This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft File: kPwsEuoXAhuorOBiGJfwhW2sJVk.mft (raw, json) Hash identifier: ke2v7jlu7G8KSajC2YLjANCkh9SUl8qTgJdWWZges4A= Subject key identifier: F1:62:56:A9:51:29:97:B9:65:66:0A:C5:3B:C9:AB:E6:86:2D:27:58 Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59 Certificate issuer: /CN=90fc2c12ea17021ba8ace0621897f0856dac2559 Certificate serial: 019B0E257D54D6DCDF93C915CC0030449A5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft Manifest number: 06EA Signing time: Thu 11 Dec 2025 16:01:36 +0000 Manifest this update: Thu 11 Dec 2025 16:01:36 +0000 Manifest next update: Fri 12 Dec 2025 16:01:36 +0000 Files and hashes: 1: 1UaL0XGyomh-a1T0dddj6cyPZOw.roa (hash: rWkejV4n3vRWEBULaZLAottNh8bz5UFXPG009n2D40A=) 2: TJKRQbRuvDSDZyucPaqU760l18U.roa (hash: gKuY1GA/NcHekZckeHEZ/7H1szBu0AiOQJ9VIhFkajs=) 3: kPwsEuoXAhuorOBiGJfwhW2sJVk.crl (hash: 0B9ECQDvXI13PuowiwPp5h//sLHgZLV0q8Z4X3P3EUA=) 4: mWYkGMEMrO_nHDH4dqasaNk-p_c.roa (hash: OCHhjAiwakmpsRoIjxkgKbh8p1tQzGvkxI9kPgktEoo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 16:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:7d:54:d6:dc:df:93:c9:15:cc:00:30:44:9a:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559 Validity Not Before: Dec 11 16:01:36 2025 GMT Not After : Dec 12 16:01:36 2025 GMT Subject: CN=f16256a9512997b965660ac53bc9abe6862d2758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:51:96:91:10:94:b6:9e:9d:8a:9a:44:25:23: 78:a4:c1:8c:c5:e8:77:8f:7c:a0:b0:2f:c2:09:ba: ae:1a:4f:e5:3d:97:47:3a:92:1f:ce:25:97:42:70: 4d:22:1d:51:40:67:0f:4a:e9:bd:e0:70:ff:d8:13: 09:c7:a0:96:5f:9e:c5:be:b7:51:25:df:07:0d:58: 5c:9b:3c:3a:98:00:11:ce:a0:b6:d1:07:55:55:63: 00:2f:38:92:22:c8:b7:c2:bd:bc:13:44:f7:3f:60: 26:50:35:e3:09:6d:54:4a:87:6c:dc:7a:bb:8b:9e: de:da:6b:e6:67:56:fb:68:0f:bf:15:b6:89:01:6b: f7:a5:16:a2:78:3d:b6:47:54:68:4b:f1:b0:0a:1d: 0d:87:49:ea:b9:ab:89:25:e7:81:72:91:82:ee:d4: 0d:8e:8c:48:c7:93:1b:f6:44:86:d8:39:40:a4:5a: d7:71:49:04:34:9b:bf:dd:00:72:3b:41:b4:e3:f0: c0:e7:97:8a:e6:ef:8e:01:da:18:11:84:8f:61:75: 97:7a:5d:ef:fe:10:a8:3f:fd:5c:93:e4:f5:ca:a6: 42:7b:62:39:52:71:27:b5:5b:2d:1e:80:00:66:71: c1:21:f1:87:c0:d5:e7:07:4b:4e:40:a6:49:cd:dc: ef:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:62:56:A9:51:29:97:B9:65:66:0A:C5:3B:C9:AB:E6:86:2D:27:58 X509v3 Authority Key Identifier: keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:6a:6b:f3:f8:4a:24:f9:82:a9:d0:0a:5c:cf:fb:ea:d6:50: 