This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json) Hash identifier: COlM7v/zsFqARIlYwT/UUHj/rd5yIo0ShI64YQ8Ky4Q= Subject key identifier: 0B:96:7C:87:64:74:A5:18:F2:90:E2:19:5A:74:53:02:6E:8C:43:25 Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b Certificate serial: 019AF6C11A0048B80894378470AE302DD8CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft Manifest number: 0709 Signing time: Sun 07 Dec 2025 03:00:41 +0000 Manifest this update: Sun 07 Dec 2025 03:00:41 +0000 Manifest next update: Mon 08 Dec 2025 03:00:41 +0000 Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: h6loYeUhXQ8oNMDV3lwRxd68tlooz9SQPeAVtzJNc2s=) 2: yLICF7LxPJqKW0bXadmbwJKdAUs.roa (hash: N1HQgyFphv945BF0xwHybuVM2LsGQ66M8rtUi6w9zMc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:c1:1a:00:48:b8:08:94:37:84:70:ae:30:2d:d8:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b Validity Not Before: Dec 7 03:00:41 2025 GMT Not After : Dec 8 03:00:41 2025 GMT Subject: CN=0b967c876474a518f290e2195a7453026e8c4325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ac:a1:da:b6:e3:e5:06:e7:a4:21:2d:08:79: 51:f0:ab:83:48:4a:c5:11:98:b2:2e:a3:f4:4a:8f: cb:dd:02:a1:32:77:40:e3:17:8a:f9:a9:b1:03:5b: 71:cf:04:ac:b6:92:39:b9:35:9d:c1:1e:26:06:aa: 23:ba:48:a2:84:cf:92:a6:19:9e:20:46:74:f2:71: 88:06:f7:57:65:ce:1d:71:41:05:6a:d7:8d:98:cb: 3d:1d:a4:18:d6:d9:fa:98:4a:50:3a:a4:c3:38:7b: 01:af:7c:6e:87:f3:71:ed:ae:42:af:8a:e9:a1:85: 4a:29:a6:03:d6:fa:75:91:0f:ab:28:cf:05:63:3e: 1f:1b:7c:59:ef:d1:8d:9a:50:1d:dc:7c:14:b0:2b: 16:94:96:e7:ca:49:48:28:75:de:b9:26:b7:81:91: fc:0d:d5:2b:57:d2:b0:f3:6c:9b:f3:00:cb:9c:ad: aa:87:d5:ff:b8:56:bb:89:a5:b8:2e:f6:55:65:e6: 19:da:bd:94:cc:06:71:ac:90:25:f6:ba:cf:ac:20: 97:35:b2:b5:42:3a:6f:80:95:16:fa:ee:30:db:45: 48:58:7b:e4:80:e3:03:7b:97:59:a0:d9:5c:be:35: e1:11:39:13:59:64:90:14:a7:4e:c1:21:ef:d5:8c: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:96:7C:87:64:74:A5:18:F2:90:E2:19:5A:74:53:02:6E:8C:43:25 X509v3 Authority Key Identifier: keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:97:2a:a7:19:5c:56:d8:ec:2a:b8:4c:dd:c6:ab:6f:8c:ff: 17:88:a9:b8:9d:1a:21:77:d3:0b:a2:be:89:89:cc:42:94:50: 64:58:70:7e:32:be:b2:8b:b6:9b:98:76:e5:dc:a9:78:cc:7c: 40:10:b4:52:2d:4e:4b:7a:7f:fc:6a:97:e2:fd:56:e5:1a:8b: ae:9c:a7:0d:dc:52:56:5d:be:25:f7:ac:9b:96:3c:6f:c8:21: 6b:3b:84:20:11:52:2a:0e:25:2f:d3:31:78:38:46:b2:13:cb: 6e:9d:51:69:70:a5:90:63:07:c3:5e:af:9a:9a:70:7e:29:d1: e6:6e:c8:bd:7d:53:e4:3d:b1:3a:79:93:f6:36:e1:12:ff:cd: b9:c2:c3:57:e6:01:7a:3d:7d:75:18:fc:60:8a:d2:50:15:4e: fc:39:51:3a:77:45:fd:78:45:9b:07:ce:bb:09:7e:95:11:25: 66:c2:18:1c:53:b2:4c:d5:3d:7b:ee:c7:1e:0d:c2:81:59:a2: 1a:36:2f:6a:f1:a8:31:f7:10:a2:4d:87:69:1a:d2:76:e9:50: d4:cc:e4:e6:3d:49:ad:4b:d4:00:93:7a:bb:0a:02:6f:34:14: b1:ea:5d:2f:ed:2a:f1:9e:40:52:f6:22:d4:8d:4d:cf:19:2b: a7:ab:31:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2wRoASLgIlDeEcK4wLdjPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjYTU5ODMyMmE2OTkwNWE1YzZlMDI5NWEwY2ExZmI1NTY2 NmMxNGIwHhcNMjUxMjA3MDMwMDQxWhcNMjUxMjA4MDMwMDQxWjAzMTEwLwYDVQQD EygwYjk2N2M4NzY0NzRhNTE4ZjI5MGUyMTk1YTc0NTMwMjZlOGM0MzI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuayh2rbj5QbnpCEtCHlR8KuDSErF EZiyLqP0So/L3QKhMndA4xeK+amxA1txzwSstpI5uTWdwR4mBqojukiihM+Sphme IEZ08nGIBvdXZc4dcUEFateNmMs9HaQY1tn6mEpQOqTDOHsBr3xuh/Nx7a5Cr4rp oYVKKaYD1vp1kQ+rKM8FYz4fG3xZ79GNmlAd3HwUsCsWlJbnyklIKHXeuSa3gZH8 DdUrV9Kw82yb8wDLnK2qh9X/uFa7iaW4LvZVZeYZ2r2UzAZxrJAl9rrPrCCXNbK1 QjpvgJUW+u4w20VIWHvkgOMDe5dZoNlcvjXhETkTWWSQFKdOwSHv1YzEwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAuWfIdkdKUY8pDiGVp0UwJujEMlMB8GA1UdIwQY MBaAFHylmDIqaZBaXG4ClaDKH7VWZsFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUt NTgwZDg3Njg4NWExLzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9kYTY2YzAtYjlmOC00MDk0LWE5MzUtNTgwZDg3Njg4NWEx LzEvZktXWU1pcHBrRnBjYmdLVm9Nb2Z0Vlptd1VzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVpcqpxlc VtjsKrhM3carb4z/F4ipuJ0aIXfTC6K+iYnMQpRQZFhwfjK+sou2m5h25dypeMx8 QBC0Ui1OS3p//GqX4v1W5RqLrpynDdxSVl2+Jfesm5Y8b8ghazuEIBFSKg4lL9Mx eDhGshPLbp1RaXClkGMHw16vmppwfinR5m7IvX1T5D2xOnmT9jbhEv/NucLDV+YB ej19dRj8YIrSUBVO/DlROndF/XhFmwfOuwl+lRElZsIYHFOyTNU9e+7HHg3CgVmi GjYvavGoMfcQok2HaRrSdulQ1Mzk5j1JrUvUAJN6uwoCbzQUsepdL+0q8Z5AUvYi 1I1Nzxkrp6sxPw== -----END CERTIFICATE-----Generated at Sun Dec 7 06:33:59 2025 by rpki-client