This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json) Hash identifier: ykfK2bD0U0ojy6Bbc/D9LniTA9bqxhYe9CiXwm9Ps7U= Subject key identifier: E3:27:7F:C4:D2:08:82:30:86:2A:11:C1:35:B4:4D:98:90:7C:2A:5F Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14 Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14 Certificate serial: 019B53AC38D13CE5F73E9F1F04E66B3DBCF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft Manifest number: 1795 Signing time: Thu 25 Dec 2025 04:02:34 +0000 Manifest this update: Thu 25 Dec 2025 04:02:34 +0000 Manifest next update: Fri 26 Dec 2025 04:02:34 +0000 Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=) 2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: BlKB5t5OJwqZUYGvDDUR+wovvrSZL/OKLcO9ZxOYU94=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 01:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:53:ac:38:d1:3c:e5:f7:3e:9f:1f:04:e6:6b:3d:bc:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14 Validity Not Before: Dec 25 04:02:34 2025 GMT Not After : Dec 26 04:02:34 2025 GMT Subject: CN=e3277fc4d2088230862a11c135b44d98907c2a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:bd:83:d4:8e:99:08:dd:38:84:69:00:b6:58: f8:40:63:0c:ac:e2:53:aa:b1:65:4d:fe:42:b0:24: be:25:f6:92:a7:b1:ec:d6:12:b7:5f:98:85:5d:9b: 8e:0f:e5:1f:3b:74:05:cb:62:6a:9b:83:fa:1f:9f: cf:4d:00:4b:fe:15:e5:a2:e6:d2:9c:5f:fe:58:73: 1d:2e:62:21:7c:8f:7c:73:8b:c6:e8:cd:95:ce:df: 74:2a:6c:6b:87:5c:23:5d:5e:cb:b0:77:c9:c6:02: ea:c4:38:8a:44:83:5e:6d:a6:de:ad:ab:9c:4e:8c: eb:2c:66:f2:e8:4d:9c:9a:e3:e2:a9:c0:a8:fe:ff: 99:42:44:09:7e:bb:da:61:3f:a7:35:eb:00:5f:b3: fd:98:6e:81:c7:5a:31:3e:25:bd:ac:24:48:2b:63: 93:cc:ac:67:75:cf:27:b6:e4:17:ce:67:ab:dd:3e: 32:13:e8:3a:7e:1b:0c:c7:db:20:ce:a8:86:df:21: 48:0e:14:24:01:f4:f3:8c:54:2c:b5:69:e2:1a:c9: 5b:cf:07:29:dd:10:68:84:88:a5:56:b0:1b:26:fa: 5d:8e:d7:3d:40:10:fe:e3:6f:fc:a4:f1:84:e2:51: 1b:ab:1a:c7:4b:00:29:dd:a2:31:1c:cd:20:ae:9e: 69:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:27:7F:C4:D2:08:82:30:86:2A:11:C1:35:B4:4D:98:90:7C:2A:5F X509v3 Authority Key Identifier: keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:f6:d1:88:e4:ec:b4:69:eb:20:a4:11:b7:9e:3e:06:a1:0a: 00:dd:40:b9:39:e5:2a:45:4a:e0:bd:f9:dd:24:24:0c:c0:e0: c5:85:b8:52:09:68:d7:f3:c1:aa:24:66:c4:27:c5:5b:d7:95: 2c:cf:df:84:ea:4c:63:c8:0f:a1:3c:85:ef:0d:40:94:9a:21: ee:29:19:f1:21:2a:db:d8:dc:32:38:3c:f4:4a:ed:8e:e3:0f: b7:ee:ac:d2:2d:e7:e0:e2:b0:f3:ad:dc:22:f4:89:0b:50:2a: 90:7a:e9:d7:be:f7:6f:e7:3f:a9:ab:63:65:fa:e5:12:fa:60: d6:4e:68:19:b7:50:9c:0a:e0:25:52:06:b1:c1:80:c2:74:9c: 22:45:b8:41:82:20:c8:09:60:22:38:d6:95:24:0e:7c:ce:f5: 7f:ac:75:e4:84:dd:d1:55:3a:1f:3e:75:6f:a4:4e:7d:ab:8f: de:c4:26:b4:20:2c:d6:be:03:87:0d:ba:1d:ad:43:1e:2a:c8: 5d:8b:bd:19:7f:d1:06:a2:54:0e:90:60:81:e7:2c:d0:74:64: cd:44:70:e7:8e:00:b2:23:2c:4c:37:ee:a6:22:ad:c0:83:3a: c7:ad:75:62:e2:e8:d9:b7:82:78:de:55:21:ba:b4:32:70:a0: e6:ae:1c:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtTrDjRPOX3Pp8fBOZrPbzwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxODI4M2Q3ODVjYzg4ZWY4NTIwODYyYWMxNjFmMjdiNTYz MGJjMTQwHhcNMjUxMjI1MDQwMjM0WhcNMjUxMjI2MDQwMjM0WjAzMTEwLwYDVQQD EyhlMzI3N2ZjNGQyMDg4MjMwODYyYTExYzEzNWI0NGQ5ODkwN2MyYTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0L2D1I6ZCN04hGkAtlj4QGMMrOJT qrFlTf5CsCS+JfaSp7Hs1hK3X5iFXZuOD+UfO3QFy2Jqm4P6H5/PTQBL/hXloubS nF/+WHMdLmIhfI98c4vG6M2Vzt90Kmxrh1wjXV7LsHfJxgLqxDiKRINebaberauc TozrLGby6E2cmuPiqcCo/v+ZQkQJfrvaYT+nNesAX7P9mG6Bx1oxPiW9rCRIK2OT zKxndc8ntuQXzmer3T4yE+g6fhsMx9sgzqiG3yFIDhQkAfTzjFQstWniGslbzwcp 3RBohIilVrAbJvpdjtc9QBD+42/8pPGE4lEbqxrHSwAp3aIxHM0grp5pHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOMnf8TSCIIwhioRwTW0TZiQfCpfMB8GA1UdIwQY MBaAFJGCg9eFzIjvhSCGKsFh8ntWMLwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMt ZjMyMjYwZTA1NzAwLzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMtZjMyMjYwZTA1NzAw LzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvbRiOTs tGnrIKQRt54+BqEKAN1AuTnlKkVK4L353SQkDMDgxYW4Uglo1/PBqiRmxCfFW9eV LM/fhOpMY8gPoTyF7w1AlJoh7ikZ8SEq29jcMjg89ErtjuMPt+6s0i3n4OKw863c IvSJC1AqkHrp1773b+c/qatjZfrlEvpg1k5oGbdQnArgJVIGscGAwnScIkW4QYIg yAlgIjjWlSQOfM71f6x15ITd0VU6Hz51b6ROfauP3sQmtCAs1r4Dhw26Ha1DHirI XYu9GX/RBqJUDpBggecs0HRkzURw544AsiMsTDfupiKtwIM6x611YuLo2beCeN5V Ibq0MnCg5q4c8g== -----END CERTIFICATE-----Generated at Thu Dec 25 06:24:28 2025 by rpki-client