This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft File: TRCb5Q1A4ys9UW_B63LqsyxeC84.mft (raw, json) Hash identifier: 7hRLoHCegaoQrn8nOMLAojT6hYI57vaLKGYt8zNhD6Q= Subject key identifier: 32:E9:C8:DE:4F:44:B7:91:7D:F6:B0:00:50:B2:6E:F1:1B:4F:28:12 Authority key identifier: 4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE Certificate issuer: /CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce Certificate serial: 019AF352163ED94C06BC11044E1751522C1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft Manifest number: 0257 Signing time: Sat 06 Dec 2025 11:00:34 +0000 Manifest this update: Sat 06 Dec 2025 11:00:34 +0000 Manifest next update: Sun 07 Dec 2025 11:00:34 +0000 Files and hashes: 1: TRCb5Q1A4ys9UW_B63LqsyxeC84.crl (hash: fTPXvwaKb3Oc8RUd659SFokewDnZtrqa8PLOu0lScpY=) 2: _ysqE-Sv0fTgw_gy8qUtBvX43Zw.roa (hash: XDdFm9ijjrDqLsWMBsXWF0Txzhfv7gyIMnkn7RG7zb4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:16:3e:d9:4c:06:bc:11:04:4e:17:51:52:2c:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d109be50d40e32b3d516fc1eb72eab32c5e0bce Validity Not Before: Dec 6 11:00:34 2025 GMT Not After : Dec 7 11:00:34 2025 GMT Subject: CN=32e9c8de4f44b7917df6b00050b26ef11b4f2812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ac:61:ad:91:7e:4d:62:c9:fa:a6:4f:19:5e: 6f:a8:5b:46:79:3b:97:6d:92:a9:69:2d:b7:fe:d0: ca:17:fb:71:06:b9:a0:ff:ed:c6:da:0c:dc:a4:91: 69:e3:83:a4:2c:23:65:bf:d7:44:91:af:77:32:b2: 72:1c:e4:d3:ca:d6:be:4d:cf:46:1f:a5:78:57:ff: 62:58:e5:4a:0f:cb:72:9d:3f:f1:91:94:94:89:c7: 71:39:36:5d:30:2e:55:2a:21:6f:3d:eb:7d:86:cd: 45:ac:9b:ad:93:bf:5a:3b:9d:a9:af:56:d6:9b:b8: 33:d3:71:39:6a:a1:af:de:da:a8:d0:f5:fd:94:fb: 5f:da:d2:b4:3f:79:c3:96:f3:b0:d1:9d:80:75:3d: bc:ed:0e:1d:1b:11:f2:ec:9e:43:dc:af:91:6b:c0: 6b:8f:77:87:85:4f:d8:ea:c2:b3:5d:a0:09:17:0a: b1:cd:46:22:22:ad:e7:a0:1f:c4:17:fa:5a:9e:3d: cc:d0:2f:2e:91:ea:a0:cb:21:7a:65:36:59:64:2c: 88:7c:4a:ca:24:2b:8c:d4:ee:0f:e4:68:c5:3f:ac: 38:a4:25:54:d5:35:0e:32:85:8f:cc:db:bc:bc:5c: 61:62:cc:a4:c6:a2:89:4c:a1:3f:5a:8f:ec:d0:52: 28:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E9:C8:DE:4F:44:B7:91:7D:F6:B0:00:50:B2:6E:F1:1B:4F:28:12 X509v3 Authority Key Identifier: keyid:4D:10:9B:E5:0D:40:E3:2B:3D:51:6F:C1:EB:72:EA:B3:2C:5E:0B:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRCb5Q1A4ys9UW_B63LqsyxeC84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/36eb32-95fa-42f3-8fdf-ab9533772339/1/TRCb5Q1A4ys9UW_B63LqsyxeC84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:cf:bb:e5:15:b4:34:8a:12:db:ee:a5:2e:9e:73:b3:0f:69: 