This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft File: TSkoLUc3P5QvCti5HtlAk7Zuo68.mft (raw, json) Hash identifier: aVXJME23pHTP+/fEiAkb94bKn2ETgbwKHKnciPjvdEE= Subject key identifier: 75:DF:16:C1:49:30:62:CC:21:49:E0:C3:82:62:A9:88:3C:54:88:CD Authority key identifier: 4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF Certificate issuer: /CN=4d29282d47373f942f0ad8b91ed94093b66ea3af Certificate serial: 019B2F66F306B257773B148AF99D642AC987 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft Manifest number: 170A Signing time: Thu 18 Dec 2025 03:00:34 +0000 Manifest this update: Thu 18 Dec 2025 03:00:34 +0000 Manifest next update: Fri 19 Dec 2025 03:00:34 +0000 Files and hashes: 1: 8G7CKA2HbZHRoNb9HaqBloS90vU.roa (hash: lDvm+Nsn5gFxpzefNnpEbQ5VLuNGtuV4rwnVopzkwq0=) 2: TSkoLUc3P5QvCti5HtlAk7Zuo68.crl (hash: Eq059rXUyMNMWfrCocAnmke8bhN9YTEmS8Fhnoq7gCs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:66:f3:06:b2:57:77:3b:14:8a:f9:9d:64:2a:c9:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d29282d47373f942f0ad8b91ed94093b66ea3af Validity Not Before: Dec 18 03:00:34 2025 GMT Not After : Dec 19 03:00:34 2025 GMT Subject: CN=75df16c1493062cc2149e0c38262a9883c5488cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:7b:98:3d:cf:1f:37:99:fd:df:4e:5c:99: 01:a5:e3:26:d9:6e:6e:7f:18:e8:34:51:b5:69:ed: 92:b8:a5:34:24:3b:72:87:ef:db:5f:14:4c:5e:3b: 1c:9b:1e:06:75:31:92:fe:46:af:67:ac:e4:90:95: 31:b0:7a:09:9e:c9:cf:89:b3:c8:c7:93:d3:19:44: 0f:ac:cf:06:06:94:75:31:a2:c8:e4:59:5c:2c:1a: e1:13:b2:b0:e7:06:09:df:cf:5b:26:69:96:6d:e3: 75:59:f9:f8:db:44:02:9c:20:c6:62:ec:a5:5d:3a: e4:aa:a8:17:69:48:93:a0:dc:6c:ad:ac:14:14:06: 2f:c3:ff:44:2d:19:b5:33:a9:94:0e:6b:58:d8:f6: fd:58:a0:3e:9c:5d:6f:d3:41:88:c0:d4:aa:34:16: fc:3a:48:00:d5:3d:dc:26:02:47:65:3b:e5:ee:41: 65:b3:df:a9:7b:f3:d8:56:8a:3d:6a:0e:1f:3a:f4: 7c:ee:b4:3b:33:88:af:60:fc:2e:96:9d:fd:e5:66: 21:3f:44:08:ba:39:65:cf:12:61:6b:25:91:92:29: f7:6b:8f:97:96:33:01:9b:e9:b5:4a:60:d6:e5:90: 80:b9:9e:88:e9:73:9e:ba:23:c7:fa:14:e3:39:5e: 81:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DF:16:C1:49:30:62:CC:21:49:E0:C3:82:62:A9:88:3C:54:88:CD X509v3 Authority Key Identifier: keyid:4D:29:28:2D:47:37:3F:94:2F:0A:D8:B9:1E:D9:40:93:B6:6E:A3:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSkoLUc3P5QvCti5HtlAk7Zuo68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/65a4c2-34b3-4205-afd1-c5481db3718d/1/TSkoLUc3P5QvCti5HtlAk7Zuo68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:21:96:71:cc:aa:2e:19:50:85:ee:af:c7:71:73:b6:83:72: 