This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json) Hash identifier: 8LExaSTzX0xjhhbnpbeDMjIKohhSScYiWwkX86KoZ20= Subject key identifier: 5B:69:E8:60:A3:82:58:76:58:A0:2F:C3:0B:C1:06:5A:E7:B0:A7:76 Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995 Certificate serial: 019AF20979F6E066F9AB6090376AF236809B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft Manifest number: 14A1 Signing time: Sat 06 Dec 2025 05:01:38 +0000 Manifest this update: Sat 06 Dec 2025 05:01:38 +0000 Manifest next update: Sun 07 Dec 2025 05:01:38 +0000 Files and hashes: 1: 5r4roNSh8TWW8XLP5gLpTUYEtC8.roa (hash: AktxI+V17na/V+Hz9k9ha+hVm279Tijdqa0CvwmI/7Q=) 2: Gxhnb8KOTrVvxDF8yuKOv2GjqtU.roa (hash: QO/QE2IRS/pPOvcN+3PpcsYmJwErYvPF742Zst4rEP8=) 3: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: f0YGF87YrqQXZbE5NcroA1HWlwxalIrXkMQMGQw19oM=) 4: TtvNTrhsW3wjOkk9eOHVRXZxsEg.roa (hash: gPmUeUcfbob5JNxYnTxCOkrudyCPlteleGt+PSj2/00=) 5: ekdDszvqGt_eJ_hGO_xIWYzbzAA.roa (hash: zqr+o3bWODGGGIrhIMHHh91Y/JEASXYkOBODwzmfRz8=) 6: iIQaeGWo37d4w_fiU_R29carNk8.roa (hash: FbNS7L7XPQULlvHXJ6Yq35UuABtJRjSmhRiCGjDk29Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:79:f6:e0:66:f9:ab:60:90:37:6a:f2:36:80:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995 Validity Not Before: Dec 6 05:01:38 2025 GMT Not After : Dec 7 05:01:38 2025 GMT Subject: CN=5b69e860a382587658a02fc30bc1065ae7b0a776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0f:f2:a8:50:0a:0b:63:66:de:8a:bf:a5:8f: 17:8f:b4:db:72:71:3a:d7:66:96:fe:a7:46:43:c4: 4d:d8:66:3f:af:35:46:19:3e:76:03:e1:35:df:87: 6e:58:af:15:07:4e:7e:83:f1:67:2b:bb:b9:81:59: 76:94:99:b1:8e:34:20:6c:1a:8f:61:af:ac:ba:49: c1:93:f8:b2:b1:6b:93:0c:8b:d1:4a:e9:1d:33:90: e8:88:40:82:72:d3:f2:80:79:f0:a9:ff:8f:2f:7a: ff:51:f0:48:2b:97:c9:db:f5:57:d5:07:70:24:6a: 12:50:a3:0c:2b:9a:cd:c7:50:08:dd:bd:37:db:d1: 3c:bb:53:58:28:22:ca:73:4f:c4:6b:de:60:9d:fd: 85:c2:72:33:3d:90:ca:c6:e0:15:f8:92:fa:bb:74: ac:86:e9:16:d2:bc:fd:0d:71:9d:19:9c:cb:99:a3: 78:b8:2a:3c:f8:e0:0b:e3:f3:c8:a2:6f:14:d1:a5: ad:47:86:ba:13:78:07:14:27:e9:7c:3f:99:3c:c3: 39:b1:e1:24:e0:60:46:72:56:f9:11:fc:ad:ad:0b: ea:89:8a:71:76:72:96:24:ab:58:d2:d1:c8:ea:ea: 41:7e:46:3c:0b:28:e6:cd:45:64:b4:d8:4f:02:a7: 61:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:69:E8:60:A3:82:58:76:58:A0:2F:C3:0B:C1:06:5A:E7:B0:A7:76 