This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft File: RKO0P2R-HncUzRMHZMu8SBTnoUg.mft (raw, json) Hash identifier: cUYu95X1dAQthpVf+NcxN1JxQBqu8TcTUT94bmtAuy4= Subject key identifier: 10:CF:FE:F3:03:CB:DC:89:12:F7:E2:C3:3B:6A:D2:E7:84:86:56:83 Authority key identifier: 44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48 Certificate issuer: /CN=44a3b43f647e1e7714cd130764cbbc4814e7a148 Certificate serial: 019B33E935CB645996F4A290BB75DEB57E87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft Manifest number: 1788 Signing time: Fri 19 Dec 2025 00:01:20 +0000 Manifest this update: Fri 19 Dec 2025 00:01:20 +0000 Manifest next update: Sat 20 Dec 2025 00:01:20 +0000 Files and hashes: 1: MsdUQCagTDHd8Si78BPDmp_WpZ8.roa (hash: k0m/eSaWjhvcNX6cbMLf7bH/cSi8h0RiGTdFIrsyBkg=) 2: RKO0P2R-HncUzRMHZMu8SBTnoUg.crl (hash: hymcAvjSAe48I1N5hpdpYm/ye8MS3iIMrVkjOwuNGFA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e9:35:cb:64:59:96:f4:a2:90:bb:75:de:b5:7e:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44a3b43f647e1e7714cd130764cbbc4814e7a148 Validity Not Before: Dec 19 00:01:20 2025 GMT Not After : Dec 20 00:01:20 2025 GMT Subject: CN=10cffef303cbdc8912f7e2c33b6ad2e784865683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:72:dd:73:87:26:26:9d:eb:11:33:33:15:bc: b4:95:19:73:bc:97:9a:6a:ba:a7:a3:89:75:6b:f7: bd:a6:1b:fc:28:4b:de:59:0a:c5:52:67:57:74:6f: 93:cc:6a:50:8a:35:58:f4:f2:ff:c0:32:8f:bd:78: b9:e7:75:f2:6f:5d:b2:7c:0d:87:fa:b0:ed:bd:ee: 25:d2:34:d5:91:28:92:b9:d5:ec:f6:6a:ac:d5:be: 33:43:22:40:1b:fc:b3:ba:be:f3:03:f5:13:17:e6: ab:be:6d:b4:ff:54:32:1b:38:2f:5e:c1:95:33:5e: 8d:f1:be:f6:4a:42:3a:5a:11:ee:91:54:68:5d:03: b5:b4:c9:2a:f8:4c:c9:cb:1f:96:fd:ec:05:b6:97: a9:de:f5:63:2e:4b:e8:ac:0b:d4:9e:72:9e:ac:67: 79:cc:81:72:d0:0c:6c:da:a6:d2:f0:27:f4:75:6e: d9:2f:19:25:6a:95:3c:ed:1a:07:06:34:53:6c:22: ac:0b:4a:df:2a:f1:98:b6:e0:5c:8a:fa:b8:9b:40: 9d:b1:1c:16:ce:27:21:e5:21:ec:cc:55:a3:e2:ea: 0a:28:cc:3a:d0:1f:cc:87:8b:f3:82:bd:40:8a:c6: b1:8c:5a:a9:b0:21:64:e3:06:07:a7:8c:c5:bb:60: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:CF:FE:F3:03:CB:DC:89:12:F7:E2:C3:3B:6A:D2:E7:84:86:56:83 X509v3 Authority Key Identifier: keyid:44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:fc:ce:16:7a:ba:3f:7b:13:12:46:fe:2e:be:cc:88:90:a1: bd:48:c6:ee:a6:8f:b1:33:ef:8d:4d:a3:98:07:68:bc:98:b6: 