This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft File: TON2ekBU9IaN4L2fsjpcx2kP_tU.mft (raw, json) Hash identifier: RAHhnS3lRfAa2xyNOsMNetUIniHSy/1mLnsduh3tXq0= Subject key identifier: A6:4F:E0:B3:B0:A8:5C:0D:DC:68:CB:D6:C8:32:26:41:3F:4F:43:0F Authority key identifier: 4C:E3:76:7A:40:54:F4:86:8D:E0:BD:9F:B2:3A:5C:C7:69:0F:FE:D5 Certificate issuer: /CN=4ce3767a4054f4868de0bd9fb23a5cc7690ffed5 Certificate serial: 019B2A40D4E3F8AD3E5792C120192C04A276 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft Manifest number: 0F1D Signing time: Wed 17 Dec 2025 03:00:50 +0000 Manifest this update: Wed 17 Dec 2025 03:00:50 +0000 Manifest next update: Thu 18 Dec 2025 03:00:50 +0000 Files and hashes: 1: TON2ekBU9IaN4L2fsjpcx2kP_tU.crl (hash: TdfY95Rnlt25KBWXyxF0kz3YlvMFmpNb86G6jqtf8wU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:40:d4:e3:f8:ad:3e:57:92:c1:20:19:2c:04:a2:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ce3767a4054f4868de0bd9fb23a5cc7690ffed5 Validity Not Before: Dec 17 03:00:50 2025 GMT Not After : Dec 18 03:00:50 2025 GMT Subject: CN=a64fe0b3b0a85c0ddc68cbd6c83226413f4f430f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d4:e9:26:a4:29:40:69:02:c8:b1:e7:14:23: a6:6f:19:8f:07:bb:ba:e3:c3:f3:f6:a6:7d:e7:59: c2:4f:f5:51:44:d6:39:22:2f:d6:69:4b:dd:1b:c8: 8e:68:a1:ec:9c:97:b5:39:c3:4f:d3:b1:ab:79:63: 04:e6:f6:64:e1:13:b5:85:64:39:d4:6f:ea:af:a7: 44:d1:ad:b4:68:f1:05:81:0b:0f:5f:57:2b:ad:5f: f3:5a:78:18:8c:5f:1f:ab:59:d6:24:dc:d0:72:ab: 43:64:12:43:ab:0c:54:87:e4:6e:f6:4c:6b:05:9e: 17:4c:ae:92:4b:f2:df:3e:f3:5b:66:7f:90:3a:25: 38:50:fa:42:2f:7b:9c:52:44:0b:a0:73:ad:6f:b9: 1c:dc:7d:f5:c4:e7:45:ef:e0:4f:33:2e:51:56:2d: eb:94:da:e3:80:c9:40:ce:24:53:fd:49:41:7f:ce: a0:6e:64:52:94:1d:85:41:33:64:1a:68:d9:eb:dd: 10:ee:c8:5f:48:61:29:df:72:89:45:65:d3:9c:c5: 30:92:4a:a2:64:a1:bd:36:19:bb:ed:16:e2:9d:44: 5a:71:ff:31:36:8c:52:76:0f:e4:17:c7:ed:8a:e8: 45:b7:f4:b2:a3:94:71:ec:20:5e:ff:34:2d:09:ee: e4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4F:E0:B3:B0:A8:5C:0D:DC:68:CB:D6:C8:32:26:41:3F:4F:43:0F X509v3 Authority Key Identifier: keyid:4C:E3:76:7A:40:54:F4:86:8D:E0:BD:9F:B2:3A:5C:C7:69:0F:FE:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TON2ekBU9IaN4L2fsjpcx2kP_tU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f7baf4-d266-4fe5-a6ff-a00667f4cf71/1/TON2ekBU9IaN4L2fsjpcx2kP_tU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:39:1d:4e:7f:ac:de:ac:1c:42:33:2d:73:d8:55:44:ed:88: 