This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json) Hash identifier: ex8BbVxCRopXQnmqHX8pgo5P9AoeJ00lu9a9nbPJCXI= Subject key identifier: 68:29:F4:0D:5F:A3:00:48:0B:5A:44:31:49:FD:97:86:D1:5A:05:F2 Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Certificate serial: 019B3FECA73B59CB1B2DA2A81188EE154437 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft Manifest number: 0CEA Signing time: Sun 21 Dec 2025 08:00:32 +0000 Manifest this update: Sun 21 Dec 2025 08:00:32 +0000 Manifest next update: Mon 22 Dec 2025 08:00:32 +0000 Files and hashes: 1: 4lHY4uWeqHmvoaNymD_moDG2Lyw.roa (hash: JlxlEX1JbWtrSymgf6LUCml6ssBX/gAxppMm1dFFwtA=) 2: HZhwyfKwqypgTctIAF1kQCyKm-g.roa (hash: LGS1UmMU+4m8lLls8h4CixSnB8TXlksI3e4kAzHbgdA=) 3: JAuA883iG3ecktuhBvPjwiYE2gs.roa (hash: 2XmurE8d9+/OzcrvAO2f2ROqPHe6N2R65dp7AYrb+WA=) 4: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: uI2FM2979a6EOygTlQ5LEjs/zyoiUwydrIWKi81VF+A=) 5: cu9GyWa_Lwnd02KODnjE_h5McWk.roa (hash: 44QiQ8pIvo7mzZfC+ZjzIe/89Qsc6m4rb8gND25Z0Gw=) 6: xyRoD48_RddLMyzaWVm2RVSdNnw.roa (hash: 9GofeWtQdMUnPq68/CDpAq5ljzoKlzyYm0VUKW07EJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ec:a7:3b:59:cb:1b:2d:a2:a8:11:88:ee:15:44:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Validity Not Before: Dec 21 08:00:32 2025 GMT Not After : Dec 22 08:00:32 2025 GMT Subject: CN=6829f40d5fa300480b5a443149fd9786d15a05f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:89:ea:ab:32:52:3e:3b:60:19:1a:37:5f:2b: 83:c6:d3:85:1e:08:40:cb:59:84:17:c0:d3:82:90: de:9c:76:28:da:92:0f:5d:6c:b0:dc:d6:a3:4b:ef: 4a:e2:c7:6b:59:52:15:20:4d:9b:e2:60:55:28:e9: 1c:44:45:94:8b:3e:ad:20:46:9d:85:27:76:f4:80: f4:1e:67:88:81:19:2f:ab:aa:80:17:68:89:42:e4: 29:71:1e:a2:bf:06:ad:95:32:14:d4:ba:d7:56:83: fc:f6:90:ec:92:6d:a4:a6:37:5d:8b:fe:56:a0:0f: 53:a0:45:1f:f3:91:af:d9:63:6e:75:cf:0b:5d:45: 1d:56:b8:2b:74:31:de:d3:70:9e:d6:5f:35:a2:8d: 3a:7e:33:89:93:83:e5:2d:49:de:f6:19:62:03:77: 29:9e:8d:ad:da:be:d8:39:1b:bb:9a:59:09:ec:55: ea:2e:c8:9d:b5:09:f8:24:ea:cf:aa:2c:f1:da:3f: ec:f8:04:d0:b1:11:14:e5:99:91:28:9f:f3:90:b8: c5:91:91:cd:e5:f1:ad:de:53:71:f1:2a:fd:66:83: fc:ca:f1:c4:c2:80:38:25:10:79:34:d9:4c:8c:c3: 02:96:16:2c:bc:b7:1b:94:eb:a6:3a:87:8f:3b:99: 