91:1b:cd:5a:32:95:b3:a6:5c:7e:b6:9b:e9:16:17:b6:96:97: 7e:2b:56:d5:ee:88:74:06:a0:38:47:be:80:77:20:73:5f:e6: 7a:dc:2c:ce:e4:c5:f3:7c:88:17:a9:ab:1a:38:a8:90:16:92: 95:56:42:4f:cf:b5:6a:0c:47:5d:46:47:f4:17:c3:b3:dd:93: 64:80:c0:6d:66:4e:ab:4d:83:ea:0e:11:30:e7:f2:5c:2d:5b: b6:f6:64:59:c7:49:6d:31:ce:a2:4f:17:f2:bd:73:35:25:48: 10:b5:15:a8:58:b7:27:0b:22:d9:5f:6c:e0:4a:5f:54:59:c8: 0f:a7:a4:49:7f:13:fe:49:bd:38:77:dc:e9:47:fc:b0:4f:2c: 36:96:c4:82:a7:b6:d6:e2:2e:e7:af:0a:8e:8f:f8:b1:b7:87: 8a:f1:c6:d1:fd:31:29:36:10:29:05:e9:67:70:df:7f:35:20: 24:9f:2b:a9:b6:47:19:e3:69:2e:ef:6c:2b:b7:ab:9f:d1:3f: 94:98:7c:f1:62:78:f5:f5:9a:f2:cc:a7:f0:17:44:58:0a:2a: 68:81:fd:6a:fe:c5:43:d2:8a:fa:4d:9e:74:17:67:a4:aa:c3: 93:06:42:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvZvMGsld3OxSK+Z1kKsmHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMjkyODJkNDczNzNmOTQyZjBhZDhiOTFlZDk0MDkzYjY2 ZWEzYWYwHhcNMjUxMjE4MDMwMDM0WhcNMjUxMjE5MDMwMDM0WjAzMTEwLwYDVQQD Eyg3NWRmMTZjMTQ5MzA2MmNjMjE0OWUwYzM4MjYyYTk4ODNjNTQ4OGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOR7mD3PHzeZ/d9OXJkBpeMm2W5u fxjoNFG1ae2SuKU0JDtyh+/bXxRMXjscmx4GdTGS/kavZ6zkkJUxsHoJnsnPibPI x5PTGUQPrM8GBpR1MaLI5FlcLBrhE7Kw5wYJ389bJmmWbeN1Wfn420QCnCDGYuyl XTrkqqgXaUiToNxsrawUFAYvw/9ELRm1M6mUDmtY2Pb9WKA+nF1v00GIwNSqNBb8 OkgA1T3cJgJHZTvl7kFls9+pe/PYVoo9ag4fOvR87rQ7M4ivYPwulp395WYhP0QI ujllzxJhayWRkin3a4+XljMBm+m1SmDW5ZCAuZ6I6XOeuiPH+hTjOV6BhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHXfFsFJMGLMIUngw4JiqYg8VIjNMB8GA1UdIwQY MBaAFE0pKC1HNz+ULwrYuR7ZQJO2bqOvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFNrb0xVYzNQNVF2Q3RpNUh0bEFrN1p1bzY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC82NWE0YzItMzRiMy00MjA1LWFmZDEt YzU0ODFkYjM3MThkLzEvVFNrb0xVYzNQNVF2Q3RpNUh0bEFrN1p1bzY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC82NWE0YzItMzRiMy00MjA1LWFmZDEtYzU0ODFkYjM3MThk LzEvVFNrb0xVYzNQNVF2Q3RpNUh0bEFrN1p1bzY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnyGWccyq LhlQhe6vx3FztoNykRvNWjKVs6Zcfrab6RYXtpaXfitW1e6IdAagOEe+gHcgc1/m etwszuTF83yIF6mrGjiokBaSlVZCT8+1agxHXUZH9BfDs92TZIDAbWZOq02D6g4R MOfyXC1btvZkWcdJbTHOok8X8r1zNSVIELUVqFi3Jwsi2V9s4EpfVFnID6ekSX8T /km9OHfc6Uf8sE8sNpbEgqe21uIu568Kjo/4sbeHivHG0f0xKTYQKQXpZ3DffzUg JJ8rqbZHGeNpLu9sK7ern9E/lJh88WJ49fWa8syn8BdEWAoqaIH9av7FQ9KK+k2e dBdnpKrDkwZCkw== -----END CERTIFICATE-----Generated at Thu Dec 18 07:11:42 2025 by rpki-client