This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft File: kGlKYihmrhWO0ofSUz1AuqvqbX0.mft (raw, json) Hash identifier: qfC8JRAPzUX2HpnliTWJsVSmyFrPy6n3apEUa4tyE3E= Subject key identifier: F3:E7:6F:A4:0E:49:E5:14:C4:FC:8C:E7:8D:7A:17:F1:A6:1A:FE:EF Authority key identifier: 90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D Certificate issuer: /CN=90694a622866ae158ed287d2533d40baabea6d7d Certificate serial: 019B3EA3ABB5787DFE2138DCCA7C53D2F2AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft Manifest number: 05E4 Signing time: Sun 21 Dec 2025 02:01:12 +0000 Manifest this update: Sun 21 Dec 2025 02:01:12 +0000 Manifest next update: Mon 22 Dec 2025 02:01:12 +0000 Files and hashes: 1: 9VYK0oHjjTC_b68oAyoNi7RTStA.roa (hash: 95NE4Wq8cotxnefZwzo13t7L9p4u4ZGJ0NIa1wNiJCg=) 2: bq3CHdF3ToMivmK2PU155LcLlRo.roa (hash: E2q6lH9inJ5ZH1jaNhC41RHD+yk7srEkGUdyytaHjj0=) 3: kGlKYihmrhWO0ofSUz1AuqvqbX0.crl (hash: qM7THFQw4hRk2qr+nEci3aosAEKDk+KI8YtE307UYrI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:ab:b5:78:7d:fe:21:38:dc:ca:7c:53:d2:f2:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90694a622866ae158ed287d2533d40baabea6d7d Validity Not Before: Dec 21 02:01:12 2025 GMT Not After : Dec 22 02:01:12 2025 GMT Subject: CN=f3e76fa40e49e514c4fc8ce78d7a17f1a61afeef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:4d:d2:8b:d1:09:3a:0e:1b:14:46:4a:c7: ef:84:5b:e7:59:a4:83:2f:df:67:cf:73:e7:ff:1c: a0:e9:a7:61:10:9d:c0:5b:0c:bf:d9:e8:30:6f:4a: e3:90:f5:f6:f7:49:6e:4e:16:3e:8e:6c:97:b9:50: 1f:a6:bb:5c:65:65:bb:b3:29:2b:fd:29:28:74:27: 10:f4:1e:b3:24:0a:a3:53:32:fe:20:0f:34:dc:d0: 7e:1a:09:b7:e1:97:19:7b:fe:f4:1b:07:3c:85:38: 1d:87:7e:b4:83:f7:f2:5f:28:18:cd:7a:af:36:e6: 5e:64:53:0e:e2:bc:2c:3b:ee:8e:45:9a:f4:a3:7c: 35:85:8e:61:37:66:ac:ea:6d:c0:1d:80:85:73:d6: fb:5b:e2:65:d2:a0:62:12:6a:b0:17:5f:a3:82:1c: 33:6b:25:ef:45:a3:0c:6b:fb:5f:4d:b3:9d:09:3f: e6:98:07:32:2e:44:f2:b0:2d:82:ce:de:6b:f5:a8: 0e:b1:dc:4b:ae:1a:77:45:bf:2d:08:fd:41:f9:6b: bf:f1:72:6c:4b:49:74:56:c9:71:59:6e:3f:d7:bc: 12:50:b8:9d:47:15:0a:c2:9e:95:cd:ef:47:f4:e8: 4a:11:5b:a0:96:76:d3:8f:38:a8:88:a8:3a:52:fb: ec:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E7:6F:A4:0E:49:E5:14:C4:FC:8C:E7:8D:7A:17:F1:A6:1A:FE:EF X509v3 Authority Key Identifier: keyid:90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c3:3e:11:89:f7:ab:50:2b:ad:d9:ff:93:e5:f6:c2:ba:08: 64:4d:bd:17:a6:ad:bd:bc:59:41:8c:b8:6c:54:1f:d4:b0:97: 8b:3f:9f:e7:79:13:05:32:08:03:a0:dc:b3:fc:d6:4b:01:c1: d3:b3:0a:7d:a3:af:e2:3a:4d:19:d9:2c:44:57:25:2d:28:13: fe:53:29:33:23:76:a3:8f:f2:49:37:b5:a7:08:b8:c4:de:57: 08:23:e9:47:68:b3:1e:c2:d9:86:91:4a:6b:70:ea:17:60:03: 89:62:cd:83:b6:14:34:95:50:e3:4f:54:d4:be:1c:c2:66:6a: 59:0a:e8:7c:3e:dc:e1:35:cc:9c:b0:c4:da:f4:11:4d:e5:8d: a5:a2:8d:9f:24:4a:1f:87:d8:07:aa:ac:ce:8c:6b:a6:77:f2: bc:95:00:6e:ec:59:f7:9a:62:e2:41:f2:2f:cc:f1:53:a6:5f: 73:2c:20:05:9c:7b:7c:9c:20:6c:c9:4f:e3:5c:f9:91:c6:17: 43:fe:95:b8:bf:b1:95:57:6f:6e:ae:18:3c:70:f9:18:d5:67: cd:ca:86:ca:ff:6e:8f:c6:fc:03:22:de:55:46:36:f8:ec:4f: cf:ce:91:ad:e2:8d:df:16:0a:cd:52:3f:6a:50:f5:b2:49:cd: 25:ab:75:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o6u1eH3+ITjcynxT0vKtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwNjk0YTYyMjg2NmFlMTU4ZWQyODdkMjUzM2Q0MGJhYWJl YTZkN2QwHhcNMjUxMjIxMDIwMTEyWhcNMjUxMjIyMDIwMTEyWjAzMTEwLwYDVQQD EyhmM2U3NmZhNDBlNDllNTE0YzRmYzhjZTc4ZDdhMTdmMWE2MWFmZWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt39N0ovRCToOGxRGSsfvhFvnWaSD L99nz3Pn/xyg6adhEJ3AWwy/2egwb0rjkPX290luThY+jmyXuVAfprtcZWW7sykr /SkodCcQ9B6zJAqjUzL+IA803NB+Ggm34ZcZe/70Gwc8hTgdh360g/fyXygYzXqv NuZeZFMO4rwsO+6ORZr0o3w1hY5hN2as6m3AHYCFc9b7W+Jl0qBiEmqwF1+jghwz ayXvRaMMa/tfTbOdCT/mmAcyLkTysC2Czt5r9agOsdxLrhp3Rb8tCP1B+Wu/8XJs S0l0VslxWW4/17wSULidRxUKwp6Vze9H9OhKEVuglnbTjzioiKg6UvvsCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPPnb6QOSeUUxPyM5416F/GmGv7vMB8GA1UdIwQY MBaAFJBpSmIoZq4VjtKH0lM9QLqr6m19MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iOWUyZjctMjFkYy00MmMwLTk0YjAt MTNjMGE2MzNlOWY0LzEva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9iOWUyZjctMjFkYy00MmMwLTk0YjAtMTNjMGE2MzNlOWY0 LzEva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPcM+EYn3 q1Arrdn/k+X2wroIZE29F6atvbxZQYy4bFQf1LCXiz+f53kTBTIIA6Dcs/zWSwHB 07MKfaOv4jpNGdksRFclLSgT/lMpMyN2o4/ySTe1pwi4xN5XCCPpR2izHsLZhpFK a3DqF2ADiWLNg7YUNJVQ409U1L4cwmZqWQrofD7c4TXMnLDE2vQRTeWNpaKNnyRK H4fYB6qszoxrpnfyvJUAbuxZ95pi4kHyL8zxU6ZfcywgBZx7fJwgbMlP41z5kcYX Q/6VuL+xlVdvbq4YPHD5GNVnzcqGyv9uj8b8AyLeVUY2+OxPz86RreKN3xYKzVI/ alD1sknNJat1qg== -----END CERTIFICATE-----Generated at Sun Dec 21 03:56:52 2025 by rpki-client