This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json) Hash identifier: EZleJI8ZkwYaf7+u1P6CEfyf+pgm7HNbX2D7FPWQ31Y= Subject key identifier: 54:0E:B4:95:8B:97:51:85:3F:92:A0:BB:43:C8:D6:55:EB:03:2F:EE Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd Certificate serial: 019B416DD9F70A88DB3F7ADC27B0C4A6D5BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 15:01:16 +0000 Manifest this update: Sun 21 Dec 2025 15:01:16 +0000 Manifest next update: Mon 22 Dec 2025 15:01:16 +0000 Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=) 2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=) 3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=) 4: cM2WijieWcfz1get8DBHQkXXH94.roa (hash: YN463PMg+163k21SmND+h8gKso19maJII2obZdv1r0M=) 5: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: CEUrrEGZZ7yVqGrwS93VzetUlcg7PPi54Kig9p9R6hM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:d9:f7:0a:88:db:3f:7a:dc:27:b0:c4:a6:d5:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd Validity Not Before: Dec 21 15:01:16 2025 GMT Not After : Dec 22 15:01:16 2025 GMT Subject: CN=540eb4958b9751853f92a0bb43c8d655eb032fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ba:82:ec:27:8f:d1:7e:5c:db:95:89:4e:35: c6:5a:00:33:14:ee:76:b0:3d:19:a5:3f:ec:19:4b: 3b:63:70:0b:88:73:fb:ad:f6:61:f3:55:73:c2:fe: 3d:3a:4d:01:c4:4c:d0:2d:de:b3:2d:b2:a4:0a:7d: 60:97:df:91:2e:7c:ba:39:3a:b5:92:5c:a1:b1:e2: 0a:92:0d:b4:6f:81:8a:5c:0f:cc:d7:23:87:bc:04: 12:3d:fb:ac:aa:12:ba:87:6c:eb:9a:d0:25:e2:77: 2a:e4:a5:fb:cd:25:47:fb:8c:fe:29:4e:55:0b:2b: 53:90:a6:b5:21:4f:a9:42:bf:96:7c:de:ed:a0:2a: 62:1f:ef:c5:4b:08:3d:fd:f6:ff:af:f1:62:03:3b: 70:32:02:42:ff:b0:65:04:ef:ce:ef:39:30:63:de: 1d:3d:36:92:fb:0e:00:4b:80:5c:f7:2f:5d:e8:aa: 54:58:9b:74:41:47:8e:69:3e:17:33:30:a6:64:86: 97:45:01:0c:f7:0f:a9:fc:70:a9:20:c7:53:8c:83: 2c:0d:a8:5c:43:d3:07:2a:30:d0:22:07:37:00:25: 0e:66:19:59:6f:5e:49:78:9f:d5:90:1c:6f:f4:c1: 39:4c:a6:c0:81:61:bb:e7:74:51:7e:c4:70:b7:c3: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:0E:B4:95:8B:97:51:85:3F:92:A0:BB:43:C8:D6:55:EB:03:2F:EE X509v3 Authority Key Identifier: keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:16:a8:11:00:13:93:41:a3:5f:0c:3a:84:61:67:56:6a:c5: fd:64:e8:ad:3f:74:a1:71:25:e3:79:35:49:a8:0d:56:2e:12: 86:dc:33:6d:82:93:5e:25:ca:8f:20:03:15:19:17:eb:86:d7: eb:3a:68:5f:e8:82:56:c7:6d:2b:59:42:cd:0c:a5:fa:f5:52: 68:30:18:3d:2e:60:0d:12:ab:7c:5d:b1:26:da:54:06:23:b1: db:34:4c:45:e9:3f:1a:64:57:79:15:60:51:c4:87:c9:3e:fb: 36:30:47:e3:41:ad:56:4a:5a:04:6f:c8:55:9a:b4:9c:77:99: 4b:0a:05:68:8e:6f:47:b3:0d:69:b7:f0:7d:be:fe:2c:3b:59: 11:71:7f:e3:18:85:ef:50:e8:0e:3d:66:77:01:26:5d:00:1d: fc:93:16:17:47:be:97:e0:9b:ef:b2:e2:d5:9a:33:50:64:7b: 96:6c:d1:3b:b2:fa:41:7b:26:59:a5:5a:4a:b0:9d:22:a5:c1: b0:28:6b:6f:e0:ea:d1:31:48:26:f0:ef:58:bf:49:81:15:fb: ba:0d:4b:28:82:ad:7f:bb:3f:1f:21:5f:4f:11:94:33:53:9d: 6d:9d:a2:96:c2:7b:a2:a2:55:38:09:a4:86:e5:d4:c1:6c:a1: 43:a4:02:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbdn3CojbP3rcJ7DEptW/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxOGVmODIzYmIwNDFlYTNhYzdjODkzNmM3NTBiNjAxODEz N2UyY2QwHhcNMjUxMjIxMTUwMTE2WhcNMjUxMjIyMTUwMTE2WjAzMTEwLwYDVQQD Eyg1NDBlYjQ5NThiOTc1MTg1M2Y5MmEwYmI0M2M4ZDY1NWViMDMyZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7qC7CeP0X5c25WJTjXGWgAzFO52 sD0ZpT/sGUs7Y3ALiHP7rfZh81Vzwv49Ok0BxEzQLd6zLbKkCn1gl9+RLny6OTq1 klyhseIKkg20b4GKXA/M1yOHvAQSPfusqhK6h2zrmtAl4ncq5KX7zSVH+4z+KU5V CytTkKa1IU+pQr+WfN7toCpiH+/FSwg9/fb/r/FiAztwMgJC/7BlBO/O7zkwY94d PTaS+w4AS4Bc9y9d6KpUWJt0QUeOaT4XMzCmZIaXRQEM9w+p/HCpIMdTjIMsDahc Q9MHKjDQIgc3ACUOZhlZb15JeJ/VkBxv9ME5TKbAgWG753RRfsRwt8PtfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFQOtJWLl1GFP5Kgu0PI1lXrAy/uMB8GA1UdIwQY MBaAFJGO+CO7BB6jrHyJNsdQtgGBN+LNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1k3NEk3c0VIcU9zZklrMngxQzJBWUUzNHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82NTQyMGMtZjVlMi00ZDI5LWI1MDMt NjUyOTc1MWIyYjAxLzEva1k3NEk3c0VIcU9zZklrMngxQzJBWUUzNHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS82NTQyMGMtZjVlMi00ZDI5LWI1MDMtNjUyOTc1MWIyYjAx LzEva1k3NEk3c0VIcU9zZklrMngxQzJBWUUzNHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAhaoEQAT k0GjXww6hGFnVmrF/WTorT90oXEl43k1SagNVi4ShtwzbYKTXiXKjyADFRkX64bX 6zpoX+iCVsdtK1lCzQyl+vVSaDAYPS5gDRKrfF2xJtpUBiOx2zRMRek/GmRXeRVg UcSHyT77NjBH40GtVkpaBG/IVZq0nHeZSwoFaI5vR7MNabfwfb7+LDtZEXF/4xiF 71DoDj1mdwEmXQAd/JMWF0e+l+Cb77Li1ZozUGR7lmzRO7L6QXsmWaVaSrCdIqXB sChrb+Dq0TFIJvDvWL9JgRX7ug1LKIKtf7s/HyFfTxGUM1OdbZ2ilsJ7oqJVOAmk huXUwWyhQ6QCjA== -----END CERTIFICATE-----Generated at Sun Dec 21 19:31:21 2025 by rpki-client