This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft File: KY60_lwZ8pLyiSTL8VVaj1do2CY.mft (raw, json) Hash identifier: EbU4KXd7Qw9qVcTNWeI3j61iI+F/J5bLhFB8TllNYOU= Subject key identifier: 59:9F:C5:C3:C5:6B:4F:B2:84:CA:93:BE:EF:32:6A:16:B0:53:A8:32 Authority key identifier: 29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26 Certificate issuer: /CN=298eb4fe5c19f292f28924cbf1555a8f5768d826 Certificate serial: 019AF12CF3E0BEB8D1A934396560B4B53F04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:00:46 +0000 Manifest this update: Sat 06 Dec 2025 01:00:46 +0000 Manifest next update: Sun 07 Dec 2025 01:00:46 +0000 Files and hashes: 1: KY60_lwZ8pLyiSTL8VVaj1do2CY.crl (hash: 0WnsiwVXrpBE3y9lH6J2DaFPY4vdozpLw/drjR0HvIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:f3:e0:be:b8:d1:a9:34:39:65:60:b4:b5:3f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=298eb4fe5c19f292f28924cbf1555a8f5768d826 Validity Not Before: Dec 6 01:00:46 2025 GMT Not After : Dec 7 01:00:46 2025 GMT Subject: CN=599fc5c3c56b4fb284ca93beef326a16b053a832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9d:dc:03:b1:03:b8:cc:eb:f1:cb:39:c7:9a: b7:f5:5a:16:2d:7e:2f:6b:e2:53:00:6c:c8:12:e2: 23:86:64:26:21:33:13:fb:91:c3:fa:e5:cd:94:f1: ba:1a:3b:64:88:44:34:c1:37:bd:2a:e6:0e:6c:b5: 2e:4e:a3:56:2a:5d:5a:7b:bb:88:56:27:9a:b3:86: a8:1d:7b:d2:e4:2d:f5:e8:27:45:a7:f6:b8:04:e2: 83:de:49:5c:92:5e:e6:5a:e6:69:63:76:dd:a3:a7: 2b:e8:c5:3e:44:6e:60:f7:01:a4:ca:46:be:47:7e: 53:03:b1:36:5d:94:3c:85:07:1a:ea:3b:1d:28:f4: d9:ce:2c:5e:0d:56:51:61:f8:a4:51:d9:ab:ae:16: 06:ac:dd:0d:75:8d:2c:4e:ec:c4:32:5c:cb:d7:76: a9:e5:4a:fb:c2:56:16:59:aa:af:da:bd:e4:29:08: 5b:c8:1d:40:bb:f8:59:9d:58:d9:89:34:48:13:7d: 60:6e:bb:0b:d4:14:60:55:2a:e4:21:fc:bb:b4:91: 5f:d3:99:6a:bd:53:11:b0:f0:ad:fd:21:2d:3b:0e: 76:8a:ae:a2:14:3b:3c:46:0e:7b:ea:b9:1c:ae:9e: a0:93:bf:49:4f:89:d8:86:b0:f1:70:81:77:58:7a: 08:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9F:C5:C3:C5:6B:4F:B2:84:CA:93:BE:EF:32:6A:16:B0:53:A8:32 X509v3 Authority Key Identifier: keyid:29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:af:e4:7f:b0:3d:42:17:a2:fc:1c:bd:71:2e:a4:67:0d:e1: 4f:31:c7:e0:47:ae:0f:ea:75:02:8c:1f:ca:bb:25:f0:a0:09: 83:fa:81:61:9a:8a:e4:7b:91:28:12:b7:59:23:4f:18:09:ee: ed:01:8c:d5:ab:fb:cc:62:0f:de:cc:7c:a2:a3:3d:3b:d1:c5: c0:ff:89:12:77:a0:c1:9e:2a:72:6c:e5:17:bc:70:82:cd:ef: ab:29:4c:77:7e:d6:3b:18:23:6e:40:7e:0e:e5:7b:d1:cc:bf: 83:8a:97:d0:14:3a:df:fa:2a:e4:aa:1d:a2:9a:5f:2f:7d:c6: 2b:df:1e:f4:56:6a:f8:88:76:18:d7:ff:f9:14:a4:bc:ed:4f: 6e:2d:3f:2f:53:67:93:af:c1:95:b3:62:8a:38:ce:2f:aa:f7: dc:fb:8b:10:e2:6b:16:bd:69:06:68:04:9b:b9:df:4b:9d:8e: fb:7a:68:c4:67:bb:f5:db:89:f9:e0:0e:9a:ab:24:93:a0:5c: e3:e2:0c:ca:d0:95:ba:06:a9:e8:e4:cf:7f:cd:54:3c:ba:2f: 42:87:e5:dc:73:f8:5d:a2:02:6c:50:0a:d1:e0:78:09:b3:94: 7a:24:c9:b2:b9:5e:86:da:d9:cb:01:10:3c:9d:d5:e6:aa:a2: 43:59:5f:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLPPgvrjRqTQ5ZWC0tT8EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OGViNGZlNWMxOWYyOTJmMjg5MjRjYmYxNTU1YThmNTc2 OGQ4MjYwHhcNMjUxMjA2MDEwMDQ2WhcNMjUxMjA3MDEwMDQ2WjAzMTEwLwYDVQQD Eyg1OTlmYzVjM2M1NmI0ZmIyODRjYTkzYmVlZjMyNmExNmIwNTNhODMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA353cA7EDuMzr8cs5x5q39VoWLX4v a+JTAGzIEuIjhmQmITMT+5HD+uXNlPG6GjtkiEQ0wTe9KuYObLUuTqNWKl1ae7uI Vieas4aoHXvS5C316CdFp/a4BOKD3klckl7mWuZpY3bdo6cr6MU+RG5g9wGkyka+ R35TA7E2XZQ8hQca6jsdKPTZzixeDVZRYfikUdmrrhYGrN0NdY0sTuzEMlzL13ap 5Ur7wlYWWaqv2r3kKQhbyB1Au/hZnVjZiTRIE31gbrsL1BRgVSrkIfy7tJFf05lq vVMRsPCt/SEtOw52iq6iFDs8Rg576rkcrp6gk79JT4nYhrDxcIF3WHoIRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFmfxcPFa0+yhMqTvu8yahawU6gyMB8GA1UdIwQY MBaAFCmOtP5cGfKS8okky/FVWo9XaNgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85NzExMWMtMmU2MS00MzU5LTg3NjYt NmJlZGYyZmJkY2UyLzEvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi85NzExMWMtMmU2MS00MzU5LTg3NjYtNmJlZGYyZmJkY2Uy LzEvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj6/kf7A9 Qhei/By9cS6kZw3hTzHH4EeuD+p1Aowfyrsl8KAJg/qBYZqK5HuRKBK3WSNPGAnu 7QGM1av7zGIP3sx8oqM9O9HFwP+JEnegwZ4qcmzlF7xwgs3vqylMd37WOxgjbkB+ DuV70cy/g4qX0BQ63/oq5KodoppfL33GK98e9FZq+Ih2GNf/+RSkvO1Pbi0/L1Nn k6/BlbNiijjOL6r33PuLEOJrFr1pBmgEm7nfS52O+3poxGe79duJ+eAOmqskk6Bc 4+IMytCVugap6OTPf81UPLovQofl3HP4XaICbFAK0eB4CbOUeiTJsrlehtrZywEQ PJ3V5qqiQ1lfhA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:48:03 2025 by rpki-client