This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json) Hash identifier: 2VT3kJZnZnptq9CGyOrkc/yVWaqcc3od09my3p16bR0= Subject key identifier: B9:43:DC:AC:55:37:9E:20:62:3C:CC:C9:DA:7B:D4:8E:93:01:D7:98 Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Certificate serial: 019B05FD6CBB3134E2250F521BA995DB73C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft Manifest number: 0CCC Signing time: Wed 10 Dec 2025 02:00:52 +0000 Manifest this update: Wed 10 Dec 2025 02:00:52 +0000 Manifest next update: Thu 11 Dec 2025 02:00:52 +0000 Files and hashes: 1: 4lHY4uWeqHmvoaNymD_moDG2Lyw.roa (hash: JlxlEX1JbWtrSymgf6LUCml6ssBX/gAxppMm1dFFwtA=) 2: HZhwyfKwqypgTctIAF1kQCyKm-g.roa (hash: LGS1UmMU+4m8lLls8h4CixSnB8TXlksI3e4kAzHbgdA=) 3: JAuA883iG3ecktuhBvPjwiYE2gs.roa (hash: 2XmurE8d9+/OzcrvAO2f2ROqPHe6N2R65dp7AYrb+WA=) 4: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: r/catT0IVCjfcZd0wMcqaLyRpLl5meEKefCUUFKabwg=) 5: cu9GyWa_Lwnd02KODnjE_h5McWk.roa (hash: 44QiQ8pIvo7mzZfC+ZjzIe/89Qsc6m4rb8gND25Z0Gw=) 6: xyRoD48_RddLMyzaWVm2RVSdNnw.roa (hash: 9GofeWtQdMUnPq68/CDpAq5ljzoKlzyYm0VUKW07EJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:fd:6c:bb:31:34:e2:25:0f:52:1b:a9:95:db:73:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Validity Not Before: Dec 10 02:00:52 2025 GMT Not After : Dec 11 02:00:52 2025 GMT Subject: CN=b943dcac55379e20623cccc9da7bd48e9301d798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:32:08:b6:ff:7e:2d:ab:c2:df:ca:60:a3:d8: cd:39:d1:38:29:c7:db:07:76:eb:e1:4d:c3:fc:b3: 36:77:07:b2:23:0c:48:fa:be:c0:e9:64:7c:11:43: 65:60:9c:f8:10:92:e9:da:ec:cc:69:fd:ab:7b:2c: d3:9e:a3:0c:e3:df:34:fe:d3:f3:35:18:ca:63:6c: 28:12:8b:a7:5a:5b:9d:25:b3:e2:92:ad:45:93:8b: d1:ed:63:2e:ff:ea:9f:c4:6a:47:61:13:1e:82:36: 07:ed:46:5d:9a:c8:24:08:9e:26:3c:e8:f3:d1:83: 53:b3:ec:f9:7f:eb:e5:4a:4c:ac:81:48:a5:0d:0f: 2a:e0:4c:ea:c3:dd:2f:3b:e1:84:5c:71:2b:83:ca: 29:7d:7a:d8:5a:66:ac:93:82:75:fe:b8:b8:f2:b2: f6:d5:58:29:d7:f3:18:82:fe:90:8c:98:ca:31:27: 74:f6:86:63:2c:a4:b1:e5:6b:a5:a3:a4:2e:72:20: 44:26:a3:73:0c:7b:a7:29:6b:3c:51:47:17:36:a6: 47:ba:ba:87:32:96:49:f8:04:c2:a0:14:a4:a2:56: 01:7f:a9:89:67:76:a6:b9:cc:2d:fe:19:3a:f2:1a: 70:75:46:50:68:fb:45:38:f2:01:a8:b8:17:43:fe: 