This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft File: kgm43V6nJYkIN4Zh8rqe-JrToLE.mft (raw, json) Hash identifier: liLE3Xee994oBRzw0DWkf4Adq91pPggvnyw7imefKNU= Subject key identifier: 2D:50:D3:E4:39:E7:A3:2D:34:DA:E2:93:3C:42:E1:AB:01:A7:D5:76 Authority key identifier: 92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1 Certificate issuer: /CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1 Certificate serial: 019AF164639022D8ECA7F770F927147DC6C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft Manifest number: 02D4 Signing time: Sat 06 Dec 2025 02:01:19 +0000 Manifest this update: Sat 06 Dec 2025 02:01:19 +0000 Manifest next update: Sun 07 Dec 2025 02:01:19 +0000 Files and hashes: 1: WReM2adAhR_LtpNyhGqyNjE1Y4M.roa (hash: CfgqMj+xDVkXamVtZy6LM6aMe3AmsivTTFfgXAb+rPQ=) 2: kgm43V6nJYkIN4Zh8rqe-JrToLE.crl (hash: scUb6Vs9IcaIlOzDkfe3cWpBr+OVv5ZuxlTGYynM9rY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:63:90:22:d8:ec:a7:f7:70:f9:27:14:7d:c6:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9209b8dd5ea7258908378661f2ba9ef89ad3a0b1 Validity Not Before: Dec 6 02:01:19 2025 GMT Not After : Dec 7 02:01:19 2025 GMT Subject: CN=2d50d3e439e7a32d34dae2933c42e1ab01a7d576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5e:ad:2e:23:9b:b2:fb:f9:24:c4:81:b9:3e: f2:10:68:42:7d:f6:96:50:9c:b8:39:80:6e:bd:82: 29:9b:3d:0d:ab:5f:7a:ba:14:17:8e:1f:d2:3b:88: e9:05:bf:62:71:97:71:c1:f2:67:fa:4d:04:af:7e: aa:dc:0c:18:29:1b:af:bf:89:a6:bc:4a:43:d7:5b: fb:fd:e5:37:f9:12:f0:f1:01:64:d0:3b:c2:af:4b: 6a:04:9e:02:7e:9e:9f:6a:4c:6c:3c:23:d3:bf:11: 3c:a0:bc:33:49:56:65:1f:cd:5b:15:ef:64:1e:86: f4:31:6d:60:84:94:f9:44:11:39:11:fe:81:3a:58: a4:b3:f5:dd:f8:a2:92:10:ce:92:0d:49:85:2d:21: 63:f6:85:58:32:39:68:5e:c2:83:3b:ec:d5:47:4b: 48:31:98:60:6b:7a:88:1e:f7:d8:15:10:fc:70:02: 1b:3b:06:bd:09:4d:7b:cb:a0:93:88:4a:bc:ff:7f: d5:36:ea:eb:0a:c5:cc:6d:72:62:23:76:02:f6:56: f8:4a:42:23:ba:41:13:fb:21:06:b0:59:44:37:3e: 99:96:26:4e:ef:87:0a:b0:2a:aa:d4:5a:13:22:13: b5:c2:10:6f:f0:3e:5a:e8:58:fc:25:80:e0:58:cc: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:50:D3:E4:39:E7:A3:2D:34:DA:E2:93:3C:42:E1:AB:01:A7:D5:76 X509v3 Authority Key Identifier: keyid:92:09:B8:DD:5E:A7:25:89:08:37:86:61:F2:BA:9E:F8:9A:D3:A0:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgm43V6nJYkIN4Zh8rqe-JrToLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/688da5-d238-47ce-b2e8-890ffea8d0bc/1/kgm43V6nJYkIN4Zh8rqe-JrToLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:54:3f:ab:02:77:35:15:5b:a4:63:a6:79:41:d8:24:60:a3: 