This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json) Hash identifier: fFLz0wJgWJpHxv/5/swV3orkGKz/O8zeE8rF26hLmfY= Subject key identifier: 93:31:12:64:DD:C5:31:AE:B7:99:88:E9:1D:C0:A9:BD:03:BE:BE:95 Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Certificate serial: 019B0FA5BC6995E1E6BF4A32C498B415B984 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft Manifest number: 055A Signing time: Thu 11 Dec 2025 23:01:18 +0000 Manifest this update: Thu 11 Dec 2025 23:01:18 +0000 Manifest next update: Fri 12 Dec 2025 23:01:18 +0000 Files and hashes: 1: 2Erepc7c7P1VRx_bLNiYu7weRzk.roa (hash: k2SMyfwtPMsgu8pAJX36t6HmVMk0LqM07DF6s7B27wo=) 2: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: HxssePLsnjYZxJy1bkZXQ6R9+s7DnFGrMdKTbQ28be4=) 3: L_UMuGgef__KCIxYo719-pYnMY0.roa (hash: qQUOKChy81kdhWvOW3DW3K7T6hbp7d9kPXUCB0/Qv9Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:a5:bc:69:95:e1:e6:bf:4a:32:c4:98:b4:15:b9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Validity Not Before: Dec 11 23:01:18 2025 GMT Not After : Dec 12 23:01:18 2025 GMT Subject: CN=93311264ddc531aeb79988e91dc0a9bd03bebe95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1d:f1:b3:da:1f:22:16:ac:ef:f2:33:8d:b1: be:fd:0b:68:54:c2:35:1e:d3:aa:87:38:00:75:b5: a5:26:78:6e:20:89:db:6b:89:b5:3c:b9:3e:cf:67: 06:ea:97:66:df:53:f2:12:3f:31:72:e6:81:00:df: fc:a0:e0:97:0a:31:3d:8d:a7:a3:d8:5b:1d:ec:b0: 13:6e:a3:a9:53:92:e6:de:16:4b:36:72:90:f9:b6: 72:ea:91:2e:cd:3f:eb:2e:ef:40:7c:0d:8c:60:e3: e8:c8:06:2c:87:8a:e1:b8:ec:14:7e:1d:0c:55:6a: 05:3b:03:6f:55:22:56:10:a0:21:78:89:9b:79:33: a6:46:fd:01:79:6e:13:1d:33:3a:5c:b9:b0:ce:68: a8:36:60:59:8e:1e:f3:ed:25:64:82:83:da:0a:4a: 65:4c:ce:1c:44:d7:bc:16:bd:a9:3c:40:2b:a1:1b: 6b:ab:b1:a9:bd:3e:b5:b5:11:d8:a1:5d:73:fa:30: f5:db:b3:ca:4d:bd:fb:8f:bf:ac:67:89:b8:95:6a: 05:56:09:38:6c:e8:b6:62:58:27:c1:40:18:f9:61: 80:26:0e:f2:73:fe:d4:c0:46:4d:57:1f:e1:45:f9: 38:fc:99:80:ba:7f:28:b3:8a:19:a6:0d:02:07:fc: 5c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:31:12:64:DD:C5:31:AE:B7:99:88:E9:1D:C0:A9:BD:03:BE:BE:95 X509v3 Authority Key Identifier: keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:64:bc:64:d6:3e:c1:83:e0:75:17:0b:ab:ca:fd:ae:2e:88: c7:e1:7f:0f:67:77:2c:3c:8f:91:f3:d2:2c:d6:f4:1c:a4:36: c4:80:24:fd:2c:ab:0b:c2:d0:b5:41:85:85:5c:44:bd:9b:52: 16:d2:52:74:58:24:52:0f:cc:d6:c1:45:80:fe:30:6f:1c:f1: 90:7e:be:ed:93:32:0b:e6:01:78:9f:11:12:11:a5:30:78:9a: 66:f4:bf:74:48:e0:a2:b5:ba:f5:ad:2d:3d:bd:0e:eb:91:b1: ad:5f:91:82:69:43:f2:4b:c1:fc:13:35:5b:d4:7b:19:24:e2: 74:b9:aa:9f:bd:05:67:4e:cc:83:92:5a:aa:8a:47:b9:b1:bd: 09:53:4d:88:b2:dd:27:b5:6e:17:53:d5:a9:24:a8:7c:72:9d: 17:4d:41:61:4c:70:f7:5d:a5:d9:ad:94:8f:d5:aa:d2:5c:08: b8:d9:96:d9:fa:d3:10:eb:45:60:23:0b:df:5b:8d:72:0e:fd: 84:20:0c:3c:c9:22:aa:51:44:3e:2e:3a:96:a7:08:f6:72:1b: 36:61:14:44:00:6e:ce:02:fd:7a:51:d6:50:4f:6e:58:ef:13: 2e:4b:b4:32:e8:93:0f:17:64:7b:6d:39:6f:c9:fc:f3:bc:16: e3:ba:e8:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPpbxpleHmv0oyxJi0FbmEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODVjYzQzZDgwNmEyMWI2MzMzMDIxOWViNjM4YmIxYmE0 OWFlODAwHhcNMjUxMjExMjMwMTE4WhcNMjUxMjEyMjMwMTE4WjAzMTEwLwYDVQQD Eyg5MzMxMTI2NGRkYzUzMWFlYjc5OTg4ZTkxZGMwYTliZDAzYmViZTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApR3xs9ofIhas7/IzjbG+/QtoVMI1 HtOqhzgAdbWlJnhuIInba4m1PLk+z2cG6pdm31PyEj8xcuaBAN/8oOCXCjE9jaej 2Fsd7LATbqOpU5Lm3hZLNnKQ+bZy6pEuzT/rLu9AfA2MYOPoyAYsh4rhuOwUfh0M VWoFOwNvVSJWEKAheImbeTOmRv0BeW4THTM6XLmwzmioNmBZjh7z7SVkgoPaCkpl TM4cRNe8Fr2pPEAroRtrq7GpvT61tRHYoV1z+jD127PKTb37j7+sZ4m4lWoFVgk4 bOi2YlgnwUAY+WGAJg7yc/7UwEZNVx/hRfk4/JmAun8os4oZpg0CB/xcGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMxEmTdxTGut5mI6R3Aqb0Dvr6VMB8GA1UdIwQY MBaAFCmFzEPYBqIbYzMCGetji7G6Sa6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzIt NGRmODg0MGVmYjE3LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzItNGRmODg0MGVmYjE3 LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaWS8ZNY+ wYPgdRcLq8r9ri6Ix+F/D2d3LDyPkfPSLNb0HKQ2xIAk/SyrC8LQtUGFhVxEvZtS FtJSdFgkUg/M1sFFgP4wbxzxkH6+7ZMyC+YBeJ8REhGlMHiaZvS/dEjgorW69a0t Pb0O65GxrV+RgmlD8kvB/BM1W9R7GSTidLmqn70FZ07Mg5JaqopHubG9CVNNiLLd J7VuF1PVqSSofHKdF01BYUxw912l2a2Uj9Wq0lwIuNmW2frTEOtFYCML31uNcg79 hCAMPMkiqlFEPi46lqcI9nIbNmEURABuzgL9elHWUE9uWO8TLku0MuiTDxdke205 b8n887wW47roHw== -----END CERTIFICATE-----Generated at Fri Dec 12 00:11:35 2025 by rpki-client