This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json) Hash identifier: v+7iOHE45ledleai9YQbMcsED6fseZpfkjJJUKFlGb0= Subject key identifier: 69:B3:EB:E0:FB:F3:18:BE:62:CA:8F:24:F4:A3:2B:46:D3:1F:BE:D7 Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Certificate serial: 019B5908394676F98D44D3A2D0747A984B87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft Manifest number: 0580 Signing time: Fri 26 Dec 2025 05:01:09 +0000 Manifest this update: Fri 26 Dec 2025 05:01:09 +0000 Manifest next update: Sat 27 Dec 2025 05:01:09 +0000 Files and hashes: 1: 2Erepc7c7P1VRx_bLNiYu7weRzk.roa (hash: k2SMyfwtPMsgu8pAJX36t6HmVMk0LqM07DF6s7B27wo=) 2: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: YQdGwsBxhkUhcf9oMgcwgFpVpwlPcnY0gNd26YIAMww=) 3: L_UMuGgef__KCIxYo719-pYnMY0.roa (hash: qQUOKChy81kdhWvOW3DW3K7T6hbp7d9kPXUCB0/Qv9Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 05:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:08:39:46:76:f9:8d:44:d3:a2:d0:74:7a:98:4b:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Validity Not Before: Dec 26 05:01:09 2025 GMT Not After : Dec 27 05:01:09 2025 GMT Subject: CN=69b3ebe0fbf318be62ca8f24f4a32b46d31fbed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:97:46:1d:62:9d:9a:0f:89:e3:cd:77:06:3b: 6d:13:e9:c3:7b:c4:80:4b:c1:9d:6d:a2:80:73:3a: ba:af:ac:b4:13:99:70:8a:d8:56:31:03:c9:5d:5e: 98:1d:7c:0f:75:06:40:33:cf:34:c9:5c:9a:f9:8c: f4:85:46:b7:66:5c:2f:77:3c:5d:40:e4:c4:7a:34: 1c:c7:fa:09:dd:18:e2:d7:3f:a0:5a:fe:04:e4:a5: 06:90:e7:7c:00:a2:d4:a3:9d:d2:24:cd:09:2c:6a: 70:b3:a2:13:b7:b5:63:ba:63:3f:89:a1:75:f7:bb: ac:41:60:67:ff:f4:98:a2:7d:2c:cb:9f:54:72:bd: 31:d9:9d:7e:e8:84:de:51:dd:1b:99:7b:85:66:63: 34:ca:2e:0b:f6:bb:dd:d7:ec:2d:cf:2d:19:ef:39: b5:69:47:7e:65:6a:d9:0f:f5:1c:a9:3f:75:4c:a7: 49:34:47:36:57:bf:fc:90:15:28:09:ea:d5:0c:80: ee:cd:a0:65:7c:53:a1:ec:c8:24:75:f5:20:4b:ae: 29:45:1a:ab:d8:c8:b0:b0:e1:83:68:75:62:46:c4: 8a:1b:26:41:9e:11:4c:2f:a6:eb:28:45:0a:4f:7c: e9:f5:b6:ed:c8:02:76:96:25:c9:0a:0d:84:25:b4: 0b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B3:EB:E0:FB:F3:18:BE:62:CA:8F:24:F4:A3:2B:46:D3:1F:BE:D7 X509v3 Authority Key Identifier: keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:b5:f6:79:14:df:49:e9:d8:c4:e2:5a:7c:bf:3f:e5:5b:dc: 9a:47:46:0a:cd:64:58:3b:6f:ae:1a:5c:b8:e0:99:1b:c0:d2: a5:f0:2b:87:e2:da:46:87:09:91:c6:60:52:ef:9c:56:d7:7f: 6f:bc:41:41:6c:1d:3b:10:dd:13:52:ef:3d:f8:eb:3d:9c:48: 61:80:0e:87:df:6e:bb:88:70:cc:e8:38:be:8a:24:03:7f:e6: e7:c3:84:7d:9a:d3:ca:7f:27:74:64:a9:45:99:09:44:b3:b0: 07:36:fd:a4:7b:19:01:bf:52:e7:78:bc:80:18:28:8e:96:f2: e9:9a:28:01:18:6f:ac:aa:61:6a:bb:3d:67:a9:29:04:7e:e6: 05:4d:be:9c:58:fa:a3:1c:83:6d:df:6f:b3:18:c8:d2:70:33: b2:43:08:1f:47:55:cc:dd:d3:07:00:88:06:34:7d:0b:61:f6: 0e:86:2d:2a:bb:36:1f:2f:f0:dd:78:ea:73:27:6f:99:31:22: ec:66:7d:af:28:97:95:dc:ba:96:28:b4:29:d2:00:b9:8a:b0: 04:da:7d:b7:b9:ea:64:e8:e7:a6:c8:93:e3:b4:8b:2f:9b:3b: 55:70:e1:0c:ab:ce:8c:98:8b:93:95:54:fc:7e:75:36:4c:a4: 20:49:23:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZCDlGdvmNRNOi0HR6mEuHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODVjYzQzZDgwNmEyMWI2MzMzMDIxOWViNjM4YmIxYmE0 OWFlODAwHhcNMjUxMjI2MDUwMTA5WhcNMjUxMjI3MDUwMTA5WjAzMTEwLwYDVQQD Eyg2OWIzZWJlMGZiZjMxOGJlNjJjYThmMjRmNGEzMmI0NmQzMWZiZWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZdGHWKdmg+J4813BjttE+nDe8SA S8GdbaKAczq6r6y0E5lwithWMQPJXV6YHXwPdQZAM880yVya+Yz0hUa3Zlwvdzxd QOTEejQcx/oJ3Rji1z+gWv4E5KUGkOd8AKLUo53SJM0JLGpws6ITt7VjumM/iaF1 97usQWBn//SYon0sy59Ucr0x2Z1+6ITeUd0bmXuFZmM0yi4L9rvd1+wtzy0Z7zm1 aUd+ZWrZD/UcqT91TKdJNEc2V7/8kBUoCerVDIDuzaBlfFOh7MgkdfUgS64pRRqr 2MiwsOGDaHViRsSKGyZBnhFML6brKEUKT3zp9bbtyAJ2liXJCg2EJbQLawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGmz6+D78xi+YsqPJPSjK0bTH77XMB8GA1UdIwQY MBaAFCmFzEPYBqIbYzMCGetji7G6Sa6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzIt NGRmODg0MGVmYjE3LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzItNGRmODg0MGVmYjE3 LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhbX2eRTf SenYxOJafL8/5VvcmkdGCs1kWDtvrhpcuOCZG8DSpfArh+LaRocJkcZgUu+cVtd/ b7xBQWwdOxDdE1LvPfjrPZxIYYAOh99uu4hwzOg4vookA3/m58OEfZrTyn8ndGSp RZkJRLOwBzb9pHsZAb9S53i8gBgojpby6ZooARhvrKphars9Z6kpBH7mBU2+nFj6 oxyDbd9vsxjI0nAzskMIH0dVzN3TBwCIBjR9C2H2DoYtKrs2Hy/w3XjqcydvmTEi 7GZ9ryiXldy6lii0KdIAuYqwBNp9t7nqZOjnpsiT47SLL5s7VXDhDKvOjJiLk5VU /H51NkykIEkj0A== -----END CERTIFICATE-----Generated at Fri Dec 26 12:49:45 2025 by rpki-client