This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json) Hash identifier: ouY1C1YobU0H9kpEQehWT1/SFiKUTJWY+UvgFjIzKyU= Subject key identifier: 7C:60:90:5F:48:13:40:4B:58:BC:84:3B:DF:74:71:99:A2:5F:60:DB Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b Certificate serial: 019B32D765900C5B81A59A43EE6BA44E18F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft Manifest number: 0E05 Signing time: Thu 18 Dec 2025 19:02:15 +0000 Manifest this update: Thu 18 Dec 2025 19:02:15 +0000 Manifest next update: Fri 19 Dec 2025 19:02:15 +0000 Files and hashes: 1: UoFhfe1D4fv5504pD16hAMtOHqM.roa (hash: f5OjLqYpJfmM6P+Sc+etueFJmxpiBV6zei8gZZWeXpE=) 2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: sWrGp837Q/OZvW8tUNV14cwA+Q9IcEX4BEXfbLIp7bI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:65:90:0c:5b:81:a5:9a:43:ee:6b:a4:4e:18:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b Validity Not Before: Dec 18 19:02:15 2025 GMT Not After : Dec 19 19:02:15 2025 GMT Subject: CN=7c60905f4813404b58bc843bdf747199a25f60db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:af:33:a8:a6:fb:cd:17:a8:cf:3c:fe:14:05: 47:a2:1e:e3:75:7b:e6:0b:ce:d9:c4:3a:8d:d5:ca: 79:3a:0d:8d:72:10:51:eb:5e:28:1b:16:18:38:b1: a2:20:01:fd:84:99:26:55:b3:74:e1:3e:6e:c3:dc: 25:ef:d1:9e:00:03:c8:2c:a7:a6:06:fd:60:01:5f: d9:3b:23:d0:b5:45:6d:a1:8c:e6:ca:55:d2:62:43: 91:dc:5f:2c:be:af:91:26:46:d0:fc:21:13:03:8a: e2:5f:3d:6f:50:55:47:c3:81:28:38:02:bb:81:83: 6f:27:9e:f0:58:42:65:2c:98:65:2b:45:98:fd:3c: d1:45:f3:46:37:cc:fe:87:ac:12:2d:ec:f6:72:07: ea:61:46:44:e4:54:ca:ff:05:1f:4f:66:b5:6f:49: b2:ab:af:e1:17:1d:c1:a5:fb:03:2f:bb:bc:61:d5: 2b:dd:18:46:13:47:38:1a:14:a9:4e:c5:9c:89:6a: a7:01:e7:4b:a9:e3:79:95:b2:95:a8:0e:53:51:74: 9e:32:9d:40:f4:a8:15:20:49:8f:f6:85:9d:60:c2: 0e:ef:48:5a:16:78:3e:6c:96:ad:c9:24:5b:8f:e4: cb:ad:b8:85:3f:d9:1a:e4:95:7f:2e:31:05:f3:44: be:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:60:90:5F:48:13:40:4B:58:BC:84:3B:DF:74:71:99:A2:5F:60:DB X509v3 Authority Key Identifier: keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:8c:5b:8a:b6:87:4b:dd:9a:f2:8d:70:f6:60:43:10:13:49: cc:2d:83:be:dd:10:a7:9d:2a:14:74:2c:03:81:34:d9:a1:4e: 5e:ca:f1:6d:5b:2a:5c:c8:73:23:13:1f:91:d7:d6:51:e6:2d: b3:c0:aa:9e:f1:07:a8:67:5d:34:4c:75:c2:00:e8:e6:18:3f: 93:d6:9f:0a:23:9e:91:41:5b:12:5c:85:b2:2c:99:f3:84:3e: ea:c5:cd:b0:ee:f0:50:2f:75:b1:d1:dc:da:8c:11:c3:a4:01: 32:ca:0b:4e:98:07:29:1d:84:d1:e2:1f:95:bd:48:58:5f:5b: ec:f7:c7:39:08:6a:3e:59:56:96:24:7e:37:b3:bf:c6:be:3f: 34:78:c8:b6:2a:8e:47:53:0d:e9:48:7c:e3:d6:8e:c1:d9:3b: ce:88:d2:85:05:81:25:ec:d8:88:0b:b6:38:cd:7d:90:86:cf: 2b:47:f7:48:62:13:8f:c0:c9:90:ae:2a:03:31:33:5b:64:31: f4:50:87:fa:16:13:a0:0f:c3:cf:5f:b9:a1:b9:05:40:ee:fe: 29:46:ae:42:11:da:8a:76:74:38:45:c0:b8:7a:77:ca:59:41: 77:fc:6c:3f:a8:97:70:1c:a3:d4:38:43:e9:a6:a8:3c:8f:88: ac:bf:fb:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy12WQDFuBpZpD7mukThj2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0Mzk1ZjZjZWE5YTAxOGE0Y2M4NDgxOGU2YWEzNTIwZDMy MjIxOGIwHhcNMjUxMjE4MTkwMjE1WhcNMjUxMjE5MTkwMjE1WjAzMTEwLwYDVQQD Eyg3YzYwOTA1ZjQ4MTM0MDRiNThiYzg0M2JkZjc0NzE5OWEyNWY2MGRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6q8zqKb7zReozzz+FAVHoh7jdXvm C87ZxDqN1cp5Og2NchBR614oGxYYOLGiIAH9hJkmVbN04T5uw9wl79GeAAPILKem Bv1gAV/ZOyPQtUVtoYzmylXSYkOR3F8svq+RJkbQ/CETA4riXz1vUFVHw4EoOAK7 gYNvJ57wWEJlLJhlK0WY/TzRRfNGN8z+h6wSLez2cgfqYUZE5FTK/wUfT2a1b0my q6/hFx3BpfsDL7u8YdUr3RhGE0c4GhSpTsWciWqnAedLqeN5lbKVqA5TUXSeMp1A 9KgVIEmP9oWdYMIO70haFng+bJatySRbj+TLrbiFP9ka5JV/LjEF80S+kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxgkF9IE0BLWLyEO990cZmiX2DbMB8GA1UdIwQY MBaAFLQ5X2zqmgGKTMhIGOaqNSDTIiGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xZTVjODgtYzNmYy00ZTc2LWJjNjUt MzkxZmVjMjY3ZGFlLzEvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8xZTVjODgtYzNmYy00ZTc2LWJjNjUtMzkxZmVjMjY3ZGFl LzEvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnYxbiraH S92a8o1w9mBDEBNJzC2Dvt0Qp50qFHQsA4E02aFOXsrxbVsqXMhzIxMfkdfWUeYt s8CqnvEHqGddNEx1wgDo5hg/k9afCiOekUFbElyFsiyZ84Q+6sXNsO7wUC91sdHc 2owRw6QBMsoLTpgHKR2E0eIflb1IWF9b7PfHOQhqPllWliR+N7O/xr4/NHjItiqO R1MN6Uh849aOwdk7zojShQWBJezYiAu2OM19kIbPK0f3SGITj8DJkK4qAzEzW2Qx 9FCH+hYToA/Dz1+5obkFQO7+KUauQhHainZ0OEXAuHp3yllBd/xsP6iXcByj1DhD 6aaoPI+IrL/7Ng== -----END CERTIFICATE-----Generated at Thu Dec 18 23:16:25 2025 by rpki-client