This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft File: kYMWq06hPrtUVgwaZwQtR-lm2CM.mft (raw, json) Hash identifier: wixm/RRQ5L4QjIoNyr24VBqrBKEWyXlUXlfF3ksfZUk= Subject key identifier: 01:19:9E:A7:21:58:A2:CF:B9:CE:F8:1E:E5:F3:31:33:24:9C:F3:4D Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23 Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823 Certificate serial: 019B4815BE858F8DC16F208BF8C181DE97E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft Manifest number: 1791 Signing time: Mon 22 Dec 2025 22:02:22 +0000 Manifest this update: Mon 22 Dec 2025 22:02:22 +0000 Manifest next update: Tue 23 Dec 2025 22:02:22 +0000 Files and hashes: 1: 1pItkF34I0T0XrYWSJRD7pj_ja0.roa (hash: xX/gcWJfZ1minzry/xWMxIOizMCvErT51ZVCYZljegM=) 2: kYMWq06hPrtUVgwaZwQtR-lm2CM.crl (hash: JhGgbMQBTbqAj+R4aCMNAL7k/0AmR4/SKS60iK8uEqk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:15:be:85:8f:8d:c1:6f:20:8b:f8:c1:81:de:97:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823 Validity Not Before: Dec 22 22:02:22 2025 GMT Not After : Dec 23 22:02:22 2025 GMT Subject: CN=01199ea72158a2cfb9cef81ee5f33133249cf34d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5c:3e:ee:9a:5a:b0:ee:2c:26:9e:d2:6b:12: 40:72:0d:97:3f:ad:dc:22:bb:dc:3b:f1:ab:a4:c1: c2:58:5d:d4:fd:91:93:65:c5:31:e0:dc:1c:77:f7: b3:19:64:53:42:be:49:22:f7:7a:fd:76:0d:8e:f6: 74:43:b9:76:e1:85:25:ee:65:7c:83:28:11:00:6c: 44:94:b1:d3:1f:93:c7:68:98:a2:dd:e4:d2:21:77: b1:ed:c2:1a:04:18:c0:e8:37:c9:14:29:f0:a7:f8: c6:c4:e7:e5:54:2a:97:0c:ab:95:df:13:c6:6f:64: 9c:84:b4:42:e1:b3:91:56:a1:b0:f3:eb:05:a1:ce: 11:c3:87:51:a8:da:85:b6:51:82:41:d3:d0:96:63: 63:7c:1d:6a:6b:d9:70:97:d0:91:d1:2a:da:cb:4d: 67:ee:7e:14:a9:e0:36:a6:3b:83:fb:75:c2:57:85: 84:5f:ab:d1:29:75:a5:8e:c0:97:86:3a:8d:fa:fc: 32:03:28:9d:e7:4f:cf:14:58:c4:32:d9:82:69:78: a6:4a:38:6e:fd:03:6f:a3:a5:a9:b2:3a:18:fa:01: c3:79:c1:a9:50:e3:31:0c:49:66:f8:38:7e:f5:9e: a3:06:dd:fa:a6:21:5f:35:c3:2a:55:9c:21:fb:93: 73:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:19:9E:A7:21:58:A2:CF:B9:CE:F8:1E:E5:F3:31:33:24:9C:F3:4D X509v3 Authority Key Identifier: keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:57:f9:3b:09:e8:07:9b:3b:08:25:4b:df:9a:5a:06:9b:5d: c8:f8:b8:6d:2b:ff:c5:0a:bf:06:bc:f3:65:35:48:87:52:91: 13:f6:d5:06:55:a9:82:df:0d:2b:39:13:7f:c0:a8:cc:ab:90: d4:a7:f8:64:66:23:81:f8:a4:b6:70:51:d8:22:8f:08:14:f6: 1e:ab:2f:70:63:49:a2:c6:32:f9:fc:1e:e5:95:c5:eb:82:9b: a9:77:3f:44:c8:f0:cb:ec:0e:75:10:60:76:d3:9d:a9:ed:b9: 2a:44:b6:55:bd:6a:7b:2e:93:47:bf:55:bd:1a:04:70:e0:95: 71:9b:ed:8e:4d:e6:9c:85:51:ab:ed:55:dd:45:e7:59:0d:9d: c0:95:7c:95:71:30:0d:2c:fe:bb:57:f8:75:24:de:3a:81:a2: 79:97:c1:62:c2:f5:ee:12:46:f4:d0:51:8a:0e:92:21:69:13: 17:56:bb:20:65:67:4c:70:c9:a8:a5:27:2e:33:99:a4:aa:14: 72:fb:bd:32:8d:42:72:f1:71:9c:58:e5:2c:53:62:66:9e:60: 89:54:4c:ec:7b:4f:85:9e:a4:c3:6f:e3:9e:3e:d4:9d:aa:5b: 54:21:3a:d4:ee:93:6b:d1:0c:cb:69:44:61:c7:2b:c7:d3:ae: 60:1e:56:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFb6Fj43BbyCL+MGB3pfgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxODMxNmFiNGVhMTNlYmI1NDU2MGMxYTY3MDQyZDQ3ZTk2 NmQ4MjMwHhcNMjUxMjIyMjIwMjIyWhcNMjUxMjIzMjIwMjIyWjAzMTEwLwYDVQQD EygwMTE5OWVhNzIxNThhMmNmYjljZWY4MWVlNWYzMzEzMzI0OWNmMzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFw+7ppasO4sJp7SaxJAcg2XP63c IrvcO/GrpMHCWF3U/ZGTZcUx4Nwcd/ezGWRTQr5JIvd6/XYNjvZ0Q7l24YUl7mV8 gygRAGxElLHTH5PHaJii3eTSIXex7cIaBBjA6DfJFCnwp/jGxOflVCqXDKuV3xPG b2SchLRC4bORVqGw8+sFoc4Rw4dRqNqFtlGCQdPQlmNjfB1qa9lwl9CR0Sray01n 7n4UqeA2pjuD+3XCV4WEX6vRKXWljsCXhjqN+vwyAyid50/PFFjEMtmCaXimSjhu /QNvo6WpsjoY+gHDecGpUOMxDElm+Dh+9Z6jBt36piFfNcMqVZwh+5NzdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAEZnqchWKLPuc74HuXzMTMknPNNMB8GA1UdIwQY MBaAFJGDFqtOoT67VFYMGmcELUfpZtgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMt OWUzY2QwZDlkNzdhLzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMtOWUzY2QwZDlkNzdh LzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJFf5Owno B5s7CCVL35paBptdyPi4bSv/xQq/BrzzZTVIh1KRE/bVBlWpgt8NKzkTf8CozKuQ 1Kf4ZGYjgfiktnBR2CKPCBT2HqsvcGNJosYy+fwe5ZXF64KbqXc/RMjwy+wOdRBg dtOdqe25KkS2Vb1qey6TR79VvRoEcOCVcZvtjk3mnIVRq+1V3UXnWQ2dwJV8lXEw DSz+u1f4dSTeOoGieZfBYsL17hJG9NBRig6SIWkTF1a7IGVnTHDJqKUnLjOZpKoU cvu9Mo1CcvFxnFjlLFNiZp5giVRM7HtPhZ6kw2/jnj7UnapbVCE61O6Ta9EMy2lE Yccrx9OuYB5WCw== -----END CERTIFICATE-----Generated at Tue Dec 23 06:39:27 2025 by rpki-client