This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft File: rs1kyXg317-sBmN92VK97eDCXYU.mft (raw, json) Hash identifier: b67wAB4IM52LMXQXQbN/QAQxizkdNCZRsssp/FSA454= Subject key identifier: 6A:AF:F5:B7:74:DE:24:DC:95:4B:15:B2:EE:A8:51:8A:EC:9D:44:04 Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85 Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85 Certificate serial: 019B31563063449287EE70227D7568D4FD3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft Manifest number: 10A0 Signing time: Thu 18 Dec 2025 12:01:30 +0000 Manifest this update: Thu 18 Dec 2025 12:01:30 +0000 Manifest next update: Fri 19 Dec 2025 12:01:30 +0000 Files and hashes: 1: 1-T8CKegBPOvx5rZQQVTHJ11NZfg.roa (hash: oTgrbLpJLd4bRqFVMFFivKpiZVrk/3YZuKNsOWKM6jM=) 2: 17xOhQoyIYZB59OnKrsT-dwllSw.roa (hash: KCMu12vyicYfkSRRUkeo8o3fEfjAYF/JgjW23i3oXrg=) 3: FsSFEoZYb3Nl-hkkgjVPUd2IvDA.roa (hash: Fqkp/m22ufWmmjenywmk6qhO70aCJ2/zGhbzol+bOEg=) 4: Umj2rbjqE8HIV-ruGeVeqZYwg9s.roa (hash: /89yG0WnFcE05IMFp3mM3/qP9TrscwAHv2Gfhcc6Cj0=) 5: rs1kyXg317-sBmN92VK97eDCXYU.crl (hash: S+C4j10nk3iIXKK/e88tcwCCU5pRm618ofTRSs2E9Yo=) 6: sZB9qJRdylpTdvF1XtaqqpNl-OY.roa (hash: lRBjFzzRtx2AcctUxGDd+P1zYD8sp2IpXYC35kAzyFQ=) 7: vxhTN1By4lMiNMyOzxGwyr7QhR4.roa (hash: Ifos+E1fPLCwRcBMt2WCu8lSioPDUu6uUrn5J7VTK/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 12:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:56:30:63:44:92:87:ee:70:22:7d:75:68:d4:fd:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85 Validity Not Before: Dec 18 12:01:30 2025 GMT Not After : Dec 19 12:01:30 2025 GMT Subject: CN=6aaff5b774de24dc954b15b2eea8518aec9d4404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c3:ec:54:a1:2a:b7:5d:7f:a6:1a:09:83:30: f1:0d:0a:76:ed:44:b7:32:57:15:7b:2a:42:5a:46: 21:a8:1b:c3:6e:27:13:ff:6a:0a:44:bc:4f:ab:00: 37:03:ab:95:e1:c6:bb:17:25:92:d3:fb:6b:56:f4: 25:52:d9:60:37:08:3e:88:b3:82:5a:ba:42:5b:5b: a1:6a:9c:0b:bd:44:4e:d5:74:7b:90:69:54:b2:c8: e4:51:c7:8b:c7:75:94:da:0a:93:23:44:dc:67:a7: f1:d9:f6:e0:c9:71:eb:1f:d3:bb:9b:d9:7b:78:2c: 7d:00:0f:30:5a:d2:13:bb:52:2e:8d:3e:ee:ce:16: e6:2b:8a:9f:fe:70:7a:b7:14:32:9c:a8:a7:be:eb: bc:79:8e:95:3a:4e:26:3c:d3:8a:96:df:89:ff:fa: 57:ab:cf:b4:87:69:2f:00:b6:6e:df:d5:34:7d:be: a8:d8:86:c7:65:b3:d1:04:01:61:f2:ab:66:a3:29: 3e:1d:ae:44:af:29:76:7e:1b:d1:6e:d4:eb:13:a5: d0:47:81:91:37:f9:d8:81:5b:e2:72:ad:70:0d:15: 40:b3:57:9b:0a:ca:ec:dc:23:62:5f:db:be:fc:67: 3c:a6:f3:16:2a:bb:54:8d:03:4d:92:43:b9:6a:46: ce:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AF:F5:B7:74:DE:24:DC:95:4B:15:B2:EE:A8:51:8A:EC:9D:44:04 