This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft File: tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json) Hash identifier: BDqpmkT1ffgScee2W/ByulYrGFIQuJlIIR2H5BmkOU8= Subject key identifier: 56:55:B5:7D:EF:D5:4E:05:8E:8D:49:1E:61:AF:2B:F8:75:69:29:38 Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60 Certificate issuer: /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60 Certificate serial: 019AF31C0FED7C976188F189D52249429A34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 10:01:33 +0000 Manifest this update: Sat 06 Dec 2025 10:01:33 +0000 Manifest next update: Sun 07 Dec 2025 10:01:33 +0000 Files and hashes: 1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: V531RY4M5TKau6hVtDlSc74FO0L+Ua5X+G5yrA5QlhQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:0f:ed:7c:97:61:88:f1:89:d5:22:49:42:9a:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60 Validity Not Before: Dec 6 10:01:33 2025 GMT Not After : Dec 7 10:01:33 2025 GMT Subject: CN=5655b57defd54e058e8d491e61af2bf875692938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:14:ec:1c:37:36:01:73:61:3b:59:f7:3f:20: 47:a5:09:53:ab:ef:9e:f5:55:db:4a:52:35:0a:84: 1d:5b:7c:cc:0e:fd:ea:01:7f:0b:84:80:9a:b0:a5: 1c:27:de:e0:1b:1a:ae:79:ef:de:9b:06:9b:f2:a5: f4:d7:46:7d:db:b7:cc:b8:45:5b:80:e3:2c:70:60: 60:b7:0d:d5:b2:e3:8a:93:ec:c7:63:f5:0f:d4:96: 7e:2e:bc:1f:e8:28:f5:28:44:a6:25:07:be:82:6e: 75:7e:86:a8:b2:54:d9:ef:d6:52:4d:a3:45:23:90: b9:fd:83:65:3a:9f:fb:a2:03:2e:34:ff:18:53:fc: 58:5d:6f:ac:b8:0a:22:56:d7:d0:29:5d:9f:af:1d: 35:5f:c3:1f:de:8c:ca:8f:f9:79:68:aa:33:cf:31: 8e:c4:ea:ec:59:2e:d2:f8:e9:50:de:2e:19:60:5f: b9:17:57:bd:f8:07:83:59:6d:c4:bf:e6:e2:04:d0: dd:77:a9:81:54:5f:74:b4:32:56:e6:12:aa:26:4b: ea:51:0a:65:0c:f2:b9:46:7e:b5:a8:24:45:12:22: 6d:c7:87:52:0d:1b:0a:7d:f8:06:49:af:4b:ec:df: a8:dd:c9:3e:77:87:23:51:18:c9:2a:9f:6f:64:e0: 2b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:55:B5:7D:EF:D5:4E:05:8E:8D:49:1E:61:AF:2B:F8:75:69:29:38 X509v3 Authority Key Identifier: keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:10:9a:cc:60:d7:0b:1b:2b:7a:e1:a1:93:b0:fb:a6:86:cc: 9b:0e:96:5d:09:f9:8d:b9:94:fb:58:ad:d9:c8:32:ab:fe:4d: 84:56:96:78:20:d8:8b:cb:7a:35:e1:6b:02:96:bf:34:af:43: a7:c8:12:7d:fd:70:eb:17:7c:34:a6:dc:a6:e5:20:2a:6b:01: c5:15:f0:87:f6:a0:86:39:11:36:b4:24:1d:f1:12:58:fc:93: 85:c0:97:a3:8f:48:7e:a2:ae:d3:f5:33:88:61:22:23:44:aa: b9:80:45:54:1a:4b:00:0e:d3:06:72:ce:d6:40:42:62:68:77: 61:1e:19:4e:c3:ff:db:cc:b0:9a:9f:75:81:b7:af:3c:8d:f3: 8c:2c:10:c9:eb:e2:78:33:93:b0:0f:f1:52:fe:dc:14:75:f6: 62:7d:ff:b9:74:da:01:09:35:0f:96:06:61:c9:fd:a9:6f:f1: 41:1b:f1:96:14:12:bf:49:3a:91:a7:c4:27:04:21:0a:d4:0a: eb:83:dc:ec:d9:9a:a1:f7:71:f5:76:96:fe:d9:bf:04:09:f4: fd:7b:d1:01:cf:88:f0:b2:71:c2:a3:78:79:80:0d:56:d4:a7: 56:81:0e:f0:27:a6:8a:f1:a8:8a:1e:27:bb:52:32:f3:e5:f6: e3:48:61:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHA/tfJdhiPGJ1SJJQpo0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MTliYjYwN2U4ZWI3NmViYjljY2IyMDIyY2M2NDZjM2Nj ZTBiNjAwHhcNMjUxMjA2MTAwMTMzWhcNMjUxMjA3MTAwMTMzWjAzMTEwLwYDVQQD Eyg1NjU1YjU3ZGVmZDU0ZTA1OGU4ZDQ5MWU2MWFmMmJmODc1NjkyOTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxTsHDc2AXNhO1n3PyBHpQlTq++e 9VXbSlI1CoQdW3zMDv3qAX8LhICasKUcJ97gGxquee/emwab8qX010Z927fMuEVb gOMscGBgtw3VsuOKk+zHY/UP1JZ+Lrwf6Cj1KESmJQe+gm51foaoslTZ79ZSTaNF I5C5/YNlOp/7ogMuNP8YU/xYXW+suAoiVtfQKV2frx01X8Mf3ozKj/l5aKozzzGO xOrsWS7S+OlQ3i4ZYF+5F1e9+AeDWW3Ev+biBNDdd6mBVF90tDJW5hKqJkvqUQpl DPK5Rn61qCRFEiJtx4dSDRsKffgGSa9L7N+o3ck+d4cjURjJKp9vZOAr6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFZVtX3v1U4Fjo1JHmGvK/h1aSk4MB8GA1UdIwQY MBaAFLUZu2B+jrduu5zLICLMZGw8zgtgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFJtN1lINk90MjY3bk1zZ0lzeGtiRHpPQzJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80ZTUwNDktODU2ZC00YzA3LTg1NTYt ZTE4MTg0ZTgwMjU4LzEvdFJtN1lINk90MjY3bk1zZ0lzeGtiRHpPQzJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC80ZTUwNDktODU2ZC00YzA3LTg1NTYtZTE4MTg0ZTgwMjU4 LzEvdFJtN1lINk90MjY3bk1zZ0lzeGtiRHpPQzJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMxCazGDX CxsreuGhk7D7pobMmw6WXQn5jbmU+1it2cgyq/5NhFaWeCDYi8t6NeFrApa/NK9D p8gSff1w6xd8NKbcpuUgKmsBxRXwh/aghjkRNrQkHfESWPyThcCXo49IfqKu0/Uz iGEiI0SquYBFVBpLAA7TBnLO1kBCYmh3YR4ZTsP/28ywmp91gbevPI3zjCwQyevi eDOTsA/xUv7cFHX2Yn3/uXTaAQk1D5YGYcn9qW/xQRvxlhQSv0k6kafEJwQhCtQK 64Pc7Nmaofdx9XaW/tm/BAn0/XvRAc+I8LJxwqN4eYANVtSnVoEO8CemivGoih4n u1Iy8+X240hhTg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:20:12 2025 by rpki-client