This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft File: TON2ekBU9IaN4L2fsjpcx2kP_tU.mft (raw, json) Hash identifier: UIu021PxLJXIM/RjSk8zywGyxkBlQXRL1t8OY7K6DgE= Subject key identifier: FE:FE:19:B6:60:E0:85:17:17:A0:BD:42:77:09:A4:28:02:52:34:71 Authority key identifier: 4C:E3:76:7A:40:54:F4:86:8D:E0:BD:9F:B2:3A:5C:C7:69:0F:FE:D5 Certificate issuer: /CN=4ce3767a4054f4868de0bd9fb23a5cc7690ffed5 Certificate serial: 019AF23F8E540A196CE6C6C2DCFBF9CEF45E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft Manifest number: 0F00 Signing time: Sat 06 Dec 2025 06:00:42 +0000 Manifest this update: Sat 06 Dec 2025 06:00:42 +0000 Manifest next update: Sun 07 Dec 2025 06:00:42 +0000 Files and hashes: 1: TON2ekBU9IaN4L2fsjpcx2kP_tU.crl (hash: pT/DoLHAOJD/g7mRmN66NOGQ7vt2tIR84/sMsGJ5XJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:8e:54:0a:19:6c:e6:c6:c2:dc:fb:f9:ce:f4:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ce3767a4054f4868de0bd9fb23a5cc7690ffed5 Validity Not Before: Dec 6 06:00:42 2025 GMT Not After : Dec 7 06:00:42 2025 GMT Subject: CN=fefe19b660e0851717a0bd427709a42802523471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:20:1f:d5:98:a4:9a:f0:1a:79:17:9c:43:b5: 5b:f7:74:00:13:c5:7d:9a:60:5b:4a:76:f4:9a:a8: b2:44:bf:e5:e4:1b:fe:25:aa:af:22:25:87:6c:29: bc:d5:9a:e4:32:eb:5f:6f:7e:bd:9c:c1:19:bb:e6: f0:6b:84:19:20:bc:9f:83:e7:5c:04:b2:7e:3c:93: 11:56:26:1d:68:34:f3:30:51:52:b1:cc:b1:4b:df: c2:b9:3a:71:ce:1f:28:fe:74:9a:65:e4:7a:00:69: 52:f3:2e:2d:8d:1d:03:5e:2c:b2:10:8a:76:22:7d: f4:d0:8c:dd:8f:35:2a:60:13:e9:29:7e:20:1e:f4: f4:92:ed:ae:53:b1:3f:17:ba:35:b2:a3:53:f6:c6: eb:f6:ec:2e:ae:de:3f:0a:3b:d1:ef:61:fb:58:39: 01:30:20:86:90:12:04:ea:e9:72:c0:a6:0c:67:ac: f9:05:e8:2e:c8:1f:18:01:33:ee:f4:ab:e3:2a:0c: d7:04:6b:b3:21:b6:8f:ef:80:48:1a:7c:e0:20:05: a5:0d:42:0f:ad:e9:32:7f:8d:9c:c9:d8:e9:d4:82: 8d:e3:a0:b0:df:28:58:19:8b:dd:cb:ad:2b:b1:fd: be:a7:32:96:24:91:9f:ea:08:52:0e:44:b9:ab:75: 5c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FE:19:B6:60:E0:85:17:17:A0:BD:42:77:09:A4:28:02:52:34:71 X509v3 Authority Key Identifier: keyid:4C:E3:76:7A:40:54:F4:86:8D:E0:BD:9F:B2:3A:5C:C7:69:0F:FE:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:fd:dd:38:3a:10:36:3c:b8:e0:c1:af:ee:67:db:62:7d:b2: c9:e8:33:06:36:80:b7:58:b1:fd:c1:d8:e5:ff:14:e5:53:9d: 