This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft File: kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft (raw, json) Hash identifier: 2EbJcNpLOIyeKpOKh7zYRUIpklYpR35dIjedCa4cgD8= Subject key identifier: 66:1B:1C:46:ED:86:2D:EF:8B:89:06:BA:46:85:41:ED:AB:69:C0:86 Authority key identifier: 91:DD:0E:48:D9:01:1A:DF:37:66:65:AD:4D:62:CF:31:CE:63:05:8C Certificate issuer: /CN=91dd0e48d9011adf376665ad4d62cf31ce63058c Certificate serial: 019B096CB7A4FD4CFFF07451F73866E20E03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft Manifest number: 0E8D Signing time: Wed 10 Dec 2025 18:01:18 +0000 Manifest this update: Wed 10 Dec 2025 18:01:18 +0000 Manifest next update: Thu 11 Dec 2025 18:01:18 +0000 Files and hashes: 1: O0T2HbDDLXToVBgQvakFVm0WBM8.roa (hash: j4M5mhMKjocJHlnRMyKx/Jo55Alu9WqNqQzzA+GKZ+8=) 2: WPrYk3ZFYryhbXNF2_g_QVCy5G0.roa (hash: 1/VFn2v02knd9dSenNmn42s5XXg6Yfw+0bFY3ogbnpY=) 3: kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl (hash: M5rXVwNcOMM2Noy0nuKEXcMxEgNo6bKcmrroPsNSZv4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 18:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:09:6c:b7:a4:fd:4c:ff:f0:74:51:f7:38:66:e2:0e:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91dd0e48d9011adf376665ad4d62cf31ce63058c Validity Not Before: Dec 10 18:01:18 2025 GMT Not After : Dec 11 18:01:18 2025 GMT Subject: CN=661b1c46ed862def8b8906ba468541edab69c086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:60:b4:fc:18:7e:d2:cc:12:d5:a3:9f:4a:2a: 74:50:0b:d7:ba:65:30:d6:50:c0:fd:5e:5c:a1:77: f3:ca:ef:32:ec:81:c8:27:69:28:3e:35:ae:d7:50: f5:cd:58:53:b1:dc:a9:78:c0:bf:cb:73:6e:22:45: df:a7:e7:2c:fa:2d:96:38:5d:65:47:10:36:0a:70: 87:2f:6d:ab:73:b0:43:b2:c3:ca:64:9c:cc:95:7e: 8f:dd:76:8f:02:9b:49:5d:fa:50:c4:21:a3:99:02: 71:79:51:b1:0a:bf:b5:b0:88:67:e5:b5:a0:e9:78: 5a:28:16:9e:d2:ac:45:63:7f:a2:8f:33:45:2c:6b: e0:1b:56:f9:9d:4d:93:22:2f:ee:66:35:d5:40:ea: 38:34:48:9e:df:75:b0:ea:d2:46:c7:b5:f4:ce:c2: 3f:29:41:51:5a:c4:b3:71:c2:72:0f:1a:08:b5:fc: 96:15:34:67:65:36:08:d5:29:1e:08:e1:d1:b9:e8: 3a:c0:2c:7e:04:eb:12:cf:e1:66:09:57:73:4f:bc: a0:51:80:98:99:43:98:46:17:e3:35:d2:f8:af:fb: 39:c1:9e:d8:19:de:d8:75:c9:c3:15:a9:3c:9e:ef: 27:76:9e:53:4b:1e:31:d9:3e:c4:24:84:c3:22:d2: 92:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1B:1C:46:ED:86:2D:EF:8B:89:06:BA:46:85:41:ED:AB:69:C0:86 X509v3 Authority Key Identifier: keyid:91:DD:0E:48:D9:01:1A:DF:37:66:65:AD:4D:62:CF:31:CE:63:05:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:94:62:91:43:5f:85:a9:52:7b:48:15:20:01:d3:33:cf:a6: