This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft File: rs1kyXg317-sBmN92VK97eDCXYU.mft (raw, json) Hash identifier: UH5clT2jl8uK0qGWDgRoYA7PF9pClVqsTfOAZfhpPVI= Subject key identifier: D6:B4:AD:7A:5E:EA:87:CF:74:C1:7E:B8:45:09:0E:D6:38:A0:87:EF Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85 Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85 Certificate serial: 019AF19AD25D7EDD908DFF79AE1D803342E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft Manifest number: 107F Signing time: Sat 06 Dec 2025 03:00:46 +0000 Manifest this update: Sat 06 Dec 2025 03:00:46 +0000 Manifest next update: Sun 07 Dec 2025 03:00:46 +0000 Files and hashes: 1: 1-T8CKegBPOvx5rZQQVTHJ11NZfg.roa (hash: oTgrbLpJLd4bRqFVMFFivKpiZVrk/3YZuKNsOWKM6jM=) 2: 17xOhQoyIYZB59OnKrsT-dwllSw.roa (hash: KCMu12vyicYfkSRRUkeo8o3fEfjAYF/JgjW23i3oXrg=) 3: FsSFEoZYb3Nl-hkkgjVPUd2IvDA.roa (hash: Fqkp/m22ufWmmjenywmk6qhO70aCJ2/zGhbzol+bOEg=) 4: Umj2rbjqE8HIV-ruGeVeqZYwg9s.roa (hash: /89yG0WnFcE05IMFp3mM3/qP9TrscwAHv2Gfhcc6Cj0=) 5: rs1kyXg317-sBmN92VK97eDCXYU.crl (hash: W71+fGUMjjq03Jcsjl5sH9njHf2NKAzC4Kbk6cjrX7M=) 6: sZB9qJRdylpTdvF1XtaqqpNl-OY.roa (hash: lRBjFzzRtx2AcctUxGDd+P1zYD8sp2IpXYC35kAzyFQ=) 7: vxhTN1By4lMiNMyOzxGwyr7QhR4.roa (hash: Ifos+E1fPLCwRcBMt2WCu8lSioPDUu6uUrn5J7VTK/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:d2:5d:7e:dd:90:8d:ff:79:ae:1d:80:33:42:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85 Validity Not Before: Dec 6 03:00:46 2025 GMT Not After : Dec 7 03:00:46 2025 GMT Subject: CN=d6b4ad7a5eea87cf74c17eb845090ed638a087ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d2:cc:8b:69:48:08:26:ba:47:46:58:30:46: c0:5e:0e:3f:58:96:64:8d:c7:76:b4:0e:18:1e:81: 61:4f:fc:5f:39:20:e4:92:95:eb:aa:75:65:51:33: a5:e5:38:e7:49:ae:69:20:0b:d1:e4:7f:f8:d0:e2: ac:f9:9d:16:64:92:6c:b4:89:bb:d2:e7:43:6d:6c: 89:06:ac:91:76:98:c1:a7:ae:6c:42:cb:26:cf:a7: c0:58:ed:d0:a3:eb:94:11:cb:ac:86:8d:53:51:52: 5f:fd:4a:39:26:9d:48:4d:d9:7b:59:a4:88:3a:70: 89:4e:b6:cd:5a:f5:00:c2:f6:b6:64:d7:f1:4d:76: 61:2c:bf:f7:1f:85:5b:d5:0f:1d:b6:f1:b7:41:d2: 95:e0:00:c4:8b:71:9f:f5:b7:59:c8:c0:28:39:be: bd:d9:15:50:c1:c7:64:2a:31:d7:37:20:29:d7:65: b5:73:d7:d2:90:cd:0f:49:f2:03:ef:6a:b4:35:9a: c5:3a:9a:5c:a5:9f:64:04:5b:ee:7d:38:97:cb:b4: 97:7c:88:58:7e:d8:a9:48:53:16:ef:e9:87:3f:1a: fc:f0:f2:40:94:84:78:1e:1f:bc:f9:40:ed:33:d2: 30:95:15:fa:f4:2e:8e:5a:20:3f:da:13:e8:91:06: f6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B4:AD:7A:5E:EA:87:CF:74:C1:7E:B8:45:09:0E:D6:38:A0:87:EF X509v3 Authority