This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json) Hash identifier: 3/v3FPuyP+6dagapq8AuvJJRDyKETw80HMpIFsy+PK0= Subject key identifier: 83:76:14:7D:D4:DE:DE:05:03:A0:E1:F7:DF:93:00:67:DD:CC:D2:43 Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36 Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136 Certificate serial: 019AF209300A3AD7158774999CFA90E6E745 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft Manifest number: 0BF1 Signing time: Sat 06 Dec 2025 05:01:19 +0000 Manifest this update: Sat 06 Dec 2025 05:01:19 +0000 Manifest next update: Sun 07 Dec 2025 05:01:19 +0000 Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: rdGaZyRo5aHDXY4y/pC7NNKlwUvlIb1PsNtJCrXz3UA=) 2: ELYZJGHcWhKUiY7ABJ-PY-iSroQ.roa (hash: XKv64QH5ODk1+MXzK56Lue/Lun/NuUmKCWEmKamL9J8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:30:0a:3a:d7:15:87:74:99:9c:fa:90:e6:e7:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136 Validity Not Before: Dec 6 05:01:19 2025 GMT Not After : Dec 7 05:01:19 2025 GMT Subject: CN=8376147dd4dede0503a0e1f7df930067ddccd243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d6:57:c8:79:f9:e0:74:c1:98:be:8a:8a:77: 6a:84:a9:a9:30:64:dc:8a:42:bd:f2:66:5c:91:43: 66:a5:95:e9:94:ad:2b:ca:84:16:1b:25:78:86:66: 1f:04:4b:63:35:d3:84:0e:c4:2e:b4:05:7f:b1:d4: 3e:62:69:24:12:33:a6:41:b8:48:ed:6e:67:7b:8e: a9:89:ea:59:a7:a6:00:d9:30:c6:26:91:bf:2a:58: a5:e8:0b:bf:93:c0:8b:c1:4d:32:66:9c:43:de:49: ec:83:b8:37:b4:b0:6f:ea:96:d0:6a:f1:eb:22:53: 76:fd:eb:28:c0:d7:d2:37:71:9b:dc:2e:f4:90:af: cd:cb:44:26:77:5d:74:01:ce:d3:71:5c:43:5f:97: ea:3d:5f:08:77:c2:e1:ed:67:0e:18:0b:65:ea:fa: 39:db:61:c1:35:1b:9b:ee:77:af:0c:8f:83:85:6d: 9c:a5:c1:6d:a0:b8:6f:64:27:95:76:29:fe:40:5c: cb:db:fa:59:7b:5e:c0:49:c0:d9:70:af:a7:ca:88: 5d:3c:72:2e:84:f0:82:26:36:c3:9c:f7:00:bc:d7: 9c:6a:13:f5:c0:cf:f3:4b:e6:a0:cb:d5:4d:38:21: 23:7c:01:38:8e:97:8c:2c:17:ea:77:19:62:ef:3b: 52:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:76:14:7D:D4:DE:DE:05:03:A0:E1:F7:DF:93:00:67:DD:CC:D2:43 X509v3 Authority Key Identifier: keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:27:2d:74:74:d2:f5:c7:c4:75:01:e5:49:40:8d:e5:3f:5e: 0e:1c:8f:ce:1d:a4:15:f6:0a:25:44:75:29:31:65:2a:12:ce: fd:d4:e3:a6:a4:67:26:a1:0f:a5:dd:89:a4:6d:25:e9:92:c6: c7:70:45:00:eb:2c:79:94:22:79:ff:8e:d7:32:a9:a2:ae:d4: 48:43:69:7c:03:85:90:db:17:6c:6f:ba:50:4b:93:e3:96:bb: 79:d6:07:eb:a6:c5:00:75:3b:4a:76:a0:e6:ea:1d:81:19:a6: ad:06:ca:b1:be:43:8c:ad:49:5c:dd:01:e9:10:cb:ed:23:18: c7:dd:33:4f:6c:e3:4a:8d:08:89:25:36:c5:2f:cb:cf:a1:d0: f9:01:39:91:c0:89:67:12:9a:2b:fe:2e:3d:f4:05:e7:70:51: 75:61:d1:15:48:3f:05:48:32:29:3c:97:74:15:4d:a7:a5:b6: 2f:a6:ba:a4:4c:5c:0b:9a:98:0b:32:31:88:e1:48:48:5b:6d: 86:4e:b3:82:8e:a9:8c:27:c1:30:8c:27:41:60:b9:b5:ee:7f: 51:38:cd:14:26:be:c8:7a:92:cf:1e:21:6b:fb:15:a9:62:bc: cb:56:7b:c0:77:05:d1:fe:ab:35:8e:96:94:6a:b3:03:72:51: 4e:83:48:81 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZryCTAKOtcVh3SZnPqQ5udFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhZDdlMTRhMjYyNTYwMTkxYzY2NTc2OTk4ZTljNjliODlj M2MxMzYwHhcNMjUxMjA2MDUwMTE5WhcNMjUxMjA3MDUwMTE5WjAzMTEwLwYDVQQD Eyg4Mzc2MTQ3ZGQ0ZGVkZTA1MDNhMGUxZjdkZjkzMDA2N2RkY2NkMjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttZXyHn54HTBmL6KindqhKmpMGTc ikK98mZckUNmpZXplK0ryoQWGyV4hmYfBEtjNdOEDsQutAV/sdQ+YmkkEjOmQbhI 7W5ne46piepZp6YA2TDGJpG/Klil6Au/k8CLwU0yZpxD3knsg7g3tLBv6pbQavHr IlN2/esowNfSN3Gb3C70kK/Ny0Qmd110Ac7TcVxDX5fqPV8Id8Lh7WcOGAtl6vo5 22HBNRub7nevDI+DhW2cpcFtoLhvZCeVdin+QFzL2/pZe17AScDZcK+nyohdPHIu hPCCJjbDnPcAvNecahP1wM/zS+agy9VNOCEjfAE4jpeMLBfqdxli7ztSSQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFIN2FH3U3t4FA6Dh99+TAGfdzNJDMB8GA1UdIwQY MBaAFPrX4UomJWAZHGZXaZjpxpuJw8E2MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS10ZmhTaVlsWUJrY1psZHBtT25HbTRuRHdUWS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEvZTY2NTZiLTgwYzgtNDM1ZS1iYzFk LWQ2ZTcxNTUyM2YzOS8xLzEtdGZoU2lZbFlCa2NabGRwbU9uR200bkR3VFkubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxULzlhL2U2NjU2Yi04MGM4LTQzNWUtYmMxZC1kNmU3MTU1MjNm MzkvMS8xLXRmaFNpWWxZQmtjWmxkcG1PbkdtNG5Ed1RZLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaict dHTS9cfEdQHlSUCN5T9eDhyPzh2kFfYKJUR1KTFlKhLO/dTjpqRnJqEPpd2JpG0l 6ZLGx3BFAOsseZQief+O1zKpoq7USENpfAOFkNsXbG+6UEuT45a7edYH66bFAHU7 Snag5uodgRmmrQbKsb5DjK1JXN0B6RDL7SMYx90zT2zjSo0IiSU2xS/Lz6HQ+QE5 kcCJZxKaK/4uPfQF53BRdWHRFUg/BUgyKTyXdBVNp6W2L6a6pExcC5qYCzIxiOFI SFtthk6zgo6pjCfBMIwnQWC5te5/UTjNFCa+yHqSzx4ha/sVqWK8y1Z7wHcF0f6r NY6WlGqzA3JRToNIgQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:19 2025 by rpki-client