This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json) Hash identifier: TuPIcykrOvxGiQDUdkcgF157t9cMW6fXA2l9N7VdZOs= Subject key identifier: BC:D8:B4:30:03:82:BA:16:9F:F9:86:BD:A4:EA:8A:FE:2F:EB:B1:9F Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Certificate serial: 019B2EF9DCE1BBB164C17E6F8B6183409B26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft Manifest number: 067C Signing time: Thu 18 Dec 2025 01:01:25 +0000 Manifest this update: Thu 18 Dec 2025 01:01:25 +0000 Manifest next update: Fri 19 Dec 2025 01:01:25 +0000 Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=) 2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: MJaRPFzkM+jlFZaS0ZnP/w6vMq4bLNn1KPvvd7htDLw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:dc:e1:bb:b1:64:c1:7e:6f:8b:61:83:40:9b:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Validity Not Before: Dec 18 01:01:25 2025 GMT Not After : Dec 19 01:01:25 2025 GMT Subject: CN=bcd8b4300382ba169ff986bda4ea8afe2febb19f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:47:e6:62:d3:3c:4b:8e:8c:e2:1e:9f:e1:a5: 00:61:6d:e6:3c:80:4d:97:05:85:d9:d4:ba:e4:a8: 47:ca:89:b5:86:b2:54:f8:e3:be:2c:40:a5:9c:5b: 89:42:67:c1:4f:be:08:4b:ea:8b:f7:14:4d:ce:79: 61:50:a4:59:3f:0e:38:2e:7b:48:8b:5e:8f:44:28: d0:2c:05:5b:62:9c:c5:75:48:85:4e:cf:7e:37:91: e6:da:45:4d:bb:31:37:98:87:02:41:a4:a6:82:c5: c8:e4:bc:6f:26:b8:92:20:02:12:22:2d:84:db:be: f6:54:eb:e9:6e:86:00:da:da:2e:d5:8d:36:f8:e4: 9d:be:1a:c3:50:6e:f4:30:e4:1b:82:15:dc:d9:b1: cf:16:8a:c9:15:56:bc:e2:a7:a5:ca:de:5d:35:9f: 5d:eb:c0:11:2a:5d:f6:07:ec:13:15:ca:20:2d:0d: 16:67:2c:d3:80:46:eb:e0:58:e0:dd:b9:d6:e3:04: 37:c7:19:ef:97:0b:1a:45:52:e4:73:3f:f0:a0:e8: fc:20:28:96:17:91:03:4f:81:18:e5:84:6c:e2:6c: da:2c:8f:30:c5:1e:d7:49:0d:77:36:3c:64:67:48: 5a:86:63:ad:79:ab:89:af:ab:fc:56:16:18:33:e8: 91:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D8:B4:30:03:82:BA:16:9F:F9:86:BD:A4:EA:8A:FE:2F:EB:B1:9F X509v3 Authority Key Identifier: keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:43:56:c4:66:58:b6:1d:f0:f1:b3:9e:c5:58:83:87:b0:84: cd:aa:14:bd:35:14:ca:79:4d:88:5e:80:ea:80:cb:94:1a:e0: 94:57:cb:14:06:51:a7:b4:ea:d3:ad:11:0f:bc:e6:70:a7:90: 8c:af:bd:f9:f0:1e:c1:d9:78:6b:bc:2a:c3:0e:9e:6a:c7:b8: 6c:57:07:37:69:fc:ba:c4:58:86:15:a8:37:a6:27:11:89:87: 66:70:cd:56:7a:8b:23:22:15:e7:ac:fd:4c:98:6e:e5:e5:52: e5:f4:d1:61:b9:fd:d4:93:01:ce:56:19:f0:78:93:56:66:8a: 48:11:38:67:b1:49:b5:40:ab:19:a2:2b:05:ee:ac:81:0c:b7: 1e:d6:d0:9d:2a:99:6c:73:b3:d5:fe:e8:0f:77:0d:aa:82:2d: f8:63:0b:a2:93:f5:17:d3:9d:fb:94:ae:3a:41:23:e3:8d:01: 01:c3:ca:d8:8d:3c:d8:36:67:ef:66:a5:be:b3:3f:b0:5c:68: 20:cb:59:a8:d0:07:fc:45:0d:ef:c1:98:87:4a:61:a5:33:8c: 90:a7:84:33:75:2a:df:5a:fa:af:ea:58:87:c9:9c:e8:be:c7: 3f:ea:cb:5a:23:d2:2f:4d:9f:88:0d:11:95:ca:97:1b:21:70: 4c:95:0e:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+dzhu7FkwX5vi2GDQJsmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm NjI1MzEwHhcNMjUxMjE4MDEwMTI1WhcNMjUxMjE5MDEwMTI1WjAzMTEwLwYDVQQD EyhiY2Q4YjQzMDAzODJiYTE2OWZmOTg2YmRhNGVhOGFmZTJmZWJiMTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskfmYtM8S46M4h6f4aUAYW3mPIBN lwWF2dS65KhHyom1hrJU+OO+LEClnFuJQmfBT74IS+qL9xRNznlhUKRZPw44LntI i16PRCjQLAVbYpzFdUiFTs9+N5Hm2kVNuzE3mIcCQaSmgsXI5LxvJriSIAISIi2E 2772VOvpboYA2tou1Y02+OSdvhrDUG70MOQbghXc2bHPForJFVa84qelyt5dNZ9d 68ARKl32B+wTFcogLQ0WZyzTgEbr4Fjg3bnW4wQ3xxnvlwsaRVLkcz/woOj8ICiW F5EDT4EY5YRs4mzaLI8wxR7XSQ13NjxkZ0hahmOteauJr6v8VhYYM+iRswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzYtDADgroWn/mGvaTqiv4v67GfMB8GA1UdIwQY MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1 LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW0NWxGZY th3w8bOexViDh7CEzaoUvTUUynlNiF6A6oDLlBrglFfLFAZRp7Tq060RD7zmcKeQ jK+9+fAewdl4a7wqww6ease4bFcHN2n8usRYhhWoN6YnEYmHZnDNVnqLIyIV56z9 TJhu5eVS5fTRYbn91JMBzlYZ8HiTVmaKSBE4Z7FJtUCrGaIrBe6sgQy3HtbQnSqZ bHOz1f7oD3cNqoIt+GMLopP1F9Od+5SuOkEj440BAcPK2I082DZn72alvrM/sFxo IMtZqNAH/EUN78GYh0phpTOMkKeEM3Uq31r6r+pYh8mc6L7HP+rLWiPSL02fiA0R lcqXGyFwTJUOAA== -----END CERTIFICATE-----Generated at Thu Dec 18 06:57:10 2025 by rpki-client