This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft File: kWV5napb3fL1Nt2BtybPrtDmCFs.mft (raw, json) Hash identifier: EUXlfEDfCZv2WG2kJq5yp4lCWP4gm7xghfxggC72ggM= Subject key identifier: C1:1A:DE:E0:A6:8E:8A:9B:BA:BA:64:E2:00:FF:86:58:3B:14:88:46 Authority key identifier: 91:65:79:9D:AA:5B:DD:F2:F5:36:DD:81:B7:26:CF:AE:D0:E6:08:5B Certificate issuer: /CN=9165799daa5bddf2f536dd81b726cfaed0e6085b Certificate serial: 019AF12EB72BE33E7EE7D2CBE7CDDDE96CC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft Manifest number: 01DA Signing time: Sat 06 Dec 2025 01:02:41 +0000 Manifest this update: Sat 06 Dec 2025 01:02:41 +0000 Manifest next update: Sun 07 Dec 2025 01:02:41 +0000 Files and hashes: 1: kWV5napb3fL1Nt2BtybPrtDmCFs.crl (hash: wE7FCCpoRhOE7rCMJKcJsXzvVARk4I9v8d5DLyr1ik8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.crl rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:b7:2b:e3:3e:7e:e7:d2:cb:e7:cd:dd:e9:6c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9165799daa5bddf2f536dd81b726cfaed0e6085b Validity Not Before: Dec 6 01:02:41 2025 GMT Not After : Dec 7 01:02:41 2025 GMT Subject: CN=c11adee0a68e8a9bbaba64e200ff86583b148846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:54:84:76:66:86:5f:3f:b0:f3:6b:cf:f9:b0: 22:a2:34:8f:8b:da:6f:b5:39:b6:6c:19:fe:eb:48: b8:be:31:aa:35:38:a8:e8:e3:d8:32:6a:46:87:ec: 55:c3:1d:df:3f:54:8f:d0:05:68:58:77:1f:f7:f0: 98:fa:da:da:2d:1b:c5:1f:d7:fb:0c:0e:6f:81:46: 35:8b:47:71:ee:df:56:61:f0:27:bf:59:ac:de:e4: e8:39:eb:17:6a:2e:90:4e:39:3f:c8:35:7b:7f:20: 32:5b:e7:c8:7c:dc:b0:39:16:2a:6b:f7:e8:6d:53: f8:50:12:30:e5:08:0a:c7:a9:40:19:39:b8:42:8f: fd:ea:5d:28:19:3c:36:50:61:8f:07:60:8d:45:b7: 61:b8:80:55:c8:7e:80:0b:25:d2:eb:3d:14:58:ad: 99:0c:1c:ad:2d:12:c6:34:fb:e0:47:04:53:d2:35: 49:25:bd:66:0b:f1:7a:a8:e0:48:90:f3:91:fc:e4: 54:70:36:8f:27:ab:d9:c2:0b:bf:a5:44:9b:f3:54: 97:97:d4:f9:d0:58:5e:47:a3:fc:9a:fe:b3:00:3f: ee:ca:10:29:cd:f5:4b:f3:0a:cc:34:a8:24:d5:ef: d6:e3:5b:f6:d7:b9:08:ee:79:81:63:6b:6f:cd:97: 00:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:1A:DE:E0:A6:8E:8A:9B:BA:BA:64:E2:00:FF:86:58:3B:14:88:46 X509v3 Authority Key Identifier: keyid:91:65:79:9D:AA:5B:DD:F2:F5:36:DD:81:B7:26:CF:AE:D0:E6:08:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kWV5napb3fL1Nt2BtybPrtDmCFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/5a81a9-2d4d-4b26-91d1-ea17da2284ff/1/kWV5napb3fL1Nt2BtybPrtDmCFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ef:48:c5:a7:2e:b0:e9:85:62:3a:9c:9d:e0:1e:a1:db:5f: 