This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft File: tF9VYNefBKktehUPPtjaQwir6jM.mft (raw, json) Hash identifier: AGxkWZKk1Z5SbcrpXG9qYhk7ARyyepkTErVdnZusdWU= Subject key identifier: 80:CF:1D:62:73:DA:0D:56:CF:4E:46:65:BA:6D:A8:06:4A:DF:A3:A8 Authority key identifier: B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33 Certificate issuer: /CN=b45f5560d79f04a92d7a150f3ed8da4308abea33 Certificate serial: 019AF35230E47758F2DE55D9937A3D273628 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft Manifest number: 12EA Signing time: Sat 06 Dec 2025 11:00:41 +0000 Manifest this update: Sat 06 Dec 2025 11:00:41 +0000 Manifest next update: Sun 07 Dec 2025 11:00:41 +0000 Files and hashes: 1: rFHksT2fJAQ7epdh-sMDgGR2SM4.roa (hash: Z/iFpAzmqAm2KrlQVqRFy4X3KTo7SXYWoBA5a7g2HG4=) 2: tF9VYNefBKktehUPPtjaQwir6jM.crl (hash: 32yghLAEvtiDQmyuBdxjen89zTBpy4wS6cULGd3YnnM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:30:e4:77:58:f2:de:55:d9:93:7a:3d:27:36:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b45f5560d79f04a92d7a150f3ed8da4308abea33 Validity Not Before: Dec 6 11:00:41 2025 GMT Not After : Dec 7 11:00:41 2025 GMT Subject: CN=80cf1d6273da0d56cf4e4665ba6da8064adfa3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c0:e9:4a:32:c6:0d:66:6a:9d:3e:c3:8c:54: 94:dc:91:40:47:78:5f:ef:a2:e1:d9:50:76:df:a1: 6a:2e:ad:6d:15:0a:5c:45:a1:c8:e2:03:b9:f6:9a: ea:18:ff:34:9f:7b:cd:ed:28:83:03:3a:c9:f3:6f: 2a:41:6c:b2:07:14:e7:24:c2:1f:7a:5d:d5:49:11: 10:98:51:7e:84:3e:1d:cd:83:4b:08:b2:8c:52:82: 13:f6:aa:e6:e6:ab:a5:fc:87:69:c9:3e:c5:b4:60: 7f:0c:0c:d4:aa:68:ab:26:64:5f:36:2c:61:18:ac: 2c:81:a8:dd:81:a1:15:be:34:10:4e:5b:e1:2b:ef: 27:e2:7d:61:25:6a:f0:d0:32:32:6e:38:b8:e8:77: 3f:cc:00:71:8a:c1:29:e1:8a:ee:cc:07:68:cf:44: 6f:bb:4b:b4:28:21:ca:4b:d0:cc:77:75:ab:ab:2c: c7:88:94:96:f4:49:9d:b9:3d:d3:47:5e:ce:ce:e5: 5f:38:b9:ce:f0:7f:cf:2d:cd:18:7f:00:aa:04:dc: 37:c7:e9:d2:22:9b:d2:05:e7:2b:60:f9:04:59:45: 92:6d:4d:ad:97:97:b9:59:0a:30:48:68:a8:29:da: b3:1b:ed:5d:c0:41:fd:c2:b1:ab:ea:b6:84:b9:ae: f9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:CF:1D:62:73:DA:0D:56:CF:4E:46:65:BA:6D:A8:06:4A:DF:A3:A8 X509v3 Authority Key Identifier: keyid:B4:5F:55:60:D7:9F:04:A9:2D:7A:15:0F:3E:D8:DA:43:08:AB:EA:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tF9VYNefBKktehUPPtjaQwir6jM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/7b169d-fc09-49bb-9669-c3222474eef1/1/tF9VYNefBKktehUPPtjaQwir6jM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:a4:2d:de:4b:92:28:26:23:f7:21:12:f2:3a:9b:ff:cc:8e: