This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json) Hash identifier: 8z1WLtBnNoV7q8B1ElWED2K0HaSyP+eKD4F7kwJjoeE= Subject key identifier: 50:1B:CF:74:7F:6A:3B:FC:65:1B:5C:E3:5E:11:38:33:1D:E7:F7:3F Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Certificate serial: 019B34C509B7594E7DC2CED113DE68EE02AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft Manifest number: 067F Signing time: Fri 19 Dec 2025 04:01:26 +0000 Manifest this update: Fri 19 Dec 2025 04:01:26 +0000 Manifest next update: Sat 20 Dec 2025 04:01:26 +0000 Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=) 2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: qvU3TeuBE0TIhvK4tbSSoVys/a1tn8g9iMOaGTug7sY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:09:b7:59:4e:7d:c2:ce:d1:13:de:68:ee:02:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Validity Not Before: Dec 19 04:01:26 2025 GMT Not After : Dec 20 04:01:26 2025 GMT Subject: CN=501bcf747f6a3bfc651b5ce35e1138331de7f73f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b7:57:85:92:2d:c8:17:d3:7e:3e:bd:bd:f8: 75:01:98:2f:7b:de:10:ab:d7:5c:a1:2f:f9:d1:dd: 85:87:bf:21:3a:46:f0:1d:91:e3:0d:d3:b9:aa:dd: 3f:46:08:9f:c6:0d:e8:ca:fb:a2:69:7e:e5:f6:65: 25:66:81:0d:bc:4f:5f:da:59:ca:b8:82:3b:1e:c1: c7:05:f4:19:6d:36:59:59:52:04:f6:5a:2d:6c:5a: 1d:8a:5c:a7:69:d0:d4:95:f5:f1:55:68:ea:87:ac: ea:81:09:3e:8b:c6:cd:70:ee:e6:fc:05:bd:cb:89: 78:8d:b1:da:d6:ed:6b:d8:6f:e8:92:01:46:cf:b4: df:e0:8c:c0:13:3c:f7:2f:89:c4:19:ba:51:0a:5f: 0e:e5:e8:81:50:5e:a6:6a:7d:6b:93:bb:22:d5:b8: 85:10:18:d1:bd:8c:e9:77:d7:ef:a1:b9:a8:1d:0e: ef:19:e1:8d:00:36:16:5e:1f:d9:60:c4:ce:92:eb: 83:b8:58:24:3e:6c:09:22:75:0f:8d:f0:2f:c7:57: f9:09:4d:36:d3:c8:44:54:22:d2:20:2e:ca:b4:8c: 44:0e:e3:ab:b0:82:b5:be:93:24:14:f4:b0:27:7d: d5:b0:f9:fa:cf:a5:08:f5:72:d4:8e:5c:fc:9b:02: 40:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1B:CF:74:7F:6A:3B:FC:65:1B:5C:E3:5E:11:38:33:1D:E7:F7:3F X509v3 Authority Key Identifier: keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:34:66:e3:e5:2a:04:93:c3:89:00:e1:be:90:53:f6:50:ea: 01:64:68:c3:b6:4c:4b:8c:eb:76:cd:40:87:61:a8:02:19:e3: e0:f0:91:1e:d6:cf:db:b2:06:a7:a6:97:1c:bd:55:ee:d5:a1: fc:51:a7:8d:93:c8:83:a3:c9:8e:d0:34:a5:55:10:22:0c:2a: f5:30:b1:15:2b:18:6f:ec:07:61:e8:7a:75:08:68:c0:f8:80: 58:c2:06:20:b3:9e:3d:ad:b6:61:dd:50:a4:43:68:1c:f2:b7: 95:b9:5e:39:f8:6b:9d:71:cd:35:33:e3:7b:50:c5:d7:4c:9d: 9a:02:67:97:b4:02:15:69:79:78:20:b0:f1:a3:93:f8:9b:2f: cc:53:e6:01:a2:6d:b1:84:50:07:83:5d:e3:4c:81:3c:95:c1: b0:fb:ae:d0:0c:3e:4b:e5:22:4d:4d:7f:1e:52:66:60:71:dc: d6:9c:4f:76:18:86:af:aa:d4:db:d0:55:4b:59:eb:e0:31:fe: f1:b0:2f:78:ff:50:c7:0a:ea:b4:dc:df:b8:18:31:41:d9:16: 3c:75:39:66:2e:f8:31:0f:52:0b:50:28:40:e0:4c:83:8d:ef: 67:13:65:98:7b:5b:00:95:85:9c:bd:93:ab:63:5d:b3:d9:a5: ba:86:06:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xQm3WU59ws7RE95o7gKqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm NjI1MzEwHhcNMjUxMjE5MDQwMTI2WhcNMjUxMjIwMDQwMTI2WjAzMTEwLwYDVQQD Eyg1MDFiY2Y3NDdmNmEzYmZjNjUxYjVjZTM1ZTExMzgzMzFkZTdmNzNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzbdXhZItyBfTfj69vfh1AZgve94Q q9dcoS/50d2Fh78hOkbwHZHjDdO5qt0/Rgifxg3oyvuiaX7l9mUlZoENvE9f2lnK uII7HsHHBfQZbTZZWVIE9lotbFodilynadDUlfXxVWjqh6zqgQk+i8bNcO7m/AW9 y4l4jbHa1u1r2G/okgFGz7Tf4IzAEzz3L4nEGbpRCl8O5eiBUF6man1rk7si1biF EBjRvYzpd9fvobmoHQ7vGeGNADYWXh/ZYMTOkuuDuFgkPmwJInUPjfAvx1f5CU02 08hEVCLSIC7KtIxEDuOrsIK1vpMkFPSwJ33VsPn6z6UI9XLUjlz8mwJA1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFAbz3R/ajv8ZRtc414RODMd5/c/MB8GA1UdIwQY MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1 LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARDRm4+Uq BJPDiQDhvpBT9lDqAWRow7ZMS4zrds1Ah2GoAhnj4PCRHtbP27IGp6aXHL1V7tWh /FGnjZPIg6PJjtA0pVUQIgwq9TCxFSsYb+wHYeh6dQhowPiAWMIGILOePa22Yd1Q pENoHPK3lbleOfhrnXHNNTPje1DF10ydmgJnl7QCFWl5eCCw8aOT+JsvzFPmAaJt sYRQB4Nd40yBPJXBsPuu0Aw+S+UiTU1/HlJmYHHc1pxPdhiGr6rU29BVS1nr4DH+ 8bAveP9QxwrqtNzfuBgxQdkWPHU5Zi74MQ9SC1AoQOBMg43vZxNlmHtbAJWFnL2T q2Nds9mluoYGPg== -----END CERTIFICATE-----Generated at Fri Dec 19 08:22:17 2025 by rpki-client