45:98:44:be:6d:99:e4:92:a0:78:8d:3a:8c:b2:0d:38:08:ca: 39:c9:48:58:2e:a8:22:d6:10:56:24:22:ef:da:e1:58:2b:24: f6:70:65:a9:d0:22:fe:d3:1a:e9:44:fc:cf:db:6f:67:3d:e1: 03:de:94:b4:c6:49:32:88:3f:34:e3:6d:ba:51:3d:e3:20:ba: ce:93:bc:c3:70:a7:1e:10:f9:1b:7a:e0:f6:18:8a:e4:c4:22: 2d:51:54:d5:71:3a:22:f0:f5:78:c1:76:42:63:f3:0b:09:44: 6a:b3:98:8c:31:08:89:f0:a4:a0:b4:f6:63:ff:5e:62:6a:68: bb:de:5d:2f:58:a0:a7:54:86:19:92:ba:7c:0d:a9:be:fb:c0: 38:08:ef:ae:3a:a8:9c:93:e8:a0:e5:b0:03:d2:94:6c:49:20: 1c:65:4d:92:25:86:37:b1:92:d0:26:09:06:cc:af:79:bc:fe: c7:06:4f:00:f4:e1:70:9f:27:6d:a3:25:68:19:82:00:45:13: f9:40:6e:71:61:56:c5:6d:52:70:74:2e:c9:a3:a7:5c:7e:37: 75:e1:21:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP45UChls5sbC3Pv5zvReMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZTM3NjdhNDA1NGY0ODY4ZGUwYmQ5ZmIyM2E1Y2M3Njkw ZmZlZDUwHhcNMjUxMjA2MDYwMDQyWhcNMjUxMjA3MDYwMDQyWjAzMTEwLwYDVQQD EyhmZWZlMTliNjYwZTA4NTE3MTdhMGJkNDI3NzA5YTQyODAyNTIzNDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyAf1ZikmvAaeRecQ7Vb93QAE8V9 mmBbSnb0mqiyRL/l5Bv+JaqvIiWHbCm81ZrkMutfb369nMEZu+bwa4QZILyfg+dc BLJ+PJMRViYdaDTzMFFSscyxS9/CuTpxzh8o/nSaZeR6AGlS8y4tjR0DXiyyEIp2 In300IzdjzUqYBPpKX4gHvT0ku2uU7E/F7o1sqNT9sbr9uwurt4/CjvR72H7WDkB MCCGkBIE6ulywKYMZ6z5BeguyB8YATPu9KvjKgzXBGuzIbaP74BIGnzgIAWlDUIP rekyf42cydjp1IKN46Cw3yhYGYvdy60rsf2+pzKWJJGf6ghSDkS5q3VcDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP7+GbZg4IUXF6C9QncJpCgCUjRxMB8GA1UdIwQY MBaAFEzjdnpAVPSGjeC9n7I6XMdpD/7VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE9OMmVrQlU5SWFONEwyZnNqcGN4MmtQX3RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9mN2JhZjQtZDI2Ni00ZmU1LWE2ZmYt YTAwNjY3ZjRjZjcxLzEvVE9OMmVrQlU5SWFONEwyZnNqcGN4MmtQX3RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9mN2JhZjQtZDI2Ni00ZmU1LWE2ZmYtYTAwNjY3ZjRjZjcx LzEvVE9OMmVrQlU5SWFONEwyZnNqcGN4MmtQX3RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc/3dODoQ Njy44MGv7mfbYn2yyegzBjaAt1ix/cHY5f8U5VOdRZhEvm2Z5JKgeI06jLINOAjK OclIWC6oItYQViQi79rhWCsk9nBlqdAi/tMa6UT8z9tvZz3hA96UtMZJMog/NONt ulE94yC6zpO8w3CnHhD5G3rg9hiK5MQiLVFU1XE6IvD1eMF2QmPzCwlEarOYjDEI ifCkoLT2Y/9eYmpou95dL1igp1SGGZK6fA2pvvvAOAjvrjqonJPooOWwA9KUbEkg HGVNkiWGN7GS0CYJBsyvebz+xwZPAPThcJ8nbaMlaBmCAEUT+UBucWFWxW1ScHQu yaOnXH43deEh7A== -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:30 2025 by rpki-client