This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json) Hash identifier: 8twuLZq2dRdj+PmS9D0LntlAR4gJhGjmcnjyKJ5HvqQ= Subject key identifier: 41:FE:DA:DB:FA:2E:4E:52:BC:8D:0C:95:9E:B2:4A:F9:61:2C:0B:C3 Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1 Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1 Certificate serial: 019AF389F96E748DCD41A574C350FFBCA2D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 12:01:37 +0000 Manifest this update: Sat 06 Dec 2025 12:01:37 +0000 Manifest next update: Sun 07 Dec 2025 12:01:37 +0000 Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: NkSEaSy8O8eZ/KUjNTyg2bzCkHKQfvZA7vVPPPpoEHM=) 2: x9d_ZYOPUgUTIG_dU1aWLhzD7L0.roa (hash: Eoi/Kjhf2x+MudONjVV9qJBRoFTzvMFaOuh/XyvvI1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:f9:6e:74:8d:cd:41:a5:74:c3:50:ff:bc:a2:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92479cae284765d628044119009880d28a7560b1 Validity Not Before: Dec 6 12:01:37 2025 GMT Not After : Dec 7 12:01:37 2025 GMT Subject: CN=41fedadbfa2e4e52bc8d0c959eb24af9612c0bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:45:b0:2f:37:f1:fd:b1:43:9c:58:1b:98:bb: 51:d6:97:30:5c:e6:7a:49:82:37:2a:a6:d7:50:e9: 80:35:37:90:24:c9:50:16:8f:fd:03:2c:7d:e3:ce: e7:f4:88:45:a2:99:2a:ab:fb:9d:62:9c:5b:f8:97: 44:a7:58:6e:82:6f:63:e3:23:73:33:93:d3:9c:e3: f0:0e:b1:09:ad:3d:a1:27:81:2b:1a:fe:00:99:dc: bf:a8:8c:d4:86:b3:84:79:e8:87:af:a9:d5:68:04: af:f4:ae:26:8e:c0:6e:5e:db:c6:98:8b:82:f0:6b: e5:7f:cd:89:5d:8a:d4:b9:89:38:d4:ff:1f:f4:41: 47:26:c4:b5:15:6f:37:5f:a3:1c:d9:2b:ca:71:03: d0:5e:15:7f:f2:44:7b:4a:a1:9f:ff:a8:65:2f:72: 32:b0:f5:3e:bb:49:43:40:ad:18:61:5d:da:1e:c8: 68:30:b4:12:96:e4:7a:e2:4a:9a:05:79:70:a8:02: fc:ac:cb:64:a5:df:bb:17:ac:84:6c:23:e2:ed:2a: 73:6c:9e:83:39:67:cd:af:64:21:22:81:21:08:6e: e5:bd:4c:c4:8b:93:92:0a:e2:97:19:db:16:cb:17: df:51:7e:84:ee:e2:5b:14:6c:55:f1:1a:54:e3:20: 31:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FE:DA:DB:FA:2E:4E:52:BC:8D:0C:95:9E:B2:4A:F9:61:2C:0B:C3 X509v3 Authority Key Identifier: keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:21:39:9f:43:e5:0a:d6:60:b8:8b:2b:35:07:20:61:cf:0d: 97:46:48:66:6a:21:67:3f:84:4e:87:b8:ed:04:71:ad:f2:f5: c2:d2:26:e0:e9:c3:4c:4f:f3:e1:60:31:0f:3a:17:99:9d:ab: 3d:30:b6:09:b2:1b:e1:09:f4:1e:21:6c:ea:00:04:eb:15:2b: 94:76:59:99:6e:2e:a9:ea:e3:3c:6a:2b:cf:a6:98:dc:98:e0: 38:4f:d8:c0:2a:7f:d7:17:8f:d3:5b:d9:fd:42:69:7f:1a:5d: b1:65:2f:7a:c6:d3:72:7d:05:cf:fa:b3:08:ca:04:66:3e:52: 2e:cd:4f:88:1b:71:c9:60:45:b3:d1:f5:7a:92:23:f6:8b:1f: cd:f7:d4:4a:0d:3b:30:b8:b2:1b:de:81:91:5c:88:1a:3c:bd: 8a:43:53:7c:ca:5b:ae:98:43:88:c7:43:cc:19:c9:3d:68:ae: 4b:03:29:d7:0b:c7:76:44:e6:04:8f:79:01:8d:4a:cb:7b:cb: fa:e2:0d:89:a3:8d:1f:8d:a7:7f:db:47:0d:75:d5:7d:90:ae: 53:b2:0f:2b:29:8c:f0:10:df:aa:a7:d0:80:7e:d2:58:7b:5d: 46:34:cb:2c:b7:0c:0c:4e:0b:b2:53:3d:ad:c3:04:e8:69:b5: 9b:eb:08:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzifludI3NQaV0w1D/vKLRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNDc5Y2FlMjg0NzY1ZDYyODA0NDExOTAwOTg4MGQyOGE3 NTYwYjEwHhcNMjUxMjA2MTIwMTM3WhcNMjUxMjA3MTIwMTM3WjAzMTEwLwYDVQQD Eyg0MWZlZGFkYmZhMmU0ZTUyYmM4ZDBjOTU5ZWIyNGFmOTYxMmMwYmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8EWwLzfx/bFDnFgbmLtR1pcwXOZ6 SYI3KqbXUOmANTeQJMlQFo/9Ayx9487n9IhFopkqq/udYpxb+JdEp1hugm9j4yNz M5PTnOPwDrEJrT2hJ4ErGv4Amdy/qIzUhrOEeeiHr6nVaASv9K4mjsBuXtvGmIuC 8Gvlf82JXYrUuYk41P8f9EFHJsS1FW83X6Mc2SvKcQPQXhV/8kR7SqGf/6hlL3Iy sPU+u0lDQK0YYV3aHshoMLQSluR64kqaBXlwqAL8rMtkpd+7F6yEbCPi7SpzbJ6D OWfNr2QhIoEhCG7lvUzEi5OSCuKXGdsWyxffUX6E7uJbFGxV8RpU4yAxIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEH+2tv6Lk5SvI0MlZ6ySvlhLAvDMB8GA1UdIwQY MBaAFJJHnK4oR2XWKARBGQCYgNKKdWCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgt MDI0Njg2OGFhMGVkLzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8wNTgyMjAtNTk2ZS00ODBhLWEwNTgtMDI0Njg2OGFhMGVk LzEva2tlY3JpaEhaZFlvQkVFWkFKaUEwb3AxWUxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAESE5n0Pl CtZguIsrNQcgYc8Nl0ZIZmohZz+EToe47QRxrfL1wtIm4OnDTE/z4WAxDzoXmZ2r PTC2CbIb4Qn0HiFs6gAE6xUrlHZZmW4uqerjPGorz6aY3JjgOE/YwCp/1xeP01vZ /UJpfxpdsWUvesbTcn0Fz/qzCMoEZj5SLs1PiBtxyWBFs9H1epIj9osfzffUSg07 MLiyG96BkVyIGjy9ikNTfMpbrphDiMdDzBnJPWiuSwMp1wvHdkTmBI95AY1Ky3vL +uINiaONH42nf9tHDXXVfZCuU7IPKymM8BDfqqfQgH7SWHtdRjTLLLcMDE4LslM9 rcME6Gm1m+sIRA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:48 2025 by rpki-client