This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json) Hash identifier: LEkBRpQ1LLpz9eY7dMx4lhEk8VVtNyyGpemSavVf3Lg= Subject key identifier: ED:97:E7:07:FE:46:B7:50:89:0D:FC:E6:D2:59:72:C1:C7:AD:F7:A7 Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b Certificate serial: 019B4F97215FA9319E0C26E90055126AEB84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft Manifest number: 0737 Signing time: Wed 24 Dec 2025 09:01:03 +0000 Manifest this update: Wed 24 Dec 2025 09:01:03 +0000 Manifest next update: Thu 25 Dec 2025 09:01:03 +0000 Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: OE4wb3qJtQk9WM7+GPR9wCaDvtA9LgWzNlWkSKx6Fvw=) 2: yLICF7LxPJqKW0bXadmbwJKdAUs.roa (hash: N1HQgyFphv945BF0xwHybuVM2LsGQ66M8rtUi6w9zMc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:97:21:5f:a9:31:9e:0c:26:e9:00:55:12:6a:eb:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b Validity Not Before: Dec 24 09:01:03 2025 GMT Not After : Dec 25 09:01:03 2025 GMT Subject: CN=ed97e707fe46b750890dfce6d25972c1c7adf7a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:4a:95:eb:5e:59:5e:3e:68:c7:7a:10:9b:c3: a1:d4:a9:08:ac:6c:3b:12:e3:43:cc:8e:fc:04:f0: cf:ed:15:cb:99:d4:51:a6:3e:92:68:46:71:50:ee: 6c:c4:b1:12:ec:e8:54:20:2e:ac:8e:e4:cc:5b:28: 07:c9:95:5e:c6:65:85:dd:5b:0c:86:6e:4c:4a:79: c2:ff:6d:50:bc:45:4d:4d:f5:f3:12:91:03:e7:61: 92:d9:f9:2d:1d:0c:12:5b:ce:53:49:4b:08:30:67: e3:c0:b5:5a:ce:2d:21:85:b5:b0:1f:33:89:97:37: b4:30:01:7e:4e:b3:c5:f0:27:58:bd:e9:98:bf:18: 45:72:71:18:0d:b7:d6:b8:4c:3b:d4:61:cd:a3:01: ed:87:e8:65:45:35:e7:4f:24:be:6e:d5:1c:0e:79: c9:28:71:a5:dc:08:17:bd:25:e9:d3:36:0f:71:b6: 68:d1:c0:aa:fd:e3:af:dc:77:52:b6:17:8f:37:fb: ef:b0:fa:06:8e:91:56:2d:52:0d:52:e3:2d:4b:ba: ae:59:5d:71:a1:1d:66:2e:fc:78:37:0f:2d:62:b7: a3:ee:ec:88:5e:cd:31:79:b5:48:fd:c2:9a:78:b4: e4:c7:13:19:ad:e2:fa:26:bc:b9:7e:ad:40:04:7c: 9a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:97:E7:07:FE:46:B7:50:89:0D:FC:E6:D2:59:72:C1:C7:AD:F7:A7 X509v3 Authority Key Identifier: keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:93:ff:0e:bf:7e:99:b4:45:ae:71:0e:02:e6:91:73:b1:d6: 2b:da:2c:f5:45:07:94:df:c9:f6:d8:9a:70:3e:c5:9d:ea:7a: 9d:9f:0e:be:f1:3e:f2:41:cd:45:79:6c:eb:67:b5:b3:ac:a5: 87:e2:3d:14:af:ac:d9:c3:0b:82:5f:ca:0e:e2:8b:66:6c:81: 71:23:e4:50:3c:3b:3c:c0:be:ff:16:d9:91:22:dc:ae:f4:0e: b3:cd:0d:62:ff:31:39:f1:9f:fc:99:85:c8:ac:7b:5e:2b:e2: f9:c8:b1:91:b2:c9:71:9a:e1:2e:c8:7e:ed:b0:f3:7c:ab:78: 69:f4:5e:ae:6f:a5:b0:e0:a8:f2:cd:f1:ed:42:a4:e6:9a:ca: 96:98:da:4a:56:12:88:cb:13:b7:c5:3d:9e:35:02:0c:8a:e7: 79:e9:85:d0:c0:8e:90:04:03:66:3b:24:c1:84:c2:bb:d6:8e: ef:ae:60:3d:92:79:57:7a:b3:96:75:93:60:a3:39:f9:3d:ec: 81:37:85:9b:0a:5c:fe:11:57:0e:65:46:0f:f3:36:80:22:a0: 37:77:58:d9:93:b5:e2:7c:31:97:fd:5e:44:70:ac:06:66:d9: 00:61:04:a9:24:b7:4c:96:a6:0c:d2:b1:45:5c:fa:fa:ed:6d: 96:d8:8f:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPlyFfqTGeDCbpAFUSauuEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2 NmMxNGIwHhcNMjUxMjI0MDkwMTAzWhcNMjUxMjI1MDkwMTAzWjAzMTEwLwYDVQQD EyhlZDk3ZTcwN2ZlNDZiNzUwODkwZGZjZTZkMjU5NzJjMWM3YWRmN2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUqV615ZXj5ox3oQm8Oh1KkIrGw7 EuNDzI78BPDP7RXLmdRRpj6SaEZxUO5sxLES7OhUIC6sjuTMWygHyZVexmWF3VsM hm5MSnnC/21QvEVNTfXzEpED52GS2fktHQwSW85TSUsIMGfjwLVazi0hhbWwHzOJ lze0MAF+TrPF8CdYvemYvxhFcnEYDbfWuEw71GHNowHth+hlRTXnTyS+btUcDnnJ KHGl3AgXvSXp0zYPcbZo0cCq/eOv3HdSthePN/vvsPoGjpFWLVINUuMtS7quWV1x oR1mLvx4Nw8tYrej7uyIXs0xebVI/cKaeLTkxxMZreL6Jry5fq1ABHyaYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO2X5wf+RrdQiQ385tJZcsHHrfenMB8GA1UdIwQY MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATJP/Dr9+ mbRFrnEOAuaRc7HWK9os9UUHlN/J9tiacD7Fnep6nZ8OvvE+8kHNRXls62e1s6yl h+I9FK+s2cMLgl/KDuKLZmyBcSPkUDw7PMC+/xbZkSLcrvQOs80NYv8xOfGf/JmF yKx7Xivi+cixkbLJcZrhLsh+7bDzfKt4afRerm+lsOCo8s3x7UKk5prKlpjaSlYS iMsTt8U9njUCDIrneemF0MCOkAQDZjskwYTCu9aO765gPZJ5V3qzlnWTYKM5+T3s gTeFmwpc/hFXDmVGD/M2gCKgN3dY2ZO14nwxl/1eRHCsBmbZAGEEqSS3TJamDNKx RVz6+u1tltiPow== -----END CERTIFICATE-----Generated at Wed Dec 24 12:02:14 2025 by rpki-client