8f:1c:b9:4a:7b:ad:08:64:fc:65:df:3c:88:2d:1d:80:ae:72: 68:7b:3d:13:02:28:03:90:b1:f8:37:d1:06:3e:17:79:c3:e2: 66:4e:3b:c6:78:07:e9:e0:0f:98:e7:0d:72:93:c5:49:25:c1: 23:80:c6:38:0b:e0:df:a9:32:3b:2d:36:d3:59:57:15:a1:b1: b4:06:50:3c:29:e6:6e:d3:e3:e4:76:9c:3e:d2:c6:4e:be:64: c3:2b:bc:45:42:a9:49:9d:90:26:3f:ed:a0:9c:0c:3a:64:6a: e6:78:2c:dc:dc:30:bc:c1:90:7b:46:54:f5:8d:ad:fb:a9:40: 05:3a:3f:08:b5:45:25:e1:28:fa:cc:a4:11:8d:7d:18:b3:4d: 95:6f:0c:0e:ac:f0:d4:9c:95:5a:e8:67:b1:dc:02:25:d8:fe: 13:7f:ea:d8:b6:60:4f:f7:4b:da:f6:40:08:a5:9f:5e:ae:d8: a4:26:b5:e1:01:45:ef:5d:b2:d2:f7:a6:75:71:a5:1e:50:27: 76:f6:30:a9:70:f8:11:4c:53:07:e4:ef:ba:ce:e1:e2:52:6e: 48:73:ef:ce:ec:3e:f8:26:33:a4:50:f7:ff:de:24:c8:9b:33: d3:b1:7c:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJX1U1tzfk8kVzAAwRJpeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZmMyYzEyZWExNzAyMWJhOGFjZTA2MjE4OTdmMDg1NmRh YzI1NTkwHhcNMjUxMjExMTYwMTM2WhcNMjUxMjEyMTYwMTM2WjAzMTEwLwYDVQQD EyhmMTYyNTZhOTUxMjk5N2I5NjU2NjBhYzUzYmM5YWJlNjg2MmQyNzU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnFGWkRCUtp6dippEJSN4pMGMxeh3 j3ygsC/CCbquGk/lPZdHOpIfziWXQnBNIh1RQGcPSum94HD/2BMJx6CWX57FvrdR Jd8HDVhcmzw6mAARzqC20QdVVWMALziSIsi3wr28E0T3P2AmUDXjCW1USods3Hq7 i57e2mvmZ1b7aA+/FbaJAWv3pRaieD22R1RoS/GwCh0Nh0nquauJJeeBcpGC7tQN joxIx5Mb9kSG2DlApFrXcUkENJu/3QByO0G04/DA55eK5u+OAdoYEYSPYXWXel3v /hCoP/1ck+T1yqZCe2I5UnEntVstHoAAZnHBIfGHwNXnB0tOQKZJzdzv0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFiVqlRKZe5ZWYKxTvJq+aGLSdYMB8GA1UdIwQY MBaAFJD8LBLqFwIbqKzgYhiX8IVtrCVZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1B3c0V1b1hBaHVvck9CaUdKZndoVzJzSlZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85NTFiY2UtMjg1MC00OTQzLThmMDAt ZGIyYzU3ZjRlZjE2LzEva1B3c0V1b1hBaHVvck9CaUdKZndoVzJzSlZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi85NTFiY2UtMjg1MC00OTQzLThmMDAtZGIyYzU3ZjRlZjE2 LzEva1B3c0V1b1hBaHVvck9CaUdKZndoVzJzSlZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY2pr8/hK JPmCqdAKXM/76tZQjxy5SnutCGT8Zd88iC0dgK5yaHs9EwIoA5Cx+DfRBj4XecPi Zk47xngH6eAPmOcNcpPFSSXBI4DGOAvg36kyOy0201lXFaGxtAZQPCnmbtPj5Hac PtLGTr5kwyu8RUKpSZ2QJj/toJwMOmRq5ngs3NwwvMGQe0ZU9Y2t+6lABTo/CLVF JeEo+sykEY19GLNNlW8MDqzw1JyVWuhnsdwCJdj+E3/q2LZgT/dL2vZACKWfXq7Y pCa14QFF712y0vemdXGlHlAndvYwqXD4EUxTB+Tvus7h4lJuSHPvzuw++CYzpFD3 /94kyJsz07F8zg== -----END CERTIFICATE-----Generated at Fri Dec 12 00:31:37 2025 by rpki-client