X509v3 Authority Key Identifier: keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:dc:f4:26:c1:0b:7b:fc:90:35:d0:73:85:19:8a:2c:90:78: 64:e4:20:0b:d0:c1:30:be:1d:8a:ba:da:1e:4b:d6:32:22:9c: b1:08:68:aa:1d:98:b9:76:7f:d1:ed:7d:1a:ad:7d:e5:31:13: 15:70:7a:54:59:a3:ce:47:d5:7a:e9:7d:37:d8:59:ee:db:49: 04:c1:f4:bc:d6:19:50:31:3a:5b:ac:3c:ee:6f:cc:4c:6f:34: 0d:75:e8:45:ac:86:53:84:2d:d9:b1:49:4b:62:e3:90:50:d9: 57:c9:f1:b7:4a:f3:e2:a4:7e:cf:3f:f4:1a:6f:cb:db:7d:a8: e8:23:ed:c7:ee:30:9f:4e:2a:07:dc:d3:da:c4:08:a5:77:2f: 6c:b5:f4:7b:99:67:43:c6:43:90:67:74:4f:1e:3d:8c:cd:cb: ed:fc:3a:d1:24:63:4e:1a:bb:fe:a0:63:b1:73:79:14:57:78: 84:99:75:d7:a1:f7:c1:f7:08:45:0c:dd:e8:0a:f4:91:71:ab: 0b:fd:3a:69:f6:0d:a0:42:00:5a:2b:c3:98:ac:72:96:b7:3d: 88:35:7c:93:3d:0b:ad:74:19:61:6d:43:25:26:ba:af:e3:07: ed:5f:db:d1:57:62:dc:2b:71:e4:c6:68:89:56:e6:36:c6:9b: a0:40:09:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCXn24Gb5q2CQN2ryNoCbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhZjVlNDg2NmJhMDk4MjAxMjRhNmU1MTExMDRmYzQxZmE1 NDE5OTUwHhcNMjUxMjA2MDUwMTM4WhcNMjUxMjA3MDUwMTM4WjAzMTEwLwYDVQQD Eyg1YjY5ZTg2MGEzODI1ODc2NThhMDJmYzMwYmMxMDY1YWU3YjBhNzc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvg/yqFAKC2Nm3oq/pY8Xj7TbcnE6 12aW/qdGQ8RN2GY/rzVGGT52A+E134duWK8VB05+g/FnK7u5gVl2lJmxjjQgbBqP Ya+suknBk/iysWuTDIvRSukdM5DoiECCctPygHnwqf+PL3r/UfBIK5fJ2/VX1Qdw JGoSUKMMK5rNx1AI3b0329E8u1NYKCLKc0/Ea95gnf2FwnIzPZDKxuAV+JL6u3Ss hukW0rz9DXGdGZzLmaN4uCo8+OAL4/PIom8U0aWtR4a6E3gHFCfpfD+ZPMM5seEk 4GBGclb5EfytrQvqiYpxdnKWJKtY0tHI6upBfkY8CyjmzUVktNhPAqdhIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFtp6GCjglh2WKAvwwvBBlrnsKd2MB8GA1UdIwQY MBaAFCr15IZroJggEkpuUREE/EH6VBmVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2Qt YzMyMGU1MGEzYzc5LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2QtYzMyMGU1MGEzYzc5 LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn9z0JsEL e/yQNdBzhRmKLJB4ZOQgC9DBML4dirraHkvWMiKcsQhoqh2YuXZ/0e19Gq195TET FXB6VFmjzkfVeul9N9hZ7ttJBMH0vNYZUDE6W6w87m/MTG80DXXoRayGU4Qt2bFJ S2LjkFDZV8nxt0rz4qR+zz/0Gm/L232o6CPtx+4wn04qB9zT2sQIpXcvbLX0e5ln Q8ZDkGd0Tx49jM3L7fw60SRjThq7/qBjsXN5FFd4hJl116H3wfcIRQzd6Ar0kXGr C/06afYNoEIAWivDmKxylrc9iDV8kz0LrXQZYW1DJSa6r+MH7V/b0Vdi3Ctx5MZo iVbmNsaboEAJfw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:37:11 2025 by rpki-client