This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft File: tDJYoYz00SKOXHkHDfpjMRaDIMU.mft (raw, json) Hash identifier: zPNzFicq+Km/ivoNW3tkHeNOP8iWTaId9jeZpIA81pY= Subject key identifier: 99:D7:18:0B:EB:DC:DB:93:43:B6:97:4E:8E:FE:97:CC:D4:E0:0D:36 Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5 Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5 Certificate serial: 019AF3C09B90F6B21EAB33593B8F2FF974A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft Manifest number: 15A5 Signing time: Sat 06 Dec 2025 13:01:17 +0000 Manifest this update: Sat 06 Dec 2025 13:01:17 +0000 Manifest next update: Sun 07 Dec 2025 13:01:17 +0000 Files and hashes: 1: 28g4Blr7nuSyJeVmwy4cGLK9eb8.roa (hash: Q3uRjW4ymMVkt8l5TduM8mGnhXb4GzyvEHZ5j93is8c=) 2: psNnDsOb3MJQFpyT8HfsVNSnwog.roa (hash: KJkUgz1VxvV5lZj00xJ9seKTuebHbMbR6MJlSYq/h5Q=) 3: tDJYoYz00SKOXHkHDfpjMRaDIMU.crl (hash: inoetKw0icOI2MbCRJdJG0NVqe3dMrTHLRSohrZSBZ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:9b:90:f6:b2:1e:ab:33:59:3b:8f:2f:f9:74:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5 Validity Not Before: Dec 6 13:01:17 2025 GMT Not After : Dec 7 13:01:17 2025 GMT Subject: CN=99d7180bebdcdb9343b6974e8efe97ccd4e00d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:a7:81:23:8d:1f:d3:b0:31:fa:78:71:41: 8a:1c:9a:8b:ae:da:74:b4:3b:c3:d1:36:b9:88:0c: a1:cf:00:db:84:c1:4f:14:02:65:5f:c7:20:7f:3a: 85:75:67:8c:0a:23:6e:9a:43:0d:4d:3a:88:bf:78: 84:c8:14:a6:82:d6:8a:2d:ff:06:0e:2e:b5:eb:9e: 9f:9e:17:49:fd:41:06:7e:ad:49:05:97:c2:85:7f: 3f:e3:14:51:74:c9:c0:f9:43:1c:ad:c6:b9:45:7b: a7:93:9e:67:8c:c0:55:20:a7:99:39:65:73:03:0e: 91:94:67:34:93:96:fe:2a:ef:4a:7c:59:17:ce:ca: 2a:36:56:e2:03:47:81:cb:f2:46:cf:6f:c1:08:03: f8:f7:6e:f5:a7:59:37:4d:16:b2:fc:6e:72:a9:02: 6f:33:5d:6d:cf:73:31:97:4f:7b:40:f2:93:a9:9d: 4f:66:f4:11:1e:3c:9c:f2:8f:38:a4:85:85:8a:bf: 6e:80:fa:3a:15:34:c1:ee:de:24:94:41:1b:c8:f6: 71:08:2e:b3:d6:86:2e:38:4e:39:94:b1:d4:3f:bc: b8:09:3a:73:99:ab:37:e9:e1:17:e0:9f:bd:8b:ee: e6:c3:79:8d:34:ac:2c:91:06:23:8b:ca:f5:c9:d6: a0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D7:18:0B:EB:DC:DB:93:43:B6:97:4E:8E:FE:97:CC:D4:E0:0D:36 X509v3 Authority Key Identifier: keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:91:51:07:b0:02:a2:2d:4d:4e:76:07:e9:c2:8a:7f:ef:87: 55:4f:ba:c0:b3:f6:da:64:0a:d1:d8:e1:46:7c:0a:b6:9d:d3: 