This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft File: KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft (raw, json) Hash identifier: wQALzwoxe8iTPmEYJ9J7cGW7QKewBhjk4wmX763VTBY= Subject key identifier: AB:C7:CD:E3:A4:AB:61:9E:28:3E:C9:EB:C9:7F:E4:66:F8:3E:4F:F1 Authority key identifier: 2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3 Certificate issuer: /CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3 Certificate serial: 019AF20974C64D6C6E447D1A821BA818502B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft Manifest number: 0F5B Signing time: Sat 06 Dec 2025 05:01:37 +0000 Manifest this update: Sat 06 Dec 2025 05:01:37 +0000 Manifest next update: Sun 07 Dec 2025 05:01:37 +0000 Files and hashes: 1: 3tVWAqpuhZmIvirALPURMbWbRUo.roa (hash: 8vZgncUoPoI0S65ff9n3cIU9sKbrNMXpH1mUnl/CdOM=) 2: GerACxDWw1b6KGz6kGs5iVp2ois.roa (hash: 4GcODZKqecND9v8xjlb0j4xGLtBy9xZhAi6ymZShRcQ=) 3: KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl (hash: Zd/W5covQV6+BYdIk5Y05DgV/lfc1Ab8qJ2QYyiTSa4=) 4: LEyJ2WNBj9cTPetK4hsEfLcBcEI.roa (hash: WmOLEifdPoH/joG2SNYp6mcbI8myXya9UUZozRyBF44=) 5: Qy3Q7lh00t0205L0nhmAvt2uoOs.roa (hash: a4ie5/FL3GVO5YHgzPjyXYH6PIkYqfX1mb+x+F8lR9c=) 6: X35BdP6fZcPzqxMLjnciq7uISgs.roa (hash: X6IFONVs0ZqJ9lk+Np5sgqP+DTo255gzewtTiaP3PC0=) 7: eGuHIFNh-O-K6vz68gcxBeLPa18.roa (hash: G6cEnCf7JWL4wnvSWWO7ELeSvpGDDJYGerFFAWSt9CA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:74:c6:4d:6c:6e:44:7d:1a:82:1b:a8:18:50:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b237c5affe93543ae2fe6e1ffed182396eb9bb3 Validity Not Before: Dec 6 05:01:37 2025 GMT Not After : Dec 7 05:01:37 2025 GMT Subject: CN=abc7cde3a4ab619e283ec9ebc97fe466f83e4ff1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ba:66:fc:ac:d8:f4:de:b7:c4:7f:d5:27:75: 2d:55:e1:91:68:fb:dd:32:8c:a5:68:18:e5:f3:a9: 54:91:24:b7:e6:01:85:b1:e6:70:ac:f1:8b:bc:74: 90:8f:38:e8:99:18:02:8c:52:21:19:b2:e9:a4:af: 35:00:6e:83:7c:13:c9:db:54:23:6a:d9:c4:1b:39: 2e:72:d3:d9:41:d7:93:4c:c0:e2:32:8f:0e:26:ed: 3c:d5:5a:57:2b:f1:aa:81:b0:e8:38:0f:f4:95:de: 43:4a:39:57:0d:05:2e:af:49:55:dd:06:c9:ff:0c: c9:7b:18:53:09:73:d2:ff:24:d0:36:9b:46:99:4a: 9b:c6:ef:40:fb:97:11:ca:e0:b6:9c:ff:ff:41:36: d8:85:8c:0e:21:ef:09:21:17:11:51:4f:23:60:1d: cf:8e:fd:ea:e0:7d:63:6b:f0:79:84:e3:44:ba:41: 91:d9:60:4d:d8:53:09:c7:b7:2c:2b:7c:10:08:6e: 40:35:c7:b4:f2:0c:44:cd:5e:5a:a8:17:e8:5c:1f: ca:25:40:29:8d:8d:50:e4:7d:9f:8e:e0:2e:bf:10: c9:1f:56:30:4b:7b:ed:55:c7:27:c4:56:57:be:77: 66:99:f1:ac:d2:79:2d:b4:3f:8f:9d:29:ce:f2:3a: 5a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C7:CD:E3:A4:AB:61:9E:28:3E:C9:EB:C9:7F:E4:66:F8:3E:4F:F1 X509v3 Authority Key Identifier: keyid:2B:23:7C:5A:FF:E9:35:43:AE:2F:E6:E1:FF:ED:18:23:96:EB:9B:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyN8Wv_pNUOuL-bh_-0YI5brm7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/64a053-26ff-48a6-aeda-14702a4d2660/1/KyN8Wv_pNUOuL-bh_-0YI5brm7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:4e:e7:a6:1d:50:96:2e:bd:7c:95:0b:7f:aa:9a:e1:cb:f4: 89:6d:b8:81:a7:a4:cb:dd:9b:2e:76:86:a1:05:72:2c:e5:65: d3:a3:1c:93:3a:9c:7c:c0:0b:04:d9:4c:d4:ab:19:3c:15:a2: a7:02:09:1a:10:81:b7:8f:3f:b4:c0:15:80:50:31:dd:68:56: b4:58:50:3d:41:32:56:6e:d4:7e:a4:8d:56:72:ba:d6:cb:c3: 28:53:66:7d:08:a9:a6:c0:ec:95:8b:81:f1:fd:98:05:9b:9e: 59:cd:18:84:22:55:b9:ed:24:4b:62:28:0a:fb:78:c9:37:c5: 7c:c2:61:35:3b:22:57:8a:46:fe:f8:ef:21:b2:b1:42:0c:e9: fe:df:a2:f9:35:34:4f:46:b8:af:76:b0:26:65:b2:77:78:88: a0:03:22:7e:86:87:02:b8:e2:c2:66:a4:51:be:37:82:22:22: 5a:a0:61:d5:6e:f8:91:1e:6b:72:6a:42:76:37:03:c2:1c:11: 4c:30:82:01:fe:8b:2e:7f:73:e5:09:a5:c2:26:22:b3:d7:9d: b5:28:ba:23:32:19:6e:7b:9f:7c:85:bb:10:18:4c:bf:d0:ba: cc:cc:27:18:c0:d5:da:b1:45:59:85:b0:83:94:a3:a7:7d:83: 2e:85:05:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCXTGTWxuRH0aghuoGFArMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiMjM3YzVhZmZlOTM1NDNhZTJmZTZlMWZmZWQxODIzOTZl YjliYjMwHhcNMjUxMjA2MDUwMTM3WhcNMjUxMjA3MDUwMTM3WjAzMTEwLwYDVQQD EyhhYmM3Y2RlM2E0YWI2MTllMjgzZWM5ZWJjOTdmZTQ2NmY4M2U0ZmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbpm/KzY9N63xH/VJ3UtVeGRaPvd MoylaBjl86lUkSS35gGFseZwrPGLvHSQjzjomRgCjFIhGbLppK81AG6DfBPJ21Qj atnEGzkuctPZQdeTTMDiMo8OJu081VpXK/GqgbDoOA/0ld5DSjlXDQUur0lV3QbJ /wzJexhTCXPS/yTQNptGmUqbxu9A+5cRyuC2nP//QTbYhYwOIe8JIRcRUU8jYB3P jv3q4H1ja/B5hONEukGR2WBN2FMJx7csK3wQCG5ANce08gxEzV5aqBfoXB/KJUAp jY1Q5H2fjuAuvxDJH1YwS3vtVccnxFZXvndmmfGs0nkttD+PnSnO8jpaDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvHzeOkq2GeKD7J68l/5Gb4Pk/xMB8GA1UdIwQY MBaAFCsjfFr/6TVDri/m4f/tGCOW65uzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3lOOFd2X3BOVU91TC1iaF8tMFlJNWJybTdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82NGEwNTMtMjZmZi00OGE2LWFlZGEt MTQ3MDJhNGQyNjYwLzEvS3lOOFd2X3BOVU91TC1iaF8tMFlJNWJybTdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi82NGEwNTMtMjZmZi00OGE2LWFlZGEtMTQ3MDJhNGQyNjYw LzEvS3lOOFd2X3BOVU91TC1iaF8tMFlJNWJybTdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASk7nph1Q li69fJULf6qa4cv0iW24gaeky92bLnaGoQVyLOVl06MckzqcfMALBNlM1KsZPBWi pwIJGhCBt48/tMAVgFAx3WhWtFhQPUEyVm7UfqSNVnK61svDKFNmfQippsDslYuB 8f2YBZueWc0YhCJVue0kS2IoCvt4yTfFfMJhNTsiV4pG/vjvIbKxQgzp/t+i+TU0 T0a4r3awJmWyd3iIoAMifoaHArjiwmakUb43giIiWqBh1W74kR5rcmpCdjcDwhwR TDCCAf6LLn9z5QmlwiYis9edtSi6IzIZbnuffIW7EBhMv9C6zMwnGMDV2rFFWYWw g5Sjp32DLoUF8Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:23:23 2025 by rpki-client