This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft File: 00KrFW1a4VOtFlKOh9nIR53ApKU.mft (raw, json) Hash identifier: /ZM3PRUXltf/j52sQSSVL+Xa5IhJprTRh9zLrZKi7vQ= Subject key identifier: 10:1C:80:12:4B:32:CE:5C:2C:7E:C3:C9:AF:39:B3:18:5B:86:ED:8A Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5 Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5 Certificate serial: 019B51F30C185F995DCD33DC68CF7652E337 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft Manifest number: 1794 Signing time: Wed 24 Dec 2025 20:00:41 +0000 Manifest this update: Wed 24 Dec 2025 20:00:41 +0000 Manifest next update: Thu 25 Dec 2025 20:00:41 +0000 Files and hashes: 1: 00KrFW1a4VOtFlKOh9nIR53ApKU.crl (hash: bFp32QLh8ozTwTCQrGaY+DT4j+qNBm4WCgMFfgzxYs8=) 2: YzWazfZkDmpS6lnGJouGiR4vMgw.roa (hash: g+4T1wjwDSXCQUkHT41UwModEGJm2ijdNXqnxLEPkqw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:f3:0c:18:5f:99:5d:cd:33:dc:68:cf:76:52:e3:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5 Validity Not Before: Dec 24 20:00:41 2025 GMT Not After : Dec 25 20:00:41 2025 GMT Subject: CN=101c80124b32ce5c2c7ec3c9af39b3185b86ed8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:04:9b:59:8b:f3:0f:d1:02:8d:85:94:70:87: a9:89:4e:29:6b:17:2b:9e:cd:37:9a:80:9e:5a:62: e4:d1:3d:3e:5d:c4:ed:37:c9:65:73:a8:c8:f7:1e: 07:3e:88:34:16:83:79:f4:27:56:c3:a1:c0:db:65: 70:0c:e6:82:0b:6e:a2:7e:c7:5a:1f:dd:5b:1f:86: 45:25:d3:8c:27:7c:18:19:ce:fe:0c:31:30:58:ca: 28:89:c8:b3:d8:83:81:9e:f1:c8:b5:2b:b6:d3:1e: 41:cc:f9:18:7c:25:92:ec:6d:90:7c:5d:d7:ef:0f: 41:14:c3:73:c5:7d:05:b0:7f:e4:eb:77:04:80:a2: 61:f6:33:64:df:a2:e1:70:1e:c3:da:5d:3e:c9:78: 42:11:4f:43:27:92:e6:89:d4:45:82:4f:22:b9:29: f7:d5:3d:aa:b2:a6:d1:31:23:35:02:91:04:5a:77: 3b:69:da:46:25:45:b6:d9:20:df:53:81:2f:95:65: c4:58:28:56:6c:62:00:27:54:db:c0:bd:e0:66:1a: e2:ab:1a:6f:22:33:8e:e2:25:8e:e1:d7:63:16:1c: e3:c8:0c:b1:62:4c:a7:16:66:cf:35:20:10:e2:16: d8:7b:13:41:c7:12:d1:dd:1a:1f:91:56:b0:fa:31: 5b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:1C:80:12:4B:32:CE:5C:2C:7E:C3:C9:AF:39:B3:18:5B:86:ED:8A X509v3 Authority Key Identifier: keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:0f:31:9b:29:85:1b:bc:d4:dc:61:ba:dd:af:92:1b:ed:8d: 75:eb:15:a9:0a:0c:82:ac:96:e9:fb:a6:96:96:ba:3c:07:dc: 6d:81:88:f1:54:9d:7d:de:84:d9:60:53:01:de:eb:e2:ea:ec: dc:ff:f9:81:86:9c:1e:5e:5e:54:a5:b2:17:34:bd:9f:31:71: 4c:c0:81:5f:a5:1e:79:55:c0:b5:a7:1b:36:52:35:d0:b9:16: c2:09:90:8d:8f:9b:22:c5:00:e0:94:b9:8a:11:a3:d2:11:a0: 76:0f:97:f3:eb:8a:89:2b:80:18:3b:37:6b:af:60:b6:f4:7b: 7c:48:a1:d1:7c:80:dd:1b:28:f1:c3:79:86:4f:12:01:d2:63: 0b:4f:a3:61:ba:d1:e8:92:59:e9:1e:59:02:a6:bd:62:93:9e: d1:90:a6:e0:fe:64:42:98:d2:f5:c3:4c:f1:8f:cf:67:5d:6b: c9:6d:77:33:d6:20:bc:07:6e:f4:43:38:95:81:e4:f3:0b:77: db:a1:22:c6:c2:68:c8:98:78:40:75:ec:d3:4c:d9:f3:69:64: d5:b9:da:e0:9b:fd:d6:bc:7e:c7:a1:c0:03:f4:65:ce:45:f8: 25:d4:58:84:16:a1:23:fe:14:e6:27:58:6b:7e:72:2b:25:d1: bf:99:0d:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtR8wwYX5ldzTPcaM92UuM3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzNDJhYjE1NmQ1YWUxNTNhZDE2NTI4ZTg3ZDljODQ3OWRj MGE0YTUwHhcNMjUxMjI0MjAwMDQxWhcNMjUxMjI1MjAwMDQxWjAzMTEwLwYDVQQD EygxMDFjODAxMjRiMzJjZTVjMmM3ZWMzYzlhZjM5YjMxODViODZlZDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuASbWYvzD9ECjYWUcIepiU4paxcr ns03moCeWmLk0T0+XcTtN8llc6jI9x4HPog0FoN59CdWw6HA22VwDOaCC26ifsda H91bH4ZFJdOMJ3wYGc7+DDEwWMooiciz2IOBnvHItSu20x5BzPkYfCWS7G2QfF3X 7w9BFMNzxX0FsH/k63cEgKJh9jNk36LhcB7D2l0+yXhCEU9DJ5LmidRFgk8iuSn3 1T2qsqbRMSM1ApEEWnc7adpGJUW22SDfU4EvlWXEWChWbGIAJ1TbwL3gZhriqxpv IjOO4iWO4ddjFhzjyAyxYkynFmbPNSAQ4hbYexNBxxLR3RofkVaw+jFbBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBAcgBJLMs5cLH7Dya85sxhbhu2KMB8GA1UdIwQY MBaAFNNCqxVtWuFTrRZSjofZyEedwKSlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8yNjM0NDctMGM4MC00Y2RhLWI5MTUt MDgxYTYzN2Y3MDNlLzEvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8yNjM0NDctMGM4MC00Y2RhLWI5MTUtMDgxYTYzN2Y3MDNl LzEvMDBLckZXMWE0Vk90RmxLT2g5bklSNTNBcEtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKA8xmymF G7zU3GG63a+SG+2NdesVqQoMgqyW6fumlpa6PAfcbYGI8VSdfd6E2WBTAd7r4urs 3P/5gYacHl5eVKWyFzS9nzFxTMCBX6UeeVXAtacbNlI10LkWwgmQjY+bIsUA4JS5 ihGj0hGgdg+X8+uKiSuAGDs3a69gtvR7fEih0XyA3Rso8cN5hk8SAdJjC0+jYbrR 6JJZ6R5ZAqa9YpOe0ZCm4P5kQpjS9cNM8Y/PZ11ryW13M9YgvAdu9EM4lYHk8wt3 26EixsJoyJh4QHXs00zZ82lk1bna4Jv91rx+x6HAA/RlzkX4JdRYhBahI/4U5idY a35yKyXRv5kN2A== -----END CERTIFICATE-----Generated at Wed Dec 24 21:48:29 2025 by rpki-client