4b:2c:09:b7:e5:c6:43:56:41:87:6b:01:45:73:75:77:ce:fb: 23:33:84:45:79:c8:92:ee:f6:48:ba:c3:02:94:26:37:75:d6: 76:ca:0c:52:f9:4e:b0:f9:e3:67:06:3e:5e:ba:30:c8:d8:cf: 12:57:21:e3:76:92:6e:8d:2a:52:f1:60:5a:54:ba:e2:91:a1: b3:9d:f4:63:88:d2:78:90:c0:e8:fb:f0:ed:b1:77:42:23:1c: be:78:21:ad:dc:89:60:87:12:60:12:e2:b1:26:ed:5b:40:e5: 90:dd:03:f3:c8:e0:2b:aa:ed:6a:e5:62:fa:ba:07:88:17:6f: 08:5b:d6:d4:e6:13:9f:1e:7b:b1:d4:e9:ac:c7:94:00:31:68: 4f:99:ed:e0:7a:3e:bb:86:b9:6e:65:95:cf:9e:a0:85:76:23: 71:a1:c4:fc:b1:3c:33:1a:91:6a:79:99:98:f5:d2:69:40:fe: ac:ae:b1:2f:be:8e:c5:53:ae:97:1f:25:b8:91:fb:d5:ab:40: 80:18:7b:f8:62:d1:e2:78:a3:42:2a:f6:6e:45:55:f2:c3:70: 2f:1e:f5:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6TXLZFmW9KKQu3XetX6HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0YTNiNDNmNjQ3ZTFlNzcxNGNkMTMwNzY0Y2JiYzQ4MTRl N2ExNDgwHhcNMjUxMjE5MDAwMTIwWhcNMjUxMjIwMDAwMTIwWjAzMTEwLwYDVQQD EygxMGNmZmVmMzAzY2JkYzg5MTJmN2UyYzMzYjZhZDJlNzg0ODY1NjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApnLdc4cmJp3rETMzFby0lRlzvJea arqno4l1a/e9phv8KEveWQrFUmdXdG+TzGpQijVY9PL/wDKPvXi553Xyb12yfA2H +rDtve4l0jTVkSiSudXs9mqs1b4zQyJAG/yzur7zA/UTF+arvm20/1QyGzgvXsGV M16N8b72SkI6WhHukVRoXQO1tMkq+EzJyx+W/ewFtpep3vVjLkvorAvUnnKerGd5 zIFy0Axs2qbS8Cf0dW7ZLxklapU87RoHBjRTbCKsC0rfKvGYtuBcivq4m0CdsRwW zich5SHszFWj4uoKKMw60B/Mh4vzgr1AisaxjFqpsCFk4wYHp4zFu2AH8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBDP/vMDy9yJEvfiwztq0ueEhlaDMB8GA1UdIwQY MBaAFESjtD9kfh53FM0TB2TLvEgU56FIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUktPMFAyUi1IbmNVelJNSFpNdThTQlRub1VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9lMWNlZTYtZGNmZi00MzczLWJkODgt YTNjNTM5ZjBiNmQyLzEvUktPMFAyUi1IbmNVelJNSFpNdThTQlRub1VnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9lMWNlZTYtZGNmZi00MzczLWJkODgtYTNjNTM5ZjBiNmQy LzEvUktPMFAyUi1IbmNVelJNSFpNdThTQlRub1VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlvzOFnq6 P3sTEkb+Lr7MiJChvUjG7qaPsTPvjU2jmAdovJi2SywJt+XGQ1ZBh2sBRXN1d877 IzOERXnIku72SLrDApQmN3XWdsoMUvlOsPnjZwY+XrowyNjPElch43aSbo0qUvFg WlS64pGhs530Y4jSeJDA6Pvw7bF3QiMcvnghrdyJYIcSYBLisSbtW0DlkN0D88jg K6rtauVi+roHiBdvCFvW1OYTnx57sdTprMeUADFoT5nt4Ho+u4a5bmWVz56ghXYj caHE/LE8MxqRanmZmPXSaUD+rK6xL76OxVOulx8luJH71atAgBh7+GLR4nijQir2 bkVV8sNwLx715A== -----END CERTIFICATE-----Generated at Fri Dec 19 08:07:05 2025 by rpki-client