This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft File: kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft (raw, json) Hash identifier: mkZSz5mUNHKauYfIolOtZy9sFJ1dUkSmkDtZDg2xAhI= Subject key identifier: 99:15:5C:3C:CE:5D:5B:97:62:33:FD:0A:CC:C0:C6:B5:01:D9:23:FA Authority key identifier: 91:DD:0E:48:D9:01:1A:DF:37:66:65:AD:4D:62:CF:31:CE:63:05:8C Certificate issuer: /CN=91dd0e48d9011adf376665ad4d62cf31ce63058c Certificate serial: 019B4D03844604AC9CF8EB9FEC2424FD7824 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft Manifest number: 0EB0 Signing time: Tue 23 Dec 2025 21:00:34 +0000 Manifest this update: Tue 23 Dec 2025 21:00:34 +0000 Manifest next update: Wed 24 Dec 2025 21:00:34 +0000 Files and hashes: 1: O0T2HbDDLXToVBgQvakFVm0WBM8.roa (hash: j4M5mhMKjocJHlnRMyKx/Jo55Alu9WqNqQzzA+GKZ+8=) 2: WPrYk3ZFYryhbXNF2_g_QVCy5G0.roa (hash: 1/VFn2v02knd9dSenNmn42s5XXg6Yfw+0bFY3ogbnpY=) 3: kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl (hash: kLbiNieyXllLWBrqr7MNJFzvjUfa44+GjIltsih/hOQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4d:03:84:46:04:ac:9c:f8:eb:9f:ec:24:24:fd:78:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91dd0e48d9011adf376665ad4d62cf31ce63058c Validity Not Before: Dec 23 21:00:34 2025 GMT Not After : Dec 24 21:00:34 2025 GMT Subject: CN=99155c3cce5d5b976233fd0accc0c6b501d923fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cf:55:48:9e:e7:a3:b2:2f:8e:2d:67:b0:98: 37:57:fb:c4:d5:58:68:ac:ae:0e:64:c9:5b:57:f7: c4:f6:13:58:fc:0b:09:3a:9e:5a:dc:34:06:18:d1: 18:c7:2a:d7:79:75:db:29:6e:2b:aa:c4:ef:64:9d: 9b:4a:3e:e8:16:4c:9f:1d:1e:33:99:f0:38:a4:b4: 36:8a:64:03:0a:40:47:48:17:38:47:bf:13:db:ab: 9f:b2:13:44:1b:e5:26:bb:73:1b:c6:c0:93:ca:5a: 00:41:e3:3c:19:7e:1e:f3:6c:fa:13:b6:bd:f8:02: b6:79:52:c2:d8:9a:81:74:86:23:44:01:12:cf:12: f3:b2:11:38:4f:21:fe:95:0d:b2:9d:c8:5d:64:cf: 2a:4a:fb:01:70:46:c0:14:10:97:fb:07:14:67:b4: df:d7:0a:a0:92:86:68:ba:2e:c5:72:04:e5:38:04: 22:a9:45:89:52:de:75:fe:2d:5d:f0:83:c1:76:0d: 76:91:4c:bd:f0:88:a9:c8:83:db:3c:00:be:73:cc: 6c:09:70:d0:84:3c:5a:ba:12:20:96:b9:e6:c8:4e: cd:0f:8b:32:46:9e:8f:f1:8d:56:4d:1b:b5:4a:fe: 82:6e:a3:c9:0a:72:6f:e8:f7:73:e6:0a:a6:99:5c: c5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:15:5C:3C:CE:5D:5B:97:62:33:FD:0A:CC:C0:C6:B5:01:D9:23:FA X509v3 Authority Key Identifier: keyid:91:DD:0E:48:D9:01:1A:DF:37:66:65:AD:4D:62:CF:31:CE:63:05:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd0OSNkBGt83ZmWtTWLPMc5jBYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/1e9d04-d94f-4f13-be3c-10f34f558363/1/kd0OSNkBGt83ZmWtTWLPMc5jBYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:57:aa:08:d3:27:39:9e:36:24:05:4f:27:c8:cc:2f:a5:76: 