This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json) Hash identifier: C0EPFFDqHZqH6VnvvMQtnOrRY1w4pHaZp4GIbAJxImw= Subject key identifier: 19:A1:AD:42:1E:5F:6F:23:7E:22:5E:1E:B8:D1:A6:1C:65:06:8B:72 Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08 Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708 Certificate serial: 019B35331E004A9567CD3059516A73280989 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft Manifest number: 1786 Signing time: Fri 19 Dec 2025 06:01:40 +0000 Manifest this update: Fri 19 Dec 2025 06:01:40 +0000 Manifest next update: Sat 20 Dec 2025 06:01:40 +0000 Files and hashes: 1: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: dPjmX+bfBjJ+Pv6X2wCBZol9Fw8MHVt7C67dgtWVIok=) 2: wzuPiDmhnP7Nv_Dp2QI7h5h3O-g.roa (hash: 1/0ldOLBPILSR69hThfIMtpZUKnlBM4vs1kLEHBC5Mw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:33:1e:00:4a:95:67:cd:30:59:51:6a:73:28:09:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708 Validity Not Before: Dec 19 06:01:40 2025 GMT Not After : Dec 20 06:01:40 2025 GMT Subject: CN=19a1ad421e5f6f237e225e1eb8d1a61c65068b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:90:bd:ec:f4:86:e4:3c:fb:a2:66:85:8d:e1: 04:30:ef:75:95:6d:02:5d:7f:a4:71:9b:fc:ad:d5: ef:81:f4:c4:d3:88:42:19:69:15:c1:05:5b:88:a0: 4b:f7:69:e7:f0:7f:9b:1e:77:27:39:5b:5b:d0:67: b6:1c:24:11:04:6e:12:9f:c5:d1:b0:3e:00:f5:a9: f2:3d:d0:eb:00:8f:31:a2:83:47:b0:ae:e1:68:bc: 82:ae:f6:ea:e1:4b:a7:d9:80:0f:a2:fe:52:a0:80: 4f:65:e2:2e:d4:52:e8:17:35:c4:a4:fc:8e:a8:3c: ae:f6:76:b4:8c:ae:c9:27:10:15:da:c7:37:30:be: 92:a6:6a:b4:2b:b1:69:a5:ef:7c:e8:89:09:92:1d: 28:87:fc:00:30:67:75:2f:12:e2:ac:55:69:5f:6e: db:dc:5d:89:5a:64:03:0a:37:28:a4:e3:dc:a5:99: 84:bd:f9:01:c4:0f:94:0d:23:6d:03:69:c0:e4:76: c4:bd:98:78:18:8e:10:2f:76:1b:22:b2:01:2a:be: 11:71:4d:48:39:fc:da:d3:2b:91:52:86:9b:5f:1f: 6f:22:4f:e3:6b:12:b1:d1:60:63:10:98:4a:df:03: a8:41:15:6d:b7:ce:40:f1:9b:85:40:24:3d:39:0e: 69:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A1:AD:42:1E:5F:6F:23:7E:22:5E:1E:B8:D1:A6:1C:65:06:8B:72 X509v3 Authority Key Identifier: keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:04:c9:70:ef:f8:ec:99:96:8d:56:d9:d0:c3:11:20:be:1e: 74:36:81:67:5f:ec:bc:94:c7:2f:e6:23:5f:b5:08:25:36:8b: c9:28:59:dc:4b:8c:c8:bb:cb:0b:b0:9f:40:dd:a9:c7:f5:a8: 33:cd:7a:fa:eb:4a:fc:d8:e7:1d:b0:74:1e:a3:c9:1e:27:6e: 64:c2:9a:01:94:7f:49:49:84:e8:b4:4c:3a:51:c7:83:7b:41: db:b3:80:7a:78:9f:d4:ac:fe:56:43:1d:2a:37:ca:b3:f2:b0: 0d:f2:90:19:60:1f:80:da:10:43:54:4b:54:3e:ab:ea:1f:a4: 57:9d:b1:f9:bb:ef:ae:64:8c:0f:fe:88:06:cd:ec:8f:d7:9c: 77:30:38:f7:b7:03:16:f5:54:af:3e:35:03:a1:d5:38:ee:be: 77:16:da:82:9a:94:d0:c3:96:62:3a:91:f2:e6:73:49:49:1f: fb:d1:f0:3e:f0:89:af:bf:2e:0e:02:9b:a8:9b:22:60:4f:5e: 85:12:51:ff:1c:84:bf:0a:59:4d:c9:b9:af:1c:54:1c:74:2d: 64:f7:bf:f0:7a:34:3b:3b:2d:66:40:0a:df:e8:62:3e:44:a5: 26:4c:25:28:f0:74:32:5a:a5:ee:d3:1e:7a:9e:cf:31:75:cd: a9:fc:49:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1Mx4ASpVnzTBZUWpzKAmJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyODAxNmRiNTVlNjY0YmE3MjFlMTlhZTlhYjQzMTZjMTBk OTY3MDgwHhcNMjUxMjE5MDYwMTQwWhcNMjUxMjIwMDYwMTQwWjAzMTEwLwYDVQQD EygxOWExYWQ0MjFlNWY2ZjIzN2UyMjVlMWViOGQxYTYxYzY1MDY4YjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpC97PSG5Dz7omaFjeEEMO91lW0C XX+kcZv8rdXvgfTE04hCGWkVwQVbiKBL92nn8H+bHncnOVtb0Ge2HCQRBG4Sn8XR sD4A9anyPdDrAI8xooNHsK7haLyCrvbq4Uun2YAPov5SoIBPZeIu1FLoFzXEpPyO qDyu9na0jK7JJxAV2sc3ML6Spmq0K7Fppe986IkJkh0oh/wAMGd1LxLirFVpX27b 3F2JWmQDCjcopOPcpZmEvfkBxA+UDSNtA2nA5HbEvZh4GI4QL3YbIrIBKr4RcU1I Ofza0yuRUoabXx9vIk/jaxKx0WBjEJhK3wOoQRVtt85A8ZuFQCQ9OQ5pPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmhrUIeX28jfiJeHrjRphxlBotyMB8GA1UdIwQY MBaAFJKAFttV5mS6ch4Zrpq0MWwQ2WcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2It ZTg5Y2RhYjgyZTFjLzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2ItZTg5Y2RhYjgyZTFj LzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASgTJcO/4 7JmWjVbZ0MMRIL4edDaBZ1/svJTHL+YjX7UIJTaLyShZ3EuMyLvLC7CfQN2px/Wo M816+utK/NjnHbB0HqPJHiduZMKaAZR/SUmE6LRMOlHHg3tB27OAenif1Kz+VkMd KjfKs/KwDfKQGWAfgNoQQ1RLVD6r6h+kV52x+bvvrmSMD/6IBs3sj9ecdzA497cD FvVUrz41A6HVOO6+dxbagpqU0MOWYjqR8uZzSUkf+9HwPvCJr78uDgKbqJsiYE9e hRJR/xyEvwpZTcm5rxxUHHQtZPe/8Ho0OzstZkAK3+hiPkSlJkwlKPB0Mlql7tMe ep7PMXXNqfxJTA== -----END CERTIFICATE-----Generated at Fri Dec 19 13:09:54 2025 by rpki-client