This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft File: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft (raw, json) Hash identifier: mMeWvyK0J3oyHHi2wFl01PNJ95pf80SoXU3l+/h/Ohw= Subject key identifier: 31:AF:7D:48:E3:01:A6:6E:AF:70:35:ED:BC:DF:95:09:1F:78:F8:85 Authority key identifier: 28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67 Certificate issuer: /CN=2858d2f131715cbaf3cdd920645924f53508e067 Certificate serial: 019B5976E1F29B1726A4EF04143E6881B8C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft Manifest number: 0C36 Signing time: Fri 26 Dec 2025 07:02:01 +0000 Manifest this update: Fri 26 Dec 2025 07:02:01 +0000 Manifest next update: Sat 27 Dec 2025 07:02:01 +0000 Files and hashes: 1: Gxa8ZTehusQ__zJKE-EIDPUx7f0.roa (hash: D3bg8s9LSpHww0XiOamb2fTNkB0scUvbSEDIBYdOll4=) 2: KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl (hash: ofFHEdb+QwWtmzTe6anVEe5zrNpD6U2SMIy9DDEnl3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:e1:f2:9b:17:26:a4:ef:04:14:3e:68:81:b8:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858d2f131715cbaf3cdd920645924f53508e067 Validity Not Before: Dec 26 07:02:01 2025 GMT Not After : Dec 27 07:02:01 2025 GMT Subject: CN=31af7d48e301a66eaf7035edbcdf95091f78f885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0f:02:17:38:60:ef:76:51:c9:a1:4d:a4:d1: a0:4a:63:a3:1b:5c:f9:a6:c8:21:28:6e:98:2a:90: 43:13:1b:4a:6c:cc:1d:94:8f:67:d5:ed:36:7e:2e: 40:a5:93:2c:e3:45:65:84:43:bc:da:d6:2f:ae:47: 99:17:af:b2:b9:a2:84:15:a5:f9:a1:8b:c1:ae:3a: 78:35:79:cb:ee:5e:88:bb:bb:11:c0:d0:8f:99:68: 16:67:50:a5:2a:05:31:dd:59:ea:46:ae:30:70:3e: da:a9:13:3d:3b:69:e4:a4:c5:6e:38:43:f2:65:67: 77:a9:c4:8e:1a:e6:3a:83:96:4d:62:71:96:ed:82: d8:31:c6:8b:0c:33:05:90:d4:a5:fd:16:47:68:2b: 28:2c:bc:d3:dc:66:f6:20:10:52:21:38:f6:5a:dd: b8:d4:1c:3d:d6:7e:1d:20:a0:1b:92:89:f0:4e:a2: 50:36:fe:c7:54:8c:02:7d:de:36:91:37:34:a5:0d: 4b:75:2d:b0:b8:cb:7b:1a:a6:be:72:fc:cc:25:2f: 47:40:48:d0:d2:81:0d:0f:cb:00:f7:1e:62:b0:56: 74:db:37:08:8d:ac:06:4a:2a:bb:87:e6:87:c4:a3: 04:e9:72:07:cc:7e:82:aa:b7:ec:9f:04:f2:20:e8: b5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AF:7D:48:E3:01:A6:6E:AF:70:35:ED:BC:DF:95:09:1F:78:F8:85 X509v3 Authority Key Identifier: keyid:28:58:D2:F1:31:71:5C:BA:F3:CD:D9:20:64:59:24:F5:35:08:E0:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/75dbc4-ae22-4971-9ef5-a3f355beeedd/1/KFjS8TFxXLrzzdkgZFkk9TUI4Gc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:4b:32:c8:63:36:3b:0f:c7:7a:f9:4c:69:12:c1:52:42:fb: 