This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft File: TSkoLUc3P5QvCti5HtlAk7Zuo68.mft (raw, json) Hash identifier: GkFuPhUhY4ElB7QGhi5HBjZjAx+0r6a6TP5W4PT23LQ= Subject key identifier: 0B:6D:B1:14:B1:78:59:6F:29:B7:74:FE:E6:CE:E1:0D:1E:98:A0:8A Authority key identifier: 4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF Certificate issuer: /CN=4d29282d47373f942f0ad8b91ed94093b66ea3af Certificate serial: 019AF19A9B63169C872710202EF0F0D4C96B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft Manifest number: 16EA Signing time: Sat 06 Dec 2025 03:00:32 +0000 Manifest this update: Sat 06 Dec 2025 03:00:32 +0000 Manifest next update: Sun 07 Dec 2025 03:00:32 +0000 Files and hashes: 1: 8G7CKA2HbZHRoNb9HaqBloS90vU.roa (hash: lDvm+Nsn5gFxpzefNnpEbQ5VLuNGtuV4rwnVopzkwq0=) 2: TSkoLUc3P5QvCti5HtlAk7Zuo68.crl (hash: igFeAivrhI9YZrDWoQEAWMiddfzcc5CAGsC1ZX6w3kU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:9b:63:16:9c:87:27:10:20:2e:f0:f0:d4:c9:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d29282d47373f942f0ad8b91ed94093b66ea3af Validity Not Before: Dec 6 03:00:32 2025 GMT Not After : Dec 7 03:00:32 2025 GMT Subject: CN=0b6db114b178596f29b774fee6cee10d1e98a08a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:87:90:3a:89:f0:23:bb:f4:15:d7:16:e4:15: 44:a6:51:4f:5a:c2:0d:8f:40:dd:d9:33:dd:70:a6: ed:31:c9:64:ab:f6:5b:34:a3:c4:21:f6:5b:e7:d5: 37:e8:ee:52:a3:3b:0e:2f:91:7f:20:41:86:a5:b9: a2:ec:b4:df:8f:c5:d1:50:23:9f:7f:cd:88:b6:de: 56:d6:7b:9e:3a:94:34:d6:7c:4c:b8:c3:bc:ff:8b: ba:e7:cf:af:59:25:65:71:df:f9:39:99:88:82:98: 01:2c:63:33:6a:f0:a1:20:87:6c:fd:c5:5a:ce:3b: d8:d1:7f:f8:1b:cb:20:a3:4e:fc:62:94:b5:17:70: b0:ed:f8:31:03:a8:c1:0b:aa:75:a1:51:3c:62:8b: cf:09:14:e6:59:4e:9f:c8:c5:01:e1:03:83:b6:2c: 4e:87:77:55:97:96:6f:aa:f3:5b:ea:34:99:85:58: b5:d6:e2:6c:c4:19:34:ed:44:49:a6:44:53:0f:53: 31:cb:96:51:74:e6:f0:1a:8a:93:19:c6:ce:9d:38: 4f:c9:60:00:72:d2:08:c5:f5:fd:f6:39:a8:25:42: 70:a6:ef:ad:a4:6d:6c:4f:13:1b:71:34:ba:92:3b: 0d:e3:67:dc:79:39:15:97:11:47:ac:05:93:db:44: ab:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6D:B1:14:B1:78:59:6F:29:B7:74:FE:E6:CE:E1:0D:1E:98:A0:8A X509v3 Authority Key Identifier: keyid:4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:37:c8:ae:01:12:6a:56:25:4b:aa:17:53:15:be:55:4f:ea: 5a:6b:8c:ff:e2:8a:48:35:e3:e9:b6:8e:9e:e8:c4:6e:c7:1b: 