This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft File: KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json) Hash identifier: rzDSbBF7GlrBKS+6gksKQD31spfoZLtdCJ0HcQvWP14= Subject key identifier: 35:FF:D1:B8:ED:F4:D6:E3:F1:D8:2C:6D:38:BE:B6:D1:73:AA:51:20 Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A Certificate issuer: /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a Certificate serial: 019B5ABF84F17DF93C1D5B236EA30A21BE1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft Manifest number: 1797 Signing time: Fri 26 Dec 2025 13:00:59 +0000 Manifest this update: Fri 26 Dec 2025 13:00:59 +0000 Manifest next update: Sat 27 Dec 2025 13:00:59 +0000 Files and hashes: 1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: WqKc8IFZLvFy4jSO7QYgaDXCKJ8tZh6ca7cJKAgZ8NU=) 2: NPr8_e46sz8H4JR5QlVGvECNy6k.roa (hash: z5xILP0Xt/AwC2kYkY04BjCbsF3nJbNXJ0hJj+W9BVk=) 3: _x206HZGagtA6dAvfxStsmKc3n4.roa (hash: b78aj5rvx2Xy9g+pAEN4tSwQJDBl/+csOAL8uop4FGI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:84:f1:7d:f9:3c:1d:5b:23:6e:a3:0a:21:be:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a Validity Not Before: Dec 26 13:00:59 2025 GMT Not After : Dec 27 13:00:59 2025 GMT Subject: CN=35ffd1b8edf4d6e3f1d82c6d38beb6d173aa5120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:81:0d:e2:9e:9b:6b:1e:5b:06:14:ab:8a:45: c8:e4:c2:4a:80:63:11:54:26:a3:0f:3f:97:44:30: f9:f9:59:d3:ea:6e:de:8a:c1:83:05:4b:e1:4d:20: 3c:10:22:cd:b1:ee:19:28:ec:28:fd:47:5e:2b:6d: 30:69:8e:4f:3a:3b:fc:4e:7a:e9:c8:c3:a2:66:50: dd:c6:18:1a:ef:61:7b:33:4e:9f:e7:83:99:df:98: a9:8f:e1:1b:95:ec:3a:50:bd:7c:38:05:fc:32:18: d1:53:36:3f:7e:1d:b1:21:32:94:3a:dd:44:28:c5: e7:5a:c6:4c:40:ed:12:1f:be:2e:55:af:0e:06:d4: 46:92:a9:3f:da:7b:e1:75:31:51:c8:69:68:de:00: 62:9d:b0:4a:3f:73:ad:56:92:4f:ec:9c:34:a6:92: 41:ea:e7:17:17:63:bb:56:87:9a:17:5c:6b:2c:fc: af:21:b7:55:c3:00:28:c2:17:72:45:52:b3:8b:c0: a2:02:d6:5c:0c:93:c6:21:15:b5:a6:7c:db:4d:34: ed:47:79:44:fc:e6:0f:7e:c7:a9:e7:f0:9d:77:4c: 98:7e:1f:09:41:ee:97:4b:4d:37:d5:a6:f8:a2:4d: f3:d4:f3:39:9a:9f:98:a1:a1:46:c5:bd:9a:23:d6: b1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FF:D1:B8:ED:F4:D6:E3:F1:D8:2C:6D:38:BE:B6:D1:73:AA:51:20 X509v3 Authority Key Identifier: keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:d8:fd:0e:f3:f9:60:31:8c:c6:45:da:93:99:ba:61:c3:05: 