This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft File: KFJhMsT89rTN_3QCVWAsz53LBC8.mft (raw, json) Hash identifier: RYYnnxFmXjkPfdwVXKMhBu8b8fGDLFEno/Z2u6bfEXU= Subject key identifier: 75:57:AF:B2:DD:F9:D9:15:13:AD:5E:83:1B:DF:63:3B:86:40:A2:01 Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f Certificate serial: 019AF209409A510D591FA50BF9D177A41812 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 05:01:23 +0000 Manifest this update: Sat 06 Dec 2025 05:01:23 +0000 Manifest next update: Sun 07 Dec 2025 05:01:23 +0000 Files and hashes: 1: KFJhMsT89rTN_3QCVWAsz53LBC8.crl (hash: qLzQSLo6HzN9hYu89dlbWddYiazHKx2p5iO1SYVgzi4=) 2: ZhfTjFWerubW-wXYF5uHcQImBi0.roa (hash: ETJfKBPXF5SBOehYcFURbCVWhceZCDiTMb0cVW0YkTk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:40:9a:51:0d:59:1f:a5:0b:f9:d1:77:a4:18:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f Validity Not Before: Dec 6 05:01:23 2025 GMT Not After : Dec 7 05:01:23 2025 GMT Subject: CN=7557afb2ddf9d91513ad5e831bdf633b8640a201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a7:77:0a:cd:60:a2:06:45:4f:a5:58:07:e8: d6:d1:83:a4:68:7e:74:c0:ac:67:28:63:f0:2b:ab: 3c:6d:03:81:11:ba:06:04:5c:94:70:a1:9a:1b:25: 18:69:d5:5a:8c:6d:2d:75:bb:9b:79:87:5c:cb:02: 0a:80:96:c9:d2:0b:a6:41:45:59:dd:1c:5d:23:88: 2c:ec:28:ae:b0:92:3d:7f:b8:03:2c:be:9d:09:81: 6d:86:43:ff:45:28:ce:53:37:ba:01:85:12:f8:bc: 0f:9e:09:27:c7:b1:0d:82:9f:2b:f3:2e:8b:22:47: de:f8:a3:79:7b:f1:67:7b:72:73:7a:f3:49:94:89: 6f:ac:83:ac:ee:7d:66:dd:b2:1e:d2:95:a4:1d:46: be:3f:3b:7f:78:02:f1:13:ad:be:42:ef:45:e2:e9: 2c:08:87:bb:ab:c6:f0:8c:db:da:48:61:f4:38:da: 78:1b:f3:2d:03:22:f6:ed:ad:83:10:6f:97:2c:41: 31:68:21:22:d1:fc:cf:e7:68:1b:3d:b6:18:00:ac: c7:af:cc:2a:ad:4e:6f:e8:14:48:41:b6:58:9d:1f: ae:23:a2:8a:3b:39:e2:9d:80:6f:46:47:8d:f7:59: 57:d6:d1:52:bc:d5:2c:75:af:29:97:a4:e6:9e:60: ef:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:57:AF:B2:DD:F9:D9:15:13:AD:5E:83:1B:DF:63:3B:86:40:A2:01 X509v3 Authority Key Identifier: keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:97:47:2a:60:87:0a:26:07:dd:5d:4c:44:a8:85:73:37:ac: 98:49:77:22:39:5d:20:59:b0:a7:61:b4:63:84:7a:22:c8:5e: 14:28:d7:6f:d7:80:2b:62:a4:7f:e1:19:1a:5f:73:81:8d:21: 67:63:10:7d:b7:01:c0:df:7c:e4:49:fc:df:e7:ab:3f:93:ee: c7:38:ea:e0:6c:d0:2e:ea:f7:44:c7:a0:cc:08:68:15:4a:9f: 54:a4:3e:52:32:1f:d4:56:34:61:7b:da:ad:18:45:ec:2f:30: 7e:7c:9d:ca:43:fb:62:28:18:b7:d3:a3:7d:6b:3e:c2:23:30: fe:1f:2b:42:af:16:41:cc:16:ea:1e:33:e8:a4:f0:ef:64:76: 4e:bf:a8:c3:6d:8e:c8:49:ea:c3:af:5a:95:e2:19:4a:88:b6: a8:8e:45:94:11:09:ed:90:c7:bf:e2:f2:75:bb:07:21:99:75: e9:6c:b1:90:56:39:33:52:c8:b0:36:0e:ee:62:b4:fb:c4:42: a2:e1:4f:7c:b1:b1:7a:f9:0a:78:78:ab:8f:dc:7f:a9:6e:a7: b3:5c:a8:fb:a0:95:67:54:6d:55:d7:76:0e:d6:81:6b:95:05: b9:0a:87:6b:e3:f6:c2:3e:22:e9:cc:92:fe:b8:1b:8d:d6:10: e4:d1:eb:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUCaUQ1ZH6UL+dF3pBgSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NTI2MTMyYzRmY2Y2YjRjZGZmNzQwMjU1NjAyY2NmOWRj YjA0MmYwHhcNMjUxMjA2MDUwMTIzWhcNMjUxMjA3MDUwMTIzWjAzMTEwLwYDVQQD Eyg3NTU3YWZiMmRkZjlkOTE1MTNhZDVlODMxYmRmNjMzYjg2NDBhMjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqd3Cs1gogZFT6VYB+jW0YOkaH50 wKxnKGPwK6s8bQOBEboGBFyUcKGaGyUYadVajG0tdbubeYdcywIKgJbJ0gumQUVZ 3RxdI4gs7CiusJI9f7gDLL6dCYFthkP/RSjOUze6AYUS+LwPngknx7ENgp8r8y6L Ikfe+KN5e/Fne3JzevNJlIlvrIOs7n1m3bIe0pWkHUa+Pzt/eALxE62+Qu9F4uks CIe7q8bwjNvaSGH0ONp4G/MtAyL27a2DEG+XLEExaCEi0fzP52gbPbYYAKzHr8wq rU5v6BRIQbZYnR+uI6KKOzninYBvRkeN91lX1tFSvNUsda8pl6TmnmDvywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHVXr7Ld+dkVE61egxvfYzuGQKIBMB8GA1UdIwQY MBaAFChSYTLE/Pa0zf90AlVgLM+dywQvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC84MzE2OGItNmI0MC00ZDEyLThlZDct MWY5OTMxN2M2Yzk0LzEvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC84MzE2OGItNmI0MC00ZDEyLThlZDctMWY5OTMxN2M2Yzk0 LzEvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAppdHKmCH CiYH3V1MRKiFczesmEl3IjldIFmwp2G0Y4R6IsheFCjXb9eAK2Kkf+EZGl9zgY0h Z2MQfbcBwN985En83+erP5Puxzjq4GzQLur3RMegzAhoFUqfVKQ+UjIf1FY0YXva rRhF7C8wfnydykP7YigYt9OjfWs+wiMw/h8rQq8WQcwW6h4z6KTw72R2Tr+ow22O yEnqw69aleIZSoi2qI5FlBEJ7ZDHv+LydbsHIZl16WyxkFY5M1LIsDYO7mK0+8RC ouFPfLGxevkKeHirj9x/qW6ns1yo+6CVZ1RtVdd2DtaBa5UFuQqHa+P2wj4i6cyS /rgbjdYQ5NHrgA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:25:17 2025 by rpki-client