This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json) Hash identifier: XP47kIddYr0NBvNflNvr47a8X4L5BRLzCWQezIOdNzk= Subject key identifier: BB:B4:B2:68:94:FD:AB:06:27:8A:A9:36:CB:B3:48:FF:01:CF:DF:FF Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0 Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0 Certificate serial: 019AF2ADDFCCAE19134454AC06CAA39A3117 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft Manifest number: 13AD Signing time: Sat 06 Dec 2025 08:01:12 +0000 Manifest this update: Sat 06 Dec 2025 08:01:12 +0000 Manifest next update: Sun 07 Dec 2025 08:01:12 +0000 Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: SsNe0D2+BNZmc0ky0prlZgBFats19GwnHpFDXV7FNPA=) 2: S1K-LNOfEdqMwJPR6JwjXy3twNM.roa (hash: 6+dgtQWWnCxkd6rViHnDLK3NWbLzGQNeNx6DA6f+PL0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:df:cc:ae:19:13:44:54:ac:06:ca:a3:9a:31:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0 Validity Not Before: Dec 6 08:01:12 2025 GMT Not After : Dec 7 08:01:12 2025 GMT Subject: CN=bbb4b26894fdab06278aa936cbb348ff01cfdfff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c1:5e:71:0e:b9:f2:a2:8b:18:42:5a:d7:d2: db:e9:65:e0:0e:80:93:a4:f0:db:49:60:e4:f8:2d: 9f:86:31:15:21:e9:a9:39:0a:2a:7c:3d:43:c8:d9: 90:18:20:e6:a7:ee:dd:d7:e8:cf:58:fb:2d:1c:40: ef:16:a5:d4:f7:1a:5b:60:ec:40:9c:ce:d9:45:1e: ed:f0:11:e5:e7:53:58:d9:06:bc:e0:89:d2:dc:e6: 3f:e6:08:7c:46:3c:d6:d2:05:d8:2b:04:c4:7f:46: 53:e4:05:67:53:a1:0d:72:c7:4c:58:96:c5:a4:1b: 5e:2c:82:b1:69:9d:a5:73:d8:9f:84:e8:65:4d:e9: 66:38:05:60:53:54:fe:4f:03:27:0f:79:50:f9:dc: 85:f0:1e:70:14:c7:0b:7d:6b:af:93:7a:db:59:a9: b2:b1:9b:f2:50:c8:27:e3:5f:4f:8a:c7:8e:7d:08: c6:76:4b:6c:c0:e1:32:4d:c2:af:e9:a1:5c:dd:c5: 48:b8:a2:fc:91:1f:a0:7e:51:44:fc:f0:8e:08:f6: 87:ef:00:e5:24:d8:64:7e:5d:b3:ea:a6:41:5e:9f: 98:71:59:ff:a0:77:9e:0a:9b:e5:52:2b:f4:54:90: 85:d5:28:30:27:05:fe:23:6b:aa:8d:cf:5e:18:23: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B4:B2:68:94:FD:AB:06:27:8A:A9:36:CB:B3:48:FF:01:CF:DF:FF X509v3 Authority Key Identifier: keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:9c:05:5f:a3:27:9d:2c:01:b3:50:bc:56:58:17:4f:a5:88: 7e:90:a9:2d:fb:66:0a:ad:8b:de:d6:1d:2a:95:8e:e6:f5:64: 70:d2:7d:30:18:db:f7:af:20:57:4a:b3:1a:9c:e2:8f:e9:a1: 