This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft File: MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft (raw, json) Hash identifier: +uXXuTu8BkqxZC2KroyPu/PYNwuPFUqSEOtMXbEYcPo= Subject key identifier: 2D:20:9D:6C:6E:E3:24:6B:6E:6E:29:BC:B1:76:0B:EF:92:EE:7F:CB Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07 Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07 Certificate serial: 019B5A88A8B5C02CBF212CDDD1A4623A8C39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft Manifest number: 179A Signing time: Fri 26 Dec 2025 12:01:03 +0000 Manifest this update: Fri 26 Dec 2025 12:01:03 +0000 Manifest next update: Sat 27 Dec 2025 12:01:03 +0000 Files and hashes: 1: 3Ld3_xMK0PlfZFY-qBwXca5iVGM.roa (hash: CjU6hi/Jh6Zo5sGQ2UDjZfEn9Czpv8lCLYgvh/6NOKs=) 2: MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl (hash: sbnALEwPJrCroAS16dzP/K47dOOPz56AWBHhmR2X4DM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:a8:b5:c0:2c:bf:21:2c:dd:d1:a4:62:3a:8c:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07 Validity Not Before: Dec 26 12:01:03 2025 GMT Not After : Dec 27 12:01:03 2025 GMT Subject: CN=2d209d6c6ee3246b6e6e29bcb1760bef92ee7fcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:b9:1d:ca:9e:7f:53:b7:97:9a:80:52:d5: 2a:7f:c4:50:8c:f4:30:67:55:63:a4:42:5e:ce:d7: 36:69:ea:a5:5d:41:ad:25:99:3f:bb:9b:5d:41:17: 50:53:ba:b0:cc:56:f3:c3:92:2c:6a:8f:97:be:1d: da:79:db:63:95:b3:c2:25:5b:87:0a:ba:57:f8:ad: 81:d0:58:59:8e:35:af:32:02:a0:7f:da:35:9f:51: 12:b1:9b:32:cf:02:da:17:cd:6d:63:06:af:e4:3c: 3a:f3:fd:96:33:a9:54:b0:17:a2:58:70:63:d5:cb: 70:e6:d7:e8:6e:79:af:87:f4:fe:90:c3:10:d2:ed: 63:d3:81:5f:4d:ee:f3:89:b2:bd:6b:94:b6:2a:5c: 62:b1:ab:69:91:1f:2c:5a:5c:d5:df:d7:81:41:4a: 1a:00:a2:93:da:e2:31:21:2c:e4:1f:26:64:5d:93: c0:53:2e:bc:3a:fe:6b:2f:11:34:c4:85:09:2e:87: e5:46:5b:fd:dd:c8:26:67:b7:75:a7:d2:41:84:ea: e8:c9:2f:cb:3e:7c:13:40:20:ae:19:a2:2f:06:7b: 72:40:55:e1:ce:19:fa:cd:94:c5:6b:e6:62:64:93: 78:4f:fa:0b:85:e1:2a:cc:6a:b8:97:30:c8:c3:6e: 61:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:20:9D:6C:6E:E3:24:6B:6E:6E:29:BC:B1:76:0B:EF:92:EE:7F:CB X509v3 Authority Key Identifier: keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:b4:cd:76:2e:4e:28:55:28:a5:26:be:9b:71:67:ca:7f:66: dd:95:ef:c2:7b:75:21:d6:d0:d3:61:7f:6e:57:5f:a7:a3:4b: e3:da:61:b0:b6:4d:ee:28:47:59:25:f4:4e:67:f2:ad:49:b1: 64:ad:89:3f:8f:95:8b:e0:e4:26:4f:52:53:ed:d3:22:19:70: c4:65:5f:5a:e7:a0:2e:86:a8:8f:39:45:fc:b2:ec:de:25:b7: 19:82:0c:43:2b:41:2e:c9:be:3f:02:56:73:82:10:6d:8b:20: 5d:e4:56:22:1f:15:84:a5:14:da:a3:79:85:df:91:c7:82:f5: 15:a7:dd:eb:5e:4e:b3:6f:b0:81:85:bc:a5:c3:e9:d2:0b:3f: 9c:11:48:78:7e:17:53:01:55:92:26:0f:bd:1f:0b:d0:cc:75: 6a:39:9f:86:3e:df:47:6d:82:8b:b0:71:e3:3a:35:7d:39:cb: 93:ad:24:16:82:ac:60:6e:ca:37:ea:63:23:bd:e6:f5:7f:9d: fc:cf:ca:9a:f0:03:b2:8c:c9:0c:75:0b:24:3f:fa:78:07:2e: 64:63:6c:81:80:8e:bb:e7:18:ad:c5:4a:a9:d5:c0:85:1d:0b: 08:ba:d4:25:a2:0d:a2:0a:0c:19:c1:8a:f5:56:df:e5:2b:95: 9a:30:14:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiKi1wCy/ISzd0aRiOow5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyYzJiZTQ4M2ZmMjdiYjhmMGRjMDljZTBmNzFmMmE4OGVh ZjdlMDcwHhcNMjUxMjI2MTIwMTAzWhcNMjUxMjI3MTIwMTAzWjAzMTEwLwYDVQQD EygyZDIwOWQ2YzZlZTMyNDZiNmU2ZTI5YmNiMTc2MGJlZjkyZWU3ZmNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWq5Hcqef1O3l5qAUtUqf8RQjPQw Z1VjpEJeztc2aeqlXUGtJZk/u5tdQRdQU7qwzFbzw5Isao+Xvh3aedtjlbPCJVuH CrpX+K2B0FhZjjWvMgKgf9o1n1ESsZsyzwLaF81tYwav5Dw68/2WM6lUsBeiWHBj 1ctw5tfobnmvh/T+kMMQ0u1j04FfTe7zibK9a5S2KlxisatpkR8sWlzV39eBQUoa AKKT2uIxISzkHyZkXZPAUy68Ov5rLxE0xIUJLoflRlv93cgmZ7d1p9JBhOroyS/L PnwTQCCuGaIvBntyQFXhzhn6zZTFa+ZiZJN4T/oLheEqzGq4lzDIw25hgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0gnWxu4yRrbm4pvLF2C++S7n/LMB8GA1UdIwQY MBaAFDLCvkg/8nu48NwJzg9x8qiOr34HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQt OTczZGI5Y2U2OGI1LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQtOTczZGI5Y2U2OGI1 LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV7TNdi5O KFUopSa+m3Fnyn9m3ZXvwnt1IdbQ02F/bldfp6NL49phsLZN7ihHWSX0TmfyrUmx ZK2JP4+Vi+DkJk9SU+3TIhlwxGVfWuegLoaojzlF/LLs3iW3GYIMQytBLsm+PwJW c4IQbYsgXeRWIh8VhKUU2qN5hd+Rx4L1Fafd615Os2+wgYW8pcPp0gs/nBFIeH4X UwFVkiYPvR8L0Mx1ajmfhj7fR22Ci7Bx4zo1fTnLk60kFoKsYG7KN+pjI73m9X+d /M/KmvADsozJDHULJD/6eAcuZGNsgYCOu+cYrcVKqdXAhR0LCLrUJaINogoMGcGK 9Vbf5SuVmjAURg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:15:56 2025 by rpki-client