This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft File: KseP1RenX3fz9P0imsXmcyVgxuE.mft (raw, json) Hash identifier: LYlZ82BoRATsiJ7ewNbDDIfh8DtrO29dUTFWttZZY2I= Subject key identifier: B8:94:19:94:98:16:86:D8:FE:F0:99:98:2B:62:DD:58:60:2F:F4:70 Authority key identifier: 2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1 Certificate issuer: /CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1 Certificate serial: 019B3D22F66FE338C6C0A0706F15E45DFBCE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft Manifest number: 1789 Signing time: Sat 20 Dec 2025 19:00:59 +0000 Manifest this update: Sat 20 Dec 2025 19:00:59 +0000 Manifest next update: Sun 21 Dec 2025 19:00:59 +0000 Files and hashes: 1: IgyiZQsGF35ZpqMjFvvmpe-Uiy0.roa (hash: pAyIL1yLWM74WtAtlIRzPUKtL/NRSv2opfBvsE4P7Hg=) 2: KseP1RenX3fz9P0imsXmcyVgxuE.crl (hash: MqQqauqRDUj6Fdi67hF8UeLdWb+Izi9PZcYmBbopeY4=) 3: LQeosQtAPfSnVgSVDz2OO819_2c.roa (hash: Tkr19vAUAWlnJvYoR9UT3slqIpIAZEXQA2P0LTiz6vk=) 4: RCGJFAFAV6aiMpIUxmySWlcVGcg.roa (hash: QvC8yM0b6tNvgcZ8K0setdROoeG+A+pCENVWYJBxdUY=) 5: TG0C9piKaVRjDBAoOKXP984iuIo.roa (hash: EaPKdJGvcjOx3gx7VBDHr9Ib+3e6fswqULU49tGRtHE=) 6: W8cH_RfNNK2PVtZ4dkQnNuqrxnc.roa (hash: 7tsNb5ZcCAlwiASwz40Hk6RbBRk52zjaoiAuvE/+RQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:22:f6:6f:e3:38:c6:c0:a0:70:6f:15:e4:5d:fb:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac78fd517a75f77f3f4fd229ac5e6732560c6e1 Validity Not Before: Dec 20 19:00:59 2025 GMT Not After : Dec 21 19:00:59 2025 GMT Subject: CN=b8941994981686d8fef099982b62dd58602ff470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fb:d2:e8:88:1b:40:bc:0e:5d:6c:24:d7:c5: 87:26:1f:4a:66:df:f7:32:8a:a2:9d:94:5d:69:15: b6:13:d3:55:49:ba:56:4d:30:92:04:75:07:d2:7f: 97:ab:46:a5:89:e6:97:34:e7:7a:2c:3a:cf:45:79: e8:88:ed:e0:13:90:e4:ce:73:53:c4:f2:38:ce:20: 7f:9d:e3:3a:6c:f1:6b:3b:3d:4a:e1:27:ce:d2:e1: 5d:f0:bb:c2:68:db:06:1e:a4:32:40:75:04:dd:49: fc:b7:1c:a2:29:ba:ad:47:ca:1d:88:dd:df:68:ce: 78:58:18:2a:44:44:37:78:b3:03:ec:0b:36:44:14: 55:c0:c5:6a:c0:e5:47:56:d2:44:ba:9e:6f:a9:55: 8a:f5:1d:32:57:81:80:db:6d:bc:e6:e5:27:aa:49: 43:8a:01:9f:e9:ae:a4:5e:c2:a1:00:5c:eb:2b:76: e0:8f:45:c6:82:24:00:a6:44:4e:69:fc:7e:6e:c7: 2a:27:6a:b2:7a:89:bb:1c:99:e1:2e:17:94:fd:48: 3a:a9:5e:0d:e0:73:af:0d:2c:31:ba:23:fd:1d:98: 1c:23:f3:9f:fb:20:e3:c1:a9:24:fa:7a:af:ca:4d: bf:77:d2:af:24:6e:f5:b8:8e:22:7a:44:a9:b4:bb: a5:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:94:19:94:98:16:86:D8:FE:F0:99:98:2B:62:DD:58:60:2F:F4:70 X509v3 Authority Key Identifier: