This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft File: K67n6kgtYqZxBj6sg3ia8585C3Q.mft (raw, json) Hash identifier: d5CzS8tuKWWmhEJMLhuOP+y5A1lTUM8CBFUees/zVf4= Subject key identifier: 83:59:07:29:7E:E1:9D:02:F6:1F:93:FD:3E:C2:DC:F5:D6:56:F5:CB Authority key identifier: 2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74 Certificate issuer: /CN=2baee7ea482d62a671063eac83789af39f390b74 Certificate serial: 019B439302A7F0DCE01D992E847C4E42FC40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft Manifest number: 0949 Signing time: Mon 22 Dec 2025 01:01:06 +0000 Manifest this update: Mon 22 Dec 2025 01:01:06 +0000 Manifest next update: Tue 23 Dec 2025 01:01:06 +0000 Files and hashes: 1: Jm_xi_s9C4HueOQpadAteqzC5iI.roa (hash: nbZ24fnK71pZ0lURFKjMf67hub71ZiuhlPq0UEHzTVw=) 2: K67n6kgtYqZxBj6sg3ia8585C3Q.crl (hash: iGJvi+PfdOzcxY47G0bXtPXOTKVhRq6SsSO4p+it0DI=) 3: wLKTHNAi_SKjDTW74BcesnX-WQQ.asa (hash: j48nzI6JGxErzvih/a7iFeEhyD9lYuYhcQYuQ7FCZgk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:93:02:a7:f0:dc:e0:1d:99:2e:84:7c:4e:42:fc:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2baee7ea482d62a671063eac83789af39f390b74 Validity Not Before: Dec 22 01:01:06 2025 GMT Not After : Dec 23 01:01:06 2025 GMT Subject: CN=835907297ee19d02f61f93fd3ec2dcf5d656f5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:ec:3d:20:ae:60:9b:32:59:d2:65:cc:6f: 61:68:d6:a5:8b:c2:c3:81:72:44:18:bd:75:16:8f: f8:8f:b2:58:43:af:69:a7:c0:25:e9:ec:46:04:5e: 25:c6:18:f8:0c:ce:5e:e6:e0:ff:96:bd:ed:9a:75: 5c:5a:50:07:e2:62:63:72:86:1f:03:5f:0b:a1:c9: 74:68:50:3e:6b:65:94:e8:ab:94:35:27:0d:80:f8: 8c:5c:20:b9:02:7f:57:c6:4b:7e:1d:f9:a6:34:17: fa:bc:37:10:09:d3:33:47:63:52:6b:8a:34:72:7d: 17:c6:5e:d5:53:91:cd:64:d5:e1:af:bc:d3:fd:2c: 7b:1e:e6:9e:f4:f5:8b:06:1e:96:2c:50:1e:d9:dd: ae:51:32:81:8a:fc:57:3f:be:10:dd:1c:c7:8d:29: f0:d4:92:b6:fd:c4:4e:2e:ba:14:74:08:78:37:32: ef:b0:65:95:6f:a4:5d:bf:20:9d:82:79:74:51:36: 74:64:aa:b3:3b:8b:f7:ab:26:cb:a8:a7:ff:b9:1e: d8:9e:01:2c:cd:4c:52:fd:a2:73:5b:a8:8e:98:27: be:fd:d8:43:eb:8b:22:98:1e:19:86:ec:3a:6c:bf: f5:e3:73:b8:1a:2c:dc:bf:65:e8:b3:6c:ff:35:25: 52:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:59:07:29:7E:E1:9D:02:F6:1F:93:FD:3E:C2:DC:F5:D6:56:F5:CB X509v3 Authority Key Identifier: keyid:2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:51:de:c5:38:3d:a8:de:5b:b7:35:d3:0d:04:8e:c0:f6:b8: 60:d6:58:29:6f:a4:3f:6c:9c:1c:5a:9f:9f:62:6e:57:44:57: 23:1b:f5:36:33:9d:8a:a0:8b:74:7e:4a:81:9d:b0:ff:87:cb: 2f:38:94:63:8b:5b:db:aa:c7:80:e3:5b:c3:e4:06:3c:82:89: a3:ca:2a:e7:55:be:01:38:c0:3d:e0:a4:51:c3:09:d7:e7:8c: 50:71:3d:78:59:44:b3:c8:f6:f7:c8:b2:96:4f:77:1a:4c:7c: 01:d0:6c:62:f4:50:d7:93:e5:77:10:de:7d:40:0d:9b:76:53: 43:b9:d2:ae:e6:5e:52:e1:86:26:1b:0d:6c:71:9e:c8:63:98: bc:b3:e3:5d:8f:54:3a:30:1d:fb:b1:2b:c8:5a:3d:bc:40:5a: 7c:c1:95:08:d8:35:23:d8:14:6b:90:3c:80:5e:48:b7:e1:3f: 29:ff:26:3d:33:ff:ec:39:cc:3f:17:80:6f:7f:6d:c2:67:2d: 6f:2f:85:9c:c0:03:d2:fd:50:a7:0a:12:9c:f3:a6:39:87:3b: 6a:e3:57:c6:24:3b:ae:07:d3:ed:98:85:35:65:3a:34:98:dd: 00:ae:cb:24:29:af:98:6d:22:82:f2:3f:ef:d2:45:73:bd:86: 47:eb:f9:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDkwKn8NzgHZkuhHxOQvxAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYWVlN2VhNDgyZDYyYTY3MTA2M2VhYzgzNzg5YWYzOWYz OTBiNzQwHhcNMjUxMjIyMDEwMTA2WhcNMjUxMjIzMDEwMTA2WjAzMTEwLwYDVQQD Eyg4MzU5MDcyOTdlZTE5ZDAyZjYxZjkzZmQzZWMyZGNmNWQ2NTZmNWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyObsPSCuYJsyWdJlzG9haNali8LD gXJEGL11Fo/4j7JYQ69pp8Al6exGBF4lxhj4DM5e5uD/lr3tmnVcWlAH4mJjcoYf A18Locl0aFA+a2WU6KuUNScNgPiMXCC5An9Xxkt+HfmmNBf6vDcQCdMzR2NSa4o0 cn0Xxl7VU5HNZNXhr7zT/Sx7Huae9PWLBh6WLFAe2d2uUTKBivxXP74Q3RzHjSnw 1JK2/cROLroUdAh4NzLvsGWVb6RdvyCdgnl0UTZ0ZKqzO4v3qybLqKf/uR7YngEs zUxS/aJzW6iOmCe+/dhD64simB4Zhuw6bL/143O4Gizcv2Xos2z/NSVSFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFINZByl+4Z0C9h+T/T7C3PXWVvXLMB8GA1UdIwQY MBaAFCuu5+pILWKmcQY+rIN4mvOfOQt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQt NzUyMWFmMWNlMjU5LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQtNzUyMWFmMWNlMjU5 LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQVHexTg9 qN5btzXTDQSOwPa4YNZYKW+kP2ycHFqfn2JuV0RXIxv1NjOdiqCLdH5KgZ2w/4fL LziUY4tb26rHgONbw+QGPIKJo8oq51W+ATjAPeCkUcMJ1+eMUHE9eFlEs8j298iy lk93Gkx8AdBsYvRQ15PldxDefUANm3ZTQ7nSruZeUuGGJhsNbHGeyGOYvLPjXY9U OjAd+7EryFo9vEBafMGVCNg1I9gUa5A8gF5It+E/Kf8mPTP/7DnMPxeAb39twmct by+FnMAD0v1QpwoSnPOmOYc7auNXxiQ7rgfT7ZiFNWU6NJjdAK7LJCmvmG0igvI/ 79JFc72GR+v5Rg== -----END CERTIFICATE-----Generated at Mon Dec 22 03:28:20 2025 by rpki-client