This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json) Hash identifier: V8qMxbyIKmGklIc11983Av6jLOXNICAjxPm/CWNZsPQ= Subject key identifier: 1C:3A:BC:A2:4D:DE:33:1A:34:0D:AB:C5:4D:10:11:4F:46:CA:B0:0A Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce Certificate serial: 019B0F37626650AC0CA42E656B8A5E518680 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft Manifest number: 07BD Signing time: Thu 11 Dec 2025 21:00:46 +0000 Manifest this update: Thu 11 Dec 2025 21:00:46 +0000 Manifest next update: Fri 12 Dec 2025 21:00:46 +0000 Files and hashes: 1: NSppdy32pK0kuht35Ks5xIRdV5s.roa (hash: e3lqo49PNkPXZsVtpcSw5P8QfGbIbaYvIeXnhh1mWBY=) 2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: WS4H9R/781ctZuORP5+8b9FNGPQBxnJHDsWQgGUkNvE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:62:66:50:ac:0c:a4:2e:65:6b:8a:5e:51:86:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce Validity Not Before: Dec 11 21:00:46 2025 GMT Not After : Dec 12 21:00:46 2025 GMT Subject: CN=1c3abca24dde331a340dabc54d10114f46cab00a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:78:ec:82:d8:4e:60:39:31:fe:de:e3:49:85: 35:b1:64:0c:07:65:94:9f:fd:5e:55:45:27:5d:d3: ea:9c:b5:d3:48:c8:1a:f2:2f:3c:da:2b:21:bf:c4: 90:f2:06:a0:fc:83:85:02:6a:34:c3:e8:e4:3b:1f: a9:b3:d8:09:14:71:6e:82:85:c9:e3:ae:61:43:f6: 1f:63:dc:10:1a:a9:84:6f:0d:a2:33:52:22:53:aa: 25:50:2e:62:2c:39:19:82:07:be:50:e6:1f:8f:4a: 4e:50:32:6a:4a:3f:e0:6b:3a:83:fb:95:02:20:92: 91:01:69:ea:d6:62:1f:d4:e8:98:5b:cf:3b:70:c3: 3f:fd:7d:48:f7:01:02:2e:c5:90:33:df:67:15:68: 1d:9c:55:59:9c:b1:9e:45:22:20:6c:27:5a:b0:05: f2:1a:19:2d:67:d3:05:43:fd:4a:95:05:ce:3a:a2: ff:51:ee:fe:90:37:16:2a:d2:81:c2:11:28:36:c3: c7:01:2e:a2:9e:7e:45:d6:98:16:a0:d7:52:74:1c: 90:8d:43:4e:41:12:11:cc:a9:49:8e:a9:1b:50:71: 2c:be:04:7d:64:cf:f3:eb:6a:77:7d:ab:ce:55:63: 6d:f3:63:93:f7:28:01:a6:ac:8f:f9:2c:36:d2:8f: 22:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3A:BC:A2:4D:DE:33:1A:34:0D:AB:C5:4D:10:11:4F:46:CA:B0:0A X509v3 Authority Key Identifier: keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:b8:07:a8:bb:3d:c6:7e:d9:28:93:76:a0:48:9c:79:d4:b6: 37:f1:ce:6a:46:be:ef:bc:a4:27:83:5b:d8:91:9e:0f:35:db: 6d:f5:0a:e9:20:da:e1:0e:65:b0:45:40:4c:5f:fb:8c:e5:64: f2:d0:4a:97:40:86:a8:8d:7d:3d:c2:5c:99:40:ff:fe:f3:12: 57:60:58:dc:9a:c4:72:79:8f:6b:73:03:18:6e:d6:b6:18:2d: f7:2c:09:c2:6d:b3:ce:5d:ea:54:b1:a1:fd:9a:ce:7b:05:bc: f6:47:7d:16:7c:61:05:29:8d:7e:12:09:f8:78:16:62:e9:4e: 26:42:9a:83:22:30:34:c5:86:a9:fa:7b:c4:98:f6:07:2f:57: dd:89:e8:ef:3e:27:f3:c6:e9:1a:63:31:a7:35:c6:31:f8:aa: 86:ac:ba:49:22:72:91:91:39:8e:02:38:18:01:6a:e7:d1:2e: 15:74:a0:00:6d:e7:af:7c:c6:d8:44:0c:9e:77:33:92:55:f2: 8b:8c:44:d5:dd:d9:f7:2c:97:27:33:dd:c0:b4:28:76:0a:91: 09:c0:2e:46:3b:a6:b5:04:35:f5:6c:9a:bf:f9:70:99:aa:a3: 03:55:96:ab:c9:60:77:10:b4:4b:1b:6a:5b:08:f6:2a:d1:f1: 2e:d7:99:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN2JmUKwMpC5la4peUYaAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNmM5OGI1MTA2MWYzNDBjY2U0ZTBiNGNlMzYxY2UzNGFi YzJmY2UwHhcNMjUxMjExMjEwMDQ2WhcNMjUxMjEyMjEwMDQ2WjAzMTEwLwYDVQQD EygxYzNhYmNhMjRkZGUzMzFhMzQwZGFiYzU0ZDEwMTE0ZjQ2Y2FiMDBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5XjsgthOYDkx/t7jSYU1sWQMB2WU n/1eVUUnXdPqnLXTSMga8i882ishv8SQ8gag/IOFAmo0w+jkOx+ps9gJFHFugoXJ 465hQ/YfY9wQGqmEbw2iM1IiU6olUC5iLDkZgge+UOYfj0pOUDJqSj/gazqD+5UC IJKRAWnq1mIf1OiYW887cMM//X1I9wECLsWQM99nFWgdnFVZnLGeRSIgbCdasAXy GhktZ9MFQ/1KlQXOOqL/Ue7+kDcWKtKBwhEoNsPHAS6inn5F1pgWoNdSdByQjUNO QRIRzKlJjqkbUHEsvgR9ZM/z62p3favOVWNt82OT9ygBpqyP+Sw20o8iewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBw6vKJN3jMaNA2rxU0QEU9GyrAKMB8GA1UdIwQY MBaAFJJsmLUQYfNAzOTgtM42HONKvC/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTkt ZGM3NmZlY2E5NGJmLzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTktZGM3NmZlY2E5NGJm LzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgbgHqLs9 xn7ZKJN2oEicedS2N/HOaka+77ykJ4Nb2JGeDzXbbfUK6SDa4Q5lsEVATF/7jOVk 8tBKl0CGqI19PcJcmUD//vMSV2BY3JrEcnmPa3MDGG7Wthgt9ywJwm2zzl3qVLGh /ZrOewW89kd9FnxhBSmNfhIJ+HgWYulOJkKagyIwNMWGqfp7xJj2By9X3Yno7z4n 88bpGmMxpzXGMfiqhqy6SSJykZE5jgI4GAFq59EuFXSgAG3nr3zG2EQMnnczklXy i4xE1d3Z9yyXJzPdwLQodgqRCcAuRjumtQQ19Wyav/lwmaqjA1WWq8lgdxC0Sxtq Wwj2KtHxLteZ3A== -----END CERTIFICATE-----Generated at Fri Dec 12 02:50:12 2025 by rpki-client