This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft File: k680jsWk5l4MsTeCGuahOe1_rAA.mft (raw, json) Hash identifier: qrkfz1FVWyJbEHXFtoXWAipamDB7hx6BCj5nonU7xAc= Subject key identifier: 51:B5:32:97:91:66:62:FE:4C:F3:7E:E5:24:C8:BE:A8:5C:D3:BC:1B Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00 Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00 Certificate serial: 019AFC1F4522F43D3D5C800F9BB7B2AA6C5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft Manifest number: 16F7 Signing time: Mon 08 Dec 2025 04:01:38 +0000 Manifest this update: Mon 08 Dec 2025 04:01:38 +0000 Manifest next update: Tue 09 Dec 2025 04:01:38 +0000 Files and hashes: 1: gKy-M4ArOB2uxqprqRJ6fbGyEC8.roa (hash: MC8Gw1INJPJBRmJZki75GCuCmqozYCvUY/UxQ+rSFh0=) 2: k680jsWk5l4MsTeCGuahOe1_rAA.crl (hash: xoT4dMhrfRrpx/ozlyKyAn+AvbA5rruAoVUQyQX0VXg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fc:1f:45:22:f4:3d:3d:5c:80:0f:9b:b7:b2:aa:6c:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00 Validity Not Before: Dec 8 04:01:38 2025 GMT Not After : Dec 9 04:01:38 2025 GMT Subject: CN=51b53297916662fe4cf37ee524c8bea85cd3bc1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bc:f2:56:43:58:95:31:ec:85:f8:83:2f:13: 4b:a0:be:cc:a3:63:9b:f1:b9:e1:94:39:b4:bc:5c: 34:c0:e3:c3:8e:78:5d:d3:83:fb:bb:b5:e8:9e:3e: 50:a9:80:fa:23:a7:3a:9e:dc:93:e1:99:5b:66:08: 2b:93:ce:e1:54:74:64:bf:8f:d4:81:03:f6:03:69: 9b:2b:c2:07:f0:58:d2:7a:b0:b4:7e:85:1a:76:ee: 02:16:a1:75:50:db:f4:74:a0:4c:63:ad:b1:7a:00: 2f:21:ef:cd:49:29:04:18:0d:3d:f1:bc:04:4e:5e: 66:05:13:d1:c8:83:3d:e1:ce:71:11:4c:a9:62:c5: 94:9c:1e:20:b2:3e:b3:d3:66:b3:63:e2:9f:78:55: 6b:d4:4a:74:03:54:be:7a:0f:79:04:df:6e:e6:24: a1:ff:9d:71:24:87:47:c6:64:d8:b7:e3:82:e3:ad: b5:c0:f6:90:2a:11:94:aa:a0:1e:fa:5e:bc:18:49: 79:28:cf:99:c2:85:b5:2a:a3:bb:85:ac:9a:bf:65: d6:89:c9:be:25:84:81:84:c8:05:7f:55:99:2a:7d: 9f:1c:06:0f:a4:ca:1e:ff:5d:fd:02:6c:99:31:fb: 39:ae:dd:02:c1:a2:a0:04:9f:b5:e6:b4:3f:a3:11: df:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B5:32:97:91:66:62:FE:4C:F3:7E:E5:24:C8:BE:A8:5C:D3:BC:1B X509v3 Authority Key Identifier: keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:ea:6e:71:32:7f:ce:fa:71:a4:88:6a:8b:2c:b5:c7:03:1b: 