This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json) Hash identifier: 9wPO+CaXT0r3ykO/+EXmmEd3Sqcb1pTH1aGXDneETbc= Subject key identifier: 73:94:A3:1C:F6:CA:6D:91:AD:FC:E4:65:5B:7F:E4:23:5E:09:DA:AA Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48 Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48 Certificate serial: 019B2BC1976975227412F516508E12FEBDBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft Manifest number: 0A9C Signing time: Wed 17 Dec 2025 10:01:05 +0000 Manifest this update: Wed 17 Dec 2025 10:01:05 +0000 Manifest next update: Thu 18 Dec 2025 10:01:05 +0000 Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: WuNNiD6OZ1LlnbRYonC6EOPGc7/l1THXTjQFxM8DmiM=) 2: vDGDX2wIiExO6AcsphzPX7w0rD8.roa (hash: 6H+fcKSw03UJYZabhwRmpHlYumXXGe9flqc+/pdyWXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:c1:97:69:75:22:74:12:f5:16:50:8e:12:fe:bd:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48 Validity Not Before: Dec 17 10:01:05 2025 GMT Not After : Dec 18 10:01:05 2025 GMT Subject: CN=7394a31cf6ca6d91adfce4655b7fe4235e09daaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fd:82:3b:cc:95:0c:e5:40:3e:b7:b2:b9:ab: b2:08:b6:51:47:e3:78:5d:f2:0f:3b:7b:78:45:8c: d0:be:5b:b2:15:20:65:c8:59:30:11:11:57:b5:62: d4:6b:3e:03:cc:79:f8:17:2d:8f:9f:22:a8:0c:f8: 97:48:b7:67:37:78:91:f0:29:57:48:a9:89:7f:4f: 5e:a5:00:95:62:0e:74:0e:b2:d1:24:0b:25:03:c7: 96:4d:e8:3a:b6:e9:47:7b:7f:61:4c:c4:c7:ea:58: 6d:6a:8b:eb:5c:13:c0:6e:32:b7:94:3b:e9:7f:aa: 32:ea:cc:11:40:95:c2:cd:91:a0:f6:a1:f1:a1:0c: 91:45:fd:16:aa:03:f9:81:aa:80:e9:a3:a7:51:51: 45:e4:31:50:a5:1b:a3:7a:78:e2:57:d0:23:fc:e3: cc:22:94:a2:e5:4a:97:0e:11:29:de:0c:1a:7a:0e: f8:99:45:38:c7:c2:ce:ee:8e:48:0d:56:ea:b3:b6: 7c:c3:80:7e:3e:0b:8a:36:fe:1d:0a:d2:08:67:45: 4c:0d:d2:08:aa:01:1c:c0:be:7d:80:00:eb:c6:99: 1e:3e:06:53:df:00:20:38:0c:a1:ee:c6:db:92:40: 64:3f:d1:0d:ce:73:b2:d8:80:f3:81:75:3f:8f:b5: 21:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:94:A3:1C:F6:CA:6D:91:AD:FC:E4:65:5B:7F:E4:23:5E:09:DA:AA X509v3 Authority Key Identifier: keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:12:ee:fb:4d:05:c5:ad:f7:a9:e6:16:68:0b:8d:9f:dc:06: b2:da:40:3d:59:84:d9:00:9f:27:97:1a:1d:95:db:dd:58:d0: 6f:b9:25:46:41:2d:ba:56:a4:0e:b9:f3:b7:52:57:54:4f:43: 32:1c:a7:43:c7:9f:5e:79:6d:70:a7:a8:f5:d0:1c:74:c8:e8: 88:f0:5f:d6:32:d7:8b:84:83:c0:9c:4e:b1:50:ba:53:78:16: 57:7f:59:33:4d:cf:30:6d:d6:c2:c5:9f:7f:fa:8f:5a:07:4b: f2:52:b4:7d:66:03:d1:8c:32:7b:03:b8:99:cd:93:fe:f6:73: c4:2d:51:05:58:b1:76:91:b7:47:ca:a9:f8:51:b2:bf:4d:dc: 79:49:98:68:6b:fd:f1:c0:38:cf:26:3c:b1:04:96:7c:d5:c4: 08:d7:c5:ca:bc:02:97:de:96:33:86:4e:a8:4c:a4:af:6c:45: 27:4d:e5:5c:96:39:e4:53:84:6f:0a:e4:62:da:27:8a:c2:09: d4:b0:ea:2e:e1:ef:34:65:5e:11:90:78:87:06:3d:c9:50:63: 1a:be:d3:9e:04:71:a3:af:34:20:5b:b6:54:b4:b9:44:c4:c3: f7:f3:26:70:77:63:cb:13:f7:82:61:35:f3:60:be:d0:58:89: ec:ab:93:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrwZdpdSJ0EvUWUI4S/r27MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NjBmMTVkMjc4Mzc5NDgzYWFhMDYxM2NiZjU5MmU3MmNj ODFlNDgwHhcNMjUxMjE3MTAwMTA1WhcNMjUxMjE4MTAwMTA1WjAzMTEwLwYDVQQD Eyg3Mzk0YTMxY2Y2Y2E2ZDkxYWRmY2U0NjU1YjdmZTQyMzVlMDlkYWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwP2CO8yVDOVAPreyuauyCLZRR+N4 XfIPO3t4RYzQvluyFSBlyFkwERFXtWLUaz4DzHn4Fy2PnyKoDPiXSLdnN3iR8ClX SKmJf09epQCVYg50DrLRJAslA8eWTeg6tulHe39hTMTH6lhtaovrXBPAbjK3lDvp f6oy6swRQJXCzZGg9qHxoQyRRf0WqgP5gaqA6aOnUVFF5DFQpRujenjiV9Aj/OPM IpSi5UqXDhEp3gwaeg74mUU4x8LO7o5IDVbqs7Z8w4B+PguKNv4dCtIIZ0VMDdII qgEcwL59gADrxpkePgZT3wAgOAyh7sbbkkBkP9ENznOy2IDzgXU/j7UhdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHOUoxz2ym2RrfzkZVt/5CNeCdqqMB8GA1UdIwQY MBaAFChg8V0ng3lIOqoGE8v1kucsyB5IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0dEeFhTZURlVWc2cWdZVHlfV1M1eXpJSGtnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xZDFiNzItOGJjZi00NTAwLTkxMjUt MzIxYzE0ZGQ0NjM5LzEvS0dEeFhTZURlVWc2cWdZVHlfV1M1eXpJSGtnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC8xZDFiNzItOGJjZi00NTAwLTkxMjUtMzIxYzE0ZGQ0NjM5 LzEvS0dEeFhTZURlVWc2cWdZVHlfV1M1eXpJSGtnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhLu+00F xa33qeYWaAuNn9wGstpAPVmE2QCfJ5caHZXb3VjQb7klRkEtulakDrnzt1JXVE9D MhynQ8efXnltcKeo9dAcdMjoiPBf1jLXi4SDwJxOsVC6U3gWV39ZM03PMG3WwsWf f/qPWgdL8lK0fWYD0YwyewO4mc2T/vZzxC1RBVixdpG3R8qp+FGyv03ceUmYaGv9 8cA4zyY8sQSWfNXECNfFyrwCl96WM4ZOqEykr2xFJ03lXJY55FOEbwrkYtonisIJ 1LDqLuHvNGVeEZB4hwY9yVBjGr7TngRxo680IFu2VLS5RMTD9/MmcHdjyxP3gmE1 82C+0FiJ7KuTXQ== -----END CERTIFICATE-----Generated at Wed Dec 17 13:55:39 2025 by rpki-client