This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json) Hash identifier: UIr1WRfCS12P6Z6PpVKgm8zmdwMn8FEtVf4Ih7204NU= Subject key identifier: 8A:A4:79:66:9B:26:46:43:82:18:D6:98:B9:B4:64:56:66:64:2B:52 Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70 Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70 Certificate serial: 019AF5781497E49B7BE3488439FC1F54E43E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 21:01:18 +0000 Manifest this update: Sat 06 Dec 2025 21:01:18 +0000 Manifest next update: Sun 07 Dec 2025 21:01:18 +0000 Files and hashes: 1: Nqz1k5s0ZYXUy72rKBWz32fxVTU.roa (hash: GqKVrf//VPwumSGJonfvQyImnL7BKWccqvqBla5y7po=) 2: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: TSXogMe1RVlcg4eRZQap3vdMRPdEKyasqoOx9rUlp6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:14:97:e4:9b:7b:e3:48:84:39:fc:1f:54:e4:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70 Validity Not Before: Dec 6 21:01:18 2025 GMT Not After : Dec 7 21:01:18 2025 GMT Subject: CN=8aa479669b2646438218d698b9b4645666642b52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:df:bc:cc:a5:d9:af:5d:7a:60:08:56:61:9d: 0b:84:a9:f7:d8:36:66:1d:36:d9:c6:bb:f2:01:e7: 24:06:dd:4b:ca:42:b1:1d:0b:83:51:a7:0e:fa:8c: 3e:ad:07:27:3e:61:a6:3b:df:5c:68:cb:32:a8:c6: 08:a2:c3:7a:62:d4:6f:11:51:b2:c6:e9:6e:16:b9: 7f:35:05:97:f0:2e:35:7d:93:19:ba:a1:93:a9:ed: b6:b2:8b:82:a6:ac:9d:4e:1c:0f:66:57:dc:58:7d: 9b:2b:82:63:7e:13:69:33:7f:e1:82:c5:1d:21:10: cd:98:f4:db:80:04:94:6a:79:3c:8e:f6:38:d1:a8: 97:40:f1:50:c2:64:52:5e:8d:7d:de:2b:59:c6:cd: 8b:84:29:e6:19:b0:52:6c:f0:d7:28:ac:e4:b0:7f: ee:f6:77:68:80:1a:04:82:5f:3f:69:a6:b0:7e:b5: 0b:e5:b0:f6:8f:3a:eb:79:2b:4e:52:79:ad:36:40: 19:7b:11:69:15:f3:75:a7:51:be:5c:34:7d:e5:a8: 84:35:66:7d:fa:4f:23:a4:26:3b:fe:50:ee:1c:32: a9:cb:a3:ec:c6:23:7d:65:80:0f:8f:2e:3f:4f:0a: be:53:e4:af:6d:c6:b2:d2:8f:51:4d:26:35:46:f5: 2b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A4:79:66:9B:26:46:43:82:18:D6:98:B9:B4:64:56:66:64:2B:52 X509v3 Authority Key Identifier: keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:37:46:11:19:65:25:22:29:d4:32:01:0e:35:d0:62:13:3f: d9:d8:81:de:d6:17:61:bf:26:65:2e:24:86:86:cb:d7:76:ef: 5a:10:bf:a8:ad:46:a2:84:6d:53:c9:f1:76:de:52:17:a0:0f: 99:f5:16:96:fe:74:6f:6b:a6:2d:4d:b0:c8:38:f4:c6:9b:34: 51:c3:79:b3:12:d1:7c:12:b2:e5:65:e0:f4:52:82:85:4d:bd: 3e:ce:89:cc:13:ea:d7:19:d0:b7:98:ed:cc:41:eb:b6:98:20: 12:65:9e:78:cd:7c:49:df:98:47:21:61:9d:1f:dc:92:b8:1d: 49:d3:51:8f:78:9d:12:59:8c:dd:ff:c4:fe:69:32:ab:65:26: 61:d4:78:ed:9b:b8:f0:77:b5:c8:dc:e7:57:61:3d:13:bf:7f: 6a:79:c2:c6:6d:de:bd:8e:48:d0:1c:ec:57:22:96:79:41:bf: 56:06:39:07:60:95:a0:57:a7:b5:89:d2:fa:04:f6:76:a6:10: 34:d7:2d:dd:fa:ed:f5:b5:92:3e:b1:44:4b:83:53:06:89:aa: a9:52:b2:14:ef:cb:17:3e:d4:cd:13:c1:b9:6d:d0:db:58:27: 9b:68:71:1c:00:11:6d:0f:08:b3:3f:47:8a:03:5a:9e:d2:0b: a2:b2:ce:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eBSX5Jt740iEOfwfVOQ+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMzJkNDBhNTNiYjYwYjg2NzU5ZTZlYzBhNTIwNzMwMGI0 MWFmNzAwHhcNMjUxMjA2MjEwMTE4WhcNMjUxMjA3MjEwMTE4WjAzMTEwLwYDVQQD Eyg4YWE0Nzk2NjliMjY0NjQzODIxOGQ2OThiOWI0NjQ1NjY2NjQyYjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9+8zKXZr116YAhWYZ0LhKn32DZm HTbZxrvyAeckBt1LykKxHQuDUacO+ow+rQcnPmGmO99caMsyqMYIosN6YtRvEVGy xuluFrl/NQWX8C41fZMZuqGTqe22souCpqydThwPZlfcWH2bK4JjfhNpM3/hgsUd IRDNmPTbgASUank8jvY40aiXQPFQwmRSXo193itZxs2LhCnmGbBSbPDXKKzksH/u 9ndogBoEgl8/aaawfrUL5bD2jzrreStOUnmtNkAZexFpFfN1p1G+XDR95aiENWZ9 +k8jpCY7/lDuHDKpy6PsxiN9ZYAPjy4/Twq+U+Svbcay0o9RTSY1RvUrPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIqkeWabJkZDghjWmLm0ZFZmZCtSMB8GA1UdIwQY MBaAFE8y1ApTu2C4Z1nm7ApSBzALQa9wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHpMVUNsTzdZTGhuV2Vic0NsSUhNQXRCcjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9hNzVlNjMtODE0OS00OWM2LTkzOWYt YzZiZjJmZmI3MjUzLzEvVHpMVUNsTzdZTGhuV2Vic0NsSUhNQXRCcjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9hNzVlNjMtODE0OS00OWM2LTkzOWYtYzZiZjJmZmI3MjUz LzEvVHpMVUNsTzdZTGhuV2Vic0NsSUhNQXRCcjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYjdGERll JSIp1DIBDjXQYhM/2diB3tYXYb8mZS4khobL13bvWhC/qK1GooRtU8nxdt5SF6AP mfUWlv50b2umLU2wyDj0xps0UcN5sxLRfBKy5WXg9FKChU29Ps6JzBPq1xnQt5jt zEHrtpggEmWeeM18Sd+YRyFhnR/ckrgdSdNRj3idElmM3f/E/mkyq2UmYdR47Zu4 8He1yNznV2E9E79/annCxm3evY5I0BzsVyKWeUG/VgY5B2CVoFentYnS+gT2dqYQ NNct3frt9bWSPrFES4NTBomqqVKyFO/LFz7UzRPBuW3Q21gnm2hxHAARbQ8Isz9H igNantILorLOsg== -----END CERTIFICATE-----Generated at Sun Dec 7 03:36:02 2025 by rpki-client