4d:89:b3:c6:4d:3e:cc:f8:f1:11:2a:04:f0:6c:61:4c:87:65: 5e:cc:8d:4d:88:38:f8:52:f2:84:dd:8b:08:64:ac:5b:e2:88: 87:15:1a:3f:ca:e6:40:fb:06:bc:62:b5:68:a1:d1:53:27:33: 6b:6c:97:4e:3e:db:1b:b4:db:e9:d8:a6:b8:8f:7d:40:34:b1: 0f:42:2c:2e:ec:4d:43:33:82:7f:1d:7e:c4:bf:7d:ad:1d:73: 15:b8:fc:ae:b2:54:2a:16:69:a2:d4:d8:bb:1e:b1:72:d8:53: a8:b0:32:3e:25:f6:1d:7c:86:77:21:2a:06:b0:d5:5f:5b:f0: c1:dd:06:98:ae:fb:b4:ed:ef:32:fa:20:0b:ec:48:85:ac:db: ab:a6:05:a6:0b:9e:b6:92:31:e8:86:1e:83:e2:4f:c1:0c:fc: 8a:f8:28:2a:ee:8b:4b:6b:c4:ee:cc:a2:18:e0:04:a3:5d:b7: e8:3d:3a:86:4c:0a:47:b1:7c:40:ca:e4:4d:8f:a4:46:a7:30: 53:d2:d1:66 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZryrd/MrhkTRFSsBsqjmjEXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5MzliMDNmMTI5NGViZDM1YTNiMTVkNjk1ZDdlOTFmOGNi NDFmYTAwHhcNMjUxMjA2MDgwMTEyWhcNMjUxMjA3MDgwMTEyWjAzMTEwLwYDVQQD EyhiYmI0YjI2ODk0ZmRhYjA2Mjc4YWE5MzZjYmIzNDhmZjAxY2ZkZmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucFecQ658qKLGEJa19Lb6WXgDoCT pPDbSWDk+C2fhjEVIempOQoqfD1DyNmQGCDmp+7d1+jPWPstHEDvFqXU9xpbYOxA nM7ZRR7t8BHl51NY2Qa84InS3OY/5gh8RjzW0gXYKwTEf0ZT5AVnU6ENcsdMWJbF pBteLIKxaZ2lc9ifhOhlTelmOAVgU1T+TwMnD3lQ+dyF8B5wFMcLfWuvk3rbWamy sZvyUMgn419PiseOfQjGdktswOEyTcKv6aFc3cVIuKL8kR+gflFE/PCOCPaH7wDl JNhkfl2z6qZBXp+YcVn/oHeeCpvlUiv0VJCF1SgwJwX+I2uqjc9eGCN3QQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFLu0smiU/asGJ4qpNsuzSP8Bz9//MB8GA1UdIwQY MBaAFPk5sD8SlOvTWjsV1pXX6R+MtB+gMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1UbXdQeEtVNjlOYU94WFdsZGZwSDR5MEg2QS5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcvMGM5ZGU4LWNlZjItNGQ4ZC1hOTIw LTc2NTk0YTE5MTc3Yy8xLzEtVG13UHhLVTY5TmFPeFhXbGRmcEg0eTBINkEubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2E3LzBjOWRlOC1jZWYyLTRkOGQtYTkyMC03NjU5NGExOTE3 N2MvMS8xLVRtd1B4S1U2OU5hT3hYV2xkZnBINHkwSDZBLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKpwF X6MnnSwBs1C8VlgXT6WIfpCpLftmCq2L3tYdKpWO5vVkcNJ9MBjb968gV0qzGpzi j+mhTYmzxk0+zPjxESoE8GxhTIdlXsyNTYg4+FLyhN2LCGSsW+KIhxUaP8rmQPsG vGK1aKHRUycza2yXTj7bG7Tb6dimuI99QDSxD0IsLuxNQzOCfx1+xL99rR1zFbj8 rrJUKhZpotTYux6xcthTqLAyPiX2HXyGdyEqBrDVX1vwwd0GmK77tO3vMvogC+xI hazbq6YFpguetpIx6IYeg+JPwQz8ivgoKu6LS2vE7syiGOAEo1236D06hkwKR7F8 QMrkTY+kRqcwU9LRZg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:02:55 2025 by rpki-client