This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft File: tSU8JVLUQD9DuDwl52IjjfEtroE.mft (raw, json) Hash identifier: jUw0unMXQagWci3U8ptASE+YQ/CZkCp5NYEUr23ulKY= Subject key identifier: 4C:9A:12:D1:A4:34:29:AD:D3:AD:95:86:CB:96:B3:1E:DB:0C:7A:C2 Authority key identifier: B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81 Certificate issuer: /CN=b5253c2552d4403f43b83c25e762238df12dae81 Certificate serial: 019AF3C069C694BF1C53ED559D2C86AAB51C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft Manifest number: 0846 Signing time: Sat 06 Dec 2025 13:01:04 +0000 Manifest this update: Sat 06 Dec 2025 13:01:04 +0000 Manifest next update: Sun 07 Dec 2025 13:01:04 +0000 Files and hashes: 1: 6BgZvuvQdTTnHkpFXfURizE8XGQ.roa (hash: 78Xx7tAnFjhWDtWYiSHC9JJs2O6w1we6/J46orAWVbc=) 2: tSU8JVLUQD9DuDwl52IjjfEtroE.crl (hash: jDWBDlhAgqKjfosQR+pokUxra1bKTz9jx7zG8T9yw+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:69:c6:94:bf:1c:53:ed:55:9d:2c:86:aa:b5:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5253c2552d4403f43b83c25e762238df12dae81 Validity Not Before: Dec 6 13:01:04 2025 GMT Not After : Dec 7 13:01:04 2025 GMT Subject: CN=4c9a12d1a43429add3ad9586cb96b31edb0c7ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c8:12:d7:ee:fc:e5:9f:80:a8:06:e3:07:ce: ec:71:02:e4:75:f6:1b:1d:6a:e2:5b:8c:9b:45:8b: 04:30:8a:96:c9:c2:cc:97:91:f4:1a:77:74:14:6f: ff:67:eb:f4:17:23:fa:f0:a9:3b:0c:4f:aa:3b:23: 34:46:09:be:5e:a4:a0:bb:49:69:92:cb:98:39:46: 01:42:8b:97:09:4b:84:8b:8e:1c:15:bc:eb:a9:b7: 07:2b:b1:6a:9c:45:5e:75:9a:bb:ce:7c:37:eb:1e: 8b:38:4d:40:3d:5f:f5:35:f8:12:ed:6d:3a:dd:bc: 9f:ce:57:48:ea:87:df:4b:23:29:76:2f:66:08:31: aa:a6:33:ae:22:8a:d1:51:05:1b:55:63:6a:3e:81: 18:fa:83:cf:2e:f3:44:74:ae:10:53:58:99:47:92: 4d:15:3a:6f:7a:40:d8:b2:b5:12:3c:e8:d7:f7:f5: 8f:27:e4:b6:0d:09:05:ef:26:48:4e:25:02:92:67: e7:8c:7f:2a:98:53:01:43:f8:69:e1:ea:69:18:9c: 54:c1:ee:ae:41:af:94:67:44:c8:aa:84:12:1f:18: 0b:97:9a:74:34:3a:01:63:21:0b:84:f8:64:ec:bc: 98:fb:8c:73:1e:a8:dd:01:af:e2:f7:63:32:4e:c7: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9A:12:D1:A4:34:29:AD:D3:AD:95:86:CB:96:B3:1E:DB:0C:7A:C2 X509v3 Authority Key Identifier: keyid:B5:25:3C:25:52:D4:40:3F:43:B8:3C:25:E7:62:23:8D:F1:2D:AE:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSU8JVLUQD9DuDwl52IjjfEtroE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/82098b-0c53-4df2-8a32-fbc1e3f7e92b/1/tSU8JVLUQD9DuDwl52IjjfEtroE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:d0:96:2d:35:16:57:fc:30:7d:c9:e8:3c:32:70:d3:9b:2e: 