This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json) Hash identifier: OLhCUP+a51iwFisXN+rmuXT7idlZZMmeJ5eK23AA2z4= Subject key identifier: 1D:6A:DC:2D:E1:12:77:50:83:99:6E:B9:28:68:5A:BC:E1:72:03:38 Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02 Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02 Certificate serial: 019B3EA3159FBA2F5C0172C217614804362D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft Manifest number: 1659 Signing time: Sun 21 Dec 2025 02:00:33 +0000 Manifest this update: Sun 21 Dec 2025 02:00:33 +0000 Manifest next update: Mon 22 Dec 2025 02:00:33 +0000 Files and hashes: 1: EhMQv2Hd3Y0AB-EaVNPw9A1el2Y.roa (hash: bVKsgWkrvgH7jweX9NZzvJ58rjQAc648XkG11nW0Xqk=) 2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: fujymkpKNNGPzq5VsLfHT470kHw92gRbaBrr1ld3pho=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:15:9f:ba:2f:5c:01:72:c2:17:61:48:04:36:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02 Validity Not Before: Dec 21 02:00:33 2025 GMT Not After : Dec 22 02:00:33 2025 GMT Subject: CN=1d6adc2de112775083996eb928685abce1720338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c8:9b:24:56:77:f7:81:86:38:c5:d9:13:3f: f2:7a:74:1f:92:93:b4:87:85:30:1c:38:d0:47:c3: 83:91:f0:9e:0b:a6:f3:44:1e:78:ae:fb:62:dd:b3: 6f:71:21:fd:c0:c0:4f:e3:60:87:23:31:1e:e1:68: 72:26:1e:7f:2e:4b:8f:91:16:fa:95:d1:50:16:a9: 3d:66:bc:12:9e:d5:f8:30:32:e2:30:00:bf:d9:ab: 43:86:a3:31:ce:f8:58:ea:6a:ee:fe:d9:9c:bd:37: c0:c8:48:4a:11:b7:a8:26:38:bd:07:15:2b:73:60: 34:62:c6:a6:96:fb:27:29:e1:9f:83:43:08:12:3a: 0f:4a:06:dd:de:4f:d3:98:80:a9:b7:38:0b:75:b6: 32:f9:df:d7:8a:27:23:c4:27:25:dc:04:c1:83:2e: f2:70:0a:71:09:cc:fc:e6:25:17:2c:e6:36:3c:83: ec:3f:e6:fc:84:86:e9:82:b8:30:af:4d:b4:c5:c4: ec:f5:1a:86:7e:1c:71:7f:7a:73:07:7b:8f:11:eb: ce:fa:dc:8d:ca:be:0a:71:8b:c1:25:16:e8:e3:94: 17:ce:ef:ae:17:b8:39:f4:73:8e:a0:e5:ba:82:2d: 43:f5:b3:2c:f0:48:7c:3a:67:ad:a4:12:ce:56:47: da:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6A:DC:2D:E1:12:77:50:83:99:6E:B9:28:68:5A:BC:E1:72:03:38 X509v3 Authority Key Identifier: keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:4f:78:3e:0e:b3:a7:da:db:c2:f9:63:7f:1d:01:d2:2a:69: f6:f8:24:25:60:f7:d7:d9:06:32:a7:b6:ac:af:b6:99:c7:ef: 65:4e:3f:01:3d:fb:72:19:00:ca:77:3a:6b:d7:c4:99:e6:e1: 26:fb:6f:1b:52:74:79:91:46:60:da:f0:0c:87:1a:93:10:27: cb:1e:b3:45:dc:53:5b:e2:bf:4c:9c:e6:bd:9d:3c:9f:39:2e: 49:2a:9d:98:b3:7e:6d:64:2d:ae:39:f5:1c:04:74:22:c4:16: 3f:4e:3f:4c:2c:3e:53:eb:24:e2:2c:67:14:fa:e4:52:b0:5e: 05:5a:0e:4e:ac:52:ca:5a:e1:cc:ed:4e:17:9b:c9:86:24:3e: ad:f8:12:bd:1d:92:a3:e3:cc:a3:eb:f1:42:51:59:01:0c:f4: 96:c6:d9:e6:1d:55:a8:c1:5e:f4:97:d6:60:90:1f:c8:5e:fe: 4b:26:ed:bb:b9:31:f2:8a:25:cb:ca:73:d9:db:fe:72:be:0b: 10:1a:d0:38:e1:5c:9e:63:c0:d3:e0:60:42:08:ce:5d:07:60: 9e:c4:ab:e2:9a:11:4c:9c:30:c8:a6:3d:aa:79:78:89:49:1c: 5c:a0:80:bb:91:1c:37:2a:3d:48:36:60:ec:29:86:c2:5a:3d: b8:52:ee:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+oxWfui9cAXLCF2FIBDYtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYTRmYzJhZjM4YWY1YjRmNTg2MWUyN2ZkMDA3ZTYyNGI1 ZjliMDIwHhcNMjUxMjIxMDIwMDMzWhcNMjUxMjIyMDIwMDMzWjAzMTEwLwYDVQQD EygxZDZhZGMyZGUxMTI3NzUwODM5OTZlYjkyODY4NWFiY2UxNzIwMzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8ibJFZ394GGOMXZEz/yenQfkpO0 h4UwHDjQR8ODkfCeC6bzRB54rvti3bNvcSH9wMBP42CHIzEe4WhyJh5/LkuPkRb6 ldFQFqk9ZrwSntX4MDLiMAC/2atDhqMxzvhY6mru/tmcvTfAyEhKEbeoJji9BxUr c2A0YsamlvsnKeGfg0MIEjoPSgbd3k/TmICptzgLdbYy+d/XiicjxCcl3ATBgy7y cApxCcz85iUXLOY2PIPsP+b8hIbpgrgwr020xcTs9RqGfhxxf3pzB3uPEevO+tyN yr4KcYvBJRbo45QXzu+uF7g59HOOoOW6gi1D9bMs8Eh8OmetpBLOVkfaOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB1q3C3hEndQg5luuShoWrzhcgM4MB8GA1UdIwQY MBaAFLCk/CrzivW09YYeJ/0AfmJLX5sCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYt NjhmZTA4NjIyNjE0LzEvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYtNjhmZTA4NjIyNjE0 LzEvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdE94Pg6z p9rbwvljfx0B0ipp9vgkJWD319kGMqe2rK+2mcfvZU4/AT37chkAync6a9fEmebh JvtvG1J0eZFGYNrwDIcakxAnyx6zRdxTW+K/TJzmvZ08nzkuSSqdmLN+bWQtrjn1 HAR0IsQWP04/TCw+U+sk4ixnFPrkUrBeBVoOTqxSylrhzO1OF5vJhiQ+rfgSvR2S o+PMo+vxQlFZAQz0lsbZ5h1VqMFe9JfWYJAfyF7+Sybtu7kx8ooly8pz2dv+cr4L EBrQOOFcnmPA0+BgQgjOXQdgnsSr4poRTJwwyKY9qnl4iUkcXKCAu5EcNyo9SDZg 7CmGwlo9uFLu1g== -----END CERTIFICATE-----Generated at Sun Dec 21 05:54:31 2025 by rpki-client