This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json) Hash identifier: XYHyVeCABASkBbZdGmgpoE2kXikIILAyRiQvpZIE+Yo= Subject key identifier: 75:3B:68:80:E2:21:20:BB:D6:34:16:78:DD:75:18:EB:7D:1E:7D:5E Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31 Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31 Certificate serial: 019AF1D1FCF96807319478DB78BDFFE8CFC1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft Manifest number: 0C61 Signing time: Sat 06 Dec 2025 04:01:02 +0000 Manifest this update: Sat 06 Dec 2025 04:01:02 +0000 Manifest next update: Sun 07 Dec 2025 04:01:02 +0000 Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: nd2BCJfHi+2HX2pFb8f51K/r4on8TkoEOsNAQf8pKUw=) 2: YLggX1zVSuzWscKfrJDHnrsh8ls.roa (hash: 7Jlfup6Pw3zmGnZu3LgfRRcWJ28VWesMcyWjGhyh+m8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:fc:f9:68:07:31:94:78:db:78:bd:ff:e8:cf:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31 Validity Not Before: Dec 6 04:01:02 2025 GMT Not After : Dec 7 04:01:02 2025 GMT Subject: CN=753b6880e22120bbd6341678dd7518eb7d1e7d5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:82:52:e8:a6:08:78:f0:ec:0d:a4:16:9b:b8: 11:ee:97:69:82:19:6b:10:f3:50:94:18:bd:8c:68: aa:3c:34:c6:32:a4:a4:7a:77:12:6a:30:2f:02:03: e5:86:62:5d:4e:52:2e:b3:0f:42:c8:9d:89:78:9e: 93:53:12:ac:40:6d:70:6d:48:f4:70:7d:35:c0:e9: e4:0a:10:3f:e6:41:49:a3:34:2a:9e:22:61:aa:94: fe:9a:d6:0a:ac:9d:c7:6f:b1:54:25:46:8b:9c:47: a9:bb:10:bb:56:64:cd:dc:0c:fb:42:de:31:72:73: 99:c8:0b:36:9b:a5:ca:47:0d:ea:89:3d:0c:ce:2a: 58:6f:65:44:d7:6a:4e:05:b4:5b:4d:0e:d7:5b:ae: f3:39:a6:c0:e2:6f:ba:f4:13:01:e5:78:8d:a9:cb: f3:2e:b8:91:18:11:90:68:61:ef:d4:1d:3e:cb:7c: f9:8a:c8:05:fc:11:04:3c:77:c8:30:4a:40:46:90: a1:13:46:7c:dc:e1:ec:22:3a:fc:c0:a5:81:c3:81: ed:2c:c7:36:10:49:29:23:ea:5f:eb:bd:37:a3:33: 18:c0:52:bb:a2:32:d7:e9:cd:6b:be:51:92:c4:f0: 93:d7:44:c5:33:f6:65:a5:7c:93:f4:58:9c:9a:dd: 3a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3B:68:80:E2:21:20:BB:D6:34:16:78:DD:75:18:EB:7D:1E:7D:5E X509v3 Authority Key Identifier: keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:b6:61:08:89:f3:83:c3:ec:b1:45:98:d7:95:1f:f5:4f:8a: 8c:1f:65:3d:dd:a2:bf:55:a7:ed:31:62:b2:e1:4f:e8:68:69: 15:05:3d:1c:ac:e9:d2:8f:3c:66:76:74:c3:f9:0c:ae:23:46: f0:c2:d4:0a:4f:bc:a9:62:29:e5:52:20:c7:df:a0:b4:8e:cf: 58:0b:2f:dc:77:70:dd:fc:42:b4:53:64:a3:f3:06:82:0e:94: 45:ec:51:dc:40:58:4d:6d:24:9c:8a:5a:3e:b0:5d:5e:73:ad: 4d:d9:05:24:25:35:bb:d6:df:01:66:1b:81:bc:ac:3e:24:f7: ec:e6:a4:b6:45:d8:1c:b5:ad:76:c2:6b:f8:c1:0b:9c:4b:13: f6:2e:29:ba:cf:1c:fc:52:d5:63:fc:b5:6c:d4:4d:56:82:a2: a8:c0:3a:7d:fe:42:de:c0:5b:99:49:83:21:1a:d1:1b:f3:e6: c2:0a:bc:22:4c:a2:8b:f9:87:1c:8c:a2:cb:af:af:94:3f:e4: ad:09:da:15:24:7b:97:d6:06:85:45:fe:bf:55:22:b9:30:c8: dd:77:eb:fd:ba:10:a5:b4:df:01:c1:55:ee:75:09:c1:f2:82: 4c:f5:bf:08:3b:a0:54:18:3e:4f:77:66:35:98:38:2b:ad:69: d4:b7:08:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0fz5aAcxlHjbeL3/6M/BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1MzU0MzIxYzEyNTQzNjAxNDVlYWYyNWY2OTkzOGI4ZGYz NDdiMzEwHhcNMjUxMjA2MDQwMTAyWhcNMjUxMjA3MDQwMTAyWjAzMTEwLwYDVQQD Eyg3NTNiNjg4MGUyMjEyMGJiZDYzNDE2NzhkZDc1MThlYjdkMWU3ZDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIJS6KYIePDsDaQWm7gR7pdpghlr EPNQlBi9jGiqPDTGMqSkencSajAvAgPlhmJdTlIusw9CyJ2JeJ6TUxKsQG1wbUj0 cH01wOnkChA/5kFJozQqniJhqpT+mtYKrJ3Hb7FUJUaLnEepuxC7VmTN3Az7Qt4x cnOZyAs2m6XKRw3qiT0MzipYb2VE12pOBbRbTQ7XW67zOabA4m+69BMB5XiNqcvz LriRGBGQaGHv1B0+y3z5isgF/BEEPHfIMEpARpChE0Z83OHsIjr8wKWBw4HtLMc2 EEkpI+pf6703ozMYwFK7ojLX6c1rvlGSxPCT10TFM/ZlpXyT9Ficmt06PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHU7aIDiISC71jQWeN11GOt9Hn1eMB8GA1UdIwQY MBaAFNU1QyHBJUNgFF6vJfaZOLjfNHsxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQt YjY0ZWI4ZDgzNjU4LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9kOWY5YTgtZGEwMS00ZDM1LTgyODQtYjY0ZWI4ZDgzNjU4 LzEvMVRWREljRWxRMkFVWHE4bDlwazR1TjgwZXpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAorZhCInz g8PssUWY15Uf9U+KjB9lPd2iv1Wn7TFisuFP6GhpFQU9HKzp0o88ZnZ0w/kMriNG 8MLUCk+8qWIp5VIgx9+gtI7PWAsv3Hdw3fxCtFNko/MGgg6URexR3EBYTW0knIpa PrBdXnOtTdkFJCU1u9bfAWYbgbysPiT37OaktkXYHLWtdsJr+MELnEsT9i4pus8c /FLVY/y1bNRNVoKiqMA6ff5C3sBbmUmDIRrRG/Pmwgq8Ikyii/mHHIyiy6+vlD/k rQnaFSR7l9YGhUX+v1UiuTDI3Xfr/boQpbTfAcFV7nUJwfKCTPW/CDugVBg+T3dm NZg4K61p1LcIIA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:33:28 2025 by rpki-client