This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json) Hash identifier: 8MJPMa8rN2WqRb2GR8uyoZXl2f95h9vI1r4jUyBbnLE= Subject key identifier: F5:B8:4C:0A:E3:43:83:ED:26:F3:8B:4C:08:77:D7:8B:C1:BD:66:04 Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42 Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142 Certificate serial: 019B3CB4E98CB1AC78DCDD37EC397E901D50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft Manifest number: 0BB7 Signing time: Sat 20 Dec 2025 17:00:47 +0000 Manifest this update: Sat 20 Dec 2025 17:00:47 +0000 Manifest next update: Sun 21 Dec 2025 17:00:47 +0000 Files and hashes: 1: HJG2LfZbcdQILd5mjrG6JouJjB8.roa (hash: AJsKTbmetLnV+AkJjtEMj7IQPl7myVO7TWx6kpWmD6s=) 2: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: EflM3zUar/N1RO547r1zI24dO0+CN0Uwu6mSOcSVI+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b4:e9:8c:b1:ac:78:dc:dd:37:ec:39:7e:90:1d:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142 Validity Not Before: Dec 20 17:00:47 2025 GMT Not After : Dec 21 17:00:47 2025 GMT Subject: CN=f5b84c0ae34383ed26f38b4c0877d78bc1bd6604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:56:58:7a:5a:fb:70:28:c4:16:b7:d6:52:43: 93:52:c3:52:e6:07:bd:15:52:73:80:27:27:c3:fe: 0a:19:a3:9d:9e:6c:60:ad:2d:cb:6f:f4:d3:a1:ea: 28:e1:16:b0:25:a6:98:c5:6b:df:1e:82:48:ff:4d: 26:10:89:9f:73:15:52:3d:d6:31:2b:9d:97:92:a0: 63:d4:8d:0d:74:10:64:e4:20:03:cc:71:4d:f9:05: 88:7e:12:ff:16:4a:8c:80:d0:e3:99:cc:01:da:ef: df:d6:b9:86:64:a0:88:9f:61:29:00:3a:94:2f:9d: 20:eb:5d:c3:2e:65:d2:7b:b7:f6:32:dd:b6:64:7e: 39:49:6b:12:dc:eb:ee:eb:ee:89:fa:da:68:3e:07: a6:8c:3b:25:8e:79:76:37:b5:e5:c7:d9:a2:79:1b: 62:2b:41:8c:bc:dd:5e:3a:10:39:ef:3b:18:34:0c: cb:0a:5a:f2:96:a9:0c:37:37:18:6e:07:2c:f7:e9: cd:b9:fc:34:24:46:cb:cf:38:26:1f:10:62:50:e1: 4d:b7:ae:3f:ab:fa:68:6c:c6:32:f0:96:ea:20:0b: 40:7e:28:bd:11:bb:1d:20:82:dc:79:3f:b6:d8:84: 17:4a:96:1e:41:73:34:5e:39:6e:b3:2e:ba:3d:ea: 58:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B8:4C:0A:E3:43:83:ED:26:F3:8B:4C:08:77:D7:8B:C1:BD:66:04 X509v3 Authority Key Identifier: keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:57:0a:23:54:89:71:9a:01:53:c7:be:dc:dc:80:a3:24:37: 57:66:9d:2a:1b:70:22:21:58:78:eb:22:0e:7a:89:db:a8:f6: 84:bc:2f:c2:84:fd:4d:76:11:b4:4d:68:9f:05:84:8f:3a:28: 98:f1:4b:6e:63:a4:18:33:e3:13:e9:fc:7b:7d:29:d7:dc:c0: 9a:c2:47:4f:bd:3e:94:60:a4:59:2d:ca:fc:53:4f:1e:34:88: 3b:33:71:04:44:7f:1a:18:e2:95:27:00:14:0f:3c:52:62:9f: 21:cd:dc:8f:f7:11:e4:44:02:50:97:91:6d:7a:7e:6d:65:55: f8:85:8d:4b:d4:f3:62:81:0b:5d:a4:ea:79:98:a1:d6:34:93: 82:ef:14:98:39:a3:ac:25:25:a8:c2:9e:8a:c8:b0:ef:a2:09: 0d:dc:9a:4f:8a:80:ab:84:b9:10:07:68:47:bf:00:e5:b6:06: f9:c6:de:61:1c:0b:c3:72:89:66:58:29:49:26:49:b2:24:98: 6f:0a:2c:f7:ce:22:75:f3:a1:8d:b5:0f:1b:8a:a0:e0:70:e8: f1:0e:87:2a:37:0a:f0:2d:41:44:4b:d8:ae:f6:96:e3:32:1e: 0c:58:9b:0c:c7:47:bc:22:eb:db:3d:85:e3:e3:99:f2:d3:9d: bf:84:b7:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tOmMsax43N037Dl+kB1QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyODBkM2U0NjcyOTY4Zjg2ZTg5NTVkYjYyMGNiNzY1ZGI5 ZDcxNDIwHhcNMjUxMjIwMTcwMDQ3WhcNMjUxMjIxMTcwMDQ3WjAzMTEwLwYDVQQD EyhmNWI4NGMwYWUzNDM4M2VkMjZmMzhiNGMwODc3ZDc4YmMxYmQ2NjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41ZYelr7cCjEFrfWUkOTUsNS5ge9 FVJzgCcnw/4KGaOdnmxgrS3Lb/TToeoo4RawJaaYxWvfHoJI/00mEImfcxVSPdYx K52XkqBj1I0NdBBk5CADzHFN+QWIfhL/FkqMgNDjmcwB2u/f1rmGZKCIn2EpADqU L50g613DLmXSe7f2Mt22ZH45SWsS3Ovu6+6J+tpoPgemjDsljnl2N7Xlx9mieRti K0GMvN1eOhA57zsYNAzLClrylqkMNzcYbgcs9+nNufw0JEbLzzgmHxBiUOFNt64/ q/pobMYy8JbqIAtAfii9EbsdIILceT+22IQXSpYeQXM0Xjlusy66PepYpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPW4TArjQ4PtJvOLTAh314vBvWYEMB8GA1UdIwQY MBaAFJKA0+RnKWj4bolV22IMt2XbnXFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81OWRhNTAtYWVkYi00OTA2LWFmMTkt MDkwZmUzZGEyNDMzLzEva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81OWRhNTAtYWVkYi00OTA2LWFmMTktMDkwZmUzZGEyNDMz LzEva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGlcKI1SJ cZoBU8e+3NyAoyQ3V2adKhtwIiFYeOsiDnqJ26j2hLwvwoT9TXYRtE1onwWEjzoo mPFLbmOkGDPjE+n8e30p19zAmsJHT70+lGCkWS3K/FNPHjSIOzNxBER/GhjilScA FA88UmKfIc3cj/cR5EQCUJeRbXp+bWVV+IWNS9TzYoELXaTqeZih1jSTgu8UmDmj rCUlqMKeisiw76IJDdyaT4qAq4S5EAdoR78A5bYG+cbeYRwLw3KJZlgpSSZJsiSY bwos984idfOhjbUPG4qg4HDo8Q6HKjcK8C1BREvYrvaW4zIeDFibDMdHvCLr2z2F 4+OZ8tOdv4S3Uw== -----END CERTIFICATE-----Generated at Sat Dec 20 21:09:22 2025 by rpki-client