This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json) Hash identifier: /9uHSg5oMNAkWUB+JSu6CIM+QI3raUHZFLoLPu3PVPM= Subject key identifier: AA:9B:1F:80:A1:06:FC:E3:43:6C:4B:14:56:80:5D:31:83:01:2E:05 Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Certificate serial: 019AF2ADC597F16221E9D89FF4C5BDBA76D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft Manifest number: 054B Signing time: Sat 06 Dec 2025 08:01:05 +0000 Manifest this update: Sat 06 Dec 2025 08:01:05 +0000 Manifest next update: Sun 07 Dec 2025 08:01:05 +0000 Files and hashes: 1: 2Erepc7c7P1VRx_bLNiYu7weRzk.roa (hash: k2SMyfwtPMsgu8pAJX36t6HmVMk0LqM07DF6s7B27wo=) 2: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: YlhBg1shUk44U7cSwhjmfjizdmjhz6mbF9BZVviHaaQ=) 3: L_UMuGgef__KCIxYo719-pYnMY0.roa (hash: qQUOKChy81kdhWvOW3DW3K7T6hbp7d9kPXUCB0/Qv9Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:c5:97:f1:62:21:e9:d8:9f:f4:c5:bd:ba:76:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Validity Not Before: Dec 6 08:01:05 2025 GMT Not After : Dec 7 08:01:05 2025 GMT Subject: CN=aa9b1f80a106fce3436c4b1456805d3183012e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:78:a5:c4:6b:84:b7:33:09:c4:a0:5d:f6:b5: 00:fa:20:d7:81:1d:71:ab:01:5a:85:2d:33:27:20: c5:91:d6:34:b9:80:9a:03:05:ef:4e:c8:b3:b6:96: f4:aa:1e:72:48:e8:35:6d:fd:0d:d4:1e:2c:eb:6b: ac:8c:4d:7e:6c:1d:d2:69:0e:a1:60:9c:62:a5:55: 41:8f:ae:8f:bf:7d:f6:75:48:de:c5:8d:f9:39:ca: 82:90:80:58:34:15:ef:cb:cf:a7:77:4f:38:b0:43: b9:56:99:ed:df:ff:52:93:f8:85:dd:dc:04:5e:b4: cb:07:70:e2:d2:8e:4b:90:e7:5f:27:51:8f:c1:56: 61:e1:57:e6:26:12:fa:2c:d2:de:93:e0:6f:ad:7a: b6:7b:52:39:bc:98:c6:ff:23:10:10:4d:43:c1:3d: 4a:47:ef:c0:33:24:13:27:26:34:34:97:25:41:6d: ef:17:db:6e:78:35:90:2a:52:d2:c4:7a:8b:76:f1: 3b:43:70:fb:2a:19:f1:06:dc:c6:0b:3e:89:12:d0: 2c:7c:98:59:e1:ed:91:79:85:54:53:88:a5:a5:a3: 18:78:a4:9e:69:16:4c:48:86:a3:ef:d1:b2:3c:81: 74:1b:7a:ac:85:11:b2:a1:7a:df:71:0f:aa:c7:bc: 27:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9B:1F:80:A1:06:FC:E3:43:6C:4B:14:56:80:5D:31:83:01:2E:05 X509v3 Authority Key Identifier: keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:be:21:e8:db:c7:d8:a5:42:27:ea:08:9f:25:d3:fa:44:d7: b5:b7:71:ba:b8:a1:f1:06:26:89:8a:f2:d9:00:a7:5d:34:ff: 26:ab:cc:94:45:a1:03:82:99:b0:38:40:de:30:82:65:3d:86: b6:c5:e2:2e:58:c8:10:57:3d:ca:67:62:d0:ce:ab:65:8c:9d: 9d:5a:8d:69:ae:3e:d2:a5:9f:b8:48:fa:63:8f:65:4f:94:5d: 9a:e7:eb:5e:0a:fa:9d:63:80:32:4d:22:07:52:01:60:ae:e1: 89:cd:b8:37:01:91:e4:40:bb:b7:84:7e:49:77:93:1f:2d:e5: c1:cd:2a:1f:7f:61:0f:79:a0:f1:f0:74:e5:d5:a4:c5:3a:00: 30:9e:c4:e0:ab:fd:8e:57:32:57:e1:b6:0c:b3:f6:8e:1a:5c: df:47:19:a7:9e:b8:b8:50:4c:c9:91:eb:9d:1d:a8:80:dc:d6: a2:c7:1e:5d:30:dd:93:af:aa:7c:1b:ac:6b:fe:59:6a:0b:5f: 34:bb:4d:28:57:2a:2f:9f:8e:d2:94:f2:4c:6a:b5:17:b6:75: ba:79:3a:e9:04:90:f6:79:0b:9c:88:e6:3c:8c:27:95:36:48: 34:56:bf:1e:d5:6e:98:71:ec:d1:67:92:bc:bf:c9:ee:b3:02: d5:bf:29:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrcWX8WIh6dif9MW9unbRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODVjYzQzZDgwNmEyMWI2MzMzMDIxOWViNjM4YmIxYmE0 OWFlODAwHhcNMjUxMjA2MDgwMTA1WhcNMjUxMjA3MDgwMTA1WjAzMTEwLwYDVQQD EyhhYTliMWY4MGExMDZmY2UzNDM2YzRiMTQ1NjgwNWQzMTgzMDEyZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7XilxGuEtzMJxKBd9rUA+iDXgR1x qwFahS0zJyDFkdY0uYCaAwXvTsiztpb0qh5ySOg1bf0N1B4s62usjE1+bB3SaQ6h YJxipVVBj66Pv332dUjexY35OcqCkIBYNBXvy8+nd084sEO5Vpnt3/9Sk/iF3dwE XrTLB3Di0o5LkOdfJ1GPwVZh4VfmJhL6LNLek+BvrXq2e1I5vJjG/yMQEE1DwT1K R+/AMyQTJyY0NJclQW3vF9tueDWQKlLSxHqLdvE7Q3D7KhnxBtzGCz6JEtAsfJhZ 4e2ReYVUU4ilpaMYeKSeaRZMSIaj79GyPIF0G3qshRGyoXrfcQ+qx7wn8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqbH4ChBvzjQ2xLFFaAXTGDAS4FMB8GA1UdIwQY MBaAFCmFzEPYBqIbYzMCGetji7G6Sa6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzIt NGRmODg0MGVmYjE3LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzItNGRmODg0MGVmYjE3 LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANb4h6NvH 2KVCJ+oInyXT+kTXtbdxurih8QYmiYry2QCnXTT/JqvMlEWhA4KZsDhA3jCCZT2G tsXiLljIEFc9ymdi0M6rZYydnVqNaa4+0qWfuEj6Y49lT5RdmufrXgr6nWOAMk0i B1IBYK7hic24NwGR5EC7t4R+SXeTHy3lwc0qH39hD3mg8fB05dWkxToAMJ7E4Kv9 jlcyV+G2DLP2jhpc30cZp564uFBMyZHrnR2ogNzWosceXTDdk6+qfBusa/5Zagtf NLtNKFcqL5+O0pTyTGq1F7Z1unk66QSQ9nkLnIjmPIwnlTZINFa/HtVumHHs0WeS vL/J7rMC1b8pkg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:15 2025 by rpki-client