This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft File: KeRudYZejUoIHktd2kbTyUADZ5s.mft (raw, json) Hash identifier: WNm1d23gGEvzEcUL461a/ChH1Qmx29453NobRmfNS70= Subject key identifier: 0B:37:CA:76:65:BD:76:1E:0D:F2:CA:43:45:82:D4:DD:DB:35:99:C1 Authority key identifier: 29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B Certificate issuer: /CN=29e46e75865e8d4a081e4b5dda46d3c94003679b Certificate serial: 019B45132A4143CD30156DB119E4971AF449 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft Manifest number: 166B Signing time: Mon 22 Dec 2025 08:00:42 +0000 Manifest this update: Mon 22 Dec 2025 08:00:42 +0000 Manifest next update: Tue 23 Dec 2025 08:00:42 +0000 Files and hashes: 1: KeRudYZejUoIHktd2kbTyUADZ5s.crl (hash: fjnpdIJESyR332NJsCBZJ10jA7qCwNre/vLZQInIptE=) 2: sYwqpJAH6xt25FV658_Z0b8PqQ4.roa (hash: nTc7YSWaucHsViUALBoDYtryVR1AkC4pCCvnaDdeVwQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 07:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:13:2a:41:43:cd:30:15:6d:b1:19:e4:97:1a:f4:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29e46e75865e8d4a081e4b5dda46d3c94003679b Validity Not Before: Dec 22 08:00:42 2025 GMT Not After : Dec 23 08:00:42 2025 GMT Subject: CN=0b37ca7665bd761e0df2ca434582d4dddb3599c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ae:24:46:f2:e2:f7:7d:2b:fc:ec:59:db:b8: 1f:0b:b7:33:1c:fc:7c:a3:a8:23:9b:b4:3b:b5:d5: 95:a7:25:5c:94:63:8e:08:08:a1:8c:c1:11:52:e9: ed:38:76:5e:27:af:f1:b3:ad:ab:d9:77:99:87:bb: 70:2a:ca:41:28:d4:18:a8:9d:6a:cf:0b:22:0b:98: b6:07:96:c4:02:06:bc:c5:af:70:d5:df:ea:d8:8c: 8c:55:3d:f2:29:d6:9c:03:f6:f4:6f:f2:8d:94:6c: 86:6f:ba:20:cf:2c:98:fb:e6:29:ec:5c:4b:58:9e: 80:a5:57:ed:65:33:49:ce:69:75:7b:31:49:ad:a3: ae:f9:f7:97:5c:d7:9b:d8:c7:87:c6:f3:3d:22:43: 69:a1:32:b8:24:d2:0e:b0:0a:e3:95:e5:97:90:7a: e4:99:b2:4d:33:ea:c9:ee:5a:8d:0e:10:42:72:f3: 88:e4:8e:89:5e:2a:62:d2:ec:b4:36:87:9b:0a:df: 60:7a:df:65:67:a7:d9:20:b8:d1:8e:1c:c9:86:09: 80:88:1c:8d:c5:60:d9:04:23:fb:76:74:b5:ec:67: 10:ea:ba:37:c2:e0:a6:d6:2a:d5:c7:37:db:68:f9: c6:c3:59:24:77:6c:bd:76:b4:37:d5:40:a1:df:06: e5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:37:CA:76:65:BD:76:1E:0D:F2:CA:43:45:82:D4:DD:DB:35:99:C1 X509v3 Authority Key Identifier: keyid:29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:1e:eb:f6:f8:00:89:bd:5b:03:0e:64:b7:74:46:9f:bd:8a: 