7e:15:c4:4d:4e:b2:04:ea:fe:8a:90:3f:e1:7a:05:02:88:f0: 89:91:b6:17:60:6b:31:62:27:08:ce:3d:76:93:cd:56:69:48: e2:61:88:93:38:2c:e1:31:90:61:e2:b5:b5:a2:f9:44:79:a5: 10:bd:c0:19:70:27:f2:53:8d:8d:42:15:ed:c0:2a:5d:20:08: 84:96:b3:5e:8d:29:bd:1d:00:0d:d0:eb:39:3c:22:86:8f:5b: bd:4c:31:08:5e:96:d9:e0:3e:60:fc:66:60:de:dd:3b:f7:0c: 74:0f:63:07:11:97:ec:d2:b2:aa:e9:8c:39:0e:e4:6b:d5:b6: 7d:ad:c8:71:0c:6f:7f:46:19:99:3f:f6:97:83:3e:9f:02:d5: d9:70:64:83:67:d3:09:9c:09:ed:28:92:8c:7d:fa:43:93:2e: 12:f1:3d:ac:40:09:e0:0b:5f:a7:61:13:98:e4:b5:bc:dc:21: b0:cb:96:29:58:a5:17:57:04:ea:6d:ac:67:bb:12:76:16:5d: d1:0f:ba:93:a1:a3:99:9e:c0:38:2d:c7:18:92:5f:98:22:4a: 25:76:01:45:66:85:d5:be:f3:06:1e:f1:9a:43:d0:b8:11:ca: 8e:05:1d:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav4Txffk8HVsjbqMKIb4cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhNDQ3MjMzNmM5ZDAyYTQ4OGNkZDc3NTM0ZDY1ZmIxNDY1 ZWMwOWEwHhcNMjUxMjI2MTMwMDU5WhcNMjUxMjI3MTMwMDU5WjAzMTEwLwYDVQQD EygzNWZmZDFiOGVkZjRkNmUzZjFkODJjNmQzOGJlYjZkMTczYWE1MTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6IEN4p6bax5bBhSrikXI5MJKgGMR VCajDz+XRDD5+VnT6m7eisGDBUvhTSA8ECLNse4ZKOwo/UdeK20waY5POjv8Tnrp yMOiZlDdxhga72F7M06f54OZ35ipj+Eblew6UL18OAX8MhjRUzY/fh2xITKUOt1E KMXnWsZMQO0SH74uVa8OBtRGkqk/2nvhdTFRyGlo3gBinbBKP3OtVpJP7Jw0ppJB 6ucXF2O7VoeaF1xrLPyvIbdVwwAowhdyRVKzi8CiAtZcDJPGIRW1pnzbTTTtR3lE /OYPfsep5/Cdd0yYfh8JQe6XS0031ab4ok3z1PM5mp+YoaFGxb2aI9axuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDX/0bjt9Nbj8dgsbTi+ttFzqlEgMB8GA1UdIwQY MBaAFCpEcjNsnQKkiM3XdTTWX7FGXsCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2tSeU0yeWRBcVNJemRkMU5OWmZzVVpld0pvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wMWRiODItNDE3Mi00NDA1LWFiNTUt MDA4NmQwMjM4NWQ2LzEvS2tSeU0yeWRBcVNJemRkMU5OWmZzVVpld0pvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8wMWRiODItNDE3Mi00NDA1LWFiNTUtMDA4NmQwMjM4NWQ2 LzEvS2tSeU0yeWRBcVNJemRkMU5OWmZzVVpld0pvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe9j9DvP5 YDGMxkXak5m6YcMFfhXETU6yBOr+ipA/4XoFAojwiZG2F2BrMWInCM49dpPNVmlI 4mGIkzgs4TGQYeK1taL5RHmlEL3AGXAn8lONjUIV7cAqXSAIhJazXo0pvR0ADdDr OTwiho9bvUwxCF6W2eA+YPxmYN7dO/cMdA9jBxGX7NKyqumMOQ7ka9W2fa3IcQxv f0YZmT/2l4M+nwLV2XBkg2fTCZwJ7SiSjH36Q5MuEvE9rEAJ4Atfp2ETmOS1vNwh sMuWKVilF1cE6m2sZ7sSdhZd0Q+6k6GjmZ7AOC3HGJJfmCJKJXYBRWaF1b7zBh7x mkPQuBHKjgUdNQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:50 2025 by rpki-client