This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft File: tK4oip3bDvUKKUs8rpY-FHycfck.mft (raw, json) Hash identifier: QSJY0PZY+reSACQekrtRB3ZOpmbctWKF6y43BQ+IqZg= Subject key identifier: 00:FB:DB:51:51:43:B7:5E:4F:26:6C:CE:20:E3:B4:10:87:F8:FC:DA Authority key identifier: B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9 Certificate issuer: /CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9 Certificate serial: 019AF42E46CAE2DB4F5C983DDC50AAA97785 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 15:01:04 +0000 Manifest this update: Sat 06 Dec 2025 15:01:04 +0000 Manifest next update: Sun 07 Dec 2025 15:01:04 +0000 Files and hashes: 1: tK4oip3bDvUKKUs8rpY-FHycfck.crl (hash: zxbQbfbbiZ/PHZIFWACg1BtSfRPhGskPtASf3Im+Z8A=) 2: u16TB_X_VEL7--qGdSVXn8Zs3wY.roa (hash: m8sRTErDjjsLnDtgYn9w7y6plArnvxsTKmxxZwh54Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:46:ca:e2:db:4f:5c:98:3d:dc:50:aa:a9:77:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9 Validity Not Before: Dec 6 15:01:04 2025 GMT Not After : Dec 7 15:01:04 2025 GMT Subject: CN=00fbdb515143b75e4f266cce20e3b41087f8fcda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:69:47:c4:0f:d9:86:1b:95:a9:21:fe:50:8b: 5a:19:fa:41:8b:e0:fe:a0:34:39:a2:3a:60:dc:14: 23:7a:c4:7c:b2:41:92:c6:d0:7e:09:71:b5:64:a5: 3b:98:7a:75:b1:3d:a0:a8:f7:76:3e:33:33:0d:92: 08:17:22:d1:e4:95:ec:af:ec:b3:68:93:25:2b:82: 80:07:8f:13:fb:35:0f:70:4a:f9:9a:76:16:55:20: f6:e4:c4:c9:60:ee:86:09:bc:1a:df:2a:47:3a:c1: e3:1d:6b:d6:4f:32:71:43:c3:19:ab:58:64:60:e5: 3f:3e:80:30:d4:a0:26:8a:e0:ba:ec:a1:56:e3:4a: 9c:92:8e:52:1c:40:21:62:0b:c4:5c:6d:ca:26:9f: 48:b1:0b:00:ac:da:80:b4:ac:fe:c5:fc:b8:7d:a8: 67:17:59:a5:50:b8:2d:91:57:39:ed:19:d0:b6:9b: 7b:02:bd:d4:a3:65:2e:c6:13:71:f6:45:20:13:23: e4:42:e4:2f:3c:9b:7a:8a:8c:2d:f9:0d:42:b8:fc: b7:0c:41:4e:dc:80:db:4d:8a:31:ee:44:0f:fc:e1: 1d:a3:13:cb:59:55:3b:fb:c6:97:72:9e:a1:f6:ff: 6b:d2:46:1d:3b:6b:21:63:69:63:25:42:03:e8:09: f5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FB:DB:51:51:43:B7:5E:4F:26:6C:CE:20:E3:B4:10:87:F8:FC:DA X509v3 Authority Key Identifier: keyid:B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:f8:04:85:ed:e7:b0:1e:9f:fc:d2:3d:12:43:f6:51:71:c9: 86:57:4f:40:24:9e:12:6e:c4:ff:b9:90:cb:e4:7c:c5:27:00: be:41:f0:bb:86:7f:6c:cd:fc:99:81:e1:ee:73:78:09:e8:b6: