This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json) Hash identifier: HgeWgz2NKbnOMkV0gUB7nm9JwoLU5qllS9sdOyZToo4= Subject key identifier: E3:11:5F:DE:56:8B:3C:8E:B7:9E:47:D7:DC:E4:FD:8F:CD:C7:76:77 Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Certificate serial: 019AF50A7371A1367196F709F9DBF3569B4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft Manifest number: 065E Signing time: Sat 06 Dec 2025 19:01:33 +0000 Manifest this update: Sat 06 Dec 2025 19:01:33 +0000 Manifest next update: Sun 07 Dec 2025 19:01:33 +0000 Files and hashes: 1: U5Y7YWVXNPPm9KoqmwsivloXzrs.roa (hash: ca5vcs2GJ+zXpmrDaBzBSEBE+1Vnejqdln+cTCo9uxU=) 2: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: khnJkWXUtioo57APcfpDNeM+92zyHDYh7vI8lKmaesw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:73:71:a1:36:71:96:f7:09:f9:db:f3:56:9b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531 Validity Not Before: Dec 6 19:01:33 2025 GMT Not After : Dec 7 19:01:33 2025 GMT Subject: CN=e3115fde568b3c8eb79e47d7dce4fd8fcdc77677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:31:10:32:c2:1f:62:9f:ec:0c:c3:a9:41:1e: fd:7b:0c:fd:ed:6c:d0:79:7c:dc:50:e1:d2:2a:9f: 18:eb:4d:87:3d:94:da:06:01:cc:d6:97:5f:39:d2: 99:37:cc:47:89:85:99:b1:19:56:7b:bf:83:42:fb: 3c:c4:e3:0a:bd:2b:de:28:4b:0e:ef:6a:fd:ca:30: e5:35:98:3e:ff:1e:1a:c3:36:39:9b:2a:b7:29:7b: 5f:9c:b2:f1:c4:ec:ca:18:55:33:5e:80:3c:02:97: 9f:3e:4e:c5:97:0f:e0:72:2d:a4:60:fe:ce:7d:56: c6:01:e4:c1:9f:2d:23:44:5d:0e:56:8e:87:a8:f7: 2e:2a:c1:0b:4e:8b:61:03:a0:e5:1e:d0:7f:0d:6b: 95:45:12:9d:86:68:3a:6b:a0:bb:c2:fb:39:7c:45: dc:a7:92:72:ed:0d:b8:39:9e:ae:17:47:3c:c6:cd: df:d8:7b:a7:13:7a:74:b9:fc:64:38:b5:43:74:1f: da:26:ad:71:58:1f:4d:0d:02:07:35:82:61:75:5f: 2a:dc:9a:d4:54:87:9d:6e:be:67:db:22:46:0d:c8: df:a2:f4:3c:05:74:f7:9f:84:d9:d2:2f:ca:8a:c3: 71:53:b1:7e:06:02:a8:73:ab:45:bd:55:5c:98:f6: 2c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:11:5F:DE:56:8B:3C:8E:B7:9E:47:D7:DC:E4:FD:8F:CD:C7:76:77 X509v3 Authority Key Identifier: keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:9a:eb:5e:7f:d2:ed:6c:12:74:d4:26:dc:45:ba:a3:07:e4: 63:9b:42:f7:fc:86:c2:a8:35:69:67:b1:9a:83:46:5f:97:1b: 4c:24:c0:65:31:1b:d6:a5:48:1b:33:b4:f8:50:72:15:fc:a8: c3:9a:f6:c5:7b:39:1c:3b:c1:fc:63:17:97:84:48:d6:7e:92: 2a:42:a7:93:ea:c3:84:28:89:69:1f:e1:88:a2:70:d4:89:24: 25:01:9d:3a:86:00:8b:13:41:f0:8e:da:43:3f:e7:0e:db:91: fd:81:24:92:78:7d:ca:84:67:f5:c9:ee:7a:bf:a6:80:c1:5b: f3:9e:a8:39:49:9a:1d:c9:e3:4e:6b:4d:47:ea:54:0f:eb:d2: 16:56:ea:73:60:dd:e4:65:c9:e1:08:fa:b5:8f:b8:57:8e:2b: 63:08:0d:8d:76:11:cd:75:7d:63:76:50:43:b7:6c:60:f8:03: fa:5e:33:74:39:e9:2f:1d:ca:78:7e:90:66:ad:36:4b:cc:ce: e4:24:ab:5a:12:48:b4:0e:54:f1:2a:ce:b6:7a:85:b3:80:23: 1a:73:94:a7:dc:d2:2f:07:42:1c:dd:85:49:b9:a2:d1:ef:5b: b3:15:17:bb:ee:9b:f8:9e:e6:9f:97:d1:28:00:8c:08:44:e4: 30:fc:bb:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CnNxoTZxlvcJ+dvzVptOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm NjI1MzEwHhcNMjUxMjA2MTkwMTMzWhcNMjUxMjA3MTkwMTMzWjAzMTEwLwYDVQQD EyhlMzExNWZkZTU2OGIzYzhlYjc5ZTQ3ZDdkY2U0ZmQ4ZmNkYzc3Njc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zEQMsIfYp/sDMOpQR79ewz97WzQ eXzcUOHSKp8Y602HPZTaBgHM1pdfOdKZN8xHiYWZsRlWe7+DQvs8xOMKvSveKEsO 72r9yjDlNZg+/x4awzY5myq3KXtfnLLxxOzKGFUzXoA8ApefPk7Flw/gci2kYP7O fVbGAeTBny0jRF0OVo6HqPcuKsELTothA6DlHtB/DWuVRRKdhmg6a6C7wvs5fEXc p5Jy7Q24OZ6uF0c8xs3f2HunE3p0ufxkOLVDdB/aJq1xWB9NDQIHNYJhdV8q3JrU VIedbr5n2yJGDcjfovQ8BXT3n4TZ0i/KisNxU7F+BgKoc6tFvVVcmPYsTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOMRX95WizyOt55H19zk/Y/Nx3Z3MB8GA1UdIwQY MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1 LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF5rrXn/S 7WwSdNQm3EW6owfkY5tC9/yGwqg1aWexmoNGX5cbTCTAZTEb1qVIGzO0+FByFfyo w5r2xXs5HDvB/GMXl4RI1n6SKkKnk+rDhCiJaR/hiKJw1IkkJQGdOoYAixNB8I7a Qz/nDtuR/YEkknh9yoRn9cnuer+mgMFb856oOUmaHcnjTmtNR+pUD+vSFlbqc2Dd 5GXJ4Qj6tY+4V44rYwgNjXYRzXV9Y3ZQQ7dsYPgD+l4zdDnpLx3KeH6QZq02S8zO 5CSrWhJItA5U8SrOtnqFs4AjGnOUp9zSLwdCHN2FSbmi0e9bsxUXu+6b+J7mn5fR KACMCETkMPy7hQ== -----END CERTIFICATE-----Generated at Sun Dec 7 00:29:22 2025 by rpki-client