This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft File: RMKVym7oyucAa1d69U43ZiPfd5k.mft (raw, json) Hash identifier: byb/WTr8fmj5bUHOKXd+MFXvroSI+E7lW1K3UvyAy+o= Subject key identifier: 85:88:3E:60:A8:D6:C5:B7:34:FA:C8:2D:DC:CF:3F:86:EC:53:90:13 Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99 Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799 Certificate serial: 019B5BD226081D44C63411EF7D362DD0AD3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft Manifest number: 1567 Signing time: Fri 26 Dec 2025 18:00:57 +0000 Manifest this update: Fri 26 Dec 2025 18:00:57 +0000 Manifest next update: Sat 27 Dec 2025 18:00:57 +0000 Files and hashes: 1: 1-a4x5OOX4iisCDf6ed1yjE-GXUQ.roa (hash: sw8ry0bOHDndmxXW/2FyYZ7exmAZ4VvNy12eeZpqa3o=) 2: RMKVym7oyucAa1d69U43ZiPfd5k.crl (hash: c61NKUU80KRlIK4Fvlug2S2GLthtmVDj8CY26jUoqAM=) 3: UTTLqXMtJUxFPASsyV3j9mlbrsU.roa (hash: 2XJm8gYnzGZQLzDIfSf2GHQMXAHNk+qtN5YEcj0V9ws=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:d2:26:08:1d:44:c6:34:11:ef:7d:36:2d:d0:ad:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799 Validity Not Before: Dec 26 18:00:57 2025 GMT Not After : Dec 27 18:00:57 2025 GMT Subject: CN=85883e60a8d6c5b734fac82ddccf3f86ec539013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e5:61:e6:4d:a1:8f:d7:83:d2:5a:a6:8c:d5: a2:0a:db:e8:6f:cd:3c:e3:6f:df:33:a8:8b:cf:d7: 47:a3:72:45:b4:c0:cd:c1:77:29:4d:69:2e:ab:c3: 46:29:0a:67:6f:8e:29:0f:50:6e:15:a2:02:8d:16: 1b:4c:92:2f:03:b0:37:99:b6:31:6d:20:93:11:91: 1a:47:60:6d:c5:1e:bb:c1:6f:b1:3f:ad:3e:85:fe: 84:ea:84:08:2e:fa:71:58:a3:ca:14:1f:78:14:c5: 36:8e:83:ef:70:0e:b1:6e:8e:cd:eb:0b:70:c5:51: 92:4e:aa:7f:31:e0:5b:fc:55:1b:ef:e3:ac:ec:6d: 5e:bd:34:df:3c:2e:52:66:fa:85:29:15:2b:69:81: 49:d5:9c:18:0d:c7:8d:6f:d7:45:d2:a0:a6:94:88: 8b:fc:27:ce:19:e0:ca:64:9f:c5:c1:d2:1d:f4:77: e8:eb:2a:b9:3e:24:61:70:1d:66:62:a9:7b:88:43: 95:d0:20:31:48:31:ea:26:30:a0:8a:14:51:ba:9f: 52:4a:07:e4:a4:8d:c7:9c:32:4d:5d:d7:89:eb:a1: 27:80:8f:04:c2:b9:fd:de:b4:68:19:46:9d:f5:c8: 0f:bb:ad:2e:c7:89:40:3e:90:94:7b:bd:22:2c:27: fb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:88:3E:60:A8:D6:C5:B7:34:FA:C8:2D:DC:CF:3F:86:EC:53:90:13 X509v3 Authority Key Identifier: keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:c0:ae:c7:18:c7:ae:0d:de:0a:c1:b6:27:92:85:1f:63:d1: f4:08:c6:f5:d1:72:23:b9:d4:78:72:2a:d7:e4:bf:a9:c6:70: