This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json) Hash identifier: hnL2KBzg0a+rLUGpLVNNpVMXnBS1/KEDBjxwO8hZERg= Subject key identifier: 8F:78:F0:FA:BC:B0:CB:DA:2B:5B:04:37:DD:D7:91:18:12:E8:4F:8B Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc Certificate serial: 019B53AB7C2544DEA68D923EFFD010D7635B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft Manifest number: 154D Signing time: Thu 25 Dec 2025 04:01:45 +0000 Manifest this update: Thu 25 Dec 2025 04:01:45 +0000 Manifest next update: Fri 26 Dec 2025 04:01:45 +0000 Files and hashes: 1: ELPDypl8AO7yu9Qb_T04CJHIAmc.roa (hash: uMxQfCf54KpZ6vXVJrK4LBRwbGjKGq0Ym1Kz/m5o7Z0=) 2: h7jotg4RS-yoMxmLNwMHtqMIvTo.roa (hash: 0RvIPvSKfKKYiob3W8lnsFljStCAR/IAjli0EYtRtIQ=) 3: iRTljilS88fdbTnqXefNcD2KdQw.roa (hash: SYC9aJR60HZt276fl/3G18s2lWN51c7daVgQyb0yCnk=) 4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: Fqzlj7aCibANN08OlgC7zzNHZJ0rRsLIL/oJIhQYIZo=) 5: vEwnUG1RajWkcLEBWJPnIiLLgBM.roa (hash: sSHl9JnRfzO2J5TGzVLlmHvYGgd6KK351LDclJH6UZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 01:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:ab:7c:25:44:de:a6:8d:92:3e:ff:d0:10:d7:63:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc Validity Not Before: Dec 25 04:01:45 2025 GMT Not After : Dec 26 04:01:45 2025 GMT Subject: CN=8f78f0fabcb0cbda2b5b0437ddd7911812e84f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fb:28:3a:f3:18:e6:cf:1c:e3:1a:a5:88:df: 6e:23:ea:91:82:da:0b:e5:4e:30:f1:56:0e:1b:85: 0b:a8:d9:ea:99:ac:9e:54:a1:86:6b:37:14:e7:88: 1b:62:6e:4e:ab:96:27:6f:43:3f:6e:a1:33:dd:5c: 17:9d:f1:46:b6:46:fa:80:20:77:42:26:b7:62:7c: 4d:8d:e3:ff:7e:ab:4f:d4:7c:34:40:97:e5:37:84: fe:51:2a:e1:43:52:ae:4d:68:9c:11:ba:b4:a6:fa: ff:ae:51:76:6c:8c:fa:54:32:ea:70:7c:3e:69:69: f6:94:f1:0b:03:16:96:20:6c:02:e6:3d:12:3c:7e: 6d:b5:33:c0:70:62:0c:17:28:42:5c:b1:e2:bf:61: 1f:71:18:d4:9d:aa:0d:7b:2e:3b:c8:ee:57:83:82: 45:7b:f7:73:bc:ff:46:b8:5d:3c:55:25:c0:aa:28: 53:3c:b2:4f:8c:8c:93:72:5b:cd:f9:6c:19:a2:91: 63:0f:80:a3:3a:d3:ab:ca:2f:f7:72:05:b7:17:46: d7:b0:49:53:25:b8:5e:0e:11:07:60:e7:2d:09:e7: 33:c1:0a:5f:26:5d:51:bd:8f:2f:96:93:e0:83:66: 08:19:f5:88:6f:1d:a3:28:f6:7f:39:de:11:75:ac: 7b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:78:F0:FA:BC:B0:CB:DA:2B:5B:04:37:DD:D7:91:18:12:E8:4F:8B X509v3 