This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json) Hash identifier: j046CRaOlMswvcBt1gR5u+xL7yx7aQwXDCxkzYTrPo4= Subject key identifier: 06:D1:CB:65:DB:83:74:A1:F1:35:B3:04:6C:C2:BC:A9:83:7E:70:67 Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Certificate serial: 019B5CE46A3F6A26763A32CD3397F915D655 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft Manifest number: 0CF9 Signing time: Fri 26 Dec 2025 23:00:31 +0000 Manifest this update: Fri 26 Dec 2025 23:00:31 +0000 Manifest next update: Sat 27 Dec 2025 23:00:31 +0000 Files and hashes: 1: 4lHY4uWeqHmvoaNymD_moDG2Lyw.roa (hash: JlxlEX1JbWtrSymgf6LUCml6ssBX/gAxppMm1dFFwtA=) 2: HZhwyfKwqypgTctIAF1kQCyKm-g.roa (hash: LGS1UmMU+4m8lLls8h4CixSnB8TXlksI3e4kAzHbgdA=) 3: JAuA883iG3ecktuhBvPjwiYE2gs.roa (hash: 2XmurE8d9+/OzcrvAO2f2ROqPHe6N2R65dp7AYrb+WA=) 4: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: Pzme3muVbXAFUa7GnGGIChQMq8mjywvBVusvvCZF4CQ=) 5: cu9GyWa_Lwnd02KODnjE_h5McWk.roa (hash: 44QiQ8pIvo7mzZfC+ZjzIe/89Qsc6m4rb8gND25Z0Gw=) 6: xyRoD48_RddLMyzaWVm2RVSdNnw.roa (hash: 9GofeWtQdMUnPq68/CDpAq5ljzoKlzyYm0VUKW07EJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:e4:6a:3f:6a:26:76:3a:32:cd:33:97:f9:15:d6:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Validity Not Before: Dec 26 23:00:31 2025 GMT Not After : Dec 27 23:00:31 2025 GMT Subject: CN=06d1cb65db8374a1f135b3046cc2bca9837e7067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:d9:ce:54:9f:15:e9:c2:b5:9e:ec:74:32: c1:72:fd:a2:66:1a:cb:b6:a6:ef:38:4e:72:6e:42: 21:90:7b:c7:16:ea:3f:60:a3:72:5e:5d:a6:04:24: 14:86:80:b5:3f:0e:59:67:10:cd:4b:28:10:73:6a: 0b:5a:b0:fa:fa:bc:ac:c3:45:77:39:f8:9d:dc:d9: c8:cb:77:23:17:7a:2e:f5:0a:0a:28:f8:83:ee:60: ed:9f:45:c1:18:e9:11:04:bf:1b:cf:3a:92:79:35: 84:ff:be:cc:c3:24:6e:a2:ce:65:2f:ad:cc:a6:5c: 5f:c0:b2:db:d8:38:0e:07:f8:2d:32:7c:43:67:6a: 43:e9:bd:2a:3a:76:b3:80:f2:e0:6c:37:d6:00:06: 6d:97:1e:b8:fc:4c:68:1e:21:7b:c4:e3:e1:86:87: f6:aa:2e:d7:92:b5:04:06:d5:8d:23:02:2d:ad:54: fe:d2:c5:1c:62:8f:87:33:5f:42:2f:59:78:3c:e1: f0:58:ef:c4:b9:c8:04:f9:2a:95:dd:68:a8:10:99: 2c:bd:9c:a0:a5:5c:d6:4a:38:9c:33:f6:27:cd:23: 3a:3e:01:e1:e2:4a:01:59:bc:ee:4a:dd:11:c7:92: 06:36:e5:e9:3c:3b:3a:34:45:83:55:60:b2:ee:b5: 