This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json) Hash identifier: NNMPNlqXqX5aZnH2BrVbDfvqnMtshcnxtZDXdrs+hGM= Subject key identifier: 91:C8:CD:D6:01:64:5C:33:C8:A0:9B:51:6A:9A:2A:31:F6:CD:E3:7F Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc Certificate serial: 019B48149828CD29CD2943989DC001EFC85A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft Manifest number: 1547 Signing time: Mon 22 Dec 2025 22:01:07 +0000 Manifest this update: Mon 22 Dec 2025 22:01:07 +0000 Manifest next update: Tue 23 Dec 2025 22:01:07 +0000 Files and hashes: 1: ELPDypl8AO7yu9Qb_T04CJHIAmc.roa (hash: uMxQfCf54KpZ6vXVJrK4LBRwbGjKGq0Ym1Kz/m5o7Z0=) 2: h7jotg4RS-yoMxmLNwMHtqMIvTo.roa (hash: 0RvIPvSKfKKYiob3W8lnsFljStCAR/IAjli0EYtRtIQ=) 3: iRTljilS88fdbTnqXefNcD2KdQw.roa (hash: SYC9aJR60HZt276fl/3G18s2lWN51c7daVgQyb0yCnk=) 4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: Qr031Z0SejKzPptGoOCcvGKYJxNcxmO28VFBEa4i2gQ=) 5: vEwnUG1RajWkcLEBWJPnIiLLgBM.roa (hash: sSHl9JnRfzO2J5TGzVLlmHvYGgd6KK351LDclJH6UZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:14:98:28:cd:29:cd:29:43:98:9d:c0:01:ef:c8:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc Validity Not Before: Dec 22 22:01:07 2025 GMT Not After : Dec 23 22:01:07 2025 GMT Subject: CN=91c8cdd601645c33c8a09b516a9a2a31f6cde37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e8:55:18:dd:93:81:90:83:f8:c5:1a:26:4a: 4f:ee:6d:0f:98:6f:7a:9b:34:b4:3e:dc:ad:22:50: 5c:32:b0:63:0a:df:ae:5b:5d:da:4f:ad:ef:4d:76: 0f:16:4f:28:fe:9f:f3:68:10:73:fe:d8:7c:a3:65: b1:16:7f:c6:91:f9:70:8d:89:e6:f4:9f:e5:06:6b: fb:1a:01:0f:86:3e:79:40:64:ad:04:fd:e3:9a:aa: 18:8e:7a:61:1e:97:7b:9d:29:b0:7f:5d:38:a9:c9: 94:6d:0d:07:28:70:bd:f9:89:a4:1f:de:60:99:34: 3d:74:ed:fc:8c:b8:c0:fe:c2:56:db:14:d5:6b:63: c3:87:8f:d5:64:a2:a2:e1:5a:42:cc:b5:2e:ef:d2: 32:51:91:5a:7b:02:65:f4:e2:b9:75:f1:8a:80:29: ed:5c:bf:9b:ce:53:f9:9a:06:db:82:58:bf:d8:d3: ab:cd:90:13:78:71:62:d1:25:d6:2a:78:43:70:38: b7:e0:15:b3:84:7a:86:f4:df:05:bc:37:4c:16:74: 36:83:c1:e0:50:6f:b3:24:08:4b:72:35:aa:fd:d4: 0f:18:c2:cd:aa:91:33:af:eb:49:f6:dd:00:2e:9c: 56:cb:f9:a3:5a:04:6f:1f:cd:1d:4c:80:e1:91:75: cb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C8:CD:D6:01:64:5C:33:C8:A0:9B:51:6A:9A:2A:31:F6:CD:E3:7F X509v3 Authority Key Identifier: keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:60:e9:89:b3:6b:19:3c:06:4d:a2:8a:59:11:2c:a3:49:19: dc:d7:9a:fd:a0:0a:cb:43:69:d3:26:33:80:e3:dc:2b:5c:96: f7:66:b1:5a:ca:84:0d:21:9f:79:a0:21:81:57:53:f6:e2:d9: 65:10:08:00:0c:1a:d8:64:13:89:39:c8:3c:44:09:80:b9:2f: a3:4d:11:a9:00:af:bb:aa:07:aa:c1:a8:a4:b9:20:d7:73:7c: 63:c0:f7:5a:09:fa:3a:f2:95:f3:06:a0:58:70:b5:83:ba:00: af:15:fd:60:78:4b:dd:16:54:33:8c:cf:04:fb:88:eb:b9:08: 03:eb:ef:83:47:53:d7:81:1c:b9:e1:3c:54:6e:4e:71:2e:0e: b2:5a:a0:8b:ea:22:93:6a:fe:36:e4:e2:15:1b:57:40:30:77: ea:8e:c6:c8:68:53:93:15:5c:8c:4c:26:9a:de:a3:73:1f:c8: 9c:5f:22:0b:6e:7c:7c:df:54:5c:ce:06:63:c2:79:21:33:81: cd:31:c9:d3:22:32:f9:62:09:5c:b6:2a:ec:cc:75:c5:06:93: da:85:59:45:fc:99:a4:d1:af:5f:53:b6:0d:64:ba:47:b3:3f: 1c:b9:b9:4d:6e:d1:53:b7:88:67:93:12:1b:f9:48:f3:74:f6: a0:25:c9:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFJgozSnNKUOYncAB78haMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNDVlYWQ4ZDNmMTI4NDQwMmI2Zjc1NjE0YTg3MjU3NTAz Y2UxYmMwHhcNMjUxMjIyMjIwMTA3WhcNMjUxMjIzMjIwMTA3WjAzMTEwLwYDVQQD Eyg5MWM4Y2RkNjAxNjQ1YzMzYzhhMDliNTE2YTlhMmEzMWY2Y2RlMzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+hVGN2TgZCD+MUaJkpP7m0PmG96 mzS0PtytIlBcMrBjCt+uW13aT63vTXYPFk8o/p/zaBBz/th8o2WxFn/GkflwjYnm 9J/lBmv7GgEPhj55QGStBP3jmqoYjnphHpd7nSmwf104qcmUbQ0HKHC9+YmkH95g mTQ9dO38jLjA/sJW2xTVa2PDh4/VZKKi4VpCzLUu79IyUZFaewJl9OK5dfGKgCnt XL+bzlP5mgbbgli/2NOrzZATeHFi0SXWKnhDcDi34BWzhHqG9N8FvDdMFnQ2g8Hg UG+zJAhLcjWq/dQPGMLNqpEzr+tJ9t0ALpxWy/mjWgRvH80dTIDhkXXLcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHIzdYBZFwzyKCbUWqaKjH2zeN/MB8GA1UdIwQY MBaAFJFF6tjT8ShEArb3VhSocldQPOG8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzct MmFkMTk1MjY0YzcyLzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzctMmFkMTk1MjY0Yzcy LzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACWDpibNr GTwGTaKKWREso0kZ3Nea/aAKy0Np0yYzgOPcK1yW92axWsqEDSGfeaAhgVdT9uLZ ZRAIAAwa2GQTiTnIPEQJgLkvo00RqQCvu6oHqsGopLkg13N8Y8D3Wgn6OvKV8wag WHC1g7oArxX9YHhL3RZUM4zPBPuI67kIA+vvg0dT14EcueE8VG5OcS4Oslqgi+oi k2r+NuTiFRtXQDB36o7GyGhTkxVcjEwmmt6jcx/InF8iC258fN9UXM4GY8J5ITOB zTHJ0yIy+WIJXLYq7Mx1xQaT2oVZRfyZpNGvX1O2DWS6R7M/HLm5TW7RU7eIZ5MS G/lI83T2oCXJYg== -----END CERTIFICATE-----Generated at Tue Dec 23 01:54:37 2025 by rpki-client