This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft File: kfWJGibPpDaiPn4f-XZki-5573c.mft (raw, json) Hash identifier: c9vzFjqiB9k5FXFeuRRZxbeb3fQi4ShUcCMslAIWFAY= Subject key identifier: 55:DC:57:78:F3:8A:88:A3:4F:B9:90:02:1B:21:6C:6A:71:15:31:CF Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77 Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77 Certificate serial: 019B19BBD2F2E3AB10B4E6E8E03E6B9C816C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft Manifest number: 15E5 Signing time: Sat 13 Dec 2025 22:01:38 +0000 Manifest this update: Sat 13 Dec 2025 22:01:38 +0000 Manifest next update: Sun 14 Dec 2025 22:01:38 +0000 Files and hashes: 1: AwtKEHfYyxnQ1th-VlZxSnr7g6Q.roa (hash: kaMvuNz15dIgQL2M/Qvml14U3ZSUX9PuIaFhO+5H45U=) 2: DIxBuJDWRajN2G8Xp5FV5TyPSvA.roa (hash: OfQWp1njClDrdouukOkCvfJ95D6ij98TPOIuqpcwAzY=) 3: kfWJGibPpDaiPn4f-XZki-5573c.crl (hash: 5uo9OGh0Z+hqJaaIAyPMExdwEa+6Wh9LumgG0X8HJoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 22:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bb:d2:f2:e3:ab:10:b4:e6:e8:e0:3e:6b:9c:81:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77 Validity Not Before: Dec 13 22:01:38 2025 GMT Not After : Dec 14 22:01:38 2025 GMT Subject: CN=55dc5778f38a88a34fb990021b216c6a711531cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5e:7e:50:33:11:a9:7e:47:a6:ff:93:01:6e: 18:c7:af:97:16:c2:45:1e:dd:e0:af:06:92:28:d5: 2e:90:29:b9:7c:a5:6e:f1:ad:92:20:9c:4d:f7:26: 86:9e:2a:96:d9:c5:03:15:36:60:b5:56:a4:34:60: cc:f0:1c:7f:72:12:e3:65:bb:02:b9:ef:6d:96:bd: 92:c9:2a:b9:a1:7a:ec:e0:4e:ce:a7:b5:f3:fc:17: 38:04:34:95:6e:bc:1a:f4:17:74:b3:a6:49:6c:9a: 5c:81:f9:75:9e:c0:27:5d:90:bb:e8:da:68:cb:13: c1:2b:6e:57:86:b2:f7:4a:09:06:3f:d4:0c:39:1d: 37:46:b0:c5:fc:ee:94:ef:43:1c:2e:2e:d6:f3:d8: 40:87:6d:b6:e2:86:70:93:70:23:37:ec:ad:ed:09: 52:9f:56:7f:9d:86:35:e7:e7:c9:2f:b3:a9:76:6f: f5:f8:b4:65:a9:e9:7a:02:6a:cd:d7:0d:0c:c7:30: fa:54:5b:6e:ce:b2:8c:47:c7:ae:71:4d:1e:05:bc: 87:f9:69:8e:4e:2c:91:ce:9a:b4:ff:5d:2b:a3:00: 81:40:00:a8:59:ee:94:f9:e7:3c:b1:91:7c:b2:46: 96:8c:1c:c9:be:3d:63:ca:13:78:59:07:f5:6f:23: 44:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DC:57:78:F3:8A:88:A3:4F:B9:90:02:1B:21:6C:6A:71:15:31:CF X509v3 Authority Key Identifier: keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c3:0f:16:ff:a0:bc:00:59:58:82:78:1f:07:5e:64:ba:ed: be:4d:c5:33:4a:6a:c2:4b:3c:bc:7f:ea:e1:1e:2e:d3:66:c8: c4:5a:f4:af:b1:f9:b5:45:a0:1d:2a:59:2c:95:08:88:23:14: f4:d1:ab:3d:73:68:eb:26:f4:c2:30:a6:67:f6:49:f9:2b:07: a0:60:e1:47:35:28:25:83:1b:68:58:9a:89:86:c1:5a:00:ca: b3:6c:bc:44:de:41:77:c7:9f:c4:68:bd:de:b0:9e:f5:9d:77: 16:9c:64:dc:d5:9b:42:a6:58:43:89:20:00:de:af:49:30:21: f5:39:d2:fc:32:33:05:58:06:48:cb:c0:be:c5:79:eb:97:11: 5a:79:82:2a:87:d3:82:2a:c1:b0:5e:73:01:9d:b0:33:7e:7b: 0e:f6:85:f5:32:d0:18:ab:82:c3:32:8f:88:97:5f:08:fe:a5: bd:ed:9f:85:bd:31:b0:7b:ed:45:9d:89:2f:02:08:1d:4c:a8: 5c:79:e5:a2:f7:29:0a:ee:38:a4:73:ce:6e:ac:f9:ab:18:0c: 4b:56:04:6c:a8:22:59:a5:bb:94:76:1c:1d:97:e7:ba:2d:f9: 36:ce:0e:ed:53:80:1a:63:77:fc:9d:23:7d:d8:66:83:aa:08: 57:ba:d7:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZu9Ly46sQtObo4D5rnIFsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZjU4OTFhMjZjZmE0MzZhMjNlN2UxZmY5NzY2NDhiZWU3 OWVmNzcwHhcNMjUxMjEzMjIwMTM4WhcNMjUxMjE0MjIwMTM4WjAzMTEwLwYDVQQD Eyg1NWRjNTc3OGYzOGE4OGEzNGZiOTkwMDIxYjIxNmM2YTcxMTUzMWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyl5+UDMRqX5Hpv+TAW4Yx6+XFsJF Ht3grwaSKNUukCm5fKVu8a2SIJxN9yaGniqW2cUDFTZgtVakNGDM8Bx/chLjZbsC ue9tlr2SySq5oXrs4E7Op7Xz/Bc4BDSVbrwa9Bd0s6ZJbJpcgfl1nsAnXZC76Npo yxPBK25XhrL3SgkGP9QMOR03RrDF/O6U70McLi7W89hAh2224oZwk3AjN+yt7QlS n1Z/nYY15+fJL7Opdm/1+LRlqel6AmrN1w0MxzD6VFtuzrKMR8eucU0eBbyH+WmO TiyRzpq0/10rowCBQACoWe6U+ec8sZF8skaWjBzJvj1jyhN4WQf1byNERwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFXcV3jzioijT7mQAhshbGpxFTHPMB8GA1UdIwQY MBaAFJH1iRomz6Q2oj5+H/l2ZIvuee93MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy83ZjFiNzQtYzhkNy00YTBkLThhMzkt ZGFhNzM5MGI1YmE3LzEva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy83ZjFiNzQtYzhkNy00YTBkLThhMzktZGFhNzM5MGI1YmE3 LzEva2ZXSkdpYlBwRGFpUG40Zi1YWmtpLTU1NzNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADMMPFv+g vABZWIJ4HwdeZLrtvk3FM0pqwks8vH/q4R4u02bIxFr0r7H5tUWgHSpZLJUIiCMU 9NGrPXNo6yb0wjCmZ/ZJ+SsHoGDhRzUoJYMbaFiaiYbBWgDKs2y8RN5Bd8efxGi9 3rCe9Z13Fpxk3NWbQqZYQ4kgAN6vSTAh9TnS/DIzBVgGSMvAvsV565cRWnmCKofT girBsF5zAZ2wM357DvaF9TLQGKuCwzKPiJdfCP6lve2fhb0xsHvtRZ2JLwIIHUyo XHnlovcpCu44pHPObqz5qxgMS1YEbKgiWaW7lHYcHZfnui35Ns4O7VOAGmN3/J0j fdhmg6oIV7rXhQ== -----END CERTIFICATE-----Generated at Sun Dec 14 07:49:01 2025 by rpki-client