Authority Key Identifier: keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:29:82:52:79:6f:18:8f:a9:ff:6f:da:d4:a6:c4:dd:2a:d6: cd:5c:d9:eb:d6:e1:49:b6:25:a8:84:48:26:d3:7b:22:0e:62: 13:0d:10:ff:2b:d3:60:9f:2c:6f:20:54:06:fa:db:a9:76:96: e9:23:26:13:0f:cd:0f:b1:3f:b9:4d:0c:04:e8:a5:a5:cc:14: 21:f6:6a:df:08:2b:a7:a7:24:78:b5:85:65:e5:ed:4f:b8:bc: d4:6e:83:1b:bd:21:62:3c:73:ad:c9:d4:95:64:d1:9e:b0:f7: 32:54:db:ef:38:77:e3:aa:3c:fc:90:fc:43:15:49:3c:e7:6f: ff:10:75:d1:6b:92:b0:96:d4:e7:59:1d:4b:e4:0a:2d:69:bb: 7d:44:2f:96:6a:44:41:c0:85:36:8e:01:3a:54:b8:00:e0:31: 49:8d:4f:3a:d7:81:ad:97:af:5b:ef:de:dd:f6:8d:67:30:40: 01:ec:a3:02:2d:1e:15:c5:d9:70:66:a9:57:d4:7b:f1:a1:85: e2:54:01:1b:17:b1:5e:12:4b:57:02:c9:76:c2:5e:d7:30:17: 38:59:6a:d0:fa:73:a1:0e:71:d8:11:65:83:21:1f:be:6a:b4: 5d:87:dc:d5:ee:ca:6f:4a:d7:db:b6:de:b3:5f:62:90:27:7f: 6e:b5:21:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTq3wlRN6mjZI+/9AQ12NbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNDVlYWQ4ZDNmMTI4NDQwMmI2Zjc1NjE0YTg3MjU3NTAz Y2UxYmMwHhcNMjUxMjI1MDQwMTQ1WhcNMjUxMjI2MDQwMTQ1WjAzMTEwLwYDVQQD Eyg4Zjc4ZjBmYWJjYjBjYmRhMmI1YjA0MzdkZGQ3OTExODEyZTg0ZjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvsoOvMY5s8c4xqliN9uI+qRgtoL 5U4w8VYOG4ULqNnqmayeVKGGazcU54gbYm5Oq5Ynb0M/bqEz3VwXnfFGtkb6gCB3 Qia3YnxNjeP/fqtP1Hw0QJflN4T+USrhQ1KuTWicEbq0pvr/rlF2bIz6VDLqcHw+ aWn2lPELAxaWIGwC5j0SPH5ttTPAcGIMFyhCXLHiv2EfcRjUnaoNey47yO5Xg4JF e/dzvP9GuF08VSXAqihTPLJPjIyTclvN+WwZopFjD4CjOtOryi/3cgW3F0bXsElT JbheDhEHYOctCeczwQpfJl1RvY8vlpPgg2YIGfWIbx2jKPZ/Od4Rdax7vwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI948Pq8sMvaK1sEN93XkRgS6E+LMB8GA1UdIwQY MBaAFJFF6tjT8ShEArb3VhSocldQPOG8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzct MmFkMTk1MjY0YzcyLzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzctMmFkMTk1MjY0Yzcy LzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArimCUnlv GI+p/2/a1KbE3SrWzVzZ69bhSbYlqIRIJtN7Ig5iEw0Q/yvTYJ8sbyBUBvrbqXaW 6SMmEw/ND7E/uU0MBOilpcwUIfZq3wgrp6ckeLWFZeXtT7i81G6DG70hYjxzrcnU lWTRnrD3MlTb7zh346o8/JD8QxVJPOdv/xB10WuSsJbU51kdS+QKLWm7fUQvlmpE QcCFNo4BOlS4AOAxSY1POteBrZevW+/e3faNZzBAAeyjAi0eFcXZcGapV9R78aGF 4lQBGxexXhJLVwLJdsJe1zAXOFlq0PpzoQ5x2BFlgyEfvmq0XYfc1e7Kb0rX27be s19ikCd/brUhNA== -----END CERTIFICATE-----Generated at Thu Dec 25 06:30:58 2025 by rpki-client