86:be:a8:db:3a:d4:4d:ff:06:f4:08:60:2d:0a:be:ff:4c:b8: 86:cc:e1:dc:50:44:83:ea:e9:6e:90:44:fd:ac:0e:b6:d8:c9: 03:62:fa:0d:90:3d:4f:4b:d0:4d:93:31:a4:b0:a3:a0:80:d0: a5:3f:09:16:4f:e8:5c:b6:76:90:f8:61:d4:ad:43:e1:25:77: b6:b1:fb:d2:5d:6e:9c:15:0f:46:12:39:ec:4f:24:7a:69:96: 0c:20:71:26:b9:7b:1e:62:3e:a4:f5:6c:72:dc:75:49:48:85: 23:df:fe:d9:87:2a:53:fe:21:91:2f:07:c3:ab:be:87:05:0a: 12:93:b5:38:38:b9:61:21:d6:f0:63:88:de:61:85:26:86:f1: c4:b1:a9:72:cd:e2:cf:e2:20:3f:86:6c:02:6f:21:cd:47:cd: 02:4f:a0:4f:25:ee:8d:a5:4c:85:06:50:14:2d:e6:4d:4e:7e: 3a:dc:94:da:d2:99:74:f1:e1:36:4d:3f:ca:27:f5:25:47:aa: 8d:45:8a:d8:f1:12:ab:c7:68:88:6a:48:19:23:ab:e0:cf:90: d9:d8:03:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmptjFpyHJxAgLvDw1MlrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMjkyODJkNDczNzNmOTQyZjBhZDhiOTFlZDk0MDkzYjY2 ZWEzYWYwHhcNMjUxMjA2MDMwMDMyWhcNMjUxMjA3MDMwMDMyWjAzMTEwLwYDVQQD EygwYjZkYjExNGIxNzg1OTZmMjliNzc0ZmVlNmNlZTEwZDFlOThhMDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8oeQOonwI7v0FdcW5BVEplFPWsIN j0Dd2TPdcKbtMclkq/ZbNKPEIfZb59U36O5SozsOL5F/IEGGpbmi7LTfj8XRUCOf f82Itt5W1nueOpQ01nxMuMO8/4u658+vWSVlcd/5OZmIgpgBLGMzavChIIds/cVa zjvY0X/4G8sgo078YpS1F3Cw7fgxA6jBC6p1oVE8YovPCRTmWU6fyMUB4QODtixO h3dVl5ZvqvNb6jSZhVi11uJsxBk07URJpkRTD1Mxy5ZRdObwGoqTGcbOnThPyWAA ctIIxfX99jmoJUJwpu+tpG1sTxMbcTS6kjsN42fceTkVlxFHrAWT20SrgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAttsRSxeFlvKbd0/ubO4Q0emKCKMB8GA1UdIwQY MBaAFE0pKC1HNz+ULwrYuR7ZQJO2bqOvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFNrb0xVYzNQNVF2Q3RpNUh0bEFrN1p1bzY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC82NWE0YzItMzRiMy00MjA1LWFmZDEt YzU0ODFkYjM3MThkLzEvVFNrb0xVYzNQNVF2Q3RpNUh0bEFrN1p1bzY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC82NWE0YzItMzRiMy00MjA1LWFmZDEtYzU0ODFkYjM3MThk LzEvVFNrb0xVYzNQNVF2Q3RpNUh0bEFrN1p1bzY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyDfIrgES alYlS6oXUxW+VU/qWmuM/+KKSDXj6baOnujEbscbhr6o2zrUTf8G9AhgLQq+/0y4 hszh3FBEg+rpbpBE/awOttjJA2L6DZA9T0vQTZMxpLCjoIDQpT8JFk/oXLZ2kPhh 1K1D4SV3trH70l1unBUPRhI57E8kemmWDCBxJrl7HmI+pPVsctx1SUiFI9/+2Ycq U/4hkS8Hw6u+hwUKEpO1ODi5YSHW8GOI3mGFJobxxLGpcs3iz+IgP4ZsAm8hzUfN Ak+gTyXujaVMhQZQFC3mTU5+OtyU2tKZdPHhNk0/yif1JUeqjUWK2PESq8doiGpI GSOr4M+Q2dgDPg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:15:04 2025 by rpki-client