This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft File: TZRvTfIjdJGmjfpAe-QfroS72mY.mft (raw, json) Hash identifier: U9vYuCPdEJUnmjhUbX1xpTxgU7aK41PIMPsNDQXMH1g= Subject key identifier: 2B:B8:D2:8F:8A:22:68:08:27:CC:B6:F9:CD:66:11:17:24:7C:7E:5D Authority key identifier: 4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66 Certificate issuer: /CN=4d946f4df2237491a68dfa407be41fae84bbda66 Certificate serial: 019B34FB9ED92F6044C4C55A3008FB485A3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft Manifest number: 10E6 Signing time: Fri 19 Dec 2025 05:01:03 +0000 Manifest this update: Fri 19 Dec 2025 05:01:03 +0000 Manifest next update: Sat 20 Dec 2025 05:01:03 +0000 Files and hashes: 1: C8PR4XXWsjpP8PHYuoN78zoE9nY.roa (hash: uu2Jn3Slz9u+yGZ22j4LqOkp9lCOWyyfMINckydLJ3E=) 2: TZRvTfIjdJGmjfpAe-QfroS72mY.crl (hash: HxwC0vdLhrCXGb5OMzGa4ySRQvxRs+8ITEj+0gc/3Ds=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:9e:d9:2f:60:44:c4:c5:5a:30:08:fb:48:5a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d946f4df2237491a68dfa407be41fae84bbda66 Validity Not Before: Dec 19 05:01:03 2025 GMT Not After : Dec 20 05:01:03 2025 GMT Subject: CN=2bb8d28f8a22680827ccb6f9cd661117247c7e5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:65:fd:d4:15:61:c1:e6:5c:36:10:00:5e:6a: 89:6d:1a:0a:d6:62:01:45:76:60:2d:70:87:54:a7: 38:b4:91:63:22:33:ce:91:00:c1:44:97:05:cd:49: 07:0e:1f:8f:05:c7:e4:ea:db:63:73:52:35:1f:27: 67:41:ff:48:f2:15:98:8f:e1:cb:a2:f2:8c:c2:5f: c8:da:72:96:6a:6d:ea:f6:66:b0:81:7a:3e:9e:84: e2:31:17:c6:f6:4d:48:c8:d8:c3:c6:e6:ab:64:4b: 75:ae:b2:2d:44:ef:be:fb:95:1a:7c:1f:74:6a:81: 34:54:25:2f:7a:c0:17:05:a8:bd:36:d6:82:c8:d2: 8d:ef:72:83:3a:13:58:83:d4:58:ac:37:22:50:94: 41:f3:ce:e5:c9:ca:f1:fe:56:60:b8:56:82:d7:7b: ef:24:00:e5:f2:48:b8:87:c4:f1:a5:6e:20:14:78: 71:37:20:99:26:86:97:9c:bd:9e:d8:ae:ba:6f:9a: 97:bd:1d:ee:e9:b2:01:66:da:77:c1:a9:07:ce:41: b5:4b:96:6a:da:7a:3b:83:19:f8:6e:e6:81:51:a0: 64:f8:10:5b:fe:19:fd:52:79:f2:d0:97:20:ab:36: c7:5d:17:00:fb:7f:40:34:40:af:e0:4f:dc:32:13: fd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B8:D2:8F:8A:22:68:08:27:CC:B6:F9:CD:66:11:17:24:7C:7E:5D X509v3 Authority Key Identifier: keyid:4D:94:6F:4D:F2:23:74:91:A6:8D:FA:40:7B:E4:1F:AE:84:BB:DA:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TZRvTfIjdJGmjfpAe-QfroS72mY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cbfd1e-1202-40c1-bdf0-c24ee0494541/1/TZRvTfIjdJGmjfpAe-QfroS72mY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:34:a8:1c:d7:c1:8a:84:8f:e2:72:78:a0:36:27:09:26:e9: 