This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json) Hash identifier: VCrBqjMcN5LXYrKqqXEL9Hfh8ZgsVRO+OwBf/Fzgx24= Subject key identifier: 86:76:EF:BE:FD:AA:40:3D:C9:EF:F6:EE:D5:49:CF:D8:87:7F:EE:63 Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995 Certificate serial: 019B0D12C38BADAF646C975E58AFC5A75EA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft Manifest number: 14AF Signing time: Thu 11 Dec 2025 11:01:32 +0000 Manifest this update: Thu 11 Dec 2025 11:01:32 +0000 Manifest next update: Fri 12 Dec 2025 11:01:32 +0000 Files and hashes: 1: 5r4roNSh8TWW8XLP5gLpTUYEtC8.roa (hash: AktxI+V17na/V+Hz9k9ha+hVm279Tijdqa0CvwmI/7Q=) 2: Gxhnb8KOTrVvxDF8yuKOv2GjqtU.roa (hash: QO/QE2IRS/pPOvcN+3PpcsYmJwErYvPF742Zst4rEP8=) 3: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: IlqygUKh88tSwJS4042LW0TMH5Jw0afzVhFOOhR20ZQ=) 4: TtvNTrhsW3wjOkk9eOHVRXZxsEg.roa (hash: gPmUeUcfbob5JNxYnTxCOkrudyCPlteleGt+PSj2/00=) 5: ekdDszvqGt_eJ_hGO_xIWYzbzAA.roa (hash: zqr+o3bWODGGGIrhIMHHh91Y/JEASXYkOBODwzmfRz8=) 6: iIQaeGWo37d4w_fiU_R29carNk8.roa (hash: FbNS7L7XPQULlvHXJ6Yq35UuABtJRjSmhRiCGjDk29Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 11:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:12:c3:8b:ad:af:64:6c:97:5e:58:af:c5:a7:5e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995 Validity Not Before: Dec 11 11:01:32 2025 GMT Not After : Dec 12 11:01:32 2025 GMT Subject: CN=8676efbefdaa403dc9eff6eed549cfd8877fee63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:23:e8:0f:1f:a1:2b:a6:ce:ec:0a:e7:96:1f: a6:2a:a6:f0:c5:e3:90:30:b0:29:c3:20:8b:d7:93: 0d:8a:ce:ec:3a:ee:d2:73:36:b7:3a:9f:27:88:d0: d5:12:19:3d:14:a0:06:c6:ad:e5:33:0c:86:cb:43: be:07:d9:87:f4:8e:68:b6:d1:42:82:3f:c0:42:3d: d6:bb:9d:13:50:55:86:84:8f:38:78:de:68:f4:81: 2a:d9:e3:f8:29:51:bc:19:c6:d2:ff:24:5e:1b:57: c9:7b:56:11:27:89:fd:2f:20:9b:b7:e9:10:9b:7e: cb:42:4a:51:76:16:64:98:f8:0c:5f:0d:8e:5e:30: 4a:00:7e:23:41:94:46:92:40:bc:2e:44:f0:32:e0: d3:8a:fb:3a:4e:5b:01:e1:3f:0e:08:20:6f:2c:23: ea:5d:95:74:ec:58:85:10:f0:65:47:67:da:9b:2c: 63:48:e5:f5:7e:e8:6f:1d:49:86:e5:01:60:c4:db: 98:b0:cd:0d:52:b3:c4:0b:66:2c:5e:ec:08:78:79: 2d:78:1e:42:80:e2:c1:13:94:9c:d4:a0:67:2a:a8: 17:b7:14:8d:ca:3c:f7:6e:e8:9b:fd:9c:78:66:65: 2c:9b:86:02:5b:f6:88:e0:a1:7f:41:5a:1c:54:f9: 71:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:76:EF:BE:FD:AA:40:3D:C9:EF:F6:EE:D5:49:CF:D8:87:7F:EE:63 