This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft File: kAhyNvFhxccF73Pf6eXjmG5xJsg.mft (raw, json) Hash identifier: i2jFuIw86vP/kDd0VOIYoK6TGTsQnb97KayTn2Ms4DQ= Subject key identifier: 1C:4A:1B:CD:E8:16:13:BA:47:3B:E3:26:90:79:72:D0:C7:28:FC:22 Authority key identifier: 90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8 Certificate issuer: /CN=90087236f161c5c705ef73dfe9e5e3986e7126c8 Certificate serial: 019AF31B96B42ACC802DCE638632DA602AA0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft Manifest number: 071D Signing time: Sat 06 Dec 2025 10:01:02 +0000 Manifest this update: Sat 06 Dec 2025 10:01:02 +0000 Manifest next update: Sun 07 Dec 2025 10:01:02 +0000 Files and hashes: 1: ilmUYJP9An2tvy3PssJlCv8HfSc.roa (hash: 1qXew5Oe7BdIwNw0qvNlQOP+TeLMGt2S2brGQ7Jg7lc=) 2: kAhyNvFhxccF73Pf6eXjmG5xJsg.crl (hash: nLjnpPNeVJUdQyqetIXfIOVOl6qFgvUOe0KRen5FXVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:96:b4:2a:cc:80:2d:ce:63:86:32:da:60:2a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90087236f161c5c705ef73dfe9e5e3986e7126c8 Validity Not Before: Dec 6 10:01:02 2025 GMT Not After : Dec 7 10:01:02 2025 GMT Subject: CN=1c4a1bcde81613ba473be326907972d0c728fc22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:68:46:4c:4c:a4:f7:fc:e4:93:b4:aa:2a:6b: 10:a7:7a:48:6b:29:09:38:a0:fc:54:33:10:ea:a2: 15:8a:d6:1c:8e:7f:41:1f:30:5a:ef:d6:ba:bd:e5: 99:21:f2:f4:c0:98:45:34:de:30:98:3e:d9:ef:14: fa:75:f6:f1:3b:ad:82:36:05:21:47:be:b1:09:26: 7b:87:1c:0d:85:52:c3:e4:5d:0a:b7:6a:26:c8:29: e2:10:00:bc:ef:ba:05:42:30:27:66:0b:90:e0:d3: 8a:35:39:4b:28:5f:75:e0:09:da:3c:66:00:48:0f: 80:18:5b:e9:24:af:09:23:32:c5:97:97:fd:d5:f4: 50:20:f9:f0:7c:98:c6:53:e5:eb:0d:4b:d8:92:6b: 71:49:43:6e:ca:76:c7:20:d5:2d:8d:f1:ab:39:35: 78:6e:88:19:05:47:68:41:9e:c2:c7:aa:f6:63:ca: a0:87:15:3d:e9:90:a7:ed:4d:6f:a9:58:19:1b:67: b1:8a:1f:b1:0d:33:be:9a:14:24:b9:86:2c:c0:40: 65:e1:50:7d:f9:b6:a5:6a:5f:20:c4:6b:75:7f:24: d7:ea:56:8c:ac:eb:b4:e9:1d:df:5f:54:5f:e2:f7: 3e:cd:13:dc:3f:67:3c:34:d6:c5:db:41:f8:49:db: fb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4A:1B:CD:E8:16:13:BA:47:3B:E3:26:90:79:72:D0:C7:28:FC:22 X509v3 Authority Key Identifier: keyid:90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:8e:9f:5a:51:5e:2c:d8:30:e1:94:d2:7b:95:0f:3d:a4:25: 56:f6:21:98:06:e1:67:d5:b5:98:d7:1a:c4:c9:57:f6:ea:61: 