ec:f8:b1:8b:af:8b:b4:1e:a6:79:8d:57:24:5b:8a:82:4d:ed: ee:de:10:59:8b:b9:e9:79:b9:d4:4e:d2:5d:12:ca:65:dc:1a: d7:bc:4d:71:35:c6:0a:b2:fd:e5:ca:b5:a6:2c:65:54:cb:1b: ab:24:0a:fc:4a:b8:ea:9b:80:56:a9:c1:d4:2a:1c:88:4f:33: 67:ea:a3:cf:bb:6a:08:45:5c:3b:32:5e:1e:0c:b3:de:73:5d: 40:7e:64:c7:40:d6:ce:31:a1:76:1e:3e:01:ec:9d:ed:a1:43: 83:de:2b:35:15:50:e9:3c:59:12:d8:1c:cf:98:86:60:9d:a6: 35:85:d0:ba:ef:51:8b:2e:38:6f:cd:24:91:60:41:60:99:8b: 8e:34:ea:bc:01:fb:f5:6c:cc:3e:92:4d:a7:90:b7:7a:b5:75: 0c:3b:cc:37:33:f3:1c:ef:d1:4d:44:7e:92:aa:30:ec:f3:39: 2d:06:75:9a:36:2c:d2:d9:f2:75:32:87:b2:52:78:92:72:cc: 3e:2b:01:da:64:57:b6:4e:2a:36:a5:c0:14:db:7b:9d:e1:59: c7:7e:e1:17:cc:5d:d7:8c:64:1f:a2:6d:31:5c:c0:8d:1d:9d: f0:c4:2d:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUjDkd1jy3lXZk3o9JzYoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NWY1NTYwZDc5ZjA0YTkyZDdhMTUwZjNlZDhkYTQzMDhh YmVhMzMwHhcNMjUxMjA2MTEwMDQxWhcNMjUxMjA3MTEwMDQxWjAzMTEwLwYDVQQD Eyg4MGNmMWQ2MjczZGEwZDU2Y2Y0ZTQ2NjViYTZkYTgwNjRhZGZhM2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsDpSjLGDWZqnT7DjFSU3JFAR3hf 76Lh2VB236FqLq1tFQpcRaHI4gO59prqGP80n3vN7SiDAzrJ828qQWyyBxTnJMIf el3VSREQmFF+hD4dzYNLCLKMUoIT9qrm5qul/IdpyT7FtGB/DAzUqmirJmRfNixh GKwsgajdgaEVvjQQTlvhK+8n4n1hJWrw0DIybji46Hc/zABxisEp4YruzAdoz0Rv u0u0KCHKS9DMd3WrqyzHiJSW9EmduT3TR17OzuVfOLnO8H/PLc0YfwCqBNw3x+nS IpvSBecrYPkEWUWSbU2tl5e5WQowSGioKdqzG+1dwEH9wrGr6raEua75MQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIDPHWJz2g1Wz05GZbptqAZK36OoMB8GA1UdIwQY MBaAFLRfVWDXnwSpLXoVDz7Y2kMIq+ozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83YjE2OWQtZmMwOS00OWJiLTk2Njkt YzMyMjI0NzRlZWYxLzEvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy83YjE2OWQtZmMwOS00OWJiLTk2NjktYzMyMjI0NzRlZWYx LzEvdEY5VllOZWZCS2t0ZWhVUFB0amFRd2lyNmpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACKQt3kuS KCYj9yES8jqb/8yO7Pixi6+LtB6meY1XJFuKgk3t7t4QWYu56Xm51E7SXRLKZdwa 17xNcTXGCrL95cq1pixlVMsbqyQK/Eq46puAVqnB1CociE8zZ+qjz7tqCEVcOzJe Hgyz3nNdQH5kx0DWzjGhdh4+Aeyd7aFDg94rNRVQ6TxZEtgcz5iGYJ2mNYXQuu9R iy44b80kkWBBYJmLjjTqvAH79WzMPpJNp5C3erV1DDvMNzPzHO/RTUR+kqow7PM5 LQZ1mjYs0tnydTKHslJ4knLMPisB2mRXtk4qNqXAFNt7neFZx37hF8xd14xkH6Jt MVzAjR2d8MQt7Q== -----END CERTIFICATE-----Generated at Sat Dec 6 15:55:45 2025 by rpki-client