This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json) Hash identifier: nsi47rwtKPHEQixvfI3cnmL0SzFgAscs2kUfv08SYbU= Subject key identifier: C9:8B:18:F7:7F:09:06:EB:B2:5D:30:79:26:4A:18:40:BF:E8:74:D5 Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f Certificate serial: 019AF68AB4F92CA1B5026EBE12128686D92B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft Manifest number: 04BA Signing time: Sun 07 Dec 2025 02:01:16 +0000 Manifest this update: Sun 07 Dec 2025 02:01:16 +0000 Manifest next update: Mon 08 Dec 2025 02:01:16 +0000 Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: jPP6KuCRCb1hjgYHKs12tKtiHXfXq4ngZvebGascLV0=) 2: OsS2avf_SCsvTL1pRqTL_5n-su8.roa (hash: q2VY8Sbvggao2o4h3H+VtLne6bMzXujw9hwcUuBVuOM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:b4:f9:2c:a1:b5:02:6e:be:12:12:86:86:d9:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f Validity Not Before: Dec 7 02:01:16 2025 GMT Not After : Dec 8 02:01:16 2025 GMT Subject: CN=c98b18f77f0906ebb25d3079264a1840bfe874d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:de:74:3c:c1:3b:1d:cc:91:e2:ab:ed:0c:1f: fd:8a:34:73:21:23:40:a9:6e:b1:06:96:ec:be:61: 81:e1:26:d6:e4:18:e7:59:39:01:38:fd:0f:7f:46: 1d:95:40:da:a2:4c:5d:ac:d8:8d:c0:02:c4:64:5d: ac:8d:ad:f1:d3:25:f8:3f:d7:df:32:20:e4:fc:fe: 86:0c:27:43:ca:d8:e4:89:7c:41:7d:7b:02:fa:c8: 73:17:40:89:ea:61:c5:08:29:b6:10:ed:d9:d6:7a: 26:00:d1:7d:eb:8c:08:61:06:2d:71:f7:0b:e7:82: 0a:28:72:f2:a3:a7:26:13:fc:53:d1:ab:47:fc:b6: 9b:68:4a:3f:ba:a1:64:64:b6:79:4e:99:e8:45:b9: 0a:6f:0b:20:44:35:ee:e6:f6:46:70:18:6c:0d:e0: 73:fa:c7:2c:8e:d8:9e:2e:88:4d:29:51:56:00:da: 12:51:77:4a:20:fa:7a:83:e3:6f:6e:37:5a:61:d0: 4f:c4:ce:40:69:28:00:44:26:14:ad:83:0c:87:45: 8d:0b:eb:01:0f:99:3d:04:84:60:a4:aa:dc:62:04: d0:d1:d2:d2:8c:24:e8:06:9c:13:6b:76:11:e8:43: 79:e9:56:01:4c:7d:0f:29:92:f3:cd:ac:a9:50:01: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8B:18:F7:7F:09:06:EB:B2:5D:30:79:26:4A:18:40:BF:E8:74:D5 X509v3 Authority Key Identifier: keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:e9:83:bd:f3:1e:3a:27:6b:d6:e8:70:37:85:d1:a9:f8:35: b4:00:04:a5:77:ad:21:bb:15:f3:c6:a1:a6:4f:f2:db:53:5c: 9c:e8:0e:ca:aa:1b:ac:48:a0:44:7f:dc:17:43:a3:0b:2e:a7: 59:21:50:5b:6c:43:cd:1b:a3:2f:93:8d:f7:c5:9c:25:d1:c8: 19:a9:6f:3a:36:28:2e:2e:ee:95:4f:1d:0e:79:30:e8:b1:ee: 20:5f:17:f4:f9:47:8d:ce:9e:08:c9:cf:58:9f:63:63:6a:a4: 76:dc:d9:86:b7:f6:21:b3:bd:b1:29:33:94:e3:ac:ab:51:22: 8c:7e:2b:97:1b:41:29:43:97:77:07:22:8f:ab:7e:57:46:8f: 21:cf:72:38:5f:9c:86:3b:48:db:a2:29:38:60:53:2d:e1:a0: 32:3e:48:2a:4e:96:e1:8b:c7:8a:f8:90:8d:a8:b6:01:fe:c6: 8b:fb:c6:fa:3e:d2:5d:da:f7:28:bd:fe:37:27:5c:72:6e:81: db:17:0b:f9:d9:25:c1:40:be:cf:eb:0b:d0:65:c4:ab:dc:1b: 7d:be:34:be:d1:6f:0a:f8:1a:12:d5:8d:50:2c:b9:d7:c2:81: 5b:91:38:ea:f8:f1:c1:84:85:ba:ea:4a:40:09:06:91:a7:33: 61:e1:6f:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2irT5LKG1Am6+EhKGhtkrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiMDE0MGFkMzk0MTRjNGVhYjAyYWM1NTQyMmI0NDE2M2Vk MzRiMGYwHhcNMjUxMjA3MDIwMTE2WhcNMjUxMjA4MDIwMTE2WjAzMTEwLwYDVQQD EyhjOThiMThmNzdmMDkwNmViYjI1ZDMwNzkyNjRhMTg0MGJmZTg3NGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAod50PME7HcyR4qvtDB/9ijRzISNA qW6xBpbsvmGB4SbW5BjnWTkBOP0Pf0YdlUDaokxdrNiNwALEZF2sja3x0yX4P9ff MiDk/P6GDCdDytjkiXxBfXsC+shzF0CJ6mHFCCm2EO3Z1nomANF964wIYQYtcfcL 54IKKHLyo6cmE/xT0atH/LabaEo/uqFkZLZ5TpnoRbkKbwsgRDXu5vZGcBhsDeBz +scsjtieLohNKVFWANoSUXdKIPp6g+NvbjdaYdBPxM5AaSgARCYUrYMMh0WNC+sB D5k9BIRgpKrcYgTQ0dLSjCToBpwTa3YR6EN56VYBTH0PKZLzzaypUAF/VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMmLGPd/CQbrsl0weSZKGEC/6HTVMB8GA1UdIwQY MBaAFCsBQK05QUxOqwKsVUIrRBY+00sPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy84OWMzZTQtYjYxMy00OWVjLWFlMjUt MmU3NTIyOGY5MjYxLzEvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy84OWMzZTQtYjYxMy00OWVjLWFlMjUtMmU3NTIyOGY5MjYx LzEvS3dGQXJUbEJURTZyQXF4VlFpdEVGajdUU3c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN+mDvfMe Oidr1uhwN4XRqfg1tAAEpXetIbsV88ahpk/y21NcnOgOyqobrEigRH/cF0OjCy6n WSFQW2xDzRujL5ON98WcJdHIGalvOjYoLi7ulU8dDnkw6LHuIF8X9PlHjc6eCMnP WJ9jY2qkdtzZhrf2IbO9sSkzlOOsq1EijH4rlxtBKUOXdwcij6t+V0aPIc9yOF+c hjtI26IpOGBTLeGgMj5IKk6W4YvHiviQjai2Af7Gi/vG+j7SXdr3KL3+Nydccm6B 2xcL+dklwUC+z+sL0GXEq9wbfb40vtFvCvgaEtWNUCy518KBW5E46vjxwYSFuupK QAkGkaczYeFvdg== -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:17 2025 by rpki-client