2c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:43:DC:AC:55:37:9E:20:62:3C:CC:C9:DA:7B:D4:8E:93:01:D7:98 X509v3 Authority Key Identifier: keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:ce:a6:20:cc:fc:fe:02:b3:15:06:d8:4a:bd:4b:60:a2:15: cb:a5:77:33:38:3a:82:94:b5:3d:e2:1e:07:71:6b:a1:4f:5a: 46:d8:67:42:41:38:95:85:12:56:7c:c0:8d:ef:c2:5a:db:b2: 43:78:9c:07:91:37:38:0c:29:9c:87:5a:37:07:f0:88:8c:44: 0e:fe:4f:be:a5:20:0d:a8:00:3a:e5:c2:ea:46:9f:21:80:d3: a3:07:98:65:90:6a:5f:f9:d4:1a:3b:34:0b:68:df:32:32:6a: eb:69:71:69:b7:34:62:d6:ac:5b:3b:e7:3d:dc:f2:bf:4f:ca: 8c:58:2e:e4:5b:21:67:85:d3:7c:2d:89:77:fe:90:d2:1d:07: 6d:dc:fd:68:c6:3e:89:1b:5a:46:d1:42:79:41:a5:cd:20:93: 94:58:d9:49:68:5b:10:85:2b:66:ad:a6:f2:f1:b0:9b:61:ac: 9c:7f:d9:c4:59:e1:99:40:aa:ef:f8:99:20:ac:0b:e1:05:ce: e9:65:23:eb:92:3a:2d:72:c3:9a:0f:2f:75:cf:b1:3c:1f:1c: 2c:92:40:2a:4b:89:9b:b1:17:ba:46:ad:4d:ee:f3:da:60:e1: 8c:9f:60:8d:04:0c:3f:da:25:3f:d4:52:d8:a5:f6:97:65:81: 2a:91:b3:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsF/Wy7MTTiJQ9SG6mV23PBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy NTU2ZjAwHhcNMjUxMjEwMDIwMDUyWhcNMjUxMjExMDIwMDUyWjAzMTEwLwYDVQQD EyhiOTQzZGNhYzU1Mzc5ZTIwNjIzY2NjYzlkYTdiZDQ4ZTkzMDFkNzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6DIItv9+LavC38pgo9jNOdE4Kcfb B3br4U3D/LM2dweyIwxI+r7A6WR8EUNlYJz4EJLp2uzMaf2reyzTnqMM4980/tPz NRjKY2woEounWludJbPikq1Fk4vR7WMu/+qfxGpHYRMegjYH7UZdmsgkCJ4mPOjz 0YNTs+z5f+vlSkysgUilDQ8q4Ezqw90vO+GEXHErg8opfXrYWmask4J1/ri48rL2 1Vgp1/MYgv6QjJjKMSd09oZjLKSx5Wulo6QuciBEJqNzDHunKWs8UUcXNqZHurqH MpZJ+ATCoBSkolYBf6mJZ3amucwt/hk68hpwdUZQaPtFOPIBqLgXQ/4sCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLlD3KxVN54gYjzMydp71I6TAdeYMB8GA1UdIwQY MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmM6mIMz8 /gKzFQbYSr1LYKIVy6V3Mzg6gpS1PeIeB3FroU9aRthnQkE4lYUSVnzAje/CWtuy Q3icB5E3OAwpnIdaNwfwiIxEDv5PvqUgDagAOuXC6kafIYDToweYZZBqX/nUGjs0 C2jfMjJq62lxabc0YtasWzvnPdzyv0/KjFgu5FshZ4XTfC2Jd/6Q0h0Hbdz9aMY+ iRtaRtFCeUGlzSCTlFjZSWhbEIUrZq2m8vGwm2GsnH/ZxFnhmUCq7/iZIKwL4QXO 6WUj65I6LXLDmg8vdc+xPB8cLJJAKkuJm7EXukatTe7z2mDhjJ9gjQQMP9olP9RS 2KX2l2WBKpGz8g== -----END CERTIFICATE-----Generated at Wed Dec 10 09:02:36 2025 by rpki-client