3a:b5:87:30:a7:f3:d5:87:1f:35:7b:8d:f4:63:77:f7:71:25: 1f:88:fc:bd:2f:d6:c5:6c:fa:ab:cf:c9:81:d9:28:66:08:89: 75:7b:f1:be:c2:43:2e:a8:45:8f:28:5e:34:b8:01:4b:49:a6: 83:8a:3e:bc:05:a3:19:98:12:87:57:0d:97:6b:44:9d:b9:d2: 4a:e5:23:ee:01:ce:a5:7c:4c:16:aa:71:c3:63:f9:ef:08:bb: e4:fb:1a:fb:ca:ce:3f:cb:bd:0a:21:e7:33:b4:f5:a1:0c:e8: e3:9b:ef:c9:0b:15:9a:7f:9e:6c:b2:68:d1:cc:ec:d5:7c:40: 02:38:5b:f4:bb:94:26:b0:76:0c:e4:1a:4d:d9:93:67:a2:1b: 34:dc:d0:38:b5:84:b6:e0:93:44:7d:24:95:59:5b:8f:ec:ea: 76:60:1a:6b:3e:d3:62:3c:5f:5d:e7:ee:63:8f:32:7b:45:63: 11:ca:de:75:79:de:50:69:12:61:b3:c5:21:5b:69:79:1d:f6: d9:b8:1f:e5:22:cd:b1:91:b5:96:65:70:f9:48:45:12:5d:4d: 65:95:d1:a8:b1:55:11:96:31:4f:50:64:1b:43:79:3d:b0:bd: 85:1c:21:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUhY+2UwGvBEEThdRUiwaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMTA5YmU1MGQ0MGUzMmIzZDUxNmZjMWViNzJlYWIzMmM1 ZTBiY2UwHhcNMjUxMjA2MTEwMDM0WhcNMjUxMjA3MTEwMDM0WjAzMTEwLwYDVQQD EygzMmU5YzhkZTRmNDRiNzkxN2RmNmIwMDA1MGIyNmVmMTFiNGYyODEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKxhrZF+TWLJ+qZPGV5vqFtGeTuX bZKpaS23/tDKF/txBrmg/+3G2gzcpJFp44OkLCNlv9dEka93MrJyHOTTyta+Tc9G H6V4V/9iWOVKD8tynT/xkZSUicdxOTZdMC5VKiFvPet9hs1FrJutk79aO52pr1bW m7gz03E5aqGv3tqo0PX9lPtf2tK0P3nDlvOw0Z2AdT287Q4dGxHy7J5D3K+Ra8Br j3eHhU/Y6sKzXaAJFwqxzUYiIq3noB/EF/panj3M0C8ukeqgyyF6ZTZZZCyIfErK JCuM1O4P5GjFP6w4pCVU1TUOMoWPzNu8vFxhYsykxqKJTKE/Wo/s0FIodwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDLpyN5PRLeRffawAFCybvEbTygSMB8GA1UdIwQY MBaAFE0Qm+UNQOMrPVFvwety6rMsXgvOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFJDYjVRMUE0eXM5VVdfQjYzTHFzeXhlQzg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8zNmViMzItOTVmYS00MmYzLThmZGYt YWI5NTMzNzcyMzM5LzEvVFJDYjVRMUE0eXM5VVdfQjYzTHFzeXhlQzg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8zNmViMzItOTVmYS00MmYzLThmZGYtYWI5NTMzNzcyMzM5 LzEvVFJDYjVRMUE0eXM5VVdfQjYzTHFzeXhlQzg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARs+75RW0 NIoS2+6lLp5zsw9pOrWHMKfz1YcfNXuN9GN393ElH4j8vS/WxWz6q8/JgdkoZgiJ dXvxvsJDLqhFjyheNLgBS0mmg4o+vAWjGZgSh1cNl2tEnbnSSuUj7gHOpXxMFqpx w2P57wi75Psa+8rOP8u9CiHnM7T1oQzo45vvyQsVmn+ebLJo0czs1XxAAjhb9LuU JrB2DOQaTdmTZ6IbNNzQOLWEtuCTRH0klVlbj+zqdmAaaz7TYjxfXefuY48ye0Vj EcredXneUGkSYbPFIVtpeR322bgf5SLNsZG1lmVw+UhFEl1NZZXRqLFVEZYxT1Bk G0N5PbC9hRwhig== -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:27 2025 by rpki-client