This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft File: K5didVR7dd8rBMT5spHAcQxQd0A.mft (raw, json) Hash identifier: oceZzR4JfIJULprUiaRFL0w+CmOxuYrs2tiupkvUgQg= Subject key identifier: 0D:4A:EE:09:B1:62:2C:82:69:7C:98:4A:25:65:52:B0:5B:73:92:A2 Authority key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40 Certificate issuer: /CN=2b976275547b75df2b04c4f9b291c0710c507740 Certificate serial: 019B101457288A1D5CC2535E31E31079E98A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft Manifest number: 1773 Signing time: Fri 12 Dec 2025 01:02:06 +0000 Manifest this update: Fri 12 Dec 2025 01:02:06 +0000 Manifest next update: Sat 13 Dec 2025 01:02:06 +0000 Files and hashes: 1: K5didVR7dd8rBMT5spHAcQxQd0A.crl (hash: SZ22BYca6zAYDg8FZ/rmnUkZw/2ZZDar/vnXvynZsgw=) 2: LM4PEm0ffK75EUFTgpXPbuoAKZ8.roa (hash: d7gyd2tIHJ6HJ/7vl5EHNlkX+eVBttxlbWWHGFZ3xxQ=) 3: _w36PBooYvePauBkPOTldD_qNZc.roa (hash: hpJoX8luKbQz9GDhdRpg1rk5Zn+lxQz5UWYQbVjTs1Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:57:28:8a:1d:5c:c2:53:5e:31:e3:10:79:e9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b976275547b75df2b04c4f9b291c0710c507740 Validity Not Before: Dec 12 01:02:06 2025 GMT Not After : Dec 13 01:02:06 2025 GMT Subject: CN=0d4aee09b1622c82697c984a256552b05b7392a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:33:21:79:15:3e:8b:fc:fc:9d:a5:d2:80:a2: b6:27:c6:1b:f3:f8:64:d1:54:80:50:33:e6:31:9e: 0d:d0:08:30:01:a4:df:c6:1f:98:26:a3:3c:8a:1b: 9e:fb:77:f5:b3:8d:a4:e9:bb:10:ad:1f:23:d6:fb: 75:73:56:ed:ff:dc:97:37:db:ab:e4:8b:6a:d3:6c: 41:d1:6f:71:bd:8c:cb:f3:1c:45:b5:63:17:33:a1: e9:8c:23:e3:73:41:bc:22:fa:23:4d:ff:88:a3:b7: d5:18:88:a9:40:55:10:04:f8:1a:c7:08:9e:9a:f4: 3a:4a:df:5c:e0:de:38:58:3e:ec:26:88:6a:fe:63: f2:8b:c7:a1:b8:0d:55:bf:57:44:52:b3:5d:21:56: 7c:d3:9f:db:60:c8:8f:cc:93:2f:5f:8c:37:69:1f: 07:57:a7:d2:49:57:1e:76:c3:3d:a1:e6:6a:fa:7a: c6:52:4a:f9:03:12:a7:39:8a:67:d6:1c:a2:65:2e: b0:92:25:15:fc:36:e5:5d:66:ca:63:db:7a:d0:33: 6e:a2:97:55:5a:de:fb:3a:cb:54:98:d5:cf:13:28: 79:d3:d2:23:72:46:68:0a:f1:e7:80:d6:ca:d4:e0: 87:f0:f7:87:01:cf:e4:47:93:f4:e5:3d:ba:91:da: dd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4A:EE:09:B1:62:2C:82:69:7C:98:4A:25:65:52:B0:5B:73:92:A2 X509v3 Authority Key Identifier: keyid:2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:7f:c7:fd:9a:10:2e:72:02:3a:8d:2b:b9:63:86:0a:eb:b8: 