88:73:66:06:5f:86:89:ba:a7:a9:f9:16:1a:77:9b:ae:73:ae: bb:53:a5:41:5d:23:d3:a1:f2:13:41:d9:49:f7:e3:6a:b8:c4: 0f:c8:e8:ae:a5:7a:2d:a0:96:95:49:1d:26:5d:77:4f:2b:27: b8:b1:9f:ee:62:90:e1:5c:fe:fb:e7:c2:8f:ba:ad:72:99:09: 10:63:f1:b4:ef:09:fe:ba:4a:ca:ae:83:20:17:f9:67:24:bc: 6a:65:c5:2f:9b:ce:3f:0f:2f:60:13:c4:0b:39:d8:43:42:7a: 19:7b:cd:07:a1:88:e9:d3:0b:83:64:60:6e:d7:ed:dc:d6:6f: ff:33:df:1f:3a:b0:68:5a:45:96:76:7b:ab:ea:ae:58:61:ca: cf:8a:8f:0d:23:2a:3d:71:20:22:41:ab:32:b6:3f:fa:de:da: 07:8a:7e:0c:79:e9:a7:7c:17:9c:6e:04:c3:b7:45:c4:37:62: 3f:04:f3:38:a0:2e:31:40:46:6a:6e:58:42:be:85:f9:1e:19: 81:ae:e7:ac:23:a8:22:58:03:75:ff:c6:5f:ff:d6:a8:49:d6: 3c:78:8f:f0:84:16:4a:54:50:8a:5d:86:85:2c:d9:d1:fb:8b: 43:f4:c0:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr8H0Ui9D09XIAPm7eyqmxeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzYWYzNDhlYzVhNGU2NWUwY2IxMzc4MjFhZTZhMTM5ZWQ3 ZmFjMDAwHhcNMjUxMjA4MDQwMTM4WhcNMjUxMjA5MDQwMTM4WjAzMTEwLwYDVQQD Eyg1MWI1MzI5NzkxNjY2MmZlNGNmMzdlZTUyNGM4YmVhODVjZDNiYzFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobzyVkNYlTHshfiDLxNLoL7Mo2Ob 8bnhlDm0vFw0wOPDjnhd04P7u7Xonj5QqYD6I6c6ntyT4ZlbZggrk87hVHRkv4/U gQP2A2mbK8IH8FjSerC0foUadu4CFqF1UNv0dKBMY62xegAvIe/NSSkEGA098bwE Tl5mBRPRyIM94c5xEUypYsWUnB4gsj6z02azY+KfeFVr1Ep0A1S+eg95BN9u5iSh /51xJIdHxmTYt+OC4621wPaQKhGUqqAe+l68GEl5KM+ZwoW1KqO7hayav2XWicm+ JYSBhMgFf1WZKn2fHAYPpMoe/139AmyZMfs5rt0CwaKgBJ+15rQ/oxHf7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFG1MpeRZmL+TPN+5STIvqhc07wbMB8GA1UdIwQY MBaAFJOvNI7FpOZeDLE3ghrmoTntf6wAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iZDc4MjAtNWMxYy00ODg0LTlhYjgt YzVhYjk3ZGJhODk4LzEvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9iZDc4MjAtNWMxYy00ODg0LTlhYjgtYzVhYjk3ZGJhODk4 LzEvazY4MGpzV2s1bDRNc1RlQ0d1YWhPZTFfckFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVepucTJ/ zvpxpIhqiyy1xwMbiHNmBl+GibqnqfkWGnebrnOuu1OlQV0j06HyE0HZSffjarjE D8jorqV6LaCWlUkdJl13TysnuLGf7mKQ4Vz+++fCj7qtcpkJEGPxtO8J/rpKyq6D IBf5ZyS8amXFL5vOPw8vYBPECznYQ0J6GXvNB6GI6dMLg2Rgbtft3NZv/zPfHzqw aFpFlnZ7q+quWGHKz4qPDSMqPXEgIkGrMrY/+t7aB4p+DHnpp3wXnG4Ew7dFxDdi PwTzOKAuMUBGam5YQr6F+R4Zga7nrCOoIlgDdf/GX//WqEnWPHiP8IQWSlRQil2G hSzZ0fuLQ/TA5g== -----END CERTIFICATE-----Generated at Mon Dec 8 09:30:16 2025 by rpki-client