68:73:a0:f3:03:aa:9d:92:35:76:6d:0e:e5:c6:35:ba:f2:68: e8:58:60:60:1b:7c:72:60:c9:8b:92:ae:ed:1b:34:97:69:79: 8b:87:22:83:95:c2:db:2f:ec:55:a4:72:53:cc:84:45:32:05: e0:45:7e:a8:44:90:e3:d1:f2:04:59:38:0d:4d:c0:cf:f6:af: 77:03:18:6b:82:6b:ce:c4:86:27:24:7f:06:4f:a5:cf:fc:b2: 42:33:b8:c0:7c:23:b4:04:fd:1b:a4:a0:fd:15:b1:f0:ec:dc: 5e:f2:16:69:3f:a6:dd:f9:67:12:08:42:37:00:89:75:72:d0: c7:35:0f:18:8d:b9:f5:b0:c1:2f:de:cd:3c:07:ed:4c:cf:96: 7f:20:3e:32:74:c8:5a:11:ae:d3:51:9e:1b:6f:ec:18:b8:40: 20:6d:61:a5:b6:58:0c:02:a9:96:ad:68:f6:c7:3e:02:4c:ac: 15:d6:50:fc:43:96:08:af:54:68:9c:27:40:f0:d2:9f:8f:0d: 48:d8:a3:13:4c:1b:69:35:d3:62:41:0b:0a:1c:d8:9a:6a:04: 83:21:3a:e8:0b:02:1c:b4:6c:0e:77:23:cc:ab:04:62:57:9d: b6:c4:35:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtNA4RGBKyc+Ouf7CQk/XgkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZGQwZTQ4ZDkwMTFhZGYzNzY2NjVhZDRkNjJjZjMxY2U2 MzA1OGMwHhcNMjUxMjIzMjEwMDM0WhcNMjUxMjI0MjEwMDM0WjAzMTEwLwYDVQQD Eyg5OTE1NWMzY2NlNWQ1Yjk3NjIzM2ZkMGFjY2MwYzZiNTAxZDkyM2ZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA589VSJ7no7Ivji1nsJg3V/vE1Vho rK4OZMlbV/fE9hNY/AsJOp5a3DQGGNEYxyrXeXXbKW4rqsTvZJ2bSj7oFkyfHR4z mfA4pLQ2imQDCkBHSBc4R78T26ufshNEG+Umu3MbxsCTyloAQeM8GX4e82z6E7a9 +AK2eVLC2JqBdIYjRAESzxLzshE4TyH+lQ2ynchdZM8qSvsBcEbAFBCX+wcUZ7Tf 1wqgkoZoui7FcgTlOAQiqUWJUt51/i1d8IPBdg12kUy98IipyIPbPAC+c8xsCXDQ hDxauhIglrnmyE7ND4syRp6P8Y1WTRu1Sv6CbqPJCnJv6Pdz5gqmmVzFWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJkVXDzOXVuXYjP9CszAxrUB2SP6MB8GA1UdIwQY MBaAFJHdDkjZARrfN2ZlrU1izzHOYwWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2QwT1NOa0JHdDgzWm1XdFRXTFBNYzVqQll3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8xZTlkMDQtZDk0Zi00ZjEzLWJlM2Mt MTBmMzRmNTU4MzYzLzEva2QwT1NOa0JHdDgzWm1XdFRXTFBNYzVqQll3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8xZTlkMDQtZDk0Zi00ZjEzLWJlM2MtMTBmMzRmNTU4MzYz LzEva2QwT1NOa0JHdDgzWm1XdFRXTFBNYzVqQll3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1eqCNMn OZ42JAVPJ8jML6V2aHOg8wOqnZI1dm0O5cY1uvJo6FhgYBt8cmDJi5Ku7Rs0l2l5 i4cig5XC2y/sVaRyU8yERTIF4EV+qESQ49HyBFk4DU3Az/avdwMYa4JrzsSGJyR/ Bk+lz/yyQjO4wHwjtAT9G6Sg/RWx8OzcXvIWaT+m3flnEghCNwCJdXLQxzUPGI25 9bDBL97NPAftTM+WfyA+MnTIWhGu01GeG2/sGLhAIG1hpbZYDAKplq1o9sc+Akys FdZQ/EOWCK9UaJwnQPDSn48NSNijE0wbaTXTYkELChzYmmoEgyE66AsCHLRsDncj zKsEYledtsQ1eQ== -----END CERTIFICATE-----Generated at Tue Dec 23 22:47:55 2025 by rpki-client