4c:87:5d:1d:d8:01:6c:c3:6b:77:c3:71:19:00:e9:db:80:f1: 78:60:23:70:b5:ea:ae:9f:8a:9e:d9:7d:b5:d3:24:33:41:61: 21:95:34:0c:f2:81:3a:2e:a4:e2:37:eb:2d:01:14:86:6f:7a: 66:ec:85:dc:b5:e6:41:7f:8f:ff:2c:05:2a:97:06:98:1f:8d: 16:d6:0e:8d:59:92:85:99:ed:61:ea:85:5b:e2:f4:23:6d:f7: 8f:9b:9b:c3:27:52:de:1f:17:fe:d6:c2:e1:6c:a2:a3:76:07: 4d:f8:f9:c7:99:5a:bf:53:30:4a:3e:b8:01:85:84:fc:7a:74: 7d:cd:02:91:4d:d1:47:1b:cf:17:da:d9:1d:35:be:6f:e7:34: e0:58:31:71:00:e3:6a:0e:b7:a9:7a:fd:d0:46:b5:4d:64:fa: bc:76:3c:a3:ad:05:54:f0:07:97:78:0d:7a:6a:41:ce:98:01: c5:aa:f8:96:dd:49:99:b4:68:25:02:ea:f4:9f:47:d3:76:68: 71:af:9d:7b:9c:dc:01:68:f6:4d:6f:1a:ae:33:cb:5d:c8:01: ff:09:18:76:c1:cb:08:19:e4:a8:85:62:3b:81:0a:ce:10:4e: 95:ee:93:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZduHymxcmpO8EFD5ogbjCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NThkMmYxMzE3MTVjYmFmM2NkZDkyMDY0NTkyNGY1MzUw OGUwNjcwHhcNMjUxMjI2MDcwMjAxWhcNMjUxMjI3MDcwMjAxWjAzMTEwLwYDVQQD EygzMWFmN2Q0OGUzMDFhNjZlYWY3MDM1ZWRiY2RmOTUwOTFmNzhmODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApA8CFzhg73ZRyaFNpNGgSmOjG1z5 psghKG6YKpBDExtKbMwdlI9n1e02fi5ApZMs40VlhEO82tYvrkeZF6+yuaKEFaX5 oYvBrjp4NXnL7l6Iu7sRwNCPmWgWZ1ClKgUx3VnqRq4wcD7aqRM9O2nkpMVuOEPy ZWd3qcSOGuY6g5ZNYnGW7YLYMcaLDDMFkNSl/RZHaCsoLLzT3Gb2IBBSITj2Wt24 1Bw91n4dIKAbkonwTqJQNv7HVIwCfd42kTc0pQ1LdS2wuMt7Gqa+cvzMJS9HQEjQ 0oEND8sA9x5isFZ02zcIjawGSiq7h+aHxKME6XIHzH6CqrfsnwTyIOi15wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDGvfUjjAaZur3A17bzflQkfePiFMB8GA1UdIwQY MBaAFChY0vExcVy6883ZIGRZJPU1COBnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi83NWRiYzQtYWUyMi00OTcxLTllZjUt YTNmMzU1YmVlZWRkLzEvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi83NWRiYzQtYWUyMi00OTcxLTllZjUtYTNmMzU1YmVlZWRk LzEvS0ZqUzhURnhYTHJ6emRrZ1pGa2s5VFVJNEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcksyyGM2 Ow/HevlMaRLBUkL7TIddHdgBbMNrd8NxGQDp24DxeGAjcLXqrp+Kntl9tdMkM0Fh IZU0DPKBOi6k4jfrLQEUhm96ZuyF3LXmQX+P/ywFKpcGmB+NFtYOjVmShZntYeqF W+L0I233j5ubwydS3h8X/tbC4Wyio3YHTfj5x5lav1MwSj64AYWE/Hp0fc0CkU3R RxvPF9rZHTW+b+c04FgxcQDjag63qXr90Ea1TWT6vHY8o60FVPAHl3gNempBzpgB xar4lt1JmbRoJQLq9J9H03Zoca+de5zcAWj2TW8arjPLXcgB/wkYdsHLCBnkqIVi O4EKzhBOle6TGw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:15:53 2025 by rpki-client