This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft File: KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json) Hash identifier: hXw6wrOuKFb6z0o4MQ+Cq2+UcPy96kdBx4CFEenDy4I= Subject key identifier: 2A:08:25:50:0A:95:19:A7:78:68:72:BD:90:5E:91:05:45:EC:90:05 Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0 Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0 Certificate serial: 019B435C18726FADEB6C99736D8D9E0EC05C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft Manifest number: 178A Signing time: Mon 22 Dec 2025 00:01:07 +0000 Manifest this update: Mon 22 Dec 2025 00:01:07 +0000 Manifest next update: Tue 23 Dec 2025 00:01:07 +0000 Files and hashes: 1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: qxaZpSl5EU1Mv1JZW1URYBebrpS7r3Da/WgDQ/gsfNM=) 2: hIS7p8oBVfka5-8RFV0HubayIdE.roa (hash: F5TIegvY+JSm5ZTBtrT5T05mvONHoneGNZ8NfzaAUc8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:5c:18:72:6f:ad:eb:6c:99:73:6d:8d:9e:0e:c0:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0 Validity Not Before: Dec 22 00:01:07 2025 GMT Not After : Dec 23 00:01:07 2025 GMT Subject: CN=2a0825500a9519a7786872bd905e910545ec9005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:59:97:d1:ee:b4:17:0d:82:d0:3d:a2:d5: 3a:49:6b:32:ee:ec:38:ed:87:13:99:8c:b2:f2:ae: 4b:73:a8:4f:f9:12:53:15:92:78:b0:fa:02:3c:69: 40:1b:f8:9d:ce:fb:df:da:9d:06:36:46:a0:68:5e: 62:64:d0:16:5b:64:41:a6:ab:bc:ee:9c:21:c5:28: 25:f0:78:7e:c1:d6:ae:a5:4b:7a:b9:e7:c0:6f:11: ee:81:bb:fe:c0:50:9e:a3:23:73:b7:53:e0:66:17: c0:22:5f:1a:a3:54:ac:c4:f2:a9:89:20:45:cb:f2: 3c:0e:e5:84:ce:8f:cf:7a:1b:07:bb:9a:a9:2f:4c: 10:3a:69:69:16:04:4e:a6:62:e6:58:14:8a:1e:2b: a0:47:31:31:be:29:b9:21:68:01:53:0e:5e:a8:3d: 23:26:cd:02:1a:ba:03:aa:ef:e1:fb:d9:61:b0:6d: cc:1b:99:01:c5:f0:3a:23:6d:89:a8:b2:f0:09:59: f0:04:7f:44:79:36:a9:65:31:ee:86:9d:94:ea:fa: 98:36:25:8d:8c:03:b8:d6:ee:90:e5:70:fe:c9:37: f0:c2:7e:1e:67:e9:d7:5f:1c:9f:1a:71:e3:78:9d: 05:bd:e4:06:e9:25:7d:88:02:29:b1:2b:dc:0f:e0: 25:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:08:25:50:0A:95:19:A7:78:68:72:BD:90:5E:91:05:45:EC:90:05 X509v3 Authority Key Identifier: keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:95:f9:ba:4a:74:7d:65:a4:ed:8e:6b:bb:2e:71:d0:0d:e9: 13:c1:b0:d6:f6:24:f2:94:dc:78:7a:62:c1:82:bc:b1:42:b5: 7a:54:7e:c6:28:fe:e3:b2:28:d7:20:c4:66:c5:2b:03:d1:9b: 00:b0:c0:c5:d9:5a:55:67:9a:5e:8b:4f:6d:b4:47:83:a7:2f: 9f:50:66:25:c2:95:7e:79:fa:a3:f4:bc:4d:21:20:b7:85:43: 6d:ec:25:ea:cd:44:69:cb:91:7a:6d:61:39:43:d4:88:eb:fb: c8:3d:d7:6a:2d:f2:66:94:49:ea:3d:b5:37:ff:5c:90:5b:18: ac:0c:be:f1:01:b1:0c:2a:6d:a1:ed:6c:fc:d8:56:e6:61:9c: fe:53:3d:47:86:70:58:41:bf:f1:12:80:42:68:45:1a:b2:6d: 2c:69:e7:0e:26:c5:4c:22:2d:ae:b0:05:d9:e1:b3:73:3f:66: ca:b7:7d:c5:02:aa:a1:4b:72:75:cd:53:fc:d7:a3:33:df:7c: 14:d7:f0:70:1b:b2:2c:4c:08:3c:ed:91:54:b1:c2:d7:85:4e: ed:03:8b:60:14:5d:62:e9:20:6b:54:b9:5b:d5:ca:90:f8:29: cb:5f:9c:52:81:2f:a5:d5:e2:c7:f6:1f:1e:0d:bd:f6:34:5a: 7f:27:4b:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDXBhyb63rbJlzbY2eDsBcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5M2JjM2E1NzQ5NzMzMTA0ZjdiOWNjMDUxMmRhZGUxMzZk NzBhZDAwHhcNMjUxMjIyMDAwMTA3WhcNMjUxMjIzMDAwMTA3WjAzMTEwLwYDVQQD EygyYTA4MjU1MDBhOTUxOWE3Nzg2ODcyYmQ5MDVlOTEwNTQ1ZWM5MDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA215Zl9HutBcNgtA9otU6SWsy7uw4 7YcTmYyy8q5Lc6hP+RJTFZJ4sPoCPGlAG/idzvvf2p0GNkagaF5iZNAWW2RBpqu8 7pwhxSgl8Hh+wdaupUt6uefAbxHugbv+wFCeoyNzt1PgZhfAIl8ao1SsxPKpiSBF y/I8DuWEzo/PehsHu5qpL0wQOmlpFgROpmLmWBSKHiugRzExvim5IWgBUw5eqD0j Js0CGroDqu/h+9lhsG3MG5kBxfA6I22JqLLwCVnwBH9EeTapZTHuhp2U6vqYNiWN jAO41u6Q5XD+yTfwwn4eZ+nXXxyfGnHjeJ0FveQG6SV9iAIpsSvcD+AlUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCoIJVAKlRmneGhyvZBekQVF7JAFMB8GA1UdIwQY MBaAFCk7w6V0lzMQT3ucwFEtreE21wrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iYjdmOWUtMTVjMC00ZDU1LTgyMmIt NjA5YTFlODYyN2ZkLzEvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9iYjdmOWUtMTVjMC00ZDU1LTgyMmItNjA5YTFlODYyN2Zk LzEvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGZX5ukp0 fWWk7Y5ruy5x0A3pE8Gw1vYk8pTceHpiwYK8sUK1elR+xij+47Io1yDEZsUrA9Gb ALDAxdlaVWeaXotPbbRHg6cvn1BmJcKVfnn6o/S8TSEgt4VDbewl6s1EacuRem1h OUPUiOv7yD3Xai3yZpRJ6j21N/9ckFsYrAy+8QGxDCptoe1s/NhW5mGc/lM9R4Zw WEG/8RKAQmhFGrJtLGnnDibFTCItrrAF2eGzcz9myrd9xQKqoUtydc1T/NejM998 FNfwcBuyLEwIPO2RVLHC14VO7QOLYBRdYukga1S5W9XKkPgpy1+cUoEvpdXix/Yf Hg299jRafydLfQ== -----END CERTIFICATE-----Generated at Mon Dec 22 04:20:58 2025 by rpki-client