This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json) Hash identifier: rVTFBY93uFOTrgD2dKx1YfJK9+Ky0NqFwWTH3Wx6D5I= Subject key identifier: 7F:99:57:BC:42:1B:FA:E4:70:B0:C9:23:5A:7E:71:B0:F7:4B:8E:54 Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e Certificate serial: 019AF509CFDE22835F869E4C2EFE6DFC2075 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 19:00:52 +0000 Manifest this update: Sat 06 Dec 2025 19:00:52 +0000 Manifest next update: Sun 07 Dec 2025 19:00:52 +0000 Files and hashes: 1: M5_-d1GdbRA2RUGO5npOtRSNEB8.roa (hash: DYZ2j8UdvivRy1b6Q4G0ZdvY6U48+tpNnHP/gql8rCo=) 2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: C4p7TgSAWNwgYPbZV62BZxBKmQb71rITHbZH7QcVfho=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:cf:de:22:83:5f:86:9e:4c:2e:fe:6d:fc:20:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e Validity Not Before: Dec 6 19:00:52 2025 GMT Not After : Dec 7 19:00:52 2025 GMT Subject: CN=7f9957bc421bfae470b0c9235a7e71b0f74b8e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f7:3c:15:9c:55:25:09:76:47:ae:80:1d:62: 59:f7:1b:b1:4a:01:e9:e9:34:d6:f6:3d:95:c2:df: 35:fb:56:9a:84:49:b2:82:9f:18:76:97:ba:ad:97: 29:8a:8b:d9:d3:79:9c:41:b0:88:6b:d9:38:60:ef: fa:7b:26:34:1d:35:05:87:c5:93:17:22:7a:20:d1: ae:11:af:7d:5d:eb:5f:06:92:99:6f:92:fa:ae:65: 38:32:26:2f:17:ff:58:f8:c0:2c:5c:50:33:79:a5: 9d:b6:d4:4c:09:67:7a:80:52:d6:42:fb:ef:19:bb: eb:16:ab:a2:b6:ef:f0:0f:52:65:50:34:f6:4b:a8: 41:64:da:63:f3:2f:b6:42:5d:73:a2:50:ad:8a:d9: db:96:6e:f4:95:f1:09:01:87:cd:03:05:66:c9:36: 02:76:73:d8:a1:6e:1c:15:0d:e6:1b:12:a1:2f:be: da:ac:ab:37:70:9d:18:9f:fd:ba:f5:61:f8:d2:62: a9:ef:cc:3d:4c:3b:f3:b4:a9:af:27:7c:6c:9e:6d: 6f:e9:82:ac:c7:4a:49:ae:c3:a8:aa:eb:e9:4a:1b: 40:f4:9e:88:57:60:28:c7:f3:30:8d:17:57:84:16: 31:41:9a:d9:9b:c7:95:93:a5:f3:44:29:bc:8f:fd: 2e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:99:57:BC:42:1B:FA:E4:70:B0:C9:23:5A:7E:71:B0:F7:4B:8E:54 X509v3 Authority Key Identifier: keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:bf:b4:de:5a:1b:e0:82:f7:0d:01:54:1f:4a:eb:e8:ba:85: fb:99:0b:ea:e1:17:93:e0:7b:ad:75:65:36:e5:df:27:98:88: f0:21:e9:05:70:ed:5b:42:fe:9c:11:06:46:71:3e:e1:96:fd: 99:31:db:f5:7a:1a:1b:33:94:64:5e:2e:3a:71:ef:d6:ce:8e: 86:06:b6:b0:5d:17:33:af:ae:de:14:ae:22:a8:70:8e:8d:9b: 5c:43:db:db:fe:3a:b5:af:40:98:1b:77:74:36:a4:29:66:6e: 58:58:a0:a9:66:83:ed:a6:d3:72:44:54:e1:37:54:70:d7:24: 7a:9e:f4:52:aa:b9:1a:35:f2:14:75:2b:6e:c3:de:93:88:c7: 06:00:f0:bf:f7:f8:b0:d7:8c:fc:b0:43:72:9c:e2:d7:7c:ab: bd:3b:3b:59:6f:94:e6:dd:d6:77:e8:98:00:ab:9a:9d:74:41: 5c:9c:6a:4d:d5:f0:0e:cb:dc:c0:94:bf:da:16:60:a0:f5:0f: da:cb:7a:75:94:e2:8d:93:61:60:cb:8a:b7:46:2f:48:9e:ab: e5:b0:5e:c7:85:65:34:05:30:ee:b2:2b:7a:b9:6e:3e:75:9d: 6b:59:dd:d7:bc:eb:4a:09:57:16:c0:c3:a9:35:7c:3a:2b:ae: af:a1:70:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cc/eIoNfhp5MLv5t/CB1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0M2E3MWNhNjBkNzRlNDVkMmI5NzQ4YWIxMDY2NTI5ZmQw MTMzN2UwHhcNMjUxMjA2MTkwMDUyWhcNMjUxMjA3MTkwMDUyWjAzMTEwLwYDVQQD Eyg3Zjk5NTdiYzQyMWJmYWU0NzBiMGM5MjM1YTdlNzFiMGY3NGI4ZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPc8FZxVJQl2R66AHWJZ9xuxSgHp 6TTW9j2Vwt81+1aahEmygp8Ydpe6rZcpiovZ03mcQbCIa9k4YO/6eyY0HTUFh8WT FyJ6INGuEa99XetfBpKZb5L6rmU4MiYvF/9Y+MAsXFAzeaWdttRMCWd6gFLWQvvv GbvrFquitu/wD1JlUDT2S6hBZNpj8y+2Ql1zolCtitnblm70lfEJAYfNAwVmyTYC dnPYoW4cFQ3mGxKhL77arKs3cJ0Yn/269WH40mKp78w9TDvztKmvJ3xsnm1v6YKs x0pJrsOoquvpShtA9J6IV2Aox/MwjRdXhBYxQZrZm8eVk6XzRCm8j/0uzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+ZV7xCG/rkcLDJI1p+cbD3S45UMB8GA1UdIwQY MBaAFLQ6ccpg105F0rl0irEGZSn9ATN+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEt Nzk4YWM0OTI4ZWQ2LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS84Y2VmNmYtZmUwOS00ZWY2LThiZjEtNzk4YWM0OTI4ZWQ2 LzEvdERweHltRFhUa1hTdVhTS3NRWmxLZjBCTTM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc7+03lob 4IL3DQFUH0rr6LqF+5kL6uEXk+B7rXVlNuXfJ5iI8CHpBXDtW0L+nBEGRnE+4Zb9 mTHb9XoaGzOUZF4uOnHv1s6Ohga2sF0XM6+u3hSuIqhwjo2bXEPb2/46ta9AmBt3 dDakKWZuWFigqWaD7abTckRU4TdUcNckep70Uqq5GjXyFHUrbsPek4jHBgDwv/f4 sNeM/LBDcpzi13yrvTs7WW+U5t3Wd+iYAKuanXRBXJxqTdXwDsvcwJS/2hZgoPUP 2st6dZTijZNhYMuKt0YvSJ6r5bBex4VlNAUw7rIrerluPnWda1nd17zrSglXFsDD qTV8Oiuur6FwxQ== -----END CERTIFICATE-----Generated at Sun Dec 7 00:55:29 2025 by rpki-client