32:22:9f:5d:e6:4a:70:c7:16:55:6f:eb:37:60:b9:df:88:33: 21:51:e4:5a:c1:b6:9f:75:45:25:16:73:ee:6d:7d:fa:a2:02: b4:ca:74:86:e9:de:4c:4e:d5:ef:0f:52:74:f9:ce:08:72:6f: ea:82:9f:6b:49:24:af:02:df:a1:dc:6e:62:f8:7e:9c:9b:87: 1b:df:5b:31:89:93:23:8e:01:4b:7b:a0:ed:df:4f:7e:43:f8: 18:01:8c:19:71:cb:45:b8:2e:78:6e:a8:da:9d:27:23:ac:79: 5a:1b:63:9e:a1:94:04:16:c8:bc:bc:03:da:d7:0a:19:4a:b2: 65:eb:45:56:24:6c:e1:63:32:04:3f:74:61:17:8a:65:df:6a: c2:e0:be:25:59:5e:fb:8b:eb:bf:93:a1:27:e8:69:27:93:8c: 72:cd:7f:ca:67:f1:27:54:4c:aa:1c:91:08:b6:9c:09:e0:26: 81:a9:87:10:f7:6b:48:c2:88:9e:82:cb:df:bd:b6:95:20:d8: fe:3e:4a:99:ec:75:dc:6c:25:ee:5d:a2:63:de:8a:5c:b6:cd: 55:e8:b8:02:2d:1d:8d:d7:27:11:db:03:89:47:82:8e:41:6d: 38:15:a9:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFEypBQ80wFW2xGeSXGvRJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZTQ2ZTc1ODY1ZThkNGEwODFlNGI1ZGRhNDZkM2M5NDAw MzY3OWIwHhcNMjUxMjIyMDgwMDQyWhcNMjUxMjIzMDgwMDQyWjAzMTEwLwYDVQQD EygwYjM3Y2E3NjY1YmQ3NjFlMGRmMmNhNDM0NTgyZDRkZGRiMzU5OWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4K4kRvLi930r/OxZ27gfC7czHPx8 o6gjm7Q7tdWVpyVclGOOCAihjMERUuntOHZeJ6/xs62r2XeZh7twKspBKNQYqJ1q zwsiC5i2B5bEAga8xa9w1d/q2IyMVT3yKdacA/b0b/KNlGyGb7ogzyyY++Yp7FxL WJ6ApVftZTNJzml1ezFJraOu+feXXNeb2MeHxvM9IkNpoTK4JNIOsArjleWXkHrk mbJNM+rJ7lqNDhBCcvOI5I6JXipi0uy0NoebCt9get9lZ6fZILjRjhzJhgmAiByN xWDZBCP7dnS17GcQ6ro3wuCm1irVxzfbaPnGw1kkd2y9drQ31UCh3wblzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAs3ynZlvXYeDfLKQ0WC1N3bNZnBMB8GA1UdIwQY MBaAFCnkbnWGXo1KCB5LXdpG08lAA2ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2VSdWRZWmVqVW9JSGt0ZDJrYlR5VUFEWjVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9kMjM1NGEtZjNjMi00MWQ1LWIyOTIt YTlkMjY3YWNmNjY0LzEvS2VSdWRZWmVqVW9JSGt0ZDJrYlR5VUFEWjVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9kMjM1NGEtZjNjMi00MWQ1LWIyOTItYTlkMjY3YWNmNjY0 LzEvS2VSdWRZWmVqVW9JSGt0ZDJrYlR5VUFEWjVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJx7r9vgA ib1bAw5kt3RGn72KMiKfXeZKcMcWVW/rN2C534gzIVHkWsG2n3VFJRZz7m19+qIC tMp0huneTE7V7w9SdPnOCHJv6oKfa0kkrwLfodxuYvh+nJuHG99bMYmTI44BS3ug 7d9PfkP4GAGMGXHLRbgueG6o2p0nI6x5WhtjnqGUBBbIvLwD2tcKGUqyZetFViRs 4WMyBD90YReKZd9qwuC+JVle+4vrv5OhJ+hpJ5OMcs1/ymfxJ1RMqhyRCLacCeAm gamHEPdrSMKInoLL3722lSDY/j5Kmex13Gwl7l2iY96KXLbNVei4Ai0djdcnEdsD iUeCjkFtOBWpNA== -----END CERTIFICATE-----Generated at Mon Dec 22 09:54:24 2025 by rpki-client