keyid:2A:C7:8F:D5:17:A7:5F:77:F3:F4:FD:22:9A:C5:E6:73:25:60:C6:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KseP1RenX3fz9P0imsXmcyVgxuE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c8f02b-0abc-41fe-bc54-ac800c6d976f/1/KseP1RenX3fz9P0imsXmcyVgxuE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:05:a3:69:c8:49:23:30:1d:98:c7:33:52:43:52:f3:9d:eb: f6:f4:8e:bb:98:e0:41:c0:ff:ee:45:43:1d:49:b4:1c:b4:86: e4:0f:5a:28:fa:ab:83:e8:1b:43:88:ea:44:e6:dc:91:73:97: 07:17:7d:9b:87:ab:2b:83:39:50:29:24:d1:21:31:8b:ea:3b: 97:b0:e6:3b:14:cb:ec:d2:15:09:01:b0:0e:d7:e1:d3:cc:74: 57:fe:04:9c:9a:2c:3c:61:69:be:a7:ac:ee:2e:3a:a4:05:ed: 2b:68:89:81:b0:9d:ec:42:ac:40:af:4e:0e:eb:2a:2f:4d:ed: 43:e3:99:c5:c4:cc:f6:bc:86:e5:ca:62:b9:54:9d:d4:d3:99: 6a:fb:af:7d:59:37:af:c3:dc:b4:09:c5:0a:15:99:76:51:57: 47:a4:00:08:25:6c:30:64:c0:c1:51:68:02:71:fe:62:d3:10: 6f:4c:7c:e0:33:28:af:ac:a2:21:e3:51:a9:65:54:42:24:26: ef:48:e0:ab:ba:9b:bc:2f:2b:cf:cc:45:10:df:49:7c:8d:9a: 84:76:5f:3d:b3:24:d7:90:93:d6:71:52:4f:b7:ac:e4:3a:bc: 57:d3:d0:7e:97:a6:34:3a:12:08:1f:49:a9:a3:f1:23:d8:34: c1:14:a7:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9IvZv4zjGwKBwbxXkXfvOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzc4ZmQ1MTdhNzVmNzdmM2Y0ZmQyMjlhYzVlNjczMjU2 MGM2ZTEwHhcNMjUxMjIwMTkwMDU5WhcNMjUxMjIxMTkwMDU5WjAzMTEwLwYDVQQD EyhiODk0MTk5NDk4MTY4NmQ4ZmVmMDk5OTgyYjYyZGQ1ODYwMmZmNDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fvS6IgbQLwOXWwk18WHJh9KZt/3 MoqinZRdaRW2E9NVSbpWTTCSBHUH0n+Xq0alieaXNOd6LDrPRXnoiO3gE5DkznNT xPI4ziB/neM6bPFrOz1K4SfO0uFd8LvCaNsGHqQyQHUE3Un8txyiKbqtR8odiN3f aM54WBgqREQ3eLMD7As2RBRVwMVqwOVHVtJEup5vqVWK9R0yV4GA22285uUnqklD igGf6a6kXsKhAFzrK3bgj0XGgiQApkROafx+bscqJ2qyeom7HJnhLheU/Ug6qV4N 4HOvDSwxuiP9HZgcI/Of+yDjwakk+nqvyk2/d9KvJG71uI4iekSptLul5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLiUGZSYFobY/vCZmCti3VhgL/RwMB8GA1UdIwQY MBaAFCrHj9UXp1938/T9IprF5nMlYMbhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NlUDFSZW5YM2Z6OVAwaW1zWG1jeVZneHVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9jOGYwMmItMGFiYy00MWZlLWJjNTQt YWM4MDBjNmQ5NzZmLzEvS3NlUDFSZW5YM2Z6OVAwaW1zWG1jeVZneHVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9jOGYwMmItMGFiYy00MWZlLWJjNTQtYWM4MDBjNmQ5NzZm LzEvS3NlUDFSZW5YM2Z6OVAwaW1zWG1jeVZneHVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQWjachJ IzAdmMczUkNS853r9vSOu5jgQcD/7kVDHUm0HLSG5A9aKPqrg+gbQ4jqRObckXOX Bxd9m4erK4M5UCkk0SExi+o7l7DmOxTL7NIVCQGwDtfh08x0V/4EnJosPGFpvqes 7i46pAXtK2iJgbCd7EKsQK9ODusqL03tQ+OZxcTM9ryG5cpiuVSd1NOZavuvfVk3 r8PctAnFChWZdlFXR6QACCVsMGTAwVFoAnH+YtMQb0x84DMor6yiIeNRqWVUQiQm 70jgq7qbvC8rz8xFEN9JfI2ahHZfPbMk15CT1nFST7es5Dq8V9PQfpemNDoSCB9J qaPxI9g0wRSnfA== -----END CERTIFICATE-----Generated at Sun Dec 21 04:07:44 2025 by rpki-client