This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json) Hash identifier: e4Wnu9foG6hs/azxjI8PzzY1maBxf2+LJN98awJhT54= Subject key identifier: BF:6E:D8:22:D7:D9:69:F6:C7:E5:61:17:EB:81:A4:3D:B7:9B:E8:74 Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09 Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109 Certificate serial: 019B0F37485DCD026DDBC98C8488363364C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft Manifest number: 1406 Signing time: Thu 11 Dec 2025 21:00:39 +0000 Manifest this update: Thu 11 Dec 2025 21:00:39 +0000 Manifest next update: Fri 12 Dec 2025 21:00:39 +0000 Files and hashes: 1: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: C1jsCDCsUYKRcfCbkfDwsur7KWXd9+32qf8DyeVN8UU=) 2: KZGod_BqVRdmwfNvBiSAHniE4gQ.roa (hash: 6XoOJiv494XxgxSZpKNQsumj729QUswWc6xs9n2QuB0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 21:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:48:5d:cd:02:6d:db:c9:8c:84:88:36:33:64:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109 Validity Not Before: Dec 11 21:00:39 2025 GMT Not After : Dec 12 21:00:39 2025 GMT Subject: CN=bf6ed822d7d969f6c7e56117eb81a43db79be874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c6:11:bd:4b:1b:96:d5:ee:2b:20:52:87:73: 74:87:dc:c3:2b:cd:7c:68:d3:c6:e7:a6:29:a6:a0: 2d:de:d5:15:5b:10:0a:77:ec:36:9b:89:52:bf:a1: 08:38:bb:66:0e:ee:55:ad:4f:cf:53:f7:e7:3a:65: f8:ea:3f:99:cf:9b:c1:3f:92:ad:89:fd:1a:84:df: dd:dc:7e:d4:43:2f:67:82:b0:54:99:b5:75:c7:ed: 0d:54:7e:fa:52:0e:a3:41:b9:f0:4e:1d:b9:a4:42: 34:45:07:0c:d3:c5:a7:da:2b:47:fa:dc:69:83:89: 54:54:ad:1c:0d:4c:b8:ca:5a:1b:ab:0c:70:c8:f6: b3:6e:a2:14:fa:bc:89:f7:c0:d5:7b:ce:ae:f5:81: 7f:f9:19:fa:c7:99:76:60:bd:fe:c1:35:b9:96:7b: c0:d1:1b:fe:e7:16:a9:bc:35:d7:93:0a:31:c3:ef: 8a:3b:65:b7:d8:88:af:62:68:df:b0:50:b8:8d:8b: 96:84:15:8e:cc:3c:05:9a:3d:13:23:a1:b2:b3:e7: 4d:cb:29:cc:25:35:13:0a:21:25:33:da:6e:01:bb: d3:96:77:36:81:ab:2a:89:7a:a1:7c:a1:09:b0:f2: 96:8d:a6:8f:1b:2b:2e:1b:67:5f:65:2e:62:e8:3b: 67:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:6E:D8:22:D7:D9:69:F6:C7:E5:61:17:EB:81:A4:3D:B7:9B:E8:74 X509v3 Authority Key Identifier: keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:27:e8:12:0b:32:fc:83:74:0c:3d:16:05:f6:33:0d:a0:2a: 6c:3c:88:db:1f:41:a3:7e:5d:79:71:09:46:90:6e:0a:68:91: 68:c1:28:b7:17:9c:0b:f4:95:2a:f0:7b:a7:30:6b:02:79:e2: 45:43:ae:7a:7b:b8:45:0d:48:fa:57:3e:5f:3e:2d:af:3d:37: 6f:1b:e6:b8:28:25:02:b3:b4:c1:24:83:e8:bb:9e:26:19:5b: 94:51:56:86:e9:5b:d2:4c:ff:67:c5:88:f3:31:bc:a2:4a:f6: f6:55:cc:6a:54:ff:58:6b:ca:44:a2:57:1b:34:ba:44:11:be: 6c:0b:20:56:a4:ae:f0:13:2e:e3:53:c4:e3:81:d9:09:02:1e: da:5a:fa:67:27:4f:9b:ca:e6:af:e8:e6:bf:3b:a4:c3:4e:b7: 21:5e:d8:e1:ad:6a:a8:71:16:61:72:8c:be:95:23:e2:12:89: 7c:e1:3a:30:fe:0d:18:66:e6:b4:4d:25:ff:a8:63:8c:74:05: 32:21:12:5c:af:ff:35:1f:8f:4b:dd:bc:d8:c5:ac:52:ea:40: d7:d5:63:af:0e:2e:3a:7c:85:84:27:f0:63:0c:5e:a9:e3:2e: 27:85:c7:33:62:56:3b:a1:0c:41:eb:15:80:39:ac:9e:1b:c4: fd:f6:e3:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN0hdzQJt28mMhIg2M2TDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NGExY2RiNjhmMTU0Y2Y5NTQxOGEzMDhjODJkOGRhNTA3 NzUxMDkwHhcNMjUxMjExMjEwMDM5WhcNMjUxMjEyMjEwMDM5WjAzMTEwLwYDVQQD EyhiZjZlZDgyMmQ3ZDk2OWY2YzdlNTYxMTdlYjgxYTQzZGI3OWJlODc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMYRvUsbltXuKyBSh3N0h9zDK818 aNPG56YppqAt3tUVWxAKd+w2m4lSv6EIOLtmDu5VrU/PU/fnOmX46j+Zz5vBP5Kt if0ahN/d3H7UQy9ngrBUmbV1x+0NVH76Ug6jQbnwTh25pEI0RQcM08Wn2itH+txp g4lUVK0cDUy4ylobqwxwyPazbqIU+ryJ98DVe86u9YF/+Rn6x5l2YL3+wTW5lnvA 0Rv+5xapvDXXkwoxw++KO2W32IivYmjfsFC4jYuWhBWOzDwFmj0TI6Gys+dNyynM JTUTCiElM9puAbvTlnc2gasqiXqhfKEJsPKWjaaPGysuG2dfZS5i6DtnOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9u2CLX2Wn2x+VhF+uBpD23m+h0MB8GA1UdIwQY MBaAFClKHNto8VTPlUGKMIyC2NpQd1EJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1VvYzIyanhWTS1WUVlvd2pJTFkybEIzVVFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wNGY0NzQtZTNiNS00NTk1LWEwNDQt NjU3ZTQxYzYzY2E5LzEvS1VvYzIyanhWTS1WUVlvd2pJTFkybEIzVVFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8wNGY0NzQtZTNiNS00NTk1LWEwNDQtNjU3ZTQxYzYzY2E5 LzEvS1VvYzIyanhWTS1WUVlvd2pJTFkybEIzVVFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnifoEgsy /IN0DD0WBfYzDaAqbDyI2x9Bo35deXEJRpBuCmiRaMEotxecC/SVKvB7pzBrAnni RUOuenu4RQ1I+lc+Xz4trz03bxvmuCglArO0wSSD6LueJhlblFFWhulb0kz/Z8WI 8zG8okr29lXMalT/WGvKRKJXGzS6RBG+bAsgVqSu8BMu41PE44HZCQIe2lr6ZydP m8rmr+jmvzukw063IV7Y4a1qqHEWYXKMvpUj4hKJfOE6MP4NGGbmtE0l/6hjjHQF MiESXK//NR+PS9282MWsUupA19Vjrw4uOnyFhCfwYwxeqeMuJ4XHM2JWO6EMQesV gDmsnhvE/fbjhQ== -----END CERTIFICATE-----Generated at Fri Dec 12 06:37:39 2025 by rpki-client