2d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D1:CB:65:DB:83:74:A1:F1:35:B3:04:6C:C2:BC:A9:83:7E:70:67 X509v3 Authority Key Identifier: keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:18:a9:66:99:83:26:5c:1f:3e:63:2d:26:1d:5d:f9:d2:0b: a5:dc:5d:82:a6:ee:b2:fe:78:93:27:87:cb:cb:6b:23:01:79: aa:fa:b7:2f:52:a6:49:ab:99:28:93:da:3a:56:4b:ae:00:d2: 99:61:01:41:36:b5:76:ad:9d:5a:c4:26:d2:41:80:83:2a:d7: d2:95:dc:7c:7f:a9:39:11:06:e3:eb:2d:9b:d2:fb:59:5b:e4: e6:0c:65:88:0b:da:19:86:c1:ba:19:d5:c9:82:c8:8e:35:d9: d2:bc:13:0f:d5:ad:c2:90:7d:df:72:67:63:b1:95:16:08:72: 5e:77:8b:19:23:5d:1e:02:0d:c9:a2:b3:f8:39:3a:22:89:f3: fe:02:2b:8f:27:a4:04:6a:c6:aa:6a:fd:64:18:93:3b:af:c5: 26:3e:dd:d0:ed:b7:f2:61:3c:5b:d6:72:68:f3:76:64:2d:57: 2d:e0:3a:70:a1:d4:d9:93:61:e2:48:e1:fd:9c:a1:65:cb:65: b6:eb:97:8d:af:00:c2:ff:8d:d3:ac:42:28:95:77:b0:c9:b7: 3b:20:70:cd:e2:d5:a7:26:de:92:97:83:2e:5c:b4:7d:5e:a5: 46:9f:1a:60:a0:fc:1d:a3:7b:c6:3d:08:d4:a7:0a:cd:cb:bf: 84:a1:ca:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtc5Go/aiZ2OjLNM5f5FdZVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy NTU2ZjAwHhcNMjUxMjI2MjMwMDMxWhcNMjUxMjI3MjMwMDMxWjAzMTEwLwYDVQQD EygwNmQxY2I2NWRiODM3NGExZjEzNWIzMDQ2Y2MyYmNhOTgzN2U3MDY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAro/ZzlSfFenCtZ7sdDLBcv2iZhrL tqbvOE5ybkIhkHvHFuo/YKNyXl2mBCQUhoC1Pw5ZZxDNSygQc2oLWrD6+rysw0V3 Ofid3NnIy3cjF3ou9QoKKPiD7mDtn0XBGOkRBL8bzzqSeTWE/77MwyRuos5lL63M plxfwLLb2DgOB/gtMnxDZ2pD6b0qOnazgPLgbDfWAAZtlx64/ExoHiF7xOPhhof2 qi7XkrUEBtWNIwItrVT+0sUcYo+HM19CL1l4POHwWO/EucgE+SqV3WioEJksvZyg pVzWSjicM/YnzSM6PgHh4koBWbzuSt0Rx5IGNuXpPDs6NEWDVWCy7rUtswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAbRy2Xbg3Sh8TWzBGzCvKmDfnBnMB8GA1UdIwQY MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXBipZpmD JlwfPmMtJh1d+dILpdxdgqbusv54kyeHy8trIwF5qvq3L1KmSauZKJPaOlZLrgDS mWEBQTa1dq2dWsQm0kGAgyrX0pXcfH+pOREG4+stm9L7WVvk5gxliAvaGYbBuhnV yYLIjjXZ0rwTD9WtwpB933JnY7GVFghyXneLGSNdHgINyaKz+Dk6Ionz/gIrjyek BGrGqmr9ZBiTO6/FJj7d0O238mE8W9ZyaPN2ZC1XLeA6cKHU2ZNh4kjh/ZyhZctl tuuXja8Awv+N06xCKJV3sMm3OyBwzeLVpybekpeDLly0fV6lRp8aYKD8HaN7xj0I 1KcKzcu/hKHKxQ== -----END CERTIFICATE-----Generated at Sat Dec 27 02:16:06 2025 by rpki-client