4a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:29:F4:0D:5F:A3:00:48:0B:5A:44:31:49:FD:97:86:D1:5A:05:F2 X509v3 Authority Key Identifier: keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:d0:fa:3d:c2:81:ec:ed:f8:45:e9:7d:3f:24:5c:01:f4:ce: f4:11:e1:32:83:66:d3:25:ce:5e:ea:7d:10:2a:1a:e1:e9:92: a0:6c:ed:94:2e:4a:47:ca:4e:93:f6:9d:3d:f3:2b:44:95:69: 3b:66:67:67:f7:93:10:79:bc:eb:75:4e:9d:5a:b5:9d:e9:fa: 74:ba:49:e1:32:70:4a:5e:f4:27:d7:5f:63:f2:3a:24:04:0e: fd:b1:38:5e:7a:4d:fe:4f:34:a7:07:4f:76:85:69:84:91:51: 95:87:2d:5e:04:87:06:0a:0e:eb:41:11:ab:83:ab:c1:9e:49: 36:c7:5d:17:0d:1a:97:51:7d:2d:b3:5f:f2:e8:77:40:c7:c4: 02:21:05:c5:87:15:26:27:3c:00:0c:96:74:4e:dd:57:58:31: 10:9d:4c:c2:22:0c:f9:98:b3:eb:33:df:ec:c5:bf:f0:ed:a6: f5:d0:ee:bd:46:f9:41:ad:7a:4a:fc:7e:71:53:af:81:7b:44: 93:93:a1:78:b5:aa:16:15:1f:6d:d7:c8:b5:d1:d4:9e:d0:43: 57:b9:f4:c3:b6:7e:ba:03:69:4a:e9:32:70:42:95:c1:12:4a: 83:e0:d3:3b:83:0e:cf:d5:8b:50:b3:7b:36:32:0e:01:71:53: 03:81:fb:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7Kc7WcsbLaKoEYjuFUQ3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy NTU2ZjAwHhcNMjUxMjIxMDgwMDMyWhcNMjUxMjIyMDgwMDMyWjAzMTEwLwYDVQQD Eyg2ODI5ZjQwZDVmYTMwMDQ4MGI1YTQ0MzE0OWZkOTc4NmQxNWEwNWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYnqqzJSPjtgGRo3XyuDxtOFHghA y1mEF8DTgpDenHYo2pIPXWyw3NajS+9K4sdrWVIVIE2b4mBVKOkcREWUiz6tIEad hSd29ID0HmeIgRkvq6qAF2iJQuQpcR6ivwatlTIU1LrXVoP89pDskm2kpjddi/5W oA9ToEUf85Gv2WNudc8LXUUdVrgrdDHe03Ce1l81oo06fjOJk4PlLUne9hliA3cp no2t2r7YORu7mlkJ7FXqLsidtQn4JOrPqizx2j/s+ATQsREU5ZmRKJ/zkLjFkZHN 5fGt3lNx8Sr9ZoP8yvHEwoA4JRB5NNlMjMMClhYsvLcblOumOoePO5lKNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgp9A1fowBIC1pEMUn9l4bRWgXyMB8GA1UdIwQY MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFtD6PcKB 7O34Rel9PyRcAfTO9BHhMoNm0yXOXup9ECoa4emSoGztlC5KR8pOk/adPfMrRJVp O2ZnZ/eTEHm863VOnVq1nen6dLpJ4TJwSl70J9dfY/I6JAQO/bE4XnpN/k80pwdP doVphJFRlYctXgSHBgoO60ERq4OrwZ5JNsddFw0al1F9LbNf8uh3QMfEAiEFxYcV Jic8AAyWdE7dV1gxEJ1MwiIM+Ziz6zPf7MW/8O2m9dDuvUb5Qa16Svx+cVOvgXtE k5OheLWqFhUfbdfItdHUntBDV7n0w7Z+ugNpSukycEKVwRJKg+DTO4MOz9WLULN7 NjIOAXFTA4H7sQ== -----END CERTIFICATE-----Generated at Sun Dec 21 10:45:15 2025 by rpki-client