This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json) Hash identifier: luHB82ImKFZegyEE5ULhd5kJyV8mzwRvSc9lWkhton4= Subject key identifier: 05:BD:CD:FC:D0:6D:12:B5:6B:07:91:59:EE:FE:B3:C9:09:28:8A:9A Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a Certificate serial: 019B3343D7A71E9C6373BD2A09168CFC3F3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft Manifest number: 1782 Signing time: Thu 18 Dec 2025 21:00:42 +0000 Manifest this update: Thu 18 Dec 2025 21:00:42 +0000 Manifest next update: Fri 19 Dec 2025 21:00:42 +0000 Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: ET3WHG9KkyDsTjeRytCafB5FEZkd/imV/qgWQgYs5/g=) 2: HUiYQLYoRn-P8-AKIUmGnSk_fUQ.roa (hash: ozdi5qHnRcow/nH1EVH0214AE7vAhAxmdAJcuT+IzE4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 21:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:43:d7:a7:1e:9c:63:73:bd:2a:09:16:8c:fc:3f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a Validity Not Before: Dec 18 21:00:42 2025 GMT Not After : Dec 19 21:00:42 2025 GMT Subject: CN=05bdcdfcd06d12b56b079159eefeb3c909288a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:e5:f2:d6:84:29:c3:d7:b3:18:a7:12:41: 31:7b:97:ed:93:75:bb:da:5b:f9:51:f6:4a:81:19: bb:5a:87:0e:8b:99:b8:c2:c2:4a:00:75:7e:25:25: f5:be:0f:a8:cd:42:02:02:b7:24:72:54:e2:30:b3: 9d:df:95:6e:6f:68:9f:54:11:a1:fc:9f:ba:7f:cf: 74:1a:ae:ce:b1:28:2d:d0:73:b0:37:18:6d:96:23: 36:27:02:20:b4:a0:f4:cd:0b:9c:91:43:9c:4e:e9: fb:eb:1b:20:7f:22:d2:c9:b7:05:04:54:bc:d3:7e: f8:6b:31:bc:bc:2a:1b:68:b7:69:8a:26:74:72:e1: 2d:e6:6e:92:2b:91:b4:0c:fb:f2:e6:88:ca:0d:5d: c6:05:6d:d4:85:9e:86:03:4a:fd:53:0b:0b:13:85: 51:4f:e8:13:1f:34:b7:d7:96:8f:87:48:0d:3f:51: b5:a0:83:d6:ad:37:25:31:23:8b:35:2f:34:99:04: 7e:b0:ed:c6:24:2d:a3:80:93:5b:61:03:10:06:bc: 7a:36:3d:60:a8:eb:2c:a5:21:a8:64:42:c8:3b:67: 33:20:d9:12:7b:03:45:fe:f0:e0:67:59:84:bb:e8: d8:35:d9:f8:2c:b2:86:d3:1b:c6:95:3c:bb:a5:3a: 40:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BD:CD:FC:D0:6D:12:B5:6B:07:91:59:EE:FE:B3:C9:09:28:8A:9A X509v3 Authority Key Identifier: keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:9a:39:15:47:39:32:ac:b8:6b:a6:0b:89:f2:2d:9d:03:c9: d0:c1:27:a0:08:5f:9e:5c:d4:13:d6:13:4c:83:08:8e:93:fc: 9f:07:10:2a:fa:1a:d5:38:49:00:e5:42:ed:da:89:d2:74:72: 8f:f1:c5:5b:dd:97:1b:96:5d:25:a9:b6:b3:3b:38:48:69:34: fb:0c:9d:83:e7:87:05:fe:3d:a0:a3:1f:79:2f:6a:e0:c4:ca: 3d:4f:98:8a:c0:13:17:2c:fb:1e:ed:f2:12:12:b0:d9:e4:74: 24:ed:a6:c8:d1:fd:28:8b:6a:0d:ae:ad:b5:d9:c1:77:a0:1c: 4e:eb:c5:b7:ea:b6:d1:07:97:bd:c7:0c:1b:b9:e8:9a:c3:19: 36:39:20:ce:72:9c:7f:9c:2d:d2:a7:b4:0d:b9:7d:3e:d8:38: 8a:52:fb:04:8c:f6:cd:ea:6f:29:08:2b:88:b5:ee:ef:ee:a2: 9e:43:58:42:d9:27:72:5d:9b:97:fc:ab:d4:8e:3a:3e:e6:9e: 8d:62:cf:1e:1a:ba:27:6e:c0:57:7c:39:5d:97:e1:b8:f2:ed: 7a:68:02:56:15:91:1f:b1:a6:25:93:94:35:3d:c8:0c:b7:13: cf:d9:ef:a5:04:bb:9d:92:4d:a9:07:ef:65:32:f3:a6:97:56: c5:91:4a:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszQ9enHpxjc70qCRaM/D88MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NDgyOTQ0NDNhZWQxNmQwNmI4NmFmMTRmNWE1ZjBhNTA4 Mzc3NGEwHhcNMjUxMjE4MjEwMDQyWhcNMjUxMjE5MjEwMDQyWjAzMTEwLwYDVQQD EygwNWJkY2RmY2QwNmQxMmI1NmIwNzkxNTllZWZlYjNjOTA5Mjg4YTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsP7l8taEKcPXsxinEkExe5ftk3W7 2lv5UfZKgRm7WocOi5m4wsJKAHV+JSX1vg+ozUICArckclTiMLOd35Vub2ifVBGh /J+6f890Gq7OsSgt0HOwNxhtliM2JwIgtKD0zQuckUOcTun76xsgfyLSybcFBFS8 0374azG8vCobaLdpiiZ0cuEt5m6SK5G0DPvy5ojKDV3GBW3UhZ6GA0r9UwsLE4VR T+gTHzS315aPh0gNP1G1oIPWrTclMSOLNS80mQR+sO3GJC2jgJNbYQMQBrx6Nj1g qOsspSGoZELIO2czINkSewNF/vDgZ1mEu+jYNdn4LLKG0xvGlTy7pTpAmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAW9zfzQbRK1aweRWe7+s8kJKIqaMB8GA1UdIwQY MBaAFNZIKURDrtFtBrhq8U9aXwpQg3dKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDkt ZTU3Y2M4MWY1MjMzLzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDktZTU3Y2M4MWY1MjMz LzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0po5FUc5 Mqy4a6YLifItnQPJ0MEnoAhfnlzUE9YTTIMIjpP8nwcQKvoa1ThJAOVC7dqJ0nRy j/HFW92XG5ZdJam2szs4SGk0+wydg+eHBf49oKMfeS9q4MTKPU+YisATFyz7Hu3y EhKw2eR0JO2myNH9KItqDa6ttdnBd6AcTuvFt+q20QeXvccMG7nomsMZNjkgznKc f5wt0qe0Dbl9Ptg4ilL7BIz2zepvKQgriLXu7+6inkNYQtkncl2bl/yr1I46Puae jWLPHhq6J27AV3w5XZfhuPLtemgCVhWRH7GmJZOUNT3IDLcTz9nvpQS7nZJNqQfv ZTLzppdWxZFKcQ== -----END CERTIFICATE-----Generated at Fri Dec 19 03:19:27 2025 by rpki-client