48:4b:2d:df:02:37:fb:c9:e2:a8:17:4c:0f:1f:b4:16:de:c7: 19:b9:43:0c:2e:d4:9d:3a:0d:fd:f8:7a:6d:44:6a:ab:3d:56: 81:b2:3e:ca:29:9b:be:55:8c:aa:e1:a5:45:ad:6c:e6:fd:d5: 6e:9f:e2:bf:52:6c:60:f2:8e:51:a0:13:22:fb:18:44:e8:5f: 14:fe:1d:d2:dc:0e:b6:3e:7e:36:ff:5f:f8:51:13:cc:14:55: 6e:6f:65:0d:a8:4a:49:1d:05:20:ad:4c:46:44:16:ad:b3:fa: 2b:15:87:fc:d7:9f:04:17:56:91:43:6d:29:0c:54:5f:2f:b6: b1:1d:97:d4:0c:78:cc:c9:b3:84:f3:3b:0d:55:f8:78:50:d2: 44:01:6f:4a:16:52:2d:bb:e3:27:9a:86:26:b0:dd:6b:99:ee: 7f:15:74:3b:64:bf:2c:f9:ea:6a:87:cc:57:98:fb:cd:d8:e6: 0e:3b:5a:dc:d6:cd:55:7d:94:11:ed:01:fe:25:4c:a7:a6:c8: bf:51:a3:e6:8b:e9:14:6a:62:2a:15:37:b7:62:38:fb:22:9e: 20:0a:9d:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwJuQ9rIeqzNZO48v+XSpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MzI1OGExOGNmNGQxMjI4ZTVjNzkwNzBkZmE2MzMxMTY4 MzIwYzUwHhcNMjUxMjA2MTMwMTE3WhcNMjUxMjA3MTMwMTE3WjAzMTEwLwYDVQQD Eyg5OWQ3MTgwYmViZGNkYjkzNDNiNjk3NGU4ZWZlOTdjY2Q0ZTAwZDM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU+ngSONH9OwMfp4cUGKHJqLrtp0 tDvD0Ta5iAyhzwDbhMFPFAJlX8cgfzqFdWeMCiNumkMNTTqIv3iEyBSmgtaKLf8G Di61656fnhdJ/UEGfq1JBZfChX8/4xRRdMnA+UMcrca5RXunk55njMBVIKeZOWVz Aw6RlGc0k5b+Ku9KfFkXzsoqNlbiA0eBy/JGz2/BCAP49271p1k3TRay/G5yqQJv M11tz3Mxl097QPKTqZ1PZvQRHjyc8o84pIWFir9ugPo6FTTB7t4klEEbyPZxCC6z 1oYuOE45lLHUP7y4CTpzmas36eEX4J+9i+7mw3mNNKwskQYji8r1ydagIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJnXGAvr3NuTQ7aXTo7+l8zU4A02MB8GA1UdIwQY MBaAFLQyWKGM9NEijlx5Bw36YzEWgyDFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERKWW9ZejAwU0tPWEhrSERmcGpNUmFESU1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wM2EzMjUtYTE2OS00NGNlLTg0ZWMt NTcyOGZiMjRiZjBlLzEvdERKWW9ZejAwU0tPWEhrSERmcGpNUmFESU1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8wM2EzMjUtYTE2OS00NGNlLTg0ZWMtNTcyOGZiMjRiZjBl LzEvdERKWW9ZejAwU0tPWEhrSERmcGpNUmFESU1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPpFRB7AC oi1NTnYH6cKKf++HVU+6wLP22mQK0djhRnwKtp3TSEst3wI3+8niqBdMDx+0Ft7H GblDDC7UnToN/fh6bURqqz1WgbI+yimbvlWMquGlRa1s5v3Vbp/iv1JsYPKOUaAT IvsYROhfFP4d0twOtj5+Nv9f+FETzBRVbm9lDahKSR0FIK1MRkQWrbP6KxWH/Nef BBdWkUNtKQxUXy+2sR2X1Ax4zMmzhPM7DVX4eFDSRAFvShZSLbvjJ5qGJrDda5nu fxV0O2S/LPnqaofMV5j7zdjmDjta3NbNVX2UEe0B/iVMp6bIv1Gj5ovpFGpiKhU3 t2I4+yKeIAqd9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 17:40:32 2025 by rpki-client