db:d5:1b:d0:d5:ba:53:42:22:cf:62:ab:2a:63:67:57:11:3c: ed:02:83:70:fd:dd:0a:71:7b:9d:c3:57:07:ef:ca:0a:e0:02: 27:d4:2e:4b:a1:9a:25:5c:d3:c4:74:1a:2e:da:ed:06:23:52: 6d:c3:25:2e:cc:7d:d8:82:24:6e:af:69:94:b2:ad:30:c8:2b: 1e:12:2d:df:9a:65:89:5f:e7:a2:d4:20:c6:e3:dc:89:9d:dc: bf:74:aa:a7:33:f0:a6:1c:c7:99:a0:ce:d1:cd:cd:06:03:53: 07:87:d5:b6:15:c4:b0:41:26:62:4e:95:95:4f:a2:16:20:3b: 68:bb:c0:64:03:95:fd:76:f6:d7:2e:96:d7:50:7e:d1:d5:1f: ba:58:da:7c:d6:dd:81:dc:79:81:5d:44:fd:70:2a:28:bd:57: f6:b3:e8:9f:21:d0:c1:9f:3d:1a:15:db:7d:d3:85:54:3d:df: 5f:2a:57:a4:89:7f:7f:be:e8:9d:18:71:4b:e4:81:37:68:05: 6b:44:cc:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LkbK4ttPXJg93FCqqXeFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YWUyODhhOWRkYjBlZjUwYTI5NGIzY2FlOTYzZTE0N2M5 YzdkYzkwHhcNMjUxMjA2MTUwMTA0WhcNMjUxMjA3MTUwMTA0WjAzMTEwLwYDVQQD EygwMGZiZGI1MTUxNDNiNzVlNGYyNjZjY2UyMGUzYjQxMDg3ZjhmY2RhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWlHxA/ZhhuVqSH+UItaGfpBi+D+ oDQ5ojpg3BQjesR8skGSxtB+CXG1ZKU7mHp1sT2gqPd2PjMzDZIIFyLR5JXsr+yz aJMlK4KAB48T+zUPcEr5mnYWVSD25MTJYO6GCbwa3ypHOsHjHWvWTzJxQ8MZq1hk YOU/PoAw1KAmiuC67KFW40qcko5SHEAhYgvEXG3KJp9IsQsArNqAtKz+xfy4fahn F1mlULgtkVc57RnQtpt7Ar3Uo2UuxhNx9kUgEyPkQuQvPJt6iowt+Q1CuPy3DEFO 3IDbTYox7kQP/OEdoxPLWVU7+8aXcp6h9v9r0kYdO2shY2ljJUID6An14QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAD721FRQ7deTyZsziDjtBCH+PzaMB8GA1UdIwQY MBaAFLSuKIqd2w71CilLPK6WPhR8nH3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEs0b2lwM2JEdlVLS1VzOHJwWS1GSHljZmNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy80NTdmMmQtMDEzNy00ZDYxLTg1MDAt MzAwNDI2Y2UzMmUyLzEvdEs0b2lwM2JEdlVLS1VzOHJwWS1GSHljZmNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy80NTdmMmQtMDEzNy00ZDYxLTg1MDAtMzAwNDI2Y2UzMmUy LzEvdEs0b2lwM2JEdlVLS1VzOHJwWS1GSHljZmNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOPgEhe3n sB6f/NI9EkP2UXHJhldPQCSeEm7E/7mQy+R8xScAvkHwu4Z/bM38mYHh7nN4Cei2 29Ub0NW6U0Iiz2KrKmNnVxE87QKDcP3dCnF7ncNXB+/KCuACJ9QuS6GaJVzTxHQa LtrtBiNSbcMlLsx92IIkbq9plLKtMMgrHhIt35pliV/notQgxuPciZ3cv3SqpzPw phzHmaDO0c3NBgNTB4fVthXEsEEmYk6VlU+iFiA7aLvAZAOV/Xb21y6W11B+0dUf uljafNbdgdx5gV1E/XAqKL1X9rPonyHQwZ89GhXbfdOFVD3fXypXpIl/f77onRhx S+SBN2gFa0TMcg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:42:38 2025 by rpki-client