X509v3 Authority Key Identifier: keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:ad:d2:70:e9:c5:36:71:19:9e:3c:e6:e8:fc:9b:a3:cf:6a: 2a:5c:9d:56:d3:df:82:6f:98:89:9c:88:de:8b:e6:de:a4:38: a6:43:fa:4b:16:b7:8c:30:2f:74:4d:05:68:21:99:34:ff:d7: c4:f7:db:d1:a8:91:20:0f:1e:a3:9f:3a:7b:e1:96:bf:a9:79: a9:66:e5:4d:14:aa:61:e2:4d:53:79:24:c7:69:22:11:3b:ad: 9f:20:2c:07:d2:58:18:8c:87:e4:ae:97:04:95:53:32:58:67: 76:24:3f:de:7e:f1:ac:e5:97:6a:09:b0:b4:7d:6d:cb:70:15: cd:60:e1:24:0c:c0:58:84:fd:ab:69:d2:45:a0:f2:8d:ef:68: 0e:59:e5:96:18:b3:76:6d:b0:2c:b5:84:93:13:bc:38:52:b1: 56:8b:c2:22:93:10:a8:20:ab:80:53:fc:f8:13:49:9c:49:60: 6a:b5:48:d2:86:5f:fd:5e:41:73:ed:79:61:42:d9:ed:05:e6: 11:76:58:2f:9c:4b:98:e0:be:5d:31:68:3e:e0:90:61:3a:6c: 84:a8:73:9c:07:c7:74:5a:6f:04:42:c1:11:8a:68:b4:e5:03: c0:ac:f2:61:70:55:6b:53:f3:87:3d:8a:25:68:73:a4:8c:67: 08:b1:81:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxVjBjRJKH7nAifXVo1P06MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlY2Q2NGM5NzgzN2Q3YmZhYzA2NjM3ZGQ5NTJiZGVkZTBj MjVkODUwHhcNMjUxMjE4MTIwMTMwWhcNMjUxMjE5MTIwMTMwWjAzMTEwLwYDVQQD Eyg2YWFmZjViNzc0ZGUyNGRjOTU0YjE1YjJlZWE4NTE4YWVjOWQ0NDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8PsVKEqt11/phoJgzDxDQp27US3 MlcVeypCWkYhqBvDbicT/2oKRLxPqwA3A6uV4ca7FyWS0/trVvQlUtlgNwg+iLOC WrpCW1uhapwLvURO1XR7kGlUssjkUceLx3WU2gqTI0TcZ6fx2fbgyXHrH9O7m9l7 eCx9AA8wWtITu1IujT7uzhbmK4qf/nB6txQynKinvuu8eY6VOk4mPNOKlt+J//pX q8+0h2kvALZu39U0fb6o2IbHZbPRBAFh8qtmoyk+Ha5Eryl2fhvRbtTrE6XQR4GR N/nYgVvicq1wDRVAs1ebCsrs3CNiX9u+/Gc8pvMWKrtUjQNNkkO5akbOLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqv9bd03iTclUsVsu6oUYrsnUQEMB8GA1UdIwQY MBaAFK7NZMl4N9e/rAZjfdlSve3gwl2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnMxa3lYZzMxNy1zQm1OOTJWSzk3ZURDWFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81OTJkNGYtZDcxZS00ZThiLWE2MzIt MWVjZGUxNzkxNTExLzEvcnMxa3lYZzMxNy1zQm1OOTJWSzk3ZURDWFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi81OTJkNGYtZDcxZS00ZThiLWE2MzItMWVjZGUxNzkxNTEx LzEvcnMxa3lYZzMxNy1zQm1OOTJWSzk3ZURDWFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdK3ScOnF NnEZnjzm6Pybo89qKlydVtPfgm+YiZyI3ovm3qQ4pkP6Sxa3jDAvdE0FaCGZNP/X xPfb0aiRIA8eo586e+GWv6l5qWblTRSqYeJNU3kkx2kiETutnyAsB9JYGIyH5K6X BJVTMlhndiQ/3n7xrOWXagmwtH1ty3AVzWDhJAzAWIT9q2nSRaDyje9oDlnllhiz dm2wLLWEkxO8OFKxVovCIpMQqCCrgFP8+BNJnElgarVI0oZf/V5Bc+15YULZ7QXm EXZYL5xLmOC+XTFoPuCQYTpshKhznAfHdFpvBELBEYpotOUDwKzyYXBVa1Pzhz2K JWhzpIxnCLGBuA== -----END CERTIFICATE-----Generated at Thu Dec 18 21:48:23 2025 by rpki-client