98:d1:4f:37:b2:97:8c:fc:9c:26:8b:64:04:f6:0a:33:67:ce: 4e:f9:04:fd:3a:96:ed:32:d7:fb:7f:f4:8f:3c:e5:c8:72:59: fd:66:81:69:7b:38:3e:3a:6d:e5:45:6d:de:a3:ec:f4:39:bc: 74:66:53:b1:c3:6f:e3:88:ce:6c:18:45:11:4c:ca:08:e8:af: d7:d2:8d:aa:b1:75:99:b5:5e:ff:eb:b8:ce:31:9e:bb:d1:fe: 42:dc:89:a5:c9:76:39:b2:1e:b4:e3:d7:e7:30:6d:97:7c:61: bd:6c:48:d8:0d:47:13:2c:ea:8c:3b:90:4f:a7:0a:1c:c2:b7: f5:70:63:21:bb:e6:d4:9b:18:1b:51:23:16:7f:77:10:d8:35: 56:01:45:bc:28:50:e6:e5:80:2f:2e:cd:33:6f:95:65:8f:54: ea:5d:92:74:1d:55:01:52:19:34:05:f9:3a:48:64:ef:8e:e5: 0c:eb:b5:80:5c:d2:54:32:81:fc:d2:5f:d1:c1:19:32:b5:cd: f2:f8:77:eb:5b:86:38:3d:28:19:bf:3c:d9:11:08:54:be:b8: 70:03:a4:5d:68:8e:56:69:54:4e:1b:1f:34:a1:36:f2:39:7a: 4c:22:b4:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqQNTj+K0+V5LBIBksBKJ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZTM3NjdhNDA1NGY0ODY4ZGUwYmQ5ZmIyM2E1Y2M3Njkw ZmZlZDUwHhcNMjUxMjE3MDMwMDUwWhcNMjUxMjE4MDMwMDUwWjAzMTEwLwYDVQQD EyhhNjRmZTBiM2IwYTg1YzBkZGM2OGNiZDZjODMyMjY0MTNmNGY0MzBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNTpJqQpQGkCyLHnFCOmbxmPB7u6 48Pz9qZ951nCT/VRRNY5Ii/WaUvdG8iOaKHsnJe1OcNP07GreWME5vZk4RO1hWQ5 1G/qr6dE0a20aPEFgQsPX1crrV/zWngYjF8fq1nWJNzQcqtDZBJDqwxUh+Ru9kxr BZ4XTK6SS/LfPvNbZn+QOiU4UPpCL3ucUkQLoHOtb7kc3H31xOdF7+BPMy5RVi3r lNrjgMlAziRT/UlBf86gbmRSlB2FQTNkGmjZ690Q7shfSGEp33KJRWXTnMUwkkqi ZKG9Nhm77RbinURacf8xNoxSdg/kF8ftiuhFt/Syo5Rx7CBe/zQtCe7kmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZP4LOwqFwN3GjL1sgyJkE/T0MPMB8GA1UdIwQY MBaAFEzjdnpAVPSGjeC9n7I6XMdpD/7VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE9OMmVrQlU5SWFONEwyZnNqcGN4MmtQX3RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9mN2JhZjQtZDI2Ni00ZmU1LWE2ZmYt YTAwNjY3ZjRjZjcxLzEvVE9OMmVrQlU5SWFONEwyZnNqcGN4MmtQX3RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9mN2JhZjQtZDI2Ni00ZmU1LWE2ZmYtYTAwNjY3ZjRjZjcx LzEvVE9OMmVrQlU5SWFONEwyZnNqcGN4MmtQX3RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjDkdTn+s 3qwcQjMtc9hVRO2ImNFPN7KXjPycJotkBPYKM2fOTvkE/TqW7TLX+3/0jzzlyHJZ /WaBaXs4Pjpt5UVt3qPs9Dm8dGZTscNv44jObBhFEUzKCOiv19KNqrF1mbVe/+u4 zjGeu9H+QtyJpcl2ObIetOPX5zBtl3xhvWxI2A1HEyzqjDuQT6cKHMK39XBjIbvm 1JsYG1EjFn93ENg1VgFFvChQ5uWALy7NM2+VZY9U6l2SdB1VAVIZNAX5Okhk747l DOu1gFzSVDKB/NJf0cEZMrXN8vh361uGOD0oGb882REIVL64cAOkXWiOVmlUThsf NKE28jl6TCK06Q== -----END CERTIFICATE-----Generated at Wed Dec 17 05:55:18 2025 by rpki-client