This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json) Hash identifier: GFThOVWTwHFuWsec78jAgXCM0z6So+Wv22v2x32gtok= Subject key identifier: FA:40:7B:13:B8:EC:F3:82:CD:19:E9:ED:A2:85:84:8F:21:7C:22:DE Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56 Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056 Certificate serial: 019AF68AC175A6EA7C9639059621469402A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft Manifest number: 09F7 Signing time: Sun 07 Dec 2025 02:01:19 +0000 Manifest this update: Sun 07 Dec 2025 02:01:19 +0000 Manifest next update: Mon 08 Dec 2025 02:01:19 +0000 Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: xg0mghszg0uPWXHJGHTaHdowyH2TRP9leJDep5YAlJM=) 2: cNLYAjPMpLbcGOrpCslyUiLMP34.roa (hash: JmHm3+B47TlFvMWFE2W9uNvIfC/wvizwOPaVYVDTxDo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:c1:75:a6:ea:7c:96:39:05:96:21:46:94:02:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056 Validity Not Before: Dec 7 02:01:19 2025 GMT Not After : Dec 8 02:01:19 2025 GMT Subject: CN=fa407b13b8ecf382cd19e9eda285848f217c22de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:ad:0f:84:92:58:29:9b:13:8f:b6:bc:4f: 6a:3e:df:2a:b9:36:a7:19:a5:0a:6f:90:09:9f:48: 40:0f:00:d2:0f:c0:31:45:70:af:51:7f:44:eb:c6: 8d:2e:6d:a8:b8:3d:6b:60:b4:52:2e:63:bf:93:5d: c0:f1:3a:fa:bd:c5:2f:87:71:ba:30:7e:5a:ae:f4: 07:09:2d:53:0e:6f:cf:d6:57:ff:29:d5:b5:9a:48: d4:f7:85:79:a2:c0:11:30:cb:f7:f7:87:8e:ad:5e: 4f:6e:26:ef:d1:b4:e9:1b:89:42:ce:e8:b3:cd:cc: 37:e8:60:a9:1f:d7:02:26:ad:5c:ec:9c:45:6e:cb: 29:19:fe:9f:fb:ee:c1:de:43:b1:da:3f:f7:80:72: 9a:64:50:d7:bd:22:7d:64:ec:96:49:cb:52:f0:51: 68:8b:2b:27:7a:05:58:51:5e:83:72:0d:fe:2a:7c: 05:36:f1:cc:ea:59:2a:85:2a:5e:2e:bf:bf:97:be: 20:ef:65:0f:b2:7a:39:e2:5b:62:a7:53:34:0f:3d: 3c:b1:d8:37:bb:fc:01:d9:19:a5:34:b5:7c:a2:48: 6f:3f:17:f7:5b:ae:2f:d1:5d:96:68:40:6a:54:d6: ea:a2:2a:11:7e:69:53:53:60:e1:8e:a0:90:f0:67: fb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:40:7B:13:B8:EC:F3:82:CD:19:E9:ED:A2:85:84:8F:21:7C:22:DE X509v3 Authority Key Identifier: keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:c0:79:4a:60:df:ef:52:04:ed:98:aa:3e:63:82:12:b3:ae: b0:20:9a:d0:ba:13:ed:cc:a6:b4:e7:b8:88:18:f0:91:c6:a5: 2e:14:31:1f:b5:58:fb:48:67:e7:a4:fb:79:aa:31:c3:9e:20: fd:bf:25:1b:26:09:c3:0c:c0:b5:0b:88:d3:c2:f5:3a:62:40: 10:23:11:45:28:74:08:ef:b0:78:81:1c:7d:6a:cb:08:08:0b: 4b:61:c5:50:d5:48:96:f0:7d:0b:6b:89:51:6e:70:c4:a2:dd: 0e:53:3a:9d:13:7c:75:87:9f:b4:a9:bc:cb:8d:09:d9:6d:00: 5b:d0:4a:be:82:f1:4d:6b:ef:32:33:ce:d7:39:8e:e1:20:07: f4:05:95:33:1a:36:65:79:b3:05:de:43:b5:e7:54:44:bd:80: eb:b8:18:86:ab:30:04:12:18:1d:6f:2f:4a:f1:ee:de:60:6f: 3a:07:d4:a6:c9:f0:e8:92:b6:e9:34:25:c6:d1:29:ae:5c:fc: 7c:26:91:35:be:6a:48:ce:f6:3b:bd:56:40:e4:a0:35:63:bf: b6:aa:cd:5c:7f:18:7f:79:04:2c:8e:a4:56:c2:06:05:21:0c: 19:57:a7:cd:a6:59:4f:f0:6e:1d:59:61:ba:be:a0:62:37:45: 13:93:1c:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2isF1pup8ljkFliFGlAKoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYTI0ZTU4MTJmY2MzMTA2YjllYjBhZWIwMGU2MjdiYTIz NWQwNTYwHhcNMjUxMjA3MDIwMTE5WhcNMjUxMjA4MDIwMTE5WjAzMTEwLwYDVQQD EyhmYTQwN2IxM2I4ZWNmMzgyY2QxOWU5ZWRhMjg1ODQ4ZjIxN2MyMmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtButD4SSWCmbE4+2vE9qPt8quTan GaUKb5AJn0hADwDSD8AxRXCvUX9E68aNLm2ouD1rYLRSLmO/k13A8Tr6vcUvh3G6 MH5arvQHCS1TDm/P1lf/KdW1mkjU94V5osARMMv394eOrV5Pbibv0bTpG4lCzuiz zcw36GCpH9cCJq1c7JxFbsspGf6f++7B3kOx2j/3gHKaZFDXvSJ9ZOyWSctS8FFo iysnegVYUV6Dcg3+KnwFNvHM6lkqhSpeLr+/l74g72UPsno54ltip1M0Dz08sdg3 u/wB2RmlNLV8okhvPxf3W64v0V2WaEBqVNbqoioRfmlTU2DhjqCQ8Gf7fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPpAexO47POCzRnp7aKFhI8hfCLeMB8GA1UdIwQY MBaAFCqiTlgS/MMQa56wrrAOYnuiNdBWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3FKT1dCTDh3eEJybnJDdXNBNWllNkkxMEZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8xMDM0NmUtMTUwNC00M2RkLWFiMjgt NjY4NThiYzhlYjc3LzEvS3FKT1dCTDh3eEJybnJDdXNBNWllNkkxMEZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni8xMDM0NmUtMTUwNC00M2RkLWFiMjgtNjY4NThiYzhlYjc3 LzEvS3FKT1dCTDh3eEJybnJDdXNBNWllNkkxMEZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIsB5SmDf 71IE7ZiqPmOCErOusCCa0LoT7cymtOe4iBjwkcalLhQxH7VY+0hn56T7eaoxw54g /b8lGyYJwwzAtQuI08L1OmJAECMRRSh0CO+weIEcfWrLCAgLS2HFUNVIlvB9C2uJ UW5wxKLdDlM6nRN8dYeftKm8y40J2W0AW9BKvoLxTWvvMjPO1zmO4SAH9AWVMxo2 ZXmzBd5DtedURL2A67gYhqswBBIYHW8vSvHu3mBvOgfUpsnw6JK26TQlxtEprlz8 fCaRNb5qSM72O71WQOSgNWO/tqrNXH8Yf3kELI6kVsIGBSEMGVenzaZZT/BuHVlh ur6gYjdFE5Mc8Q== -----END CERTIFICATE-----Generated at Sun Dec 7 06:18:35 2025 by rpki-client