This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json) Hash identifier: oAj5qRNk0N5R94RIm1yjk/5RrZpBeZFafT8D7aPTyPQ= Subject key identifier: F2:78:39:FC:2F:51:30:67:3C:6A:0F:34:3D:F8:2C:8C:9B:21:B5:46 Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0 Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0 Certificate serial: 019AF352877D58A15962294FB2BF1A62F561 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft Manifest number: 0C18 Signing time: Sat 06 Dec 2025 11:01:03 +0000 Manifest this update: Sat 06 Dec 2025 11:01:03 +0000 Manifest next update: Sun 07 Dec 2025 11:01:03 +0000 Files and hashes: 1: E8fqlMMExB61QIsEKMENcZNpWcs.roa (hash: BmnUAt4AevLzEKuzLNe+ibP+z5vcZguaEireBbRJdHM=) 2: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: 3R3IsrCmlG+3h21G/tJm5vBBjgo1rvgYxw6PEaSIqJ0=) 3: gXlhbbxVLQVqCMGvhejieNdtoBY.roa (hash: 8u7C6SqKmEB/oIEa7cYGrPkrur0B3bFj0WV0Kh36+qQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:87:7d:58:a1:59:62:29:4f:b2:bf:1a:62:f5:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0 Validity Not Before: Dec 6 11:01:03 2025 GMT Not After : Dec 7 11:01:03 2025 GMT Subject: CN=f27839fc2f5130673c6a0f343df82c8c9b21b546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5d:ed:76:79:b7:3e:a7:bb:61:5f:bc:b6:a2: 40:02:ed:f9:ae:84:73:b8:48:9d:59:79:6f:6e:c8: 31:70:4d:87:8a:84:e3:39:fb:d7:68:fe:04:5d:a2: c6:67:f3:66:19:ea:de:ed:8c:9f:53:92:a7:2e:ad: 95:3f:be:41:43:f6:a3:5b:3e:2c:9e:00:ce:20:0a: e5:bb:ec:e7:87:9e:a7:fe:55:62:bd:26:77:2c:4e: 8d:79:8d:43:71:cf:8f:0a:ac:d8:15:f5:42:4a:50: 4f:47:ad:a0:98:f1:47:8d:25:34:93:7f:57:0a:5c: 01:01:a1:29:c5:19:c9:f6:92:87:a2:cb:27:e1:5b: f9:c6:1d:07:34:15:7c:68:fa:27:53:b4:08:72:53: c6:9e:d0:b7:5d:0c:99:44:fe:aa:a6:26:45:39:6e: 7b:4f:35:c3:ba:ff:b2:bd:17:83:75:73:17:85:c2: 1f:39:7e:83:72:40:53:c1:8a:91:68:cc:98:4a:14: 57:63:ca:ea:27:07:93:97:da:b3:24:2c:65:70:4a: bd:1f:44:27:4a:65:c3:98:10:a2:d0:ba:75:03:61: d1:45:94:c2:6c:8c:a0:ca:d8:c4:07:0b:cd:1d:1b: 0e:18:d4:29:08:78:20:25:e5:ee:fa:90:3e:c7:1a: ea:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:78:39:FC:2F:51:30:67:3C:6A:0F:34:3D:F8:2C:8C:9B:21:B5:46 X509v3 Authority Key Identifier: keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ab:23:fe:be:1e:ee:bf:2f:2b:86:1a:55:8c:fd:05:45:98: 68:25:04:b5:50:67:cc:9c:af:33:7b:ea:36:7e:07:75:0c:2d: 4d:38:a7:96:32:9b:e7:f4:e8:17:69:45:64:33:30:77:db:bd: 66:46:58:8c:d5:ad:62:38:d1:02:c9:e7:75:05:b5:11:6f:29: 08:59:82:51:d1:a5:6c:91:95:b4:99:a1:b3:93:47:89:eb:64: 97:aa:8a:c2:51:25:41:27:aa:1f:02:b5:1c:71:b8:61:eb:79: 0e:e6:e5:b5:83:01:cb:39:64:30:e2:88:7d:52:4c:db:c1:b2: c0:96:9a:76:2f:eb:49:e5:4f:c2:35:99:64:46:1e:d4:d1:be: 66:96:51:1c:1d:81:22:0c:e8:15:af:b5:f0:59:5c:d8:05:76: 85:d6:10:22:9a:5e:74:7a:68:e7:aa:f8:42:97:e0:2b:02:5a: 0c:9e:9c:85:03:c5:68:82:f4:d4:e7:a2:1e:13:ca:be:03:60: da:a7:54:93:b4:9e:6a:fc:df:39:02:19:83:60:81:84:04:37: 4b:fd:2a:74:a4:aa:5e:6f:2b:c9:eb:c0:33:0e:9c:a0:af:8f: 65:4f:d1:bf:64:21:3c:2e:e0:b1:4d:92:6a:6c:07:e4:38:eb: a1:81:a6:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUod9WKFZYilPsr8aYvVhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMjNlMmVkYjMyMWUxYThhNWNlOWVlM2UyZDk1YWE0MGYw ZGU4YTAwHhcNMjUxMjA2MTEwMTAzWhcNMjUxMjA3MTEwMTAzWjAzMTEwLwYDVQQD EyhmMjc4MzlmYzJmNTEzMDY3M2M2YTBmMzQzZGY4MmM4YzliMjFiNTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzl3tdnm3Pqe7YV+8tqJAAu35roRz uEidWXlvbsgxcE2HioTjOfvXaP4EXaLGZ/NmGere7YyfU5KnLq2VP75BQ/ajWz4s ngDOIArlu+znh56n/lVivSZ3LE6NeY1Dcc+PCqzYFfVCSlBPR62gmPFHjSU0k39X ClwBAaEpxRnJ9pKHossn4Vv5xh0HNBV8aPonU7QIclPGntC3XQyZRP6qpiZFOW57 TzXDuv+yvReDdXMXhcIfOX6DckBTwYqRaMyYShRXY8rqJweTl9qzJCxlcEq9H0Qn SmXDmBCi0Lp1A2HRRZTCbIygytjEBwvNHRsOGNQpCHggJeXu+pA+xxrqSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPJ4OfwvUTBnPGoPND34LIybIbVGMB8GA1UdIwQY MBaAFE0j4u2zIeGopc6e4+LZWqQPDeigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEt NTM4NTA5ZjNhNzg5LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEtNTM4NTA5ZjNhNzg5 LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnKsj/r4e 7r8vK4YaVYz9BUWYaCUEtVBnzJyvM3vqNn4HdQwtTTinljKb5/ToF2lFZDMwd9u9 ZkZYjNWtYjjRAsnndQW1EW8pCFmCUdGlbJGVtJmhs5NHietkl6qKwlElQSeqHwK1 HHG4Yet5DubltYMByzlkMOKIfVJM28GywJaadi/rSeVPwjWZZEYe1NG+ZpZRHB2B IgzoFa+18Flc2AV2hdYQIppedHpo56r4QpfgKwJaDJ6chQPFaIL01OeiHhPKvgNg 2qdUk7SeavzfOQIZg2CBhAQ3S/0qdKSqXm8ryevAMw6coK+PZU/Rv2QhPC7gsU2S amwH5DjroYGmpQ== -----END CERTIFICATE-----Generated at Sat Dec 6 18:25:06 2025 by rpki-client