This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json) Hash identifier: sGnH4eKe7UmDdZ654xVRh2Jpi4VCdOaB2vlQOspcTVc= Subject key identifier: 10:A9:22:38:14:FD:F0:8C:51:CF:A7:71:02:E3:72:5D:D0:F0:F9:3C Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Certificate serial: 019AF19B39EEFD2CE2737EB4C82351280CA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft Manifest number: 0CC1 Signing time: Sat 06 Dec 2025 03:01:13 +0000 Manifest this update: Sat 06 Dec 2025 03:01:13 +0000 Manifest next update: Sun 07 Dec 2025 03:01:13 +0000 Files and hashes: 1: 4lHY4uWeqHmvoaNymD_moDG2Lyw.roa (hash: JlxlEX1JbWtrSymgf6LUCml6ssBX/gAxppMm1dFFwtA=) 2: JAuA883iG3ecktuhBvPjwiYE2gs.roa (hash: 2XmurE8d9+/OzcrvAO2f2ROqPHe6N2R65dp7AYrb+WA=) 3: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: 8Fajic4Xubm/nI9m6RvOOkzAbhD9pVkFCnR01FGCQ38=) 4: W3b2c3aWBkGLPIRx0_mmFrVFSVU.roa (hash: Rq6QPKASLV/oR+YlvSOZH+p9bkYj2tEbh35TLa/W+TE=) 5: cu9GyWa_Lwnd02KODnjE_h5McWk.roa (hash: 44QiQ8pIvo7mzZfC+ZjzIe/89Qsc6m4rb8gND25Z0Gw=) 6: xyRoD48_RddLMyzaWVm2RVSdNnw.roa (hash: 9GofeWtQdMUnPq68/CDpAq5ljzoKlzyYm0VUKW07EJo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:39:ee:fd:2c:e2:73:7e:b4:c8:23:51:28:0c:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0 Validity Not Before: Dec 6 03:01:13 2025 GMT Not After : Dec 7 03:01:13 2025 GMT Subject: CN=10a9223814fdf08c51cfa77102e3725dd0f0f93c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:83:61:5b:b7:61:ea:ce:03:d0:37:2b:45:10: f2:8f:fa:6c:b6:6f:8b:61:6a:57:e3:b0:4d:c0:4d: 33:77:1f:84:ac:a7:45:dd:98:dc:65:b2:31:13:74: 61:6d:fc:3a:71:a7:e7:23:37:a5:f3:e7:a5:a2:51: 3a:77:38:3b:cb:67:e6:a7:a7:e3:b7:13:8d:a8:88: 18:e6:18:db:1a:b0:c1:ff:8e:ba:78:db:6c:f9:e5: a9:f8:97:47:23:ed:03:7e:85:4f:cc:14:e1:d2:93: 56:6a:5d:74:0f:fa:d6:80:69:8a:4d:76:35:60:6f: 35:51:86:48:36:63:5d:d6:a0:7c:70:8f:a3:99:0a: 88:8c:dc:ce:6e:db:a1:00:88:89:9e:33:c1:fa:b6: 10:f9:08:3e:32:52:e2:26:f3:b5:23:34:85:f3:37: 54:27:cf:d5:6a:ca:9c:80:89:52:95:81:8b:22:63: 93:20:f0:06:8a:51:c6:33:f8:a6:2b:00:9a:78:98: 6a:76:eb:8c:ee:88:a1:d0:ac:63:34:49:8c:08:47: e4:b1:4d:7f:05:fc:af:89:ed:b9:68:8f:50:bf:8b: 8b:d3:dc:c8:89:83:d6:1f:06:4b:24:61:00:d3:66: 3e:3b:78:76:f6:e2:f9:f2:19:fe:60:9a:2c:58:f2: ed:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A9:22:38:14:FD:F0:8C:51:CF:A7:71:02:E3:72:5D:D0:F0:F9:3C X509v3 Authority Key Identifier: keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b4:26:32:88:27:35:78:cb:be:08:25:2a:81:2d:13:80:df: fb:74:35:74:a6:5c:ea:7e:40:ca:d3:56:76:cc:0b:de:78:eb: e7:3a:a0:34:5c:25:d8:ff:13:7b:0e:0e:16:4b:a7:c7:6d:2b: 69:af:95:9f:ec:5f:bf:72:f5:26:98:c0:c7:48:b9:4d:22:0a: 47:cb:43:a0:32:6d:fe:87:9d:10:36:db:87:42:9e:89:4a:a0: d7:63:eb:fd:c5:3d:9a:d6:7b:6a:a4:0a:d9:32:de:65:e4:6b: 1c:ae:c0:f2:ed:ad:5a:cc:64:1d:54:51:4f:90:49:a4:33:a4: ab:d7:f3:85:58:25:49:80:ae:9d:22:52:af:c8:74:cb:21:a5: 48:8c:de:86:44:b5:1b:1a:cd:e8:dd:06:08:9f:60:7c:44:e2: 5e:b7:ce:a6:9d:45:e8:ad:4f:39:af:e1:2c:74:f0:ee:1b:fb: af:2d:8f:95:f0:00:ac:6a:fa:3b:d8:9f:76:74:29:07:e6:4f: 8f:62:e9:41:1f:44:2a:03:37:d8:2e:03:6d:ed:61:56:eb:28: 85:e2:d2:57:9e:4b:de:1f:f8:7e:50:69:fa:89:e5:3f:fb:63: 79:2f:39:e1:99:c2:b1:af:56:ce:b4:0d:f0:fb:70:b6:6f:e1: 53:d3:02:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmznu/Szic360yCNRKAylMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy NTU2ZjAwHhcNMjUxMjA2MDMwMTEzWhcNMjUxMjA3MDMwMTEzWjAzMTEwLwYDVQQD EygxMGE5MjIzODE0ZmRmMDhjNTFjZmE3NzEwMmUzNzI1ZGQwZjBmOTNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1oNhW7dh6s4D0DcrRRDyj/pstm+L YWpX47BNwE0zdx+ErKdF3ZjcZbIxE3Rhbfw6cafnIzel8+elolE6dzg7y2fmp6fj txONqIgY5hjbGrDB/466eNts+eWp+JdHI+0DfoVPzBTh0pNWal10D/rWgGmKTXY1 YG81UYZINmNd1qB8cI+jmQqIjNzObtuhAIiJnjPB+rYQ+Qg+MlLiJvO1IzSF8zdU J8/VasqcgIlSlYGLImOTIPAGilHGM/imKwCaeJhqduuM7oih0KxjNEmMCEfksU1/ Bfyvie25aI9Qv4uL09zIiYPWHwZLJGEA02Y+O3h29uL58hn+YJosWPLt8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCpIjgU/fCMUc+ncQLjcl3Q8Pk8MB8GA1UdIwQY MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALLQmMogn NXjLvgglKoEtE4Df+3Q1dKZc6n5AytNWdswL3njr5zqgNFwl2P8Tew4OFkunx20r aa+Vn+xfv3L1JpjAx0i5TSIKR8tDoDJt/oedEDbbh0KeiUqg12Pr/cU9mtZ7aqQK 2TLeZeRrHK7A8u2tWsxkHVRRT5BJpDOkq9fzhVglSYCunSJSr8h0yyGlSIzehkS1 GxrN6N0GCJ9gfETiXrfOpp1F6K1POa/hLHTw7hv7ry2PlfAArGr6O9ifdnQpB+ZP j2LpQR9EKgM32C4Dbe1hVusoheLSV55L3h/4flBp+onlP/tjeS854ZnCsa9WzrQN 8Ptwtm/hU9MCyw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:23:06 2025 by rpki-client