This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json) Hash identifier: Pl5VuIclaPvmsaLWtIBfZMRsW2XGya+N4rFlQMUipUE= Subject key identifier: 5C:47:83:A7:B1:8D:5C:3D:C4:3F:15:61:3B:20:EE:D4:DF:1E:54:87 Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42 Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142 Certificate serial: 019B0890852CB4620618D3FB82E3881D62B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft Manifest number: 0B9C Signing time: Wed 10 Dec 2025 14:00:47 +0000 Manifest this update: Wed 10 Dec 2025 14:00:47 +0000 Manifest next update: Thu 11 Dec 2025 14:00:47 +0000 Files and hashes: 1: HJG2LfZbcdQILd5mjrG6JouJjB8.roa (hash: AJsKTbmetLnV+AkJjtEMj7IQPl7myVO7TWx6kpWmD6s=) 2: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: 7xBPpNdzWfIILSezcOYH2NrKEFpK5a/Xs4WLiv/sYfQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:90:85:2c:b4:62:06:18:d3:fb:82:e3:88:1d:62:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142 Validity Not Before: Dec 10 14:00:47 2025 GMT Not After : Dec 11 14:00:47 2025 GMT Subject: CN=5c4783a7b18d5c3dc43f15613b20eed4df1e5487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:fe:bc:64:3c:67:32:df:a0:fb:83:2d:0a:16: 78:f2:ab:7d:79:45:00:97:22:ed:78:64:3b:e5:9c: 4d:8a:f5:0f:c6:48:f7:4b:8f:37:00:c2:96:dd:f5: 7f:bf:9e:0a:0c:4b:e6:2e:34:7e:fa:78:5f:24:ae: 4e:00:f9:cc:0b:42:00:9d:17:49:e7:af:1f:9b:b6: 3c:de:d4:a7:cd:b9:25:c4:90:63:e1:2b:e5:31:03: ab:54:73:7d:3b:d2:45:00:0e:a4:1e:88:13:de:fa: 69:be:62:c4:2d:f2:4e:57:9a:e5:c1:c1:9a:ca:be: 09:b0:d9:33:42:29:dd:33:6e:ed:a1:4d:94:2f:23: 02:c8:39:e2:b0:d3:89:49:7e:58:79:81:4e:d2:41: 21:9c:f2:4c:b1:43:16:fb:b0:2b:14:85:34:53:9e: 87:bf:7a:ac:2a:4b:7f:59:d0:fc:c8:b3:08:b9:ae: 5c:8a:e7:d3:d7:52:1c:b4:83:4d:98:9b:56:81:72: ec:82:19:48:99:ec:ca:11:d5:46:c9:fc:64:62:d2: 46:8c:f8:59:61:8a:8e:ab:56:52:02:90:92:58:16: c5:07:d8:69:04:b1:9f:12:17:8e:8e:82:fe:80:ad: 07:61:62:7f:d5:7c:9e:d8:28:cd:28:da:cf:4c:a7: 7c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:47:83:A7:B1:8D:5C:3D:C4:3F:15:61:3B:20:EE:D4:DF:1E:54:87 X509v3 Authority Key Identifier: keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:b2:56:48:18:1b:28:03:ab:6e:c9:46:b2:22:a4:43:fe:37: 9f:a6:ce:b9:fc:34:c0:ff:d2:69:85:9a:38:0b:f2:7a:90:1c: 08:b9:4f:25:08:a2:02:26:1e:98:e0:4c:e4:6d:7e:92:96:d5: fd:28:7d:4b:3e:b3:88:07:f1:4b:00:f9:0c:c2:14:2f:2b:9d: ad:87:0f:64:1e:a2:46:97:c4:03:b7:0f:ca:11:84:8b:1f:b3: c4:bb:fd:20:f4:26:8c:ba:db:d4:e5:72:da:7c:0c:f0:26:93: 62:60:c9:55:fe:3d:99:5b:dd:a4:b3:1d:96:46:8d:02:f1:f9: b2:eb:80:b6:1d:64:23:c1:61:03:8b:6e:4c:85:b4:c8:be:35: 9c:78:89:51:a8:07:a3:1c:22:0c:70:00:8c:c1:ed:88:62:dc: 37:32:2b:e0:c5:0a:d5:1b:c3:bd:4d:7c:60:fd:a8:87:33:a5: b1:83:9b:49:22:81:80:2f:95:86:e4:d4:ee:a6:e6:5a:b7:d9: ad:d5:0c:7e:b2:fb:0d:aa:b8:7d:8b:7d:06:3e:f8:6d:af:03: ab:d6:bc:20:35:cf:e4:da:1d:70:f2:bd:d2:56:e1:d8:35:aa: f2:70:81:7e:fa:a2:b9:74:ae:58:42:c0:03:a3:30:99:9b:33: 41:77:df:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIkIUstGIGGNP7guOIHWK5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyODBkM2U0NjcyOTY4Zjg2ZTg5NTVkYjYyMGNiNzY1ZGI5 ZDcxNDIwHhcNMjUxMjEwMTQwMDQ3WhcNMjUxMjExMTQwMDQ3WjAzMTEwLwYDVQQD Eyg1YzQ3ODNhN2IxOGQ1YzNkYzQzZjE1NjEzYjIwZWVkNGRmMWU1NDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlP68ZDxnMt+g+4MtChZ48qt9eUUA lyLteGQ75ZxNivUPxkj3S483AMKW3fV/v54KDEvmLjR++nhfJK5OAPnMC0IAnRdJ 568fm7Y83tSnzbklxJBj4SvlMQOrVHN9O9JFAA6kHogT3vppvmLELfJOV5rlwcGa yr4JsNkzQindM27toU2ULyMCyDnisNOJSX5YeYFO0kEhnPJMsUMW+7ArFIU0U56H v3qsKkt/WdD8yLMIua5ciufT11IctINNmJtWgXLsghlImezKEdVGyfxkYtJGjPhZ YYqOq1ZSApCSWBbFB9hpBLGfEheOjoL+gK0HYWJ/1Xye2CjNKNrPTKd8lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFxHg6exjVw9xD8VYTsg7tTfHlSHMB8GA1UdIwQY MBaAFJKA0+RnKWj4bolV22IMt2XbnXFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81OWRhNTAtYWVkYi00OTA2LWFmMTkt MDkwZmUzZGEyNDMzLzEva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81OWRhNTAtYWVkYi00OTA2LWFmMTktMDkwZmUzZGEyNDMz LzEva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmLJWSBgb KAOrbslGsiKkQ/43n6bOufw0wP/SaYWaOAvyepAcCLlPJQiiAiYemOBM5G1+kpbV /Sh9Sz6ziAfxSwD5DMIULyudrYcPZB6iRpfEA7cPyhGEix+zxLv9IPQmjLrb1OVy 2nwM8CaTYmDJVf49mVvdpLMdlkaNAvH5suuAth1kI8FhA4tuTIW0yL41nHiJUagH oxwiDHAAjMHtiGLcNzIr4MUK1RvDvU18YP2ohzOlsYObSSKBgC+VhuTU7qbmWrfZ rdUMfrL7Daq4fYt9Bj74ba8Dq9a8IDXP5NodcPK90lbh2DWq8nCBfvqiuXSuWELA A6MwmZszQXffaw== -----END CERTIFICATE-----Generated at Wed Dec 10 18:24:43 2025 by rpki-client