This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json) Hash identifier: /+h9Gh+Md3u43q+FNomdSsqRN9QJu8iN3f8mM1Trj4k= Subject key identifier: F9:F2:CA:60:E9:BF:78:35:7D:6B:09:6C:F2:85:8E:BA:78:C9:1B:CE Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Certificate serial: 019B1F875720873C77CB016C1DC449331F3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft Manifest number: 0674 Signing time: Mon 15 Dec 2025 01:02:01 +0000 Manifest this update: Mon 15 Dec 2025 01:02:01 +0000 Manifest next update: Tue 16 Dec 2025 01:02:01 +0000 Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=) 2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: 4FPFnKq2uY4QULFoNlX+2bOLpM1/czHAfW6MY8DY6aA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:87:57:20:87:3c:77:cb:01:6c:1d:c4:49:33:1f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Validity Not Before: Dec 15 01:02:01 2025 GMT Not After : Dec 16 01:02:01 2025 GMT Subject: CN=f9f2ca60e9bf78357d6b096cf2858eba78c91bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:4e:43:b5:dc:56:d4:d3:f7:70:fb:d9:03:d0: 30:f7:75:0d:b6:32:ec:81:79:a1:33:21:ab:a8:69: 5a:b8:62:c0:4c:1b:c4:5d:1d:2a:f1:9c:3e:47:97: d9:55:a8:05:ec:c1:9a:7b:24:20:07:14:bc:a7:69: dd:0f:84:25:56:cb:58:e0:b0:a3:89:79:0d:7f:d2: 7a:45:32:2c:f2:25:b4:92:88:e4:42:33:d4:1e:72: bd:4a:77:80:24:9f:b5:5d:c8:f2:dc:aa:ae:35:f6: e9:1d:54:8e:0a:31:c6:5a:04:63:b0:e0:ae:26:5e: ae:3e:4f:b7:ff:df:33:bf:1c:85:89:75:88:f9:fa: e0:66:e3:fb:ea:67:f1:bf:71:41:31:43:09:ee:5b: c8:33:ce:f0:66:06:29:cd:ea:6b:4b:e4:ab:f9:bf: a0:0d:db:f9:b4:0f:6e:67:e8:2b:54:59:d7:50:ad: 40:25:80:11:32:f0:3a:b0:6b:9b:0e:6c:ae:e5:62: 7e:dd:8e:d2:48:d3:67:7d:94:c4:af:ce:8d:19:f2: 43:ac:76:2b:4b:86:21:f3:97:d7:82:51:36:f1:35: 8b:02:49:5c:45:11:f5:f4:52:91:62:60:c9:eb:50: c2:c3:8a:07:b8:af:86:bd:a7:dd:40:ff:8c:e9:e4: bc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F2:CA:60:E9:BF:78:35:7D:6B:09:6C:F2:85:8E:BA:78:C9:1B:CE X509v3 Authority Key Identifier: keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:8d:74:4e:bd:64:f6:be:33:f4:34:0c:ab:ba:40:cb:54:df: 91:1e:b3:f6:1e:aa:c8:aa:fb:fd:55:58:8c:f7:d6:a2:6d:19: 51:2d:80:fa:5c:10:82:71:44:29:44:60:68:be:8b:68:e6:31: 4d:8c:4f:24:e4:ab:37:dc:58:ae:e5:3e:2e:dc:39:92:1e:1d: e1:58:5b:07:a5:3c:19:d4:08:58:28:d1:6f:98:75:b0:cc:7c: 62:2a:4f:b9:fa:7a:65:86:1c:d2:47:81:2e:a1:3a:b3:c4:a8: d3:65:48:a5:58:01:3e:45:5f:50:61:4c:bd:fc:22:92:12:34: fd:b5:2d:13:88:d0:e7:14:15:7f:35:7e:d8:30:50:28:a9:f6: d6:86:6d:d8:c2:d7:6a:9b:0a:38:c9:fc:48:8e:de:b4:15:fc: a8:75:fb:44:0e:7f:cb:ef:12:a1:77:d2:83:a9:cd:e5:9f:2e: 8c:3c:3d:69:90:90:83:7a:d8:bb:5a:2e:01:b0:e4:c7:17:72: f9:b8:c5:a6:cd:47:33:9e:44:a5:0d:c4:c6:da:09:f1:06:cf: 80:d1:cf:43:01:f5:e0:47:d6:f9:ec:46:95:a4:6d:79:04:13: ea:2a:e6:c9:ac:97:fd:82:9d:c5:37:57:bb:51:b2:98:44:9c: 47:49:b9:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfh1cghzx3ywFsHcRJMx88MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm NjI1MzEwHhcNMjUxMjE1MDEwMjAxWhcNMjUxMjE2MDEwMjAxWjAzMTEwLwYDVQQD EyhmOWYyY2E2MGU5YmY3ODM1N2Q2YjA5NmNmMjg1OGViYTc4YzkxYmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiE5DtdxW1NP3cPvZA9Aw93UNtjLs gXmhMyGrqGlauGLATBvEXR0q8Zw+R5fZVagF7MGaeyQgBxS8p2ndD4QlVstY4LCj iXkNf9J6RTIs8iW0kojkQjPUHnK9SneAJJ+1Xcjy3KquNfbpHVSOCjHGWgRjsOCu Jl6uPk+3/98zvxyFiXWI+frgZuP76mfxv3FBMUMJ7lvIM87wZgYpzeprS+Sr+b+g Ddv5tA9uZ+grVFnXUK1AJYARMvA6sGubDmyu5WJ+3Y7SSNNnfZTEr86NGfJDrHYr S4Yh85fXglE28TWLAklcRRH19FKRYmDJ61DCw4oHuK+GvafdQP+M6eS8qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPnyymDpv3g1fWsJbPKFjrp4yRvOMB8GA1UdIwQY MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1 LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPI10Tr1k 9r4z9DQMq7pAy1TfkR6z9h6qyKr7/VVYjPfWom0ZUS2A+lwQgnFEKURgaL6LaOYx TYxPJOSrN9xYruU+Ltw5kh4d4VhbB6U8GdQIWCjRb5h1sMx8YipPufp6ZYYc0keB LqE6s8So02VIpVgBPkVfUGFMvfwikhI0/bUtE4jQ5xQVfzV+2DBQKKn21oZt2MLX apsKOMn8SI7etBX8qHX7RA5/y+8SoXfSg6nN5Z8ujDw9aZCQg3rYu1ouAbDkxxdy +bjFps1HM55EpQ3ExtoJ8QbPgNHPQwH14EfW+exGlaRteQQT6irmyayX/YKdxTdX u1GymEScR0m5VQ== -----END CERTIFICATE-----Generated at Mon Dec 15 04:53:58 2025 by rpki-client