This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft File: tmlTqin4JZqgLBImpGzgnt1Fzp0.mft (raw, json) Hash identifier: yl84ZahQePkb3nyCuMk703xowhPkAHi1VKgs19JIPiQ= Subject key identifier: AE:FE:A4:B2:D5:0D:D1:4F:FB:F7:26:78:E7:3C:5A:0B:A7:04:CF:57 Authority key identifier: B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D Certificate issuer: /CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d Certificate serial: 019AF5098695141B3B01D4B302CAFE1B4BC9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft Manifest number: 0218 Signing time: Sat 06 Dec 2025 19:00:33 +0000 Manifest this update: Sat 06 Dec 2025 19:00:33 +0000 Manifest next update: Sun 07 Dec 2025 19:00:33 +0000 Files and hashes: 1: pqvRnrkHquypsw02knASEmaM8CA.roa (hash: iRr4/5L2X3HFedqB9qSGokTGPgu0NihU0rX3BfoQgdM=) 2: tmlTqin4JZqgLBImpGzgnt1Fzp0.crl (hash: iUBWRNBNylN057lLGYI0Np0y881Q7WUNbnKCq1LxaOc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:86:95:14:1b:3b:01:d4:b3:02:ca:fe:1b:4b:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b66953aa29f8259aa02c1226a46ce09edd45ce9d Validity Not Before: Dec 6 19:00:33 2025 GMT Not After : Dec 7 19:00:33 2025 GMT Subject: CN=aefea4b2d50dd14ffbf72678e73c5a0ba704cf57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:36:83:c3:6e:3f:43:e3:a0:38:88:ec:0c:3b: 27:a2:ed:ab:c3:2c:d4:8a:7e:1f:4a:76:f0:08:5d: eb:0a:d5:72:3d:a4:f2:b6:46:be:05:b6:ca:4c:f9: 59:21:62:19:31:37:8e:99:60:08:e6:64:84:26:bf: 1e:46:3f:64:31:55:2b:39:a7:f7:40:20:47:96:f7: c8:48:31:1d:98:da:1d:fd:2a:3a:37:1a:0d:fb:8e: d4:81:8a:9a:84:dc:6e:1a:8c:b9:a1:84:b6:ae:f5: 6e:aa:81:6e:8b:df:fc:ad:ba:02:9a:fa:cf:0c:51: ee:ed:05:ed:fc:a1:49:be:a4:af:dc:76:7b:2e:e1: d4:24:2c:37:4f:23:50:73:b3:f4:80:7a:fb:3f:58: 7f:38:30:71:25:87:1f:0a:07:42:c0:57:ce:bc:fe: 70:73:58:a0:01:1c:b1:e9:51:d5:7f:bd:cc:6c:f6: 2d:d1:48:43:1d:1b:ab:c5:ef:85:6b:78:cd:7b:c7: a4:7d:16:63:91:e3:aa:b9:31:3e:56:00:90:0b:d6: 39:b2:ee:0b:90:3e:80:0e:38:08:06:17:90:06:a1: 4f:a4:09:4b:04:21:27:b0:aa:c4:f0:00:40:b0:dc: b4:7e:e3:7f:04:8c:c3:13:14:fb:90:07:6a:14:c5: 5f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FE:A4:B2:D5:0D:D1:4F:FB:F7:26:78:E7:3C:5A:0B:A7:04:CF:57 X509v3 Authority Key Identifier: keyid:B6:69:53:AA:29:F8:25:9A:A0:2C:12:26:A4:6C:E0:9E:DD:45:CE:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmlTqin4JZqgLBImpGzgnt1Fzp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/259418-5e74-4df0-82a0-f9e75308754f/1/tmlTqin4JZqgLBImpGzgnt1Fzp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:3d:83:b6:56:a6:09:e7:dd:7a:c2:68:18:37:17:90:c9:d8: 