77:00:c3:e3:62:0e:4b:51:c8:59:05:46:86:e2:5d:28:9c:da: 1e:65:50:52:d7:ce:37:b6:e0:f7:d9:6e:67:00:a4:c2:28:07: 62:72:7c:2f:ae:9d:52:32:39:d0:2e:85:57:4e:14:fd:6b:81: cd:27:61:4e:b5:ab:de:6a:b2:9b:7b:00:d9:95:4c:77:45:e9: 16:cc:56:7b:48:5b:ed:86:1f:fa:08:dd:fd:d1:72:fa:ae:ae: 1b:4c:18:63:f1:a1:05:94:09:ff:ee:67:ef:f2:bf:6e:b1:44: 44:8e:12:0b:67:05:b3:4f:d4:21:74:b4:8d:52:89:ab:d7:e2: 3e:3d:26:4a:2c:f3:f7:68:18:12:ed:a4:7a:15:57:46:fb:af: 49:9a:1a:5c:e4:57:a5:2b:29:e2:99:fb:70:d6:a8:d3:b0:b0: 9b:c3:23:99:1a:1a:3b:ba:24:85:d2:4d:ae:b0:b2:7b:5c:17: 63:60:7b:00:52:69:81:34:47:3c:85:10:4b:00:c0:c3:c6:ce: 75:69:33:d7:c7:2f:9f:28:d6:fa:87:6c:b8:d0:64:d6:09:c2: 26:ce:81:ce:d1:3d:cf:c1:9c:1d:5b:53:c5:f5:e0:c3:e0:00: d7:a4:c8:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLrcr4z5+59LL583d6WzDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNjU3OTlkYWE1YmRkZjJmNTM2ZGQ4MWI3MjZjZmFlZDBl NjA4NWIwHhcNMjUxMjA2MDEwMjQxWhcNMjUxMjA3MDEwMjQxWjAzMTEwLwYDVQQD EyhjMTFhZGVlMGE2OGU4YTliYmFiYTY0ZTIwMGZmODY1ODNiMTQ4ODQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VSEdmaGXz+w82vP+bAiojSPi9pv tTm2bBn+60i4vjGqNTio6OPYMmpGh+xVwx3fP1SP0AVoWHcf9/CY+traLRvFH9f7 DA5vgUY1i0dx7t9WYfAnv1ms3uToOesXai6QTjk/yDV7fyAyW+fIfNywORYqa/fo bVP4UBIw5QgKx6lAGTm4Qo/96l0oGTw2UGGPB2CNRbdhuIBVyH6ACyXS6z0UWK2Z DBytLRLGNPvgRwRT0jVJJb1mC/F6qOBIkPOR/ORUcDaPJ6vZwgu/pUSb81SXl9T5 0FheR6P8mv6zAD/uyhApzfVL8wrMNKgk1e/W41v217kI7nmBY2tvzZcACwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMEa3uCmjoqburpk4gD/hlg7FIhGMB8GA1UdIwQY MBaAFJFleZ2qW93y9Tbdgbcmz67Q5ghbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1dWNW5hcGIzZkwxTnQyQnR5YlBydERtQ0ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi81YTgxYTktMmQ0ZC00YjI2LTkxZDEt ZWExN2RhMjI4NGZmLzEva1dWNW5hcGIzZkwxTnQyQnR5YlBydERtQ0ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi81YTgxYTktMmQ0ZC00YjI2LTkxZDEtZWExN2RhMjI4NGZm LzEva1dWNW5hcGIzZkwxTnQyQnR5YlBydERtQ0ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+9Ixacu sOmFYjqcneAeodtfdwDD42IOS1HIWQVGhuJdKJzaHmVQUtfON7bg99luZwCkwigH YnJ8L66dUjI50C6FV04U/WuBzSdhTrWr3mqym3sA2ZVMd0XpFsxWe0hb7YYf+gjd /dFy+q6uG0wYY/GhBZQJ/+5n7/K/brFERI4SC2cFs0/UIXS0jVKJq9fiPj0mSizz 92gYEu2kehVXRvuvSZoaXORXpSsp4pn7cNao07Cwm8MjmRoaO7okhdJNrrCye1wX Y2B7AFJpgTRHPIUQSwDAw8bOdWkz18cvnyjW+odsuNBk1gnCJs6BztE9z8GcHVtT xfXgw+AA16TIhw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:10 2025 by rpki-client