This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft File: trcm8FkrUE5yMwX2e6tRR9TqaW0.mft (raw, json) Hash identifier: ydvdbE2Xz0HnyiVSA6u8nA9A7az2H0KOCLjMGrMAMPI= Subject key identifier: 68:87:15:2E:18:E4:49:8C:5C:9C:7D:49:79:38:1E:25:D9:44:89:BE Authority key identifier: B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D Certificate issuer: /CN=b6b726f0592b504e723305f67bab5147d4ea696d Certificate serial: 019B258863D8AB2A463593CD61BF5D7A1D9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft Manifest number: 0ABC Signing time: Tue 16 Dec 2025 05:00:53 +0000 Manifest this update: Tue 16 Dec 2025 05:00:53 +0000 Manifest next update: Wed 17 Dec 2025 05:00:53 +0000 Files and hashes: 1: _oI-Lkb0IuWy-UHIoAbDqvwfl1s.roa (hash: mRZXCcW1ghBXMTwSw7NYgVRMYeyGjl4gH8juqLCzVks=) 2: trcm8FkrUE5yMwX2e6tRR9TqaW0.crl (hash: M09LxgE3EX8TTVpxfjqtqp4J3CQyw7N/px6xN9fTS/E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 05:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:63:d8:ab:2a:46:35:93:cd:61:bf:5d:7a:1d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6b726f0592b504e723305f67bab5147d4ea696d Validity Not Before: Dec 16 05:00:53 2025 GMT Not After : Dec 17 05:00:53 2025 GMT Subject: CN=6887152e18e4498c5c9c7d4979381e25d94489be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:af:74:75:7d:57:33:e4:d7:4d:79:40:56:bf: 57:7d:8d:d6:b4:3f:4f:fb:88:06:00:0c:56:eb:df: b6:e9:31:81:3e:6d:71:61:da:d8:6e:11:cd:21:3d: a1:22:f1:74:f7:fb:4c:c8:98:95:f0:dc:13:af:90: b2:13:8e:04:67:37:b1:4f:57:13:97:a5:ef:6e:91: 9a:8f:ce:82:2d:1e:75:f1:c1:1a:ca:f0:56:4b:97: 1e:37:be:3a:4e:44:56:b6:7c:62:c7:b1:f7:df:fd: 1c:a1:52:00:09:ed:16:cb:3d:b3:18:05:05:a3:3d: 34:40:d4:b3:f5:43:74:0d:16:59:83:8d:95:61:2a: 61:dc:c4:77:fd:a8:9e:55:36:ad:34:7c:2d:b5:59: d2:a2:51:d5:f1:7e:04:d1:18:05:d8:22:27:b3:ba: 30:24:7a:76:1d:fc:11:cd:cc:67:55:45:c0:ff:53: bc:33:45:02:d2:40:ba:73:64:d9:97:2b:f4:8a:8c: e8:4a:a3:30:1d:c7:d9:79:6d:74:e1:c1:77:17:d8: a0:10:ce:ae:18:20:dd:bd:2b:b3:dd:6a:9a:14:09: 0f:b6:d6:2c:12:04:f3:05:28:86:37:f1:6e:e9:7a: 6f:c8:1f:c2:b2:e1:57:fd:05:e8:b4:09:a5:ec:33: ea:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:87:15:2E:18:E4:49:8C:5C:9C:7D:49:79:38:1E:25:D9:44:89:BE X509v3 Authority Key Identifier: keyid:B6:B7:26:F0:59:2B:50:4E:72:33:05:F6:7B:AB:51:47:D4:EA:69:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/trcm8FkrUE5yMwX2e6tRR9TqaW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a5c3dd-9f98-4c7f-af43-4cec71210734/1/trcm8FkrUE5yMwX2e6tRR9TqaW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:a3:4f:f7:e4:63:40:8b:8a:3e:7f:c0:55:88:c1:42:a7:b4: b3:30:02:34:3d:5e:c7:1a:fa:c0:79:08:40:7a:1a:8e:2f:53: 49:9b:e1:e7:1d:f6:71:a4:92:b1:6b:6a:13:58:92:89:3a:d2: e5:c1:98:db:8f:7d:9a:d7:38:74:d4:8c:fa:a9:ad:c0:85:44: 1a:2d:26:1f:c6:b4:43:3c:5c:11:af:54:07:8c:31:2c:fe:27: 36:cd:d0:05:1e:4a:cb:9e:ef:44:d0:b9:c8:b9:9a:45:35:f0: 1c:bf:72:b4:71:9d:cd:b3:d8:76:08:b5:15:45:e9:58:81:69: 4e:e7:49:c7:24:aa:a1:20:70:f6:9a:95:23:84:9b:a5:72:b8: 54:08:bf:af:7d:fc:bc:f4:ce:b0:ff:4c:83:4c:9a:57:e3:37: 63:18:65:86:db:db:46:90:ee:84:05:ae:f2:09:7d:5a:4d:36: 4a:1e:dd:51:40:48:13:02:74:50:6a:98:e7:e7:6d:93:b6:70: 3a:6c:51:f4:8e:2c:f0:5b:95:c8:cd:74:ad:d9:b8:ea:58:bb: 82:fe:f3:d5:a4:21:1d:53:23:3e:fd:43:18:b1:78:e7:05:f7: 51:e8:71:45:bb:e7:1f:9d:53:3f:3b:86:15:08:b0:b7:50:a2: 3f:1a:9b:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliGPYqypGNZPNYb9deh2eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2YjcyNmYwNTkyYjUwNGU3MjMzMDVmNjdiYWI1MTQ3ZDRl YTY5NmQwHhcNMjUxMjE2MDUwMDUzWhcNMjUxMjE3MDUwMDUzWjAzMTEwLwYDVQQD Eyg2ODg3MTUyZTE4ZTQ0OThjNWM5YzdkNDk3OTM4MWUyNWQ5NDQ4OWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj690dX1XM+TXTXlAVr9XfY3WtD9P +4gGAAxW69+26TGBPm1xYdrYbhHNIT2hIvF09/tMyJiV8NwTr5CyE44EZzexT1cT l6XvbpGaj86CLR518cEayvBWS5ceN746TkRWtnxix7H33/0coVIACe0Wyz2zGAUF oz00QNSz9UN0DRZZg42VYSph3MR3/aieVTatNHwttVnSolHV8X4E0RgF2CIns7ow JHp2HfwRzcxnVUXA/1O8M0UC0kC6c2TZlyv0iozoSqMwHcfZeW104cF3F9igEM6u GCDdvSuz3WqaFAkPttYsEgTzBSiGN/Fu6XpvyB/CsuFX/QXotAml7DPqHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGiHFS4Y5EmMXJx9SXk4HiXZRIm+MB8GA1UdIwQY MBaAFLa3JvBZK1BOcjMF9nurUUfU6mltMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHJjbThGa3JVRTV5TXdYMmU2dFJSOVRxYVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hNWMzZGQtOWY5OC00YzdmLWFmNDMt NGNlYzcxMjEwNzM0LzEvdHJjbThGa3JVRTV5TXdYMmU2dFJSOVRxYVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9hNWMzZGQtOWY5OC00YzdmLWFmNDMtNGNlYzcxMjEwNzM0 LzEvdHJjbThGa3JVRTV5TXdYMmU2dFJSOVRxYVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIqNP9+Rj QIuKPn/AVYjBQqe0szACND1exxr6wHkIQHoaji9TSZvh5x32caSSsWtqE1iSiTrS 5cGY2499mtc4dNSM+qmtwIVEGi0mH8a0QzxcEa9UB4wxLP4nNs3QBR5Ky57vRNC5 yLmaRTXwHL9ytHGdzbPYdgi1FUXpWIFpTudJxySqoSBw9pqVI4SbpXK4VAi/r338 vPTOsP9Mg0yaV+M3YxhlhtvbRpDuhAWu8gl9Wk02Sh7dUUBIEwJ0UGqY5+dtk7Zw OmxR9I4s8FuVyM10rdm46li7gv7z1aQhHVMjPv1DGLF45wX3UehxRbvnH51TPzuG FQiwt1CiPxqb/w== -----END CERTIFICATE-----Generated at Tue Dec 16 14:18:58 2025 by rpki-client