This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft File: kGlKYihmrhWO0ofSUz1AuqvqbX0.mft (raw, json) Hash identifier: 7p4VVOdrIj3Gx44Y/5cLIcte1NVWSPxT8ELyLcxRE3I= Subject key identifier: 47:A5:AA:16:D1:2E:54:BD:00:7F:FF:D4:33:5B:9D:1B:AA:5D:25:7D Authority key identifier: 90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D Certificate issuer: /CN=90694a622866ae158ed287d2533d40baabea6d7d Certificate serial: 019B51F30FA598D912F69B8B1BCAEAF96790 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft Manifest number: 05EE Signing time: Wed 24 Dec 2025 20:00:42 +0000 Manifest this update: Wed 24 Dec 2025 20:00:42 +0000 Manifest next update: Thu 25 Dec 2025 20:00:42 +0000 Files and hashes: 1: 9VYK0oHjjTC_b68oAyoNi7RTStA.roa (hash: 95NE4Wq8cotxnefZwzo13t7L9p4u4ZGJ0NIa1wNiJCg=) 2: bq3CHdF3ToMivmK2PU155LcLlRo.roa (hash: E2q6lH9inJ5ZH1jaNhC41RHD+yk7srEkGUdyytaHjj0=) 3: kGlKYihmrhWO0ofSUz1AuqvqbX0.crl (hash: rCaEqrAgzgLIns5N+RQQfpYeDMDhXDVqXBnOWTwVeQQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:f3:0f:a5:98:d9:12:f6:9b:8b:1b:ca:ea:f9:67:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90694a622866ae158ed287d2533d40baabea6d7d Validity Not Before: Dec 24 20:00:42 2025 GMT Not After : Dec 25 20:00:42 2025 GMT Subject: CN=47a5aa16d12e54bd007fffd4335b9d1baa5d257d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:55:71:eb:8f:99:36:7f:da:57:c4:12:6a: cc:36:aa:15:fa:3a:ad:88:8b:c5:e9:96:aa:37:ae: 9a:63:54:ae:59:b2:4d:69:b7:97:d1:ec:32:2c:6d: 5b:97:57:cb:d4:52:33:41:1f:b3:d1:3a:65:34:21: bf:c1:69:8b:7b:a8:06:f0:5b:0e:dc:e7:17:64:00: 3b:5a:e4:e6:ff:ab:9a:f4:59:1c:8d:a9:41:6a:bb: 1c:2d:9c:d7:1e:75:cb:b0:cc:41:a4:a5:84:c3:74: de:fa:79:6d:46:e8:b6:43:d7:7b:36:0c:f7:33:b3: a0:e1:63:a7:5f:b7:dd:20:c3:b6:e7:d9:1b:03:e1: 4c:88:f1:09:c9:d5:bb:1f:de:93:b8:09:58:d7:7a: ea:93:ae:9f:87:48:01:96:16:0c:69:cf:02:76:03: 96:37:0d:57:e1:eb:95:16:78:34:21:1d:a4:f2:63: fc:1a:d3:0a:9b:ea:f7:0f:b3:65:c0:ca:68:b0:e8: 17:f2:16:18:10:3a:e8:47:5d:8c:d1:db:e6:33:a5: 2b:1a:24:32:a4:24:5f:d0:d8:ec:08:e4:96:c6:53: da:a2:fb:5c:2c:12:59:39:d4:e7:e3:71:c4:e3:50: 6d:65:e1:48:ae:f2:59:bd:61:0f:12:30:42:7f:f3: a5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A5:AA:16:D1:2E:54:BD:00:7F:FF:D4:33:5B:9D:1B:AA:5D:25:7D X509v3 Authority Key Identifier: keyid:90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:e1:28:c8:c3:85:61:68:87:c5:85:1c:ee:bf:46:3d:0f:b3: 16:77:ee:04:9b:18:96:8d:f4:2b:83:a8:46:da:1a:79:a6:bd: 09:cc:e1:99:35:89:8c:2d:51:e1:d4:a5:97:f1:6b:87:0a:26: c1:6c:b5:4a:69:f9:bc:a9:b1:17:97:d6:d5:69:36:dd:00:91: 92:a8:fc:af:bd:04:ca:0b:47:f3:3e:81:26:15:4c:fc:ac:0f: 2e:1d:da:9b:91:c9:cc:6a:d4:62:30:9d:65:69:66:9f:f8:4b: 1c:d4:9b:2e:4b:cf:ea:af:11:1f:02:fd:24:11:14:7a:66:b3: ca:05:d1:35:d9:68:48:c5:89:6e:4e:07:4b:2c:cb:36:54:41: 97:eb:31:3d:95:da:ba:c1:10:d1:70:d6:b7:9f:b6:ad:b7:99: 22:c3:e2:ce:0f:a8:cd:f3:b4:fb:a2:4c:87:4a:1a:c7:0e:95: 9c:f5:c0:73:7c:95:d5:f2:97:e8:d7:f4:81:e1:af:76:11:19: 33:f8:7b:d6:8f:1c:29:f1:30:18:b8:b3:f0:24:a5:f3:95:da: fe:08:f8:a7:00:02:7f:59:57:1e:ed:5c:b9:c4:4d:82:1c:74: ec:d1:5b:a5:0c:b1:15:a3:de:69:77:74:c0:16:5b:1d:5a:03: 9d:b9:1f:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtR8w+lmNkS9puLG8rq+WeQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwNjk0YTYyMjg2NmFlMTU4ZWQyODdkMjUzM2Q0MGJhYWJl YTZkN2QwHhcNMjUxMjI0MjAwMDQyWhcNMjUxMjI1MjAwMDQyWjAzMTEwLwYDVQQD Eyg0N2E1YWExNmQxMmU1NGJkMDA3ZmZmZDQzMzViOWQxYmFhNWQyNTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz11VceuPmTZ/2lfEEmrMNqoV+jqt iIvF6ZaqN66aY1SuWbJNabeX0ewyLG1bl1fL1FIzQR+z0TplNCG/wWmLe6gG8FsO 3OcXZAA7WuTm/6ua9FkcjalBarscLZzXHnXLsMxBpKWEw3Te+nltRui2Q9d7Ngz3 M7Og4WOnX7fdIMO259kbA+FMiPEJydW7H96TuAlY13rqk66fh0gBlhYMac8CdgOW Nw1X4euVFng0IR2k8mP8GtMKm+r3D7NlwMposOgX8hYYEDroR12M0dvmM6UrGiQy pCRf0NjsCOSWxlPaovtcLBJZOdTn43HE41BtZeFIrvJZvWEPEjBCf/OlMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEelqhbRLlS9AH//1DNbnRuqXSV9MB8GA1UdIwQY MBaAFJBpSmIoZq4VjtKH0lM9QLqr6m19MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iOWUyZjctMjFkYy00MmMwLTk0YjAt MTNjMGE2MzNlOWY0LzEva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9iOWUyZjctMjFkYy00MmMwLTk0YjAtMTNjMGE2MzNlOWY0 LzEva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl+EoyMOF YWiHxYUc7r9GPQ+zFnfuBJsYlo30K4OoRtoaeaa9CczhmTWJjC1R4dSll/Frhwom wWy1Smn5vKmxF5fW1Wk23QCRkqj8r70EygtH8z6BJhVM/KwPLh3am5HJzGrUYjCd ZWlmn/hLHNSbLkvP6q8RHwL9JBEUemazygXRNdloSMWJbk4HSyzLNlRBl+sxPZXa usEQ0XDWt5+2rbeZIsPizg+ozfO0+6JMh0oaxw6VnPXAc3yV1fKX6Nf0geGvdhEZ M/h71o8cKfEwGLiz8CSl85Xa/gj4pwACf1lXHu1cucRNghx07NFbpQyxFaPeaXd0 wBZbHVoDnbkf9w== -----END CERTIFICATE-----Generated at Thu Dec 25 03:02:45 2025 by rpki-client