75:e8:25:07:27:de:20:ea:b7:32:3a:f8:d9:41:03:9e:67:7d: 85:dc:1a:c9:b5:cd:ca:81:40:84:75:ea:32:47:1d:0d:b2:ab: 19:de:da:1e:ce:6e:4c:a8:15:cc:5e:8f:41:97:a7:9c:b4:32: e9:98:01:0e:b9:2a:7e:31:75:d2:dc:ff:a7:65:a8:1f:7d:42: 55:37:de:c6:96:10:e6:21:7e:7d:62:e7:6b:88:ec:10:34:d2: 84:2e:cb:01:dd:7d:25:f2:ef:b3:d0:dc:9f:0a:70:59:4c:e6: 3b:76:b3:bc:d9:10:5d:8d:dd:66:cf:5e:2b:e7:b2:79:65:ac: 04:a2:94:20:aa:2b:16:56:97:b2:44:7e:51:02:2b:c1:0a:92: d2:e9:fe:d8:7a:75:1e:be:95:d8:f5:99:08:d4:41:ab:96:87: 58:db:85:b9:12:69:5f:db:de:97:b7:d0:a2:14:a6:55:cc:a1: 90:c2:ae:ab:12:f3:b2:9b:1b:ca:a4:29:e5:14:9d:5e:e8:78: c6:7f:36:60:d8:fa:2d:90:15:0d:c4:b2:cc:40:0d:a1:4b:5f: 79:d4:a2:06:ef:b4:92:6a:70:da:87:0f:60:d8:b0:d1:aa:20: 93:b0:00:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwGnGlL8cU+1VnSyGqrUcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MjUzYzI1NTJkNDQwM2Y0M2I4M2MyNWU3NjIyMzhkZjEy ZGFlODEwHhcNMjUxMjA2MTMwMTA0WhcNMjUxMjA3MTMwMTA0WjAzMTEwLwYDVQQD Eyg0YzlhMTJkMWE0MzQyOWFkZDNhZDk1ODZjYjk2YjMxZWRiMGM3YWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvcgS1+785Z+AqAbjB87scQLkdfYb HWriW4ybRYsEMIqWycLMl5H0Gnd0FG//Z+v0FyP68Kk7DE+qOyM0Rgm+XqSgu0lp ksuYOUYBQouXCUuEi44cFbzrqbcHK7FqnEVedZq7znw36x6LOE1APV/1NfgS7W06 3byfzldI6offSyMpdi9mCDGqpjOuIorRUQUbVWNqPoEY+oPPLvNEdK4QU1iZR5JN FTpvekDYsrUSPOjX9/WPJ+S2DQkF7yZITiUCkmfnjH8qmFMBQ/hp4eppGJxUwe6u Qa+UZ0TIqoQSHxgLl5p0NDoBYyELhPhk7LyY+4xzHqjdAa/i92MyTse6pQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEyaEtGkNCmt062VhsuWsx7bDHrCMB8GA1UdIwQY MBaAFLUlPCVS1EA/Q7g8JediI43xLa6BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS84MjA5OGItMGM1My00ZGYyLThhMzIt ZmJjMWUzZjdlOTJiLzEvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS84MjA5OGItMGM1My00ZGYyLThhMzItZmJjMWUzZjdlOTJi LzEvdFNVOEpWTFVRRDlEdUR3bDUySWpqZkV0cm9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOtCWLTUW V/wwfcnoPDJw05sudeglByfeIOq3Mjr42UEDnmd9hdwaybXNyoFAhHXqMkcdDbKr Gd7aHs5uTKgVzF6PQZennLQy6ZgBDrkqfjF10tz/p2WoH31CVTfexpYQ5iF+fWLn a4jsEDTShC7LAd19JfLvs9DcnwpwWUzmO3azvNkQXY3dZs9eK+eyeWWsBKKUIKor FlaXskR+UQIrwQqS0un+2Hp1Hr6V2PWZCNRBq5aHWNuFuRJpX9vel7fQohSmVcyh kMKuqxLzspsbyqQp5RSdXuh4xn82YNj6LZAVDcSyzEANoUtfedSiBu+0kmpw2ocP YNiw0aogk7AAXA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:12:13 2025 by rpki-client