This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json) Hash identifier: aLYKjhSIhsa/p4zp/J5GeFZdFQQWwrU6rf8xa2WGotk= Subject key identifier: 6B:E3:15:96:FC:FE:7A:4A:65:24:FB:CB:0D:4D:BF:1F:F2:70:39:B0 Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd Certificate serial: 019B0F37CDAC1B8146D436AC216846D3BC15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft Manifest number: 1771 Signing time: Thu 11 Dec 2025 21:01:13 +0000 Manifest this update: Thu 11 Dec 2025 21:01:13 +0000 Manifest next update: Fri 12 Dec 2025 21:01:13 +0000 Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=) 2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=) 3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=) 4: cM2WijieWcfz1get8DBHQkXXH94.roa (hash: YN463PMg+163k21SmND+h8gKso19maJII2obZdv1r0M=) 5: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: PCUT5eQcPRlAtmLWJVnBW92C30I7FnjmVcqpb7Owd/Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 21:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:cd:ac:1b:81:46:d4:36:ac:21:68:46:d3:bc:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd Validity Not Before: Dec 11 21:01:13 2025 GMT Not After : Dec 12 21:01:13 2025 GMT Subject: CN=6be31596fcfe7a4a6524fbcb0d4dbf1ff27039b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:82:d6:a1:73:a2:2f:1a:fd:57:40:ee:6c:44: aa:8c:6c:ee:da:3f:55:c4:40:7f:17:b6:99:27:53: fe:e5:d2:10:2e:de:fe:4f:4a:f1:22:60:a2:0f:f2: ad:af:f8:78:42:62:bb:53:86:1d:c9:6c:cf:2f:c1: 6d:65:06:23:7e:4c:01:b0:6a:81:63:28:7d:cd:47: d2:90:e6:37:be:48:b1:44:bc:a6:6b:10:fe:3a:74: 65:99:19:bf:77:b1:b3:e9:71:ab:35:a8:01:fa:ef: 6d:b1:7c:aa:5e:a1:86:4f:58:f2:bc:26:5c:3f:67: 1e:dc:b5:b7:2d:40:6e:0d:47:27:c4:47:8c:f5:3a: df:13:ab:29:1e:15:f0:d5:5d:19:14:4c:56:f9:0e: 99:67:7e:56:0e:01:27:2c:aa:69:87:13:52:7c:71: 66:4b:0b:ff:b3:6e:60:65:a7:fb:83:a0:da:f5:38: 4a:5d:72:ce:21:6c:21:da:82:93:2f:67:8d:87:15: 4d:ed:e4:23:8c:49:95:e2:97:b1:d8:73:25:57:04: 39:05:eb:6e:88:15:1a:40:8a:f7:91:1d:a7:e9:f4: d4:6c:6d:1a:08:21:11:9c:6c:6b:f9:79:cc:a0:e3: f5:b8:43:70:68:24:7c:5a:e6:ce:81:81:fa:a1:f0: 3e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E3:15:96:FC:FE:7A:4A:65:24:FB:CB:0D:4D:BF:1F:F2:70:39:B0 X509v3 Authority Key Identifier: keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:34:56:78:91:33:e8:21:0d:c9:6f:05:11:de:9d:74:13:bc: 2f:be:36:b7:b1:30:a4:21:9e:b1:a3:c1:f5:3b:54:2f:d8:aa: 1c:2b:f4:88:de:29:a9:ad:95:53:0f:58:4e:4f:14:9c:69:18: eb:40:47:e7:eb:62:f1:41:ec:06:87:e1:ab:ac:b0:40:37:16: 30:1a:e2:a0:6e:c8:44:e2:ad:f8:e1:b0:08:a8:d9:04:42:4f: 3a:50:ad:1e:8d:fe:6e:a8:08:fe:fb:87:25:07:a9:3b:1d:2d: 31:ce:ae:b3:e7:c9:6d:e8:96:0c:6c:ac:00:9c:e8:3a:1b:96: 4c:ec:50:aa:c0:25:78:73:de:92:59:ac:bd:0d:86:a0:05:22: d6:d0:95:ca:f2:d8:5f:ea:84:02:be:b3:ef:4f:d0:24:fa:37: 7d:34:11:dd:fa:77:6c:80:0e:1a:16:87:0e:70:81:59:e3:27: cf:ef:d6:1c:ed:52:18:e2:a2:6a:56:98:80:69:d3:af:6a:d0: a3:75:7d:55:ef:b6:38:c0:25:bd:dc:13:35:0e:b4:0f:eb:8c: 19:50:6a:fe:26:0a:85:cd:13:08:2d:b1:5f:9d:9f:0a:42:0b: f3:a0:d4:0e:a5:e4:1c:96:eb:78:40:3f:03:ab:df:25:eb:4d: 8e:38:f4:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN82sG4FG1DasIWhG07wVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxOGVmODIzYmIwNDFlYTNhYzdjODkzNmM3NTBiNjAxODEz N2UyY2QwHhcNMjUxMjExMjEwMTEzWhcNMjUxMjEyMjEwMTEzWjAzMTEwLwYDVQQD Eyg2YmUzMTU5NmZjZmU3YTRhNjUyNGZiY2IwZDRkYmYxZmYyNzAzOWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqILWoXOiLxr9V0DubESqjGzu2j9V xEB/F7aZJ1P+5dIQLt7+T0rxImCiD/Ktr/h4QmK7U4YdyWzPL8FtZQYjfkwBsGqB Yyh9zUfSkOY3vkixRLymaxD+OnRlmRm/d7Gz6XGrNagB+u9tsXyqXqGGT1jyvCZc P2ce3LW3LUBuDUcnxEeM9TrfE6spHhXw1V0ZFExW+Q6ZZ35WDgEnLKpphxNSfHFm Swv/s25gZaf7g6Da9ThKXXLOIWwh2oKTL2eNhxVN7eQjjEmV4pex2HMlVwQ5Betu iBUaQIr3kR2n6fTUbG0aCCERnGxr+XnMoOP1uENwaCR8WubOgYH6ofA+vwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGvjFZb8/npKZST7yw1Nvx/ycDmwMB8GA1UdIwQY MBaAFJGO+CO7BB6jrHyJNsdQtgGBN+LNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1k3NEk3c0VIcU9zZklrMngxQzJBWUUzNHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82NTQyMGMtZjVlMi00ZDI5LWI1MDMt NjUyOTc1MWIyYjAxLzEva1k3NEk3c0VIcU9zZklrMngxQzJBWUUzNHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS82NTQyMGMtZjVlMi00ZDI5LWI1MDMtNjUyOTc1MWIyYjAx LzEva1k3NEk3c0VIcU9zZklrMngxQzJBWUUzNHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKzRWeJEz 6CENyW8FEd6ddBO8L742t7EwpCGesaPB9TtUL9iqHCv0iN4pqa2VUw9YTk8UnGkY 60BH5+ti8UHsBofhq6ywQDcWMBrioG7IROKt+OGwCKjZBEJPOlCtHo3+bqgI/vuH JQepOx0tMc6us+fJbeiWDGysAJzoOhuWTOxQqsAleHPeklmsvQ2GoAUi1tCVyvLY X+qEAr6z70/QJPo3fTQR3fp3bIAOGhaHDnCBWeMnz+/WHO1SGOKialaYgGnTr2rQ o3V9Ve+2OMAlvdwTNQ60D+uMGVBq/iYKhc0TCC2xX52fCkIL86DUDqXkHJbreEA/ A6vfJetNjjj06Q== -----END CERTIFICATE-----Generated at Fri Dec 12 06:56:25 2025 by rpki-client