This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json) Hash identifier: GMuvchtBRB+nuJW1pi1Bf9nFFgHg00qz8gPMa1TIa7o= Subject key identifier: 72:1E:37:D1:EC:34:44:91:83:91:A9:0B:DF:B4:88:6A:D8:37:81:45 Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd Certificate serial: 019B1080C767805A6E7C0EF35C6D18ED0C55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft Manifest number: 0B65 Signing time: Fri 12 Dec 2025 03:00:33 +0000 Manifest this update: Fri 12 Dec 2025 03:00:33 +0000 Manifest next update: Sat 13 Dec 2025 03:00:33 +0000 Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=) 2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=) 3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=) 4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=) 5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=) 6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: XxtcUeLgPeRWcH9zOg5mv+A4oZMRabHYJy7maHYTPn8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 03:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:80:c7:67:80:5a:6e:7c:0e:f3:5c:6d:18:ed:0c:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd Validity Not Before: Dec 12 03:00:33 2025 GMT Not After : Dec 13 03:00:33 2025 GMT Subject: CN=721e37d1ec3444918391a90bdfb4886ad8378145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:19:66:5c:be:a1:cd:d6:30:5a:bc:9e:2e:d2: 86:2c:95:91:eb:61:ba:20:54:48:17:b5:64:fd:18: eb:f6:63:1e:e8:06:fa:5c:96:ef:46:c3:c0:22:f5: 93:de:7c:5a:62:9e:3e:53:de:e7:86:6d:b0:32:64: 25:0d:48:e2:86:60:d1:f6:1f:af:ee:41:c7:3d:ff: 98:3e:99:8b:f0:6c:ab:e1:b5:6c:4a:e2:b8:a2:4e: 42:e6:00:56:1d:aa:34:c4:b6:38:ca:a6:8d:d9:cd: 02:78:bf:be:87:4e:24:5b:ad:5e:f3:d3:ae:dc:15: 9a:6d:6b:cb:5c:bd:7d:b8:02:f8:b0:04:f4:ac:5a: e8:0e:6a:da:09:3c:b3:4c:28:b6:73:af:97:3f:fd: 94:a3:e6:ec:91:2b:fe:b8:96:6d:f0:44:40:e3:03: 4e:97:82:28:b0:8d:c6:e8:a3:90:69:db:cc:c7:c0: 25:b0:fb:b1:db:30:38:8f:d0:98:67:39:78:b1:d4: 43:0a:25:6f:2c:e7:db:46:05:ba:ba:3f:34:ae:98: 6a:78:ce:fc:65:ff:3d:65:c0:87:30:dd:31:8d:59: f5:d6:88:69:a0:fb:da:35:44:96:3d:ab:18:0d:66: c2:45:ac:db:9f:50:e6:bc:d8:0c:59:8b:7c:0e:68: 9d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1E:37:D1:EC:34:44:91:83:91:A9:0B:DF:B4:88:6A:D8:37:81:45 X509v3 Authority Key Identifier: keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:f0:19:ec:62:b3:0b:56:50:68:78:55:09:be:b3:76:6b:57: 06:f3:74:2b:a3:8a:ac:5b:d2:8c:9e:54:a3:e0:2d:6b:fd:a2: 26:f8:86:c1:98:50:0a:04:38:15:87:7b:7c:b9:f3:1c:24:24: bd:5f:6c:b8:e1:a3:77:e6:53:97:5d:b5:62:07:bc:66:c2:54: c7:72:1b:b0:a0:5a:f5:f7:af:83:04:ae:d8:f5:a9:78:6a:57: 5a:d4:fd:51:9e:52:5d:44:1e:ee:65:b0:b1:78:13:32:8a:a4: 02:c7:09:6e:92:07:6a:4e:a1:ef:03:c1:ed:e7:aa:0d:64:c1: 67:ce:04:90:f5:13:36:c0:90:56:66:92:26:c2:97:24:b0:2e: 9a:93:4b:59:65:c6:80:05:f7:58:cf:c1:86:bd:48:c5:5e:aa: ad:72:0a:3e:d6:be:e9:e0:9f:c4:7f:dd:89:94:a4:08:94:d1: 22:f3:b6:c9:e4:07:21:46:12:c7:a2:b2:3f:36:ff:b5:49:9d: 8f:ab:d0:07:e8:90:7f:bb:55:68:27:fc:62:e3:19:88:64:6c: a9:cd:ea:99:4c:40:fc:c9:fd:e7:73:a0:4a:03:ec:90:12:49: 5d:a8:a5:3c:21:12:db:94:53:f7:a0:6d:23:9d:d7:fa:d7:96: be:4e:9e:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQgMdngFpufA7zXG0Y7QxVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzgxYmM5NjlkZTZhZGMzZDFkZGMwZWI4OWJkZWVhY2U5 ODA1Y2QwHhcNMjUxMjEyMDMwMDMzWhcNMjUxMjEzMDMwMDMzWjAzMTEwLwYDVQQD Eyg3MjFlMzdkMWVjMzQ0NDkxODM5MWE5MGJkZmI0ODg2YWQ4Mzc4MTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RlmXL6hzdYwWryeLtKGLJWR62G6 IFRIF7Vk/Rjr9mMe6Ab6XJbvRsPAIvWT3nxaYp4+U97nhm2wMmQlDUjihmDR9h+v 7kHHPf+YPpmL8Gyr4bVsSuK4ok5C5gBWHao0xLY4yqaN2c0CeL++h04kW61e89Ou 3BWabWvLXL19uAL4sAT0rFroDmraCTyzTCi2c6+XP/2Uo+bskSv+uJZt8ERA4wNO l4IosI3G6KOQadvMx8AlsPux2zA4j9CYZzl4sdRDCiVvLOfbRgW6uj80rphqeM78 Zf89ZcCHMN0xjVn11ohpoPvaNUSWPasYDWbCRazbn1DmvNgMWYt8DmidlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHIeN9HsNESRg5GpC9+0iGrYN4FFMB8GA1UdIwQY MBaAFJE4G8lp3mrcPR3cDrib3urOmAXNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMt MjU2ZGE5NWQxMzQ1LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMtMjU2ZGE5NWQxMzQ1 LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc/AZ7GKz C1ZQaHhVCb6zdmtXBvN0K6OKrFvSjJ5Uo+Ata/2iJviGwZhQCgQ4FYd7fLnzHCQk vV9suOGjd+ZTl121Yge8ZsJUx3IbsKBa9fevgwSu2PWpeGpXWtT9UZ5SXUQe7mWw sXgTMoqkAscJbpIHak6h7wPB7eeqDWTBZ84EkPUTNsCQVmaSJsKXJLAumpNLWWXG gAX3WM/Bhr1IxV6qrXIKPta+6eCfxH/diZSkCJTRIvO2yeQHIUYSx6KyPzb/tUmd j6vQB+iQf7tVaCf8YuMZiGRsqc3qmUxA/Mn953OgSgPskBJJXailPCES25RT96Bt I53X+teWvk6eAw== -----END CERTIFICATE-----Generated at Fri Dec 12 12:59:25 2025 by rpki-client