14:9d:2b:5c:5c:c7:19:ca:36:f9:7b:2c:46:2a:f4:2b:9e:a6: 45:e1:d5:a2:aa:09:cb:a1:88:66:a7:ed:a6:97:19:f4:52:dd: 54:7d:b6:26:0b:e9:05:85:07:73:e0:35:f2:68:cb:e1:24:fc: 4f:c7:72:f9:45:ac:4a:e9:f1:7e:cd:de:08:7c:ae:2b:55:99: 6c:96:32:84:8b:97:ab:4c:58:cc:29:f9:ff:75:09:55:b2:4a: bc:81:48:37:a5:fb:1a:0e:a8:51:d8:80:4d:0c:64:7c:8e:e6: 26:b4:87:55:08:d9:5b:e8:1c:1a:dc:96:ba:80:3b:3c:cf:21: 1f:06:ec:20:cd:57:cb:32:4f:1d:c0:6e:7d:6b:ec:0a:4f:99: 9a:92:88:32:69:8d:a9:96:1c:4e:bd:f5:67:5a:f3:67:8f:a4: a2:b5:96:5f:bf:96:a9:6f:1c:da:8a:86:58:62:d7:b1:2d:5a: 67:b8:99:9b:ce:83:c7:41:c9:53:f9:e6:34:64:27:ab:75:3c: 46:9e:04:6c:0a:03:da:11:56:c5:3c:4d:e0:9e:78:fa:26:e6: 85:08:dd:e7:55:b5:dd:08:89:db:02:81:4f:3d:9f:1c:31:0f: 47:18:8f:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZGOQItjsp/dw+ScUfcbHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMDliOGRkNWVhNzI1ODkwODM3ODY2MWYyYmE5ZWY4OWFk M2EwYjEwHhcNMjUxMjA2MDIwMTE5WhcNMjUxMjA3MDIwMTE5WjAzMTEwLwYDVQQD EygyZDUwZDNlNDM5ZTdhMzJkMzRkYWUyOTMzYzQyZTFhYjAxYTdkNTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqV6tLiObsvv5JMSBuT7yEGhCffaW UJy4OYBuvYIpmz0Nq196uhQXjh/SO4jpBb9icZdxwfJn+k0Er36q3AwYKRuvv4mm vEpD11v7/eU3+RLw8QFk0DvCr0tqBJ4Cfp6fakxsPCPTvxE8oLwzSVZlH81bFe9k Hob0MW1ghJT5RBE5Ef6BOliks/Xd+KKSEM6SDUmFLSFj9oVYMjloXsKDO+zVR0tI MZhga3qIHvfYFRD8cAIbOwa9CU17y6CTiEq8/3/VNurrCsXMbXJiI3YC9lb4SkIj ukET+yEGsFlENz6ZliZO74cKsCqq1FoTIhO1whBv8D5a6Fj8JYDgWMyv9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1Q0+Q556MtNNrikzxC4asBp9V2MB8GA1UdIwQY MBaAFJIJuN1epyWJCDeGYfK6nvia06CxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2dtNDNWNm5KWWtJTjRaaDhycWUtSnJUb0xFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy82ODhkYTUtZDIzOC00N2NlLWIyZTgt ODkwZmZlYThkMGJjLzEva2dtNDNWNm5KWWtJTjRaaDhycWUtSnJUb0xFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy82ODhkYTUtZDIzOC00N2NlLWIyZTgtODkwZmZlYThkMGJj LzEva2dtNDNWNm5KWWtJTjRaaDhycWUtSnJUb0xFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASlQ/qwJ3 NRVbpGOmeUHYJGCjFJ0rXFzHGco2+XssRir0K56mReHVoqoJy6GIZqftppcZ9FLd VH22JgvpBYUHc+A18mjL4ST8T8dy+UWsSunxfs3eCHyuK1WZbJYyhIuXq0xYzCn5 /3UJVbJKvIFIN6X7Gg6oUdiATQxkfI7mJrSHVQjZW+gcGtyWuoA7PM8hHwbsIM1X yzJPHcBufWvsCk+ZmpKIMmmNqZYcTr31Z1rzZ4+korWWX7+WqW8c2oqGWGLXsS1a Z7iZm86Dx0HJU/nmNGQnq3U8Rp4EbAoD2hFWxTxN4J54+ibmhQjd51W13QiJ2wKB Tz2fHDEPRxiPAQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:33 2025 by rpki-client