5d:fd:d3:6a:3e:d2:0b:21:1e:62:28:bb:5b:ee:2b:56:47:ae: 9f:21:7a:1c:36:a0:68:ad:49:6a:94:d5:29:b8:ab:b5:78:98: 51:f6:37:b8:37:a5:e9:86:4d:0d:f7:2b:4b:a6:80:3b:32:2b: 7c:61:a5:0c:a5:a7:90:59:c5:5e:18:d1:d7:ef:25:76:2b:df: fc:06:c3:99:ef:65:b0:b1:0e:a8:83:17:6e:40:56:58:81:1b: 7c:a5:6d:c1:22:92:6f:01:1f:17:2d:21:0c:6e:04:6f:03:95: 17:7d:60:1a:3b:b0:cd:19:d3:e7:f0:0d:01:34:c7:f7:d6:12: 1f:4a:da:be:84:77:71:8e:7d:b5:83:d1:e2:04:e6:26:c1:9c: 1c:23:5e:ef:0e:0f:42:92:32:00:26:3c:de:0c:48:a5:74:3d: 91:18:a5:1e:0c:4a:73:02:f5:1a:3a:04:20:c7:e5:b4:54:e6: de:fb:d8:6e:31:f7:ad:19:88:f8:9a:df:5d:ae:34:1e:55:64: 44:06:75:c4:ad:66:58:1b:93:c9:ee:a9:52:d8:8f:60:60:3f: bb:ff:9f:cd:14:28:49:f6:13:08:e4:de:9b:2d:7e:01:c6:bb: 2f:af:19:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFFcoih1cwlNeMeMQeemKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiOTc2Mjc1NTQ3Yjc1ZGYyYjA0YzRmOWIyOTFjMDcxMGM1 MDc3NDAwHhcNMjUxMjEyMDEwMjA2WhcNMjUxMjEzMDEwMjA2WjAzMTEwLwYDVQQD EygwZDRhZWUwOWIxNjIyYzgyNjk3Yzk4NGEyNTY1NTJiMDViNzM5MmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjMheRU+i/z8naXSgKK2J8Yb8/hk 0VSAUDPmMZ4N0AgwAaTfxh+YJqM8ihue+3f1s42k6bsQrR8j1vt1c1bt/9yXN9ur 5Itq02xB0W9xvYzL8xxFtWMXM6HpjCPjc0G8IvojTf+Io7fVGIipQFUQBPgaxwie mvQ6St9c4N44WD7sJohq/mPyi8ehuA1Vv1dEUrNdIVZ805/bYMiPzJMvX4w3aR8H V6fSSVcedsM9oeZq+nrGUkr5AxKnOYpn1hyiZS6wkiUV/DblXWbKY9t60DNuopdV Wt77OstUmNXPEyh509IjckZoCvHngNbK1OCH8PeHAc/kR5P05T26kdrdcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA1K7gmxYiyCaXyYSiVlUrBbc5KiMB8GA1UdIwQY MBaAFCuXYnVUe3XfKwTE+bKRwHEMUHdAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzVkaWRWUjdkZDhyQk1UNXNwSEFjUXhRZDBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81OGY0NWYtOGIwNy00ZTZhLTk1NDgt ZDViMGY5MWQ5N2MyLzEvSzVkaWRWUjdkZDhyQk1UNXNwSEFjUXhRZDBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi81OGY0NWYtOGIwNy00ZTZhLTk1NDgtZDViMGY5MWQ5N2My LzEvSzVkaWRWUjdkZDhyQk1UNXNwSEFjUXhRZDBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACn/H/ZoQ LnICOo0ruWOGCuu4Xf3Taj7SCyEeYii7W+4rVkeunyF6HDagaK1JapTVKbirtXiY UfY3uDel6YZNDfcrS6aAOzIrfGGlDKWnkFnFXhjR1+8ldivf/AbDme9lsLEOqIMX bkBWWIEbfKVtwSKSbwEfFy0hDG4EbwOVF31gGjuwzRnT5/ANATTH99YSH0ravoR3 cY59tYPR4gTmJsGcHCNe7w4PQpIyACY83gxIpXQ9kRilHgxKcwL1GjoEIMfltFTm 3vvYbjH3rRmI+JrfXa40HlVkRAZ1xK1mWBuTye6pUtiPYGA/u/+fzRQoSfYTCOTe my1+Aca7L68ZnQ== -----END CERTIFICATE-----Generated at Fri Dec 12 03:35:29 2025 by rpki-client