5e:01:99:8c:f9:a2:c4:ee:fc:96:f1:a7:20:fe:ca:f4:a1:88: e2:28:9c:65:07:2b:31:93:58:ec:a2:33:0c:f8:58:f0:bd:e3: 16:67:88:1c:c5:46:b9:94:26:5f:12:71:1f:b9:46:1d:c2:c0: 5d:70:97:7c:c7:30:11:56:55:7a:06:12:54:69:6a:48:b9:4b: 4d:9e:06:f3:91:b2:50:50:6f:99:dd:3e:f7:8f:c2:38:8a:03: 48:05:4b:c9:36:ac:d8:1d:4a:24:23:84:d2:a9:07:f7:c0:48: ae:22:90:7d:81:26:1f:85:2d:6e:99:22:7b:82:24:8c:7a:f1: 09:66:28:66:ba:78:4b:52:25:83:7b:15:99:db:c5:6a:7b:03: 48:7b:49:34:26:44:8a:35:f6:29:ba:14:9a:d1:76:57:d1:fa: f0:14:7c:0e:66:58:54:45:b6:88:84:55:3c:c1:85:ef:2e:84: 69:a0:40:85:a7:9c:d8:3c:60:ab:5c:52:2a:59:81:d3:f1:5f: e6:21:98:19:af:d6:8a:28:92:1f:f2:f3:4e:02:2d:b0:24:b1: f9:24:f8:f1:4e:32:db:40:ea:70:dc:30:90:95:29:ea:d3:41: ba:fb:03:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CYaVFBs7AdSzAsr+G0vJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2Njk1M2FhMjlmODI1OWFhMDJjMTIyNmE0NmNlMDllZGQ0 NWNlOWQwHhcNMjUxMjA2MTkwMDMzWhcNMjUxMjA3MTkwMDMzWjAzMTEwLwYDVQQD EyhhZWZlYTRiMmQ1MGRkMTRmZmJmNzI2NzhlNzNjNWEwYmE3MDRjZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jaDw24/Q+OgOIjsDDsnou2rwyzU in4fSnbwCF3rCtVyPaTytka+BbbKTPlZIWIZMTeOmWAI5mSEJr8eRj9kMVUrOaf3 QCBHlvfISDEdmNod/So6NxoN+47UgYqahNxuGoy5oYS2rvVuqoFui9/8rboCmvrP DFHu7QXt/KFJvqSv3HZ7LuHUJCw3TyNQc7P0gHr7P1h/ODBxJYcfCgdCwFfOvP5w c1igARyx6VHVf73MbPYt0UhDHRurxe+Fa3jNe8ekfRZjkeOquTE+VgCQC9Y5su4L kD6ADjgIBheQBqFPpAlLBCEnsKrE8ABAsNy0fuN/BIzDExT7kAdqFMVfSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK7+pLLVDdFP+/cmeOc8WgunBM9XMB8GA1UdIwQY MBaAFLZpU6op+CWaoCwSJqRs4J7dRc6dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG1sVHFpbjRKWnFnTEJJbXBHemdudDFGenAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8yNTk0MTgtNWU3NC00ZGYwLTgyYTAt ZjllNzUzMDg3NTRmLzEvdG1sVHFpbjRKWnFnTEJJbXBHemdudDFGenAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi8yNTk0MTgtNWU3NC00ZGYwLTgyYTAtZjllNzUzMDg3NTRm LzEvdG1sVHFpbjRKWnFnTEJJbXBHemdudDFGenAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAST2Dtlam CefdesJoGDcXkMnYXgGZjPmixO78lvGnIP7K9KGI4iicZQcrMZNY7KIzDPhY8L3j FmeIHMVGuZQmXxJxH7lGHcLAXXCXfMcwEVZVegYSVGlqSLlLTZ4G85GyUFBvmd0+ 94/COIoDSAVLyTas2B1KJCOE0qkH98BIriKQfYEmH4Utbpkie4IkjHrxCWYoZrp4 S1Ilg3sVmdvFansDSHtJNCZEijX2KboUmtF2V9H68BR8DmZYVEW2iIRVPMGF7y6E aaBAhaec2Dxgq1xSKlmB0/Ff5iGYGa/WiiiSH/LzTgItsCSx+ST48U4y20DqcNww kJUp6tNBuvsDSA== -----END CERTIFICATE-----Generated at Sat Dec 6 23:46:00 2025 by rpki-client