This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft File: _KmLHQ7MzE9v8afn24S0uy9VsI0.mft (raw, json) Hash identifier: Z8ERpR+qe0oTWPQBtZiaTxklai00BnSuzUf6c1JyAuA= Subject key identifier: B5:5B:A5:0D:EF:3B:7D:2E:F5:22:C5:0C:6A:30:C6:90:62:76:E2:FA Authority key identifier: FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D Certificate issuer: /CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d Certificate serial: 019B3644DA42DA6EC16439C6790FEF7EB6AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft Manifest number: 174A Signing time: Fri 19 Dec 2025 11:00:40 +0000 Manifest this update: Fri 19 Dec 2025 11:00:40 +0000 Manifest next update: Sat 20 Dec 2025 11:00:40 +0000 Files and hashes: 1: MIfmeAoWN0nwDc_PxEMHlVixhH0.roa (hash: BGlglgWDBdgW/hvSdFfJEQ+q//PCVjKwrtXl1XRe9nc=) 2: _KmLHQ7MzE9v8afn24S0uy9VsI0.crl (hash: 4usb6zhwQdLUKp5FTRwteKBODiDC3tGG41tKLkhzzb8=) 3: ok0D6AFy1nokMBW7AtTQbtvoy-Q.roa (hash: OI8j87WnUAa44hUR7Jr4hBgPSlGVFL5uAjQD5u8Uzmo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:44:da:42:da:6e:c1:64:39:c6:79:0f:ef:7e:b6:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fca98b1d0ecccc4f6ff1a7e7db84b4bb2f55b08d Validity Not Before: Dec 19 11:00:40 2025 GMT Not After : Dec 20 11:00:40 2025 GMT Subject: CN=b55ba50def3b7d2ef522c50c6a30c6906276e2fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a4:92:ad:66:b1:2d:c5:bb:eb:80:6d:84:3a: b2:e8:6a:73:86:05:4e:e0:9f:ff:df:16:6d:ea:4e: f5:5e:50:81:01:32:d2:96:bd:5b:ee:7c:a0:00:d7: 94:83:62:54:f0:c4:9b:72:21:dd:8d:12:49:80:b3: 3e:35:32:35:9e:70:6f:3b:59:58:56:91:cb:26:27: 8f:34:7f:5a:bb:90:ca:b3:47:cf:ec:5d:87:13:d5: 1f:8a:e2:4c:36:cb:f3:ca:ad:8a:31:38:12:5a:f8: 5c:a0:01:e9:2f:c6:27:c2:f8:5b:59:18:95:1a:15: 25:23:c3:e8:34:30:fa:2a:2f:4c:45:f2:c3:b1:e4: d5:fa:78:ac:14:73:9c:5b:a6:9f:0e:4e:86:6a:68: 10:c2:c9:49:36:60:ef:89:65:d9:3a:c2:ab:7d:4e: ad:37:d5:80:82:60:64:cf:bf:1e:5a:44:53:e6:69: 6d:a6:bd:5a:43:96:38:cd:67:e9:44:6a:a6:00:b8: 69:07:4f:1f:d8:9c:3f:e2:6e:3e:63:db:b1:e8:90: 96:22:d1:ec:cc:6f:e1:d0:06:7a:9b:b2:47:a8:1b: c0:a9:45:9d:2b:33:ad:11:cd:b5:ec:18:c2:6d:45: c5:a3:b0:c2:99:4d:c4:e5:bb:d0:89:6a:4c:b1:54: fe:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5B:A5:0D:EF:3B:7D:2E:F5:22:C5:0C:6A:30:C6:90:62:76:E2:FA X509v3 Authority Key Identifier: keyid:FC:A9:8B:1D:0E:CC:CC:4F:6F:F1:A7:E7:DB:84:B4:BB:2F:55:B0:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KmLHQ7MzE9v8afn24S0uy9VsI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/971e73-fa83-4579-8532-58f0f325c2b8/1/_KmLHQ7MzE9v8afn24S0uy9VsI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:35:93:57:23:17:9b:16:52:62:06:bd:98:96:2f:e3:b4:e4: c0:72:31:0a:30:0f:ee:e2:92:ff:c1:59:2a:8b:7a:a9:e8:90: 1f:20:47:1c:50:83:ec:78:ab:b2:25:34:c1:88:4b:ff:c2:82: 95:0c:b3:7c:23:87:86:ef:df:e4:83:57:6d:10:ce:c4:21:16: 9c:7e:e5:3f:0c:78:df:96:32:e2:3c:3b:fa:e5:00:9b:42:8d: b1:51:8d:ff:92:5d:87:88:b1:fe:8b:15:6d:1d:1a:b1:87:b0: 76:a7:8b:fb:e2:68:63:33:f7:0c:f5:93:42:c1:0a:aa:c1:c0: c8:ea:31:d6:f9:79:5b:a1:48:14:30:34:4a:56:31:c6:35:1b: 87:76:fc:ef:5e:0a:2e:41:32:de:07:e9:0c:c0:c8:e4:ca:58: 6d:05:25:7b:fe:f3:3f:63:c2:50:f1:25:46:d4:db:40:d1:19: 2a:3a:20:e1:8d:c7:5c:56:1e:f5:b6:28:06:aa:9c:69:81:b4: 9c:90:50:0c:e5:b1:bf:1c:5b:19:d7:4f:b0:e3:a4:20:55:96: 39:fd:7b:22:54:18:b2:d9:1c:3a:c1:8c:69:72:bb:c4:92:d7: b2:24:3a:99:5a:d1:82:1c:19:e8:aa:8b:d7:f0:be:42:39:f4: be:ae:e0:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2RNpC2m7BZDnGeQ/vfraqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjYTk4YjFkMGVjY2NjNGY2ZmYxYTdlN2RiODRiNGJiMmY1 NWIwOGQwHhcNMjUxMjE5MTEwMDQwWhcNMjUxMjIwMTEwMDQwWjAzMTEwLwYDVQQD EyhiNTViYTUwZGVmM2I3ZDJlZjUyMmM1MGM2YTMwYzY5MDYyNzZlMmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6SSrWaxLcW764BthDqy6GpzhgVO 4J//3xZt6k71XlCBATLSlr1b7nygANeUg2JU8MSbciHdjRJJgLM+NTI1nnBvO1lY VpHLJiePNH9au5DKs0fP7F2HE9UfiuJMNsvzyq2KMTgSWvhcoAHpL8YnwvhbWRiV GhUlI8PoNDD6Ki9MRfLDseTV+nisFHOcW6afDk6GamgQwslJNmDviWXZOsKrfU6t N9WAgmBkz78eWkRT5mltpr1aQ5Y4zWfpRGqmALhpB08f2Jw/4m4+Y9ux6JCWItHs zG/h0AZ6m7JHqBvAqUWdKzOtEc217BjCbUXFo7DCmU3E5bvQiWpMsVT+3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLVbpQ3vO30u9SLFDGowxpBiduL6MB8GA1UdIwQY MBaAFPypix0OzMxPb/Gn59uEtLsvVbCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85NzFlNzMtZmE4My00NTc5LTg1MzIt NThmMGYzMjVjMmI4LzEvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS85NzFlNzMtZmE4My00NTc5LTg1MzItNThmMGYzMjVjMmI4 LzEvX0ttTEhRN016RTl2OGFmbjI0UzB1eTlWc0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTWTVyMX mxZSYga9mJYv47TkwHIxCjAP7uKS/8FZKot6qeiQHyBHHFCD7HirsiU0wYhL/8KC lQyzfCOHhu/f5INXbRDOxCEWnH7lPwx435Yy4jw7+uUAm0KNsVGN/5Jdh4ix/osV bR0asYewdqeL++JoYzP3DPWTQsEKqsHAyOox1vl5W6FIFDA0SlYxxjUbh3b8714K LkEy3gfpDMDI5MpYbQUle/7zP2PCUPElRtTbQNEZKjog4Y3HXFYe9bYoBqqcaYG0 nJBQDOWxvxxbGddPsOOkIFWWOf17IlQYstkcOsGMaXK7xJLXsiQ6mVrRghwZ6KqL 1/C+Qjn0vq7gwg== -----END CERTIFICATE-----Generated at Fri Dec 19 14:01:51 2025 by rpki-client