This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft File: KpTH34VXtlNEfD4G-0s3LVEgoiI.mft (raw, json) Hash identifier: uviGZhCfn5VyaPC2Lm9GV9pKWroRhiFA2ZuwEdeIwqg= Subject key identifier: F7:15:9C:2D:A5:B2:F7:E1:C1:89:2F:D4:12:09:8B:D5:6C:2E:1A:D0 Authority key identifier: 2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22 Certificate issuer: /CN=2a94c7df8557b653447c3e06fb4b372d5120a222 Certificate serial: 019AF0BF7D76EA14F30C0BD597558B8DFCA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft Manifest number: 1760 Signing time: Fri 05 Dec 2025 23:01:12 +0000 Manifest this update: Fri 05 Dec 2025 23:01:12 +0000 Manifest next update: Sat 06 Dec 2025 23:01:12 +0000 Files and hashes: 1: 7z2YGPcEqsEw9wB3cXl_nQ3NHO4.roa (hash: Bvn+rA+635xtyl4tft39rNzvvTGpmQ30acIvRfRFLQI=) 2: KpTH34VXtlNEfD4G-0s3LVEgoiI.crl (hash: PRIUnPp03/o/iXIFwBMWWGIBZvtdJuTk3Kyv7C6oekM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:7d:76:ea:14:f3:0c:0b:d5:97:55:8b:8d:fc:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94c7df8557b653447c3e06fb4b372d5120a222 Validity Not Before: Dec 5 23:01:12 2025 GMT Not After : Dec 6 23:01:12 2025 GMT Subject: CN=f7159c2da5b2f7e1c1892fd412098bd56c2e1ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:57:ef:ac:83:71:56:93:56:a0:e4:b0:93: 41:2c:fb:31:be:53:09:65:2d:4b:2d:3c:94:f0:cc: 29:c2:9c:82:29:bf:f4:d8:c1:eb:4e:c6:8f:3f:fb: 7b:2f:14:7c:ad:1e:9a:f8:42:06:1b:42:58:3f:e2: f2:d8:a6:09:a3:10:8e:10:67:63:ca:5a:4b:51:ee: 2e:6f:79:2c:62:78:a1:03:60:18:84:34:8c:49:4b: d2:f3:1f:e1:da:dc:90:ac:4b:92:21:0d:33:17:2f: 96:f1:33:1f:39:b1:5f:84:80:91:b7:45:c8:fe:96: bf:b2:fc:3c:c3:32:f4:1d:ea:6f:e3:9a:f9:08:d9: 28:82:dd:0a:ef:a1:2e:f6:ed:74:35:19:ec:9a:20: 5b:7a:ca:b4:c2:d9:fa:fa:9d:e7:7f:12:37:b5:99: cb:14:13:c3:0d:4d:2a:86:fd:9a:d5:f0:85:f4:3d: bc:44:38:8f:4e:3d:31:eb:42:b9:82:4f:ac:98:22: 2b:78:5c:0b:2e:32:40:f7:9c:f5:27:52:cc:73:5e: 88:87:46:62:4f:b9:30:47:f0:44:b4:0b:8e:2c:cb: 13:42:b4:1b:f9:34:f6:35:08:71:9a:d4:13:21:ce: dd:03:e2:7d:64:66:7e:00:7f:fb:4d:4e:00:d5:5b: 27:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:15:9C:2D:A5:B2:F7:E1:C1:89:2F:D4:12:09:8B:D5:6C:2E:1A:D0 X509v3 Authority Key Identifier: keyid:2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:64:ed:91:22:b5:15:6b:d3:1b:db:36:77:16:f7:8d:ed:28: 76:cb:16:bb:c9:32:03:66:e9:f9:8d:ee:6c:f7:51:7a:5c:85: 