fc:f8:3d:26:ad:2a:9f:06:3b:9d:97:15:6b:2d:b6:88:09:3c: 5c:29:b0:be:86:b3:0f:81:a1:eb:39:17:32:e9:2a:3b:f0:da: 39:19:f3:4b:d0:5c:5c:62:f3:1d:a4:d4:68:f9:d3:5c:70:ae: 40:51:69:f2:f2:da:62:c2:d1:8c:bd:b2:5d:51:ea:29:84:5b: 08:58:23:6a:29:eb:46:a9:36:9b:24:12:51:59:09:ec:bd:10: a1:ca:ff:9a:00:43:58:f1:1d:ee:62:09:c4:64:cb:c5:40:66: c7:b4:75:3a:fc:4c:aa:30:7e:d1:ac:b6:77:0a:83:99:75:69: c7:e3:99:2f:c7:fb:51:a2:e5:41:7a:c4:71:1f:4d:c8:a0:eb: 94:0b:fa:1a:f4:34:f1:96:5f:9e:44:3a:5b:79:1f:71:ee:7a: 39:66:e3:66:91:18:b2:8d:fd:9a:5e:d7:5f:20:19:d1:92:b2: ff:e3:d3:7e:89:e7:60:28:03:bc:3c:7f:28:b9:9d:f4:2e:98: 6a:1f:9e:6c:71:77:20:60:0c:ef:08:6a:51:82:aa:b6:5a:24: 41:23:68:3c:b7:6c:c1:74:cf:8c:b8:bf:65:49:1c:f3:f0:8d: c1:76:c2:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsJbLek/Uz/8HRR9zhm4g4DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZGQwZTQ4ZDkwMTFhZGYzNzY2NjVhZDRkNjJjZjMxY2U2 MzA1OGMwHhcNMjUxMjEwMTgwMTE4WhcNMjUxMjExMTgwMTE4WjAzMTEwLwYDVQQD Eyg2NjFiMWM0NmVkODYyZGVmOGI4OTA2YmE0Njg1NDFlZGFiNjljMDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGC0/Bh+0swS1aOfSip0UAvXumUw 1lDA/V5coXfzyu8y7IHIJ2koPjWu11D1zVhTsdypeMC/y3NuIkXfp+cs+i2WOF1l RxA2CnCHL22rc7BDssPKZJzMlX6P3XaPAptJXfpQxCGjmQJxeVGxCr+1sIhn5bWg 6XhaKBae0qxFY3+ijzNFLGvgG1b5nU2TIi/uZjXVQOo4NEie33Ww6tJGx7X0zsI/ KUFRWsSzccJyDxoItfyWFTRnZTYI1SkeCOHRueg6wCx+BOsSz+FmCVdzT7ygUYCY mUOYRhfjNdL4r/s5wZ7YGd7YdcnDFak8nu8ndp5TSx4x2T7EJITDItKS6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGYbHEbthi3vi4kGukaFQe2racCGMB8GA1UdIwQY MBaAFJHdDkjZARrfN2ZlrU1izzHOYwWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2QwT1NOa0JHdDgzWm1XdFRXTFBNYzVqQll3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8xZTlkMDQtZDk0Zi00ZjEzLWJlM2Mt MTBmMzRmNTU4MzYzLzEva2QwT1NOa0JHdDgzWm1XdFRXTFBNYzVqQll3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8xZTlkMDQtZDk0Zi00ZjEzLWJlM2MtMTBmMzRmNTU4MzYz LzEva2QwT1NOa0JHdDgzWm1XdFRXTFBNYzVqQll3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhJRikUNf halSe0gVIAHTM8+m/Pg9Jq0qnwY7nZcVay22iAk8XCmwvoazD4Gh6zkXMukqO/Da ORnzS9BcXGLzHaTUaPnTXHCuQFFp8vLaYsLRjL2yXVHqKYRbCFgjainrRqk2myQS UVkJ7L0Qocr/mgBDWPEd7mIJxGTLxUBmx7R1OvxMqjB+0ay2dwqDmXVpx+OZL8f7 UaLlQXrEcR9NyKDrlAv6GvQ08ZZfnkQ6W3kfce56OWbjZpEYso39ml7XXyAZ0ZKy /+PTfonnYCgDvDx/KLmd9C6Yah+ebHF3IGAM7whqUYKqtlokQSNoPLdswXTPjLi/ ZUkc8/CNwXbCYQ== -----END CERTIFICATE-----Generated at Wed Dec 10 23:19:54 2025 by rpki-client