fc:33:ad:3e:fd:ad:3b:29:24:17:2e:47:a9:b6:90:2f:15:67: 0f:d8:40:80:de:6f:d2:79:ec:03:d2:56:4d:1b:45:3b:aa:d9: e2:36:e8:28:57:ed:00:d3:6f:af:ed:10:a6:95:72:96:f8:1d: 87:9a:9a:18:b0:9f:b2:e5:0d:d8:ce:fc:e1:1e:6a:24:8a:78: 9c:8d:08:fc:68:62:5c:a8:0f:ca:b4:de:e9:7e:71:4b:4d:aa: 70:5c:a2:ee:5a:1d:d0:0d:cc:21:8f:e4:50:aa:d7:e1:bb:b2: 8e:fe:56:65:26:6b:8a:92:e5:da:46:e3:b4:23:67:c5:f2:be: e6:e6:92:75:a1:e7:e7:de:62:08:f6:91:48:e6:3d:03:48:38: 5c:8f:13:82:4e:e5:bf:9a:a5:4c:f2:62:23:68:88:a5:4a:d2: 6a:7e:e1:1a:5d:20:71:b4:d3:90:74:74:51:2e:2d:78:5b:1f: d3:b3:82:d2:08:af:3d:55:53:37:4e:35:30:be:33:50:94:e0: f7:3b:b0:3d:8c:99:e5:ca:d5:dd:21:12:df:e8:5c:44:dd:11: 25:79:6f:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtb0iYIHUTGNBHvfTYt0K09MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0YzI5NWNhNmVlOGNhZTcwMDZiNTc3YWY1NGUzNzY2MjNk Zjc3OTkwHhcNMjUxMjI2MTgwMDU3WhcNMjUxMjI3MTgwMDU3WjAzMTEwLwYDVQQD Eyg4NTg4M2U2MGE4ZDZjNWI3MzRmYWM4MmRkY2NmM2Y4NmVjNTM5MDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOVh5k2hj9eD0lqmjNWiCtvob808 42/fM6iLz9dHo3JFtMDNwXcpTWkuq8NGKQpnb44pD1BuFaICjRYbTJIvA7A3mbYx bSCTEZEaR2BtxR67wW+xP60+hf6E6oQILvpxWKPKFB94FMU2joPvcA6xbo7N6wtw xVGSTqp/MeBb/FUb7+Os7G1evTTfPC5SZvqFKRUraYFJ1ZwYDceNb9dF0qCmlIiL /CfOGeDKZJ/FwdId9Hfo6yq5PiRhcB1mYql7iEOV0CAxSDHqJjCgihRRup9SSgfk pI3HnDJNXdeJ66EngI8Ewrn93rRoGUad9cgPu60ux4lAPpCUe70iLCf7VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIWIPmCo1sW3NPrILdzPP4bsU5ATMB8GA1UdIwQY MBaAFETClcpu6MrnAGtXevVON2Yj33eZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUk1LVnltN295dWNBYTFkNjlVNDNaaVBmZDVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8xN2E4OGQtMjM2ZC00ZmFkLTkwMzUt NzU5OWI0NDFjZDFjLzEvUk1LVnltN295dWNBYTFkNjlVNDNaaVBmZDVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8xN2E4OGQtMjM2ZC00ZmFkLTkwMzUtNzU5OWI0NDFjZDFj LzEvUk1LVnltN295dWNBYTFkNjlVNDNaaVBmZDVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlsCuxxjH rg3eCsG2J5KFH2PR9AjG9dFyI7nUeHIq1+S/qcZw/DOtPv2tOykkFy5HqbaQLxVn D9hAgN5v0nnsA9JWTRtFO6rZ4jboKFftANNvr+0QppVylvgdh5qaGLCfsuUN2M78 4R5qJIp4nI0I/GhiXKgPyrTe6X5xS02qcFyi7lod0A3MIY/kUKrX4buyjv5WZSZr ipLl2kbjtCNnxfK+5uaSdaHn595iCPaRSOY9A0g4XI8Tgk7lv5qlTPJiI2iIpUrS an7hGl0gcbTTkHR0US4teFsf07OC0givPVVTN041ML4zUJTg9zuwPYyZ5crV3SES 3+hcRN0RJXlvTg== -----END CERTIFICATE-----Generated at Fri Dec 26 21:01:17 2025 by rpki-client