2B:F3:06:7E:90:B7:2A:31:55:9D:E1:77 Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a Certificate serial: 019AF19BB6A72B03E9572EC81FF7AEA6420A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 03:01:45 +0000 Manifest this update: Sat 06 Dec 2025 03:01:45 +0000 Manifest next update: Sun 07 Dec 2025 03:01:45 +0000 Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: t+7UZXKuBzBZLdtUr0zmpQX5RRXw3hiI+0KT5TITkDA=) 2: fxuqWXx_O_zewgAff6HXjyvgKp0.roa (hash: cm4JBhg0Zq8hHGX0z/7BWc/vnIZVK86NCDFtwq+RrhA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:b6:a7:2b:03:e9:57:2e:c8:1f:f7:ae:a6:42:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a Validity Not Before: Dec 6 03:01:45 2025 GMT Not After : Dec 7 03:01:45 2025 GMT Subject: CN=c608fee2c00ef22b2bf3067e90b72a31559de177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:db:dc:7f:aa:35:78:05:91:85:b6:fe:3d:f9: 55:96:22:38:0d:20:4b:a9:15:26:44:44:f6:be:21: ea:5d:92:b8:f9:bd:df:d2:de:3f:72:bc:8c:45:dc: 2b:cb:7e:a8:a8:5f:be:f6:9f:96:0a:0c:8b:84:88: 38:a1:e5:ae:00:ff:6d:76:51:83:71:4e:97:14:d8: 49:ca:0a:73:e1:15:ee:5b:ff:76:2b:ee:36:3f:18: bd:5e:cc:53:cb:32:a5:1e:56:5a:9f:d4:fa:33:3a: f3:17:97:8e:2d:7d:44:a6:72:9e:73:96:df:cb:25: ab:86:a3:df:4c:a8:d9:52:ea:7f:7f:d5:8c:a0:d5: 59:e1:ab:61:82:d0:36:19:c7:fa:ca:2a:1f:fa:37: 44:e0:1b:af:44:fd:2e:5b:8a:c6:2f:cb:75:e5:cd: 97:54:fc:a2:c7:7c:5c:b3:c2:01:ee:c9:7b:bd:4e: 76:cf:94:b7:82:f4:af:f1:99:e5:9b:da:fd:f7:b0: e0:a3:92:c8:ea:1e:81:d0:31:57:07:a2:cd:4b:6c: ad:42:10:75:76:85:69:89:64:06:57:23:92:cd:c4: e0:ff:03:b1:d7:c1:06:23:53:f9:9c:b7:ca:37:de: b8:43:e1:98:a6:37:b0:f4:08:4f:81:59:53:68:d8: ee:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:08:FE:E2:C0:0E:F2:2B:2B:F3:06:7E:90:B7:2A:31:55:9D:E1:77 X509v3 Authority Key Identifier: keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:a5:83:ad:5a:75:46:92:39:4d:48:2f:c9:e8:b9:94:d5:22: 3f:73:ee:53:c2:5c:98:a6:d3:6a:90:06:a0:09:44:4c:0f:93: 08:d3:6f:43:ce:3b:e1:ca:3b:81:23:74:d7:58:84:c3:75:0b: 3b:f1:92:fb:92:ff:b3:ff:33:6b:9d:8a:4a:82:76:76:2c:9d: 98:8b:6b:3c:2e:c4:1b:b5:93:89:d1:e0:b9:72:fb:0e:ea:dd: 5d:1a:b6:3f:6d:17:f7:13:e0:0c:57:0d:15:f4:e0:5b:f9:b3: 64:f7:c8:52:eb:e8:48:8d:e7:8f:52:51:54:ae:90:1d:e5:e3: a5:d1:1e:a3:67:31:b2:a7:7b:91:f9:9f:1f:7d:d1:9b:12:00: 29:40:22:48:32:7e:80:61:bc:3a:56:42:5b:3a:62:0d:8d:19: 3e:bf:a6:49:45:45:37:eb:14:36:f5:9a:6a:05:b5:27:07:1b: 7b:ab:f3:8d:5b:da:fd:a6:4b:c3:a0:a1:fc:6f:a4:9d:d0:d9: 97:a0:c0:fe:fb:0c:69:86:09:a3:ee:f1:f8:48:7d:2c:9f:fe: 03:ca:47:a2:46:a4:82:a9:0e:4b:ba:ea:20:44:48:09:ad:f6: 82:a5:8e:74:a3:83:63:f0:8a:2f:31:ff:ba:a1:30:c7:57:e1: bc:18:65:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm7anKwPpVy7IH/eupkIKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlODliYjE0ZTgwOWFmZjNlYzk2MzA4YmQ5YWU4NjUxYTdl Nzc2MmEwHhcNMjUxMjA2MDMwMTQ1WhcNMjUxMjA3MDMwMTQ1WjAzMTEwLwYDVQQD EyhjNjA4ZmVlMmMwMGVmMjJiMmJmMzA2N2U5MGI3MmEzMTU1OWRlMTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA59vcf6o1eAWRhbb+PflVliI4DSBL qRUmRET2viHqXZK4+b3f0t4/cryMRdwry36oqF++9p+WCgyLhIg4oeWuAP9tdlGD cU6XFNhJygpz4RXuW/92K+42Pxi9XsxTyzKlHlZan9T6MzrzF5eOLX1EpnKec5bf yyWrhqPfTKjZUup/f9WMoNVZ4athgtA2Gcf6yiof+jdE4BuvRP0uW4rGL8t15c2X VPyix3xcs8IB7sl7vU52z5S3gvSv8Znlm9r997Dgo5LI6h6B0DFXB6LNS2ytQhB1 doVpiWQGVyOSzcTg/wOx18EGI1P5nLfKN964Q+GYpjew9AhPgVlTaNjumQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMYI/uLADvIrK/MGfpC3KjFVneF3MB8GA1UdIwQY MBaAFE6JuxToCa/z7JYwi9muhlGn53YqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hZTNjYzgtY2U3NC00ZDU3LTgxOWEt OWZhMDJjYzI0OGU1LzEvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9hZTNjYzgtY2U3NC00ZDU3LTgxOWEtOWZhMDJjYzI0OGU1 LzEvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY6WDrVp1 RpI5TUgvyei5lNUiP3PuU8JcmKbTapAGoAlETA+TCNNvQ8474co7gSN011iEw3UL O/GS+5L/s/8za52KSoJ2diydmItrPC7EG7WTidHguXL7DurdXRq2P20X9xPgDFcN FfTgW/mzZPfIUuvoSI3nj1JRVK6QHeXjpdEeo2cxsqd7kfmfH33RmxIAKUAiSDJ+ gGG8OlZCWzpiDY0ZPr+mSUVFN+sUNvWaagW1Jwcbe6vzjVva/aZLw6Ch/G+kndDZ l6DA/vsMaYYJo+7x+Eh9LJ/+A8pHokakgqkOS7rqIERICa32gqWOdKODY/CKLzH/ uqEwx1fhvBhlpQ== -----END CERTIFICATE-----Generated at Sat Dec 6 06:59:01 2025 by rpki-client