97:88:86:4c:bd:b8:ee:4e:35:a1:df:ee:f2:0e:ea:b2:c1:16: 1d:ec:5d:1e:44:19:0e:34:7e:65:88:e4:ca:64:c9:5a:83:4f: 33:cb:fd:33:ed:2a:b7:ac:71:be:3a:9a:bb:3d:39:0b:19:59: d1:5e:e7:d4:74:55:66:e4:5f:53:3f:2b:70:4b:3b:1e:2b:ae: 6c:67:e4:be:e9:7a:e1:7c:7d:79:6e:67:d6:4f:3c:6e:71:8f: 76:17:35:94:5a:98:e7:35:11:c9:b4:8f:92:b4:e5:ce:92:f4: 6f:07:d2:27:e8:14:7d:bd:52:78:9d:db:4a:a4:0d:49:fe:5c: 13:66:95:27:c5:fa:97:d7:bb:d9:56:8c:75:a4:2e:d3:eb:58: 01:c0:94:2d:9a:b0:b3:65:24:28:c1:8c:36:a9:20:de:9d:c1: c6:22:69:d2:45:bd:7f:c0:74:cb:38:8b:1c:91:98:df:10:fc: a5:ad:00:78:13:49:2c:a8:aa:af:f9:38:85:a8:2b:0b:f6:30: 3e:24:43:4f:b5:fe:1f:ab:c0:83:a2:d2:e8:59:5a:3b:be:c9: 79:b7:f7:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv3126hTzDAvVl1WLjfyoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRjN2RmODU1N2I2NTM0NDdjM2UwNmZiNGIzNzJkNTEy MGEyMjIwHhcNMjUxMjA1MjMwMTEyWhcNMjUxMjA2MjMwMTEyWjAzMTEwLwYDVQQD EyhmNzE1OWMyZGE1YjJmN2UxYzE4OTJmZDQxMjA5OGJkNTZjMmUxYWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtahX76yDcVaTVqDksJNBLPsxvlMJ ZS1LLTyU8MwpwpyCKb/02MHrTsaPP/t7LxR8rR6a+EIGG0JYP+Ly2KYJoxCOEGdj ylpLUe4ub3ksYnihA2AYhDSMSUvS8x/h2tyQrEuSIQ0zFy+W8TMfObFfhICRt0XI /pa/svw8wzL0Hepv45r5CNkogt0K76Eu9u10NRnsmiBbesq0wtn6+p3nfxI3tZnL FBPDDU0qhv2a1fCF9D28RDiPTj0x60K5gk+smCIreFwLLjJA95z1J1LMc16Ih0Zi T7kwR/BEtAuOLMsTQrQb+TT2NQhxmtQTIc7dA+J9ZGZ+AH/7TU4A1VsnYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPcVnC2lsvfhwYkv1BIJi9VsLhrQMB8GA1UdIwQY MBaAFCqUx9+FV7ZTRHw+BvtLNy1RIKIiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3BUSDM0Vlh0bE5FZkQ0Ry0wczNMVkVnb2lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC82N2NhZWUtNGMxMS00YTZmLWJmNjMt NTUxOGIwZTg2NTY2LzEvS3BUSDM0Vlh0bE5FZkQ0Ry0wczNMVkVnb2lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC82N2NhZWUtNGMxMS00YTZmLWJmNjMtNTUxOGIwZTg2NTY2 LzEvS3BUSDM0Vlh0bE5FZkQ0Ry0wczNMVkVnb2lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK2TtkSK1 FWvTG9s2dxb3je0odssWu8kyA2bp+Y3ubPdRelyFl4iGTL247k41od/u8g7qssEW HexdHkQZDjR+ZYjkymTJWoNPM8v9M+0qt6xxvjqauz05CxlZ0V7n1HRVZuRfUz8r cEs7HiuubGfkvul64Xx9eW5n1k88bnGPdhc1lFqY5zURybSPkrTlzpL0bwfSJ+gU fb1SeJ3bSqQNSf5cE2aVJ8X6l9e72VaMdaQu0+tYAcCULZqws2UkKMGMNqkg3p3B xiJp0kW9f8B0yziLHJGY3xD8pa0AeBNJLKiqr/k4hagrC/YwPiRDT7X+H6vAg6LS 6FlaO77Jebf3QQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:54 2025 by rpki-client