61:7c:e6:07:a3:e4:ce:db:10:42:f5:71:51:f3:07:55:6c:5f: 89:27:a7:75:bc:73:f5:04:54:c3:2b:5b:00:7f:56:94:e3:ce: 63:d1:b9:34:67:8e:2d:54:18:41:d7:b8:db:bb:b0:18:40:07: 3d:cf:22:18:b4:a2:fa:99:03:e9:6d:ee:4b:e6:2e:4b:1c:3d: 34:e8:7e:21:d0:74:ca:92:6b:d5:bf:1f:69:68:ee:07:ba:70: 58:0b:2b:3d:b8:2d:9a:d4:f2:6f:51:47:05:2b:30:4a:3f:01: 83:7d:bb:69:51:05:d8:0f:02:af:d0:84:45:fb:8c:4b:8c:55: 34:1b:60:99:23:ce:b4:7e:3b:c7:a5:08:ee:5e:d1:4b:5a:7a: 16:e0:8b:40:c4:58:89:6b:1c:a0:36:3c:e1:8e:6c:73:8d:89: e7:d3:53:b3:5d:f9:69:13:34:8b:97:ef:d6:39:c6:80:84:e6: 91:87:8e:07:ae:65:71:0e:25:6b:0f:75:97:95:d8:b5:be:52: 1f:7e:19:d2:f2:34:de:33:31:a3:3c:63:c0:6a:5c:c2:03:6c: 1d:c3:26:0d:e5:3a:81:ee:d4:4e:44:da:75:68:11:ca:ce:2f: b3:50:54:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+57ZL2BExMVaMAj7SFo9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkOTQ2ZjRkZjIyMzc0OTFhNjhkZmE0MDdiZTQxZmFlODRi YmRhNjYwHhcNMjUxMjE5MDUwMTAzWhcNMjUxMjIwMDUwMTAzWjAzMTEwLwYDVQQD EygyYmI4ZDI4ZjhhMjI2ODA4MjdjY2I2ZjljZDY2MTExNzI0N2M3ZTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi2X91BVhweZcNhAAXmqJbRoK1mIB RXZgLXCHVKc4tJFjIjPOkQDBRJcFzUkHDh+PBcfk6ttjc1I1HydnQf9I8hWYj+HL ovKMwl/I2nKWam3q9mawgXo+noTiMRfG9k1IyNjDxuarZEt1rrItRO+++5UafB90 aoE0VCUvesAXBai9NtaCyNKN73KDOhNYg9RYrDciUJRB887lycrx/lZguFaC13vv JADl8ki4h8TxpW4gFHhxNyCZJoaXnL2e2K66b5qXvR3u6bIBZtp3wakHzkG1S5Zq 2no7gxn4buaBUaBk+BBb/hn9Unny0JcgqzbHXRcA+39ANECv4E/cMhP9EwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCu40o+KImgIJ8y2+c1mERckfH5dMB8GA1UdIwQY MBaAFE2Ub03yI3SRpo36QHvkH66Eu9pmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFpSdlRmSWpkSkdtamZwQWUtUWZyb1M3Mm1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9jYmZkMWUtMTIwMi00MGMxLWJkZjAt YzI0ZWUwNDk0NTQxLzEvVFpSdlRmSWpkSkdtamZwQWUtUWZyb1M3Mm1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9jYmZkMWUtMTIwMi00MGMxLWJkZjAtYzI0ZWUwNDk0NTQx LzEvVFpSdlRmSWpkSkdtamZwQWUtUWZyb1M3Mm1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADjSoHNfB ioSP4nJ4oDYnCSbpYXzmB6PkztsQQvVxUfMHVWxfiSendbxz9QRUwytbAH9WlOPO Y9G5NGeOLVQYQde427uwGEAHPc8iGLSi+pkD6W3uS+YuSxw9NOh+IdB0ypJr1b8f aWjuB7pwWAsrPbgtmtTyb1FHBSswSj8Bg327aVEF2A8Cr9CERfuMS4xVNBtgmSPO tH47x6UI7l7RS1p6FuCLQMRYiWscoDY84Y5sc42J59NTs135aRM0i5fv1jnGgITm kYeOB65lcQ4law91l5XYtb5SH34Z0vI03jMxozxjwGpcwgNsHcMmDeU6ge7UTkTa dWgRys4vs1BUCg== -----END CERTIFICATE-----Generated at Fri Dec 19 13:30:04 2025 by rpki-client