9a:03:c7:91:cc:2f:8c:18:c2:c3:d9:b4:14:85:7b:15:83:0a: 81:36:74:72:bb:cc:13:bb:e2:89:9e:56:25:29:0b:8d:7e:0a: 45:56:46:27:26:d8:c8:66:b9:db:9f:7b:53:aa:5d:47:d9:bf: 55:d3:d7:dd:5d:11:4f:61:b5:3f:de:8e:a6:1b:04:8e:13:57: c4:e1:19:d6:a1:d5:97:67:80:e1:9f:2f:c2:85:10:57:66:ee: b7:b2:53:25:8b:07:31:f5:d7:9f:a6:b7:07:37:fa:bd:34:f5: 0b:8b:bf:db:90:17:46:63:19:b8:6d:05:2f:fd:e1:f0:92:2e: 2f:0f:5a:db:30:d5:88:54:21:ec:cd:2b:bc:24:95:84:e8:29: c1:48:50:ce:e0:29:f4:22:de:72:f5:0c:3d:16:09:3d:2d:c9: e0:75:cd:c6:40:77:d5:33:41:42:85:f8:8f:c8:ef:28:a4:d9: 89:c6:ad:b5:91:f1:d1:08:4e:9a:44:42:18:84:41:af:a3:07: 79:a4:5e:ee:ee:b3:43:37:c6:e5:42:4d:74:f0:17:91:82:72: c4:5c:bb:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG5a0KsyALc5jhjLaYCqgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwMDg3MjM2ZjE2MWM1YzcwNWVmNzNkZmU5ZTVlMzk4NmU3 MTI2YzgwHhcNMjUxMjA2MTAwMTAyWhcNMjUxMjA3MTAwMTAyWjAzMTEwLwYDVQQD EygxYzRhMWJjZGU4MTYxM2JhNDczYmUzMjY5MDc5NzJkMGM3MjhmYzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGhGTEyk9/zkk7SqKmsQp3pIaykJ OKD8VDMQ6qIVitYcjn9BHzBa79a6veWZIfL0wJhFNN4wmD7Z7xT6dfbxO62CNgUh R76xCSZ7hxwNhVLD5F0Kt2omyCniEAC877oFQjAnZguQ4NOKNTlLKF914AnaPGYA SA+AGFvpJK8JIzLFl5f91fRQIPnwfJjGU+XrDUvYkmtxSUNuynbHINUtjfGrOTV4 bogZBUdoQZ7Cx6r2Y8qghxU96ZCn7U1vqVgZG2exih+xDTO+mhQkuYYswEBl4VB9 +balal8gxGt1fyTX6laMrOu06R3fX1Rf4vc+zRPcP2c8NNbF20H4Sdv7YwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBxKG83oFhO6RzvjJpB5ctDHKPwiMB8GA1UdIwQY MBaAFJAIcjbxYcXHBe9z3+nl45hucSbIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0FoeU52Rmh4Y2NGNzNQZjZlWGptRzV4SnNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9kZjgzM2ItYzg3YS00MWZjLWJhMmUt ZTUzYzVlYzVkNDAyLzEva0FoeU52Rmh4Y2NGNzNQZjZlWGptRzV4SnNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9kZjgzM2ItYzg3YS00MWZjLWJhMmUtZTUzYzVlYzVkNDAy LzEva0FoeU52Rmh4Y2NGNzNQZjZlWGptRzV4SnNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADY6fWlFe LNgw4ZTSe5UPPaQlVvYhmAbhZ9W1mNcaxMlX9uphmgPHkcwvjBjCw9m0FIV7FYMK gTZ0crvME7viiZ5WJSkLjX4KRVZGJybYyGa52597U6pdR9m/VdPX3V0RT2G1P96O phsEjhNXxOEZ1qHVl2eA4Z8vwoUQV2but7JTJYsHMfXXn6a3Bzf6vTT1C4u/25AX RmMZuG0FL/3h8JIuLw9a2zDViFQh7M0rvCSVhOgpwUhQzuAp9CLecvUMPRYJPS3J 4HXNxkB31TNBQoX4j8jvKKTZicattZHx0QhOmkRCGIRBr6MHeaRe7u6zQzfG5UJN dPAXkYJyxFy7dw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:24:56 2025 by rpki-client