X509v3 Authority Key Identifier: keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e5:a9:5d:58:f5:06:1b:9b:54:b9:2e:53:32:86:ec:93:a6: 36:03:1c:77:4a:16:03:22:bd:de:80:06:c0:9b:50:dd:ca:14: e9:c5:77:88:f7:39:d2:db:81:d4:25:7b:46:65:a6:dd:d9:8d: 5b:03:6b:02:4e:64:91:e9:66:0d:a4:f1:ae:da:fe:fd:8d:01: a1:63:a2:1a:e0:03:17:9e:a0:f1:21:0b:87:fa:17:c9:8c:fa: 8f:4f:20:39:58:b4:8e:ef:45:1b:13:3d:19:54:e2:7c:26:c1: 20:b8:d3:ad:54:3d:8a:d4:8f:13:a2:6d:36:d3:f6:38:aa:b3: 46:f9:27:77:15:49:31:30:d3:92:cf:a0:9d:d2:39:e0:6e:89: 2c:63:95:3a:33:03:fc:6b:6d:fa:df:1e:47:da:c7:aa:16:de: b6:22:47:e4:78:0f:d0:fa:06:d9:b9:9c:fe:22:ec:ce:56:6e: 1d:6a:80:ac:9a:11:74:6e:6b:d4:bb:8b:8b:2d:97:88:35:12: 27:5e:6d:7e:39:cf:74:07:e9:45:55:8a:db:0d:be:48:0c:87: a7:b5:e1:54:91:55:d0:b3:46:99:db:42:35:d3:80:09:a9:99: 2b:5a:af:bc:3f:9c:09:23:b9:c9:b6:63:d3:ca:f9:67:6d:fd: 24:2c:c7:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNEsOLra9kbJdeWK/Fp16iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhZjVlNDg2NmJhMDk4MjAxMjRhNmU1MTExMDRmYzQxZmE1 NDE5OTUwHhcNMjUxMjExMTEwMTMyWhcNMjUxMjEyMTEwMTMyWjAzMTEwLwYDVQQD Eyg4Njc2ZWZiZWZkYWE0MDNkYzllZmY2ZWVkNTQ5Y2ZkODg3N2ZlZTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiPoDx+hK6bO7Arnlh+mKqbwxeOQ MLApwyCL15MNis7sOu7Scza3Op8niNDVEhk9FKAGxq3lMwyGy0O+B9mH9I5ottFC gj/AQj3Wu50TUFWGhI84eN5o9IEq2eP4KVG8GcbS/yReG1fJe1YRJ4n9LyCbt+kQ m37LQkpRdhZkmPgMXw2OXjBKAH4jQZRGkkC8LkTwMuDTivs6TlsB4T8OCCBvLCPq XZV07FiFEPBlR2famyxjSOX1fuhvHUmG5QFgxNuYsM0NUrPEC2YsXuwIeHkteB5C gOLBE5Sc1KBnKqgXtxSNyjz3buib/Zx4ZmUsm4YCW/aI4KF/QVocVPlxdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZ27779qkA9ye/27tVJz9iHf+5jMB8GA1UdIwQY MBaAFCr15IZroJggEkpuUREE/EH6VBmVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2Qt YzMyMGU1MGEzYzc5LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2QtYzMyMGU1MGEzYzc5 LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+WpXVj1 BhubVLkuUzKG7JOmNgMcd0oWAyK93oAGwJtQ3coU6cV3iPc50tuB1CV7RmWm3dmN WwNrAk5kkelmDaTxrtr+/Y0BoWOiGuADF56g8SELh/oXyYz6j08gOVi0ju9FGxM9 GVTifCbBILjTrVQ9itSPE6JtNtP2OKqzRvkndxVJMTDTks+gndI54G6JLGOVOjMD /Gtt+t8eR9rHqhbetiJH5HgP0PoG2bmc/iLszlZuHWqArJoRdG5r1LuLiy2XiDUS J15tfjnPdAfpRVWK2w2+SAyHp7XhVJFV0LNGmdtCNdOACamZK1qvvD+cCSO5ybZj 08r5Z239JCzHnw== -----END CERTIFICATE-----Generated at Thu Dec 11 19:33:34 2025 by rpki-client