Key Identifier: keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:57:8b:9c:fd:61:05:2b:ac:71:a6:be:ed:81:cd:36:a7:40: d3:3a:80:73:b1:1e:c6:0c:20:5b:03:6c:d4:17:55:dc:41:d1: ff:eb:51:4e:ef:35:16:33:89:39:3f:65:e3:aa:fa:23:79:ca: 79:f6:4a:aa:fc:46:84:49:b8:f2:3c:04:b9:79:ed:43:c6:ff: 82:fd:b6:be:c4:8f:ed:72:5f:f8:a4:18:db:0b:89:4e:51:85: 9e:78:ac:6d:5d:d0:b9:01:e1:c0:29:3f:f0:9d:da:c6:28:91: a1:33:07:d2:c3:0c:17:a1:8f:5e:0f:65:4f:a5:45:28:c1:72: e6:35:9b:eb:65:63:97:2d:82:ed:bc:b9:06:e7:bb:47:4c:ba: ff:14:6b:03:e3:59:1e:ec:cd:1c:86:5f:2b:05:63:ae:5c:06: df:06:48:53:71:d1:db:4d:58:c4:53:58:ea:33:05:3e:5a:ec: 3f:ef:98:80:c2:51:ae:e6:af:30:44:47:d4:ef:a3:75:57:a5: e6:8e:29:5a:9d:44:f8:6d:20:a3:01:11:b3:6d:e2:83:d8:9f: 51:37:5b:df:9a:1d:94:bd:df:30:3f:d6:ef:de:7e:50:5b:97: f5:27:10:04:15:77:b7:a3:86:e7:b8:f8:2f:d3:93:58:e4:87: 37:91:88:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmtJdft2Qjf95rh2AM0LhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlY2Q2NGM5NzgzN2Q3YmZhYzA2NjM3ZGQ5NTJiZGVkZTBj MjVkODUwHhcNMjUxMjA2MDMwMDQ2WhcNMjUxMjA3MDMwMDQ2WjAzMTEwLwYDVQQD EyhkNmI0YWQ3YTVlZWE4N2NmNzRjMTdlYjg0NTA5MGVkNjM4YTA4N2VmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztLMi2lICCa6R0ZYMEbAXg4/WJZk jcd2tA4YHoFhT/xfOSDkkpXrqnVlUTOl5TjnSa5pIAvR5H/40OKs+Z0WZJJstIm7 0udDbWyJBqyRdpjBp65sQssmz6fAWO3Qo+uUEcusho1TUVJf/Uo5Jp1ITdl7WaSI OnCJTrbNWvUAwva2ZNfxTXZhLL/3H4Vb1Q8dtvG3QdKV4ADEi3Gf9bdZyMAoOb69 2RVQwcdkKjHXNyAp12W1c9fSkM0PSfID72q0NZrFOppcpZ9kBFvufTiXy7SXfIhY ftipSFMW7+mHPxr88PJAlIR4Hh+8+UDtM9IwlRX69C6OWiA/2hPokQb2sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNa0rXpe6ofPdMF+uEUJDtY4oIfvMB8GA1UdIwQY MBaAFK7NZMl4N9e/rAZjfdlSve3gwl2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnMxa3lYZzMxNy1zQm1OOTJWSzk3ZURDWFlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi81OTJkNGYtZDcxZS00ZThiLWE2MzIt MWVjZGUxNzkxNTExLzEvcnMxa3lYZzMxNy1zQm1OOTJWSzk3ZURDWFlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi81OTJkNGYtZDcxZS00ZThiLWE2MzItMWVjZGUxNzkxNTEx LzEvcnMxa3lYZzMxNy1zQm1OOTJWSzk3ZURDWFlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiFeLnP1h BSuscaa+7YHNNqdA0zqAc7EexgwgWwNs1BdV3EHR/+tRTu81FjOJOT9l46r6I3nK efZKqvxGhEm48jwEuXntQ8b/gv22vsSP7XJf+KQY2wuJTlGFnnisbV3QuQHhwCk/ 8J3axiiRoTMH0sMMF6GPXg9lT6VFKMFy5jWb62Vjly2C7by5Bue7R0y6/xRrA+NZ HuzNHIZfKwVjrlwG3wZIU3HR201YxFNY6jMFPlrsP++YgMJRruavMERH1O+jdVel 5o4pWp1E+G0gowERs23ig9ifUTdb35odlL3fMD/W795+UFuX9ScQBBV3t6OG57j4 L9OTWOSHN5GIcw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:12:05 2025 by rpki-client