This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json) Hash identifier: Ok+2Y+4yG+rbRiolC5NR3OdA6lYZesyY6qtatGMNVAI= Subject key identifier: C2:B9:71:CE:BF:DE:59:7D:07:3D:2D:0E:56:E9:59:BB:A3:8C:4E:15 Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96 Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096 Certificate serial: 019AF509ADB5C4606D9310CB6770036ADC5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft Manifest number: 13F6 Signing time: Sat 06 Dec 2025 19:00:43 +0000 Manifest this update: Sat 06 Dec 2025 19:00:43 +0000 Manifest next update: Sun 07 Dec 2025 19:00:43 +0000 Files and hashes: 1: K3k_GCXnaMv59dLKq-rHfPOR6HE.roa (hash: 5Q6jyJMRb9gad/mJLct+/fYWsLJ0GiEE1wJJESuoLsM=) 2: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: 3iJPRXu1eZPASB10Gxwrzj9IBfozXazqHcgs3U6YJjc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:ad:b5:c4:60:6d:93:10:cb:67:70:03:6a:dc:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096 Validity Not Before: Dec 6 19:00:43 2025 GMT Not After : Dec 7 19:00:43 2025 GMT Subject: CN=c2b971cebfde597d073d2d0e56e959bba38c4e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:80:20:44:97:dd:5b:4b:3c:67:da:d6:ad:f6: ad:2e:99:fc:61:a3:59:13:27:73:3e:95:9c:d8:0f: fb:a9:0c:10:f9:f9:87:b9:23:46:11:b8:5c:e9:7a: bb:04:c9:a4:5a:02:89:77:12:1b:2a:96:b0:d0:cc: 75:cf:c6:cb:1c:8e:94:02:b5:fb:04:67:32:50:b8: 89:87:4d:38:d4:7b:cf:c2:2d:5f:a8:0d:9b:7d:8e: 33:07:da:91:2a:91:e6:a0:83:f3:ab:23:2b:37:30: 1d:0f:59:3f:da:ac:45:8f:a8:02:09:41:3b:6e:45: 3c:ff:10:62:17:6e:0e:4b:96:b9:bd:fd:b3:7b:e2: 6a:a2:5a:e1:11:34:b1:55:51:64:0a:d5:88:94:31: 64:3f:5d:d3:8e:c0:c8:22:09:d1:06:d9:11:cb:34: 1e:05:50:dd:67:e5:ce:ff:79:90:66:96:96:52:c7: da:3e:0b:e8:36:3f:af:6d:7d:86:e3:ef:cc:45:72: 06:d7:21:2d:de:df:1d:43:e6:f7:db:a6:ea:d7:e1: d6:9b:0d:19:5c:00:f0:56:11:73:04:d0:ca:a7:93: 6f:ae:46:ff:b6:20:1d:d8:d0:8c:39:79:38:ab:9c: 70:95:3a:18:b0:ff:1d:40:47:72:82:88:be:a5:00: 95:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:B9:71:CE:BF:DE:59:7D:07:3D:2D:0E:56:E9:59:BB:A3:8C:4E:15 X509v3 Authority Key Identifier: keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4c:7c:81:c2:dd:5d:36:af:43:f4:3c:36:8e:f5:2b:c3:f8: 38:41:ae:a3:d4:97:25:a4:92:33:a8:d0:48:b1:5b:2f:e8:39: dc:97:50:76:4d:c6:9f:18:e3:40:f6:38:7f:6f:39:59:a6:37: f4:9f:5a:da:64:14:28:38:ca:39:4b:8d:cd:09:aa:95:60:2b: 47:1b:00:70:bd:5b:d1:e0:91:a7:6c:21:fd:3f:43:c8:78:f1: 61:15:ee:5c:9d:04:9f:9b:2f:7e:84:47:ed:06:43:c6:d8:45: 12:cb:ec:49:e1:1a:c0:3f:90:e3:fe:7d:58:e5:24:9e:f0:9f: 91:1a:70:68:ce:cb:bd:65:e6:83:b9:aa:e6:3f:73:fd:6a:2d: ac:04:dd:4d:af:9a:8e:ed:6a:82:8d:a9:e5:f2:9d:63:67:88: 6c:87:c7:30:26:f7:8e:8a:ea:ba:4a:3e:84:5f:4f:83:2c:1a: b0:b8:bc:ae:2f:67:8f:1d:de:e2:e9:fd:d2:19:94:f1:ca:14: de:9e:bc:8b:37:ea:7e:9f:ae:a0:c5:50:f9:df:81:6c:77:7e: 01:f8:78:95:53:da:e3:22:c4:79:27:b0:5b:0b:f5:d3:26:83: 48:4e:ea:38:75:5d:ed:09:f6:45:c8:a2:ea:5c:94:b8:8a:c1: f9:0b:6f:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Ca21xGBtkxDLZ3ADatxeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZjE0ZDQxMWMyMGVjZmM0OTYyMTVmY2RiMGY0M2Q4NDcy MTkwOTYwHhcNMjUxMjA2MTkwMDQzWhcNMjUxMjA3MTkwMDQzWjAzMTEwLwYDVQQD EyhjMmI5NzFjZWJmZGU1OTdkMDczZDJkMGU1NmU5NTliYmEzOGM0ZTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYAgRJfdW0s8Z9rWrfatLpn8YaNZ EydzPpWc2A/7qQwQ+fmHuSNGEbhc6Xq7BMmkWgKJdxIbKpaw0Mx1z8bLHI6UArX7 BGcyULiJh0041HvPwi1fqA2bfY4zB9qRKpHmoIPzqyMrNzAdD1k/2qxFj6gCCUE7 bkU8/xBiF24OS5a5vf2ze+JqolrhETSxVVFkCtWIlDFkP13TjsDIIgnRBtkRyzQe BVDdZ+XO/3mQZpaWUsfaPgvoNj+vbX2G4+/MRXIG1yEt3t8dQ+b326bq1+HWmw0Z XADwVhFzBNDKp5Nvrkb/tiAd2NCMOXk4q5xwlToYsP8dQEdygoi+pQCVxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMK5cc6/3ll9Bz0tDlbpWbujjE4VMB8GA1UdIwQY MBaAFCnxTUEcIOz8SWIV/NsPQ9hHIZCWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9iY2YyNzItZDc1MS00NWJlLTk4NTYt MDE4YTM3NzBkYTc3LzEvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC9iY2YyNzItZDc1MS00NWJlLTk4NTYtMDE4YTM3NzBkYTc3 LzEvS2ZGTlFSd2c3UHhKWWhYODJ3OUQyRWNoa0pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATEx8gcLd XTavQ/Q8No71K8P4OEGuo9SXJaSSM6jQSLFbL+g53JdQdk3GnxjjQPY4f285WaY3 9J9a2mQUKDjKOUuNzQmqlWArRxsAcL1b0eCRp2wh/T9DyHjxYRXuXJ0En5svfoRH 7QZDxthFEsvsSeEawD+Q4/59WOUknvCfkRpwaM7LvWXmg7mq5j9z/WotrATdTa+a ju1qgo2p5fKdY2eIbIfHMCb3jorquko+hF9PgywasLi8ri9njx3e4un90hmU8coU 3p68izfqfp+uoMVQ+d+BbHd+Afh4lVPa4yLEeSewWwv10yaDSE7qOHVd7Qn2Rcii 6lyUuIrB+QtvkA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:43:27 2025 by rpki-client