This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json)
Hash identifier: NFzTFuBTtAp40Xztj/+/pAY/8b+L9QVeUJ4wmcBBOk0=
Subject key identifier: EF:B2:D7:D0:B1:AD:A6:89:74:E1:5B:65:0E:57:D7:39:81:C3:E2:33
Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Certificate serial: 019AF540E66943B8C05E7351A03ECAD5E4AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
Manifest number: 0C19
Signing time: Sat 06 Dec 2025 20:01:02 +0000
Manifest this update: Sat 06 Dec 2025 20:01:02 +0000
Manifest next update: Sun 07 Dec 2025 20:01:02 +0000
Files and hashes: 1: E8fqlMMExB61QIsEKMENcZNpWcs.roa (hash: BmnUAt4AevLzEKuzLNe+ibP+z5vcZguaEireBbRJdHM=)
2: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: iSY9Qk/sedqWDKx9Py6RxrBZRGZoAuEGfVkZqWMlVVA=)
3: gXlhbbxVLQVqCMGvhejieNdtoBY.roa (hash: 8u7C6SqKmEB/oIEa7cYGrPkrur0B3bFj0WV0Kh36+qQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Dec 2025 13:09:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:f5:40:e6:69:43:b8:c0:5e:73:51:a0:3e:ca:d5:e4:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Validity
Not Before: Dec 6 20:01:02 2025 GMT
Not After : Dec 7 20:01:02 2025 GMT
Subject: CN=efb2d7d0b1ada68974e15b650e57d73981c3e233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5b:c1:cd:b9:05:67:78:9e:24:69:00:82:2e:
89:6f:1e:f0:66:56:05:5b:b8:de:67:83:80:fe:7a:
85:27:95:fb:0f:58:2c:43:8d:cf:cd:f4:a0:56:44:
3f:e5:b1:01:54:ad:9d:b4:29:80:e5:d9:ec:ba:6c:
02:5b:a2:b0:4f:72:63:90:76:9a:1e:52:81:8c:ea:
4e:68:38:e1:20:f0:7c:0c:8b:ab:ca:2b:af:b0:8b:
23:28:2d:21:d7:74:04:68:4d:3c:fe:c3:05:ba:8b:
6f:af:d6:5d:5b:a2:ce:7f:78:95:e6:e9:33:c6:3a:
c2:cb:7b:5f:ad:80:d1:c2:aa:8e:06:7a:5c:d7:c2:
0c:6f:87:dc:d0:3d:22:47:c0:86:81:51:2b:10:c5:
98:67:d8:86:e1:a9:4a:79:6d:a8:8d:49:67:cd:e6:
76:c9:2d:ad:73:7f:7c:47:33:99:55:7f:cf:a0:42:
89:19:ec:80:f4:50:00:df:66:60:a4:6c:b7:e3:28:
52:53:cf:58:9e:4a:ee:dc:7c:60:6a:a5:9f:ee:ef:
63:f9:7b:f5:34:64:75:7d:d1:49:58:5e:76:10:d9:
b4:53:14:77:11:82:a7:1f:97:33:4e:2f:76:03:7e:
56:50:12:2d:8d:dd:ac:84:95:cf:70:8c:b7:7d:23:
a1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B2:D7:D0:B1:AD:A6:89:74:E1:5B:65:0E:57:D7:39:81:C3:E2:33
X509v3 Authority Key Identifier:
keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:a5:0d:f8:40:55:2a:c4:3b:b6:47:de:f8:91:eb:4a:49:5b:
f6:fc:ea:95:8d:b6:8b:55:98:74:09:ae:45:81:90:77:20:f8:
5a:f4:61:4a:4c:e7:57:28:2c:6c:da:76:5e:6f:8c:cc:9a:a3:
1f:d3:6c:1a:1b:86:3d:be:73:11:af:8c:a3:a2:d1:fc:be:6b:
bd:d3:9c:68:26:74:2b:35:1e:96:85:14:8b:70:1d:50:91:50:
5b:b7:6d:06:5c:46:3b:04:aa:f3:40:f1:28:0b:cc:b9:ae:80:
dd:74:e8:1c:31:ca:58:2e:91:b8:56:09:82:6b:a4:25:a8:8e:
c4:1a:d8:08:d2:84:06:d2:54:28:da:db:ce:a9:9a:7e:74:b8:
d5:b5:26:cc:d9:db:56:b2:b9:ca:97:40:eb:45:a0:6d:90:4d:
0b:a5:d1:3f:b7:62:f7:87:2d:61:ec:5d:f4:08:8e:8e:6a:d0:
06:b1:a3:51:99:36:b4:3c:15:84:66:da:a9:f6:8e:b4:e4:85:
46:74:40:3f:b9:9a:2f:ff:ff:03:36:6b:b9:18:55:27:9c:41:
90:67:0d:17:00:7c:ab:76:b9:48:9a:22:ff:b9:30:75:dc:96:
12:e5:61:c5:8f:ce:b4:c9:76:86:8a:32:71:13:d1:ba:75:4a:
25:3e:00:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 6 22:35:12 2025 by rpki-client