This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json) Hash identifier: SWjp5qrE/QShIBSVeErT4b474MCXUYnWVrv1H+H/rMA= Subject key identifier: 0E:0A:70:AC:4A:61:8E:DE:C2:D1:BB:4F:A9:A3:DD:D7:2F:3B:DC:A1 Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d Certificate serial: 019AF0BF45EEA08EE7B738708F73F0483D91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft Manifest number: 0C7D Signing time: Fri 05 Dec 2025 23:00:58 +0000 Manifest this update: Fri 05 Dec 2025 23:00:58 +0000 Manifest next update: Sat 06 Dec 2025 23:00:58 +0000 Files and hashes: 1: FCRIl5Vt1LPdQ6IrZpaUR6T2zRk.roa (hash: dI7TXuZLS0+y6udtXa2yol0ikupwyIZAlaHrmt/VDI0=) 2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: 7llvxkQfSzmuLmJsyGkqPbT5lzqDztUaEgR1WaeSWT4=) 3: z3-dsZKj9j7nCKXS-M2vtq4aJrk.roa (hash: 28apFTsYy4v/YWMNME9MOhYcWfL7kBuIz5Y1C6vARJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:45:ee:a0:8e:e7:b7:38:70:8f:73:f0:48:3d:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d Validity Not Before: Dec 5 23:00:58 2025 GMT Not After : Dec 6 23:00:58 2025 GMT Subject: CN=0e0a70ac4a618edec2d1bb4fa9a3ddd72f3bdca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f8:dd:2f:89:e5:78:c0:e3:38:06:00:8f:4b: 64:59:83:d9:cc:c9:8e:99:22:d4:76:f2:2b:21:80: 2c:15:e3:3b:68:44:ac:8b:41:f7:30:d9:0e:00:a0: 76:33:b4:0c:56:59:62:92:33:d2:68:f7:3f:78:b3: 40:ef:29:e9:34:a3:8e:f7:87:81:90:a6:dc:51:c7: 78:49:f9:88:e9:6f:72:17:0a:b6:38:12:88:ba:a5: 5a:cc:97:06:8b:0a:30:94:91:91:d2:4f:f8:29:df: d4:8e:73:d0:0e:51:23:7d:e5:c4:e3:b1:84:3c:b7: 5f:25:24:c4:98:63:48:ec:c9:26:ff:9b:06:92:34: 35:8a:d2:81:04:14:e5:4f:ce:9d:d3:bd:3c:b3:c5: 67:9a:ca:86:e5:8d:22:cf:d8:eb:ce:cb:c7:9b:41: 3d:cb:29:b5:3e:ee:7c:44:e4:c2:ac:82:56:a7:d0: 2d:10:78:a2:d9:88:ff:94:4e:94:3a:5a:1e:17:83: 9b:8f:70:24:07:c3:28:78:87:10:88:b3:d7:55:c8: b6:50:2a:0b:ab:60:dc:c6:22:8c:62:c6:df:f2:ef: 85:b0:bb:af:c5:da:17:a3:90:df:ee:e8:4a:dd:c5: 3a:2f:bd:02:d7:0c:00:57:b3:20:6a:81:54:0b:b3: d8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:0A:70:AC:4A:61:8E:DE:C2:D1:BB:4F:A9:A3:DD:D7:2F:3B:DC:A1 X509v3 Authority Key Identifier: keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:4f:e6:d6:a9:c5:63:73:c6:58:55:3d:cd:52:2e:f6:ec:6c: 24:8e:68:04:ba:e1:ef:b0:e8:c3:7c:32:d9:64:c7:2d:29:84: af:a8:29:05:78:3e:72:5a:9a:1c:64:a4:bf:0e:19:94:2a:4c: 06:7c:38:e4:9c:06:de:04:b5:4e:4a:fd:7f:03:21:55:50:8f: 87:d5:bd:9f:9e:fd:0f:1a:25:ba:11:92:6a:7a:0d:94:10:29: eb:34:3f:50:ba:f1:d5:2f:af:bd:c1:94:96:c7:b8:7c:8f:e8: 7c:51:7f:81:a5:cd:04:30:5a:3a:a6:31:72:17:8a:5b:a1:44: 1e:28:de:90:07:c5:eb:47:77:6c:f9:92:49:23:68:8b:67:3d: 1a:46:2f:07:56:0c:a1:85:84:50:0f:4b:f2:f9:e9:4a:b1:ef: 2a:ad:a0:0c:6a:81:94:14:4c:89:39:55:26:af:a4:5c:06:ad: df:19:aa:b2:90:28:8d:9b:8c:b7:fd:31:63:1b:55:59:c5:67: f9:6e:e1:3a:ad:fc:72:7d:11:d3:79:69:a0:f9:cc:90:04:89: f5:2f:69:d0:c6:57:8f:86:fd:cf:14:af:a5:59:dc:a5:7e:22: 7e:03:82:f9:17:9b:41:5a:88:f0:3e:f1:04:f8:3b:b9:a3:61: d4:5e:f0:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv0XuoI7ntzhwj3PwSD2RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MmM5M2QyNjY4NTI3ODhlNDk5ODJkOWY3YTYyMGRiNmQ5 ZjU4OGQwHhcNMjUxMjA1MjMwMDU4WhcNMjUxMjA2MjMwMDU4WjAzMTEwLwYDVQQD EygwZTBhNzBhYzRhNjE4ZWRlYzJkMWJiNGZhOWEzZGRkNzJmM2JkY2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PjdL4nleMDjOAYAj0tkWYPZzMmO mSLUdvIrIYAsFeM7aESsi0H3MNkOAKB2M7QMVllikjPSaPc/eLNA7ynpNKOO94eB kKbcUcd4SfmI6W9yFwq2OBKIuqVazJcGiwowlJGR0k/4Kd/UjnPQDlEjfeXE47GE PLdfJSTEmGNI7Mkm/5sGkjQ1itKBBBTlT86d0708s8VnmsqG5Y0iz9jrzsvHm0E9 yym1Pu58ROTCrIJWp9AtEHii2Yj/lE6UOloeF4Obj3AkB8MoeIcQiLPXVci2UCoL q2DcxiKMYsbf8u+FsLuvxdoXo5Df7uhK3cU6L70C1wwAV7MgaoFUC7PYuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA4KcKxKYY7ewtG7T6mj3dcvO9yhMB8GA1UdIwQY MBaAFCgsk9JmhSeI5JmC2femINttn1iNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8zODJmZjQtNGZjMi00MzAyLWFmOTAt OTZhZGZmZTJlODZhLzEvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8zODJmZjQtNGZjMi00MzAyLWFmOTAtOTZhZGZmZTJlODZh LzEvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUk/m1qnF Y3PGWFU9zVIu9uxsJI5oBLrh77Dow3wy2WTHLSmEr6gpBXg+clqaHGSkvw4ZlCpM Bnw45JwG3gS1Tkr9fwMhVVCPh9W9n579DxoluhGSanoNlBAp6zQ/ULrx1S+vvcGU lse4fI/ofFF/gaXNBDBaOqYxcheKW6FEHijekAfF60d3bPmSSSNoi2c9GkYvB1YM oYWEUA9L8vnpSrHvKq2gDGqBlBRMiTlVJq+kXAat3xmqspAojZuMt/0xYxtVWcVn +W7hOq38cn0R03lpoPnMkASJ9S9p0MZXj4b9zxSvpVncpX4ifgOC+RebQVqI8D7x BPg7uaNh1F7wmQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:13 2025 by rpki-client