This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json) Hash identifier: McwQqh0H9IDFbmykrHs6IiX7HeBgKt6/a8U3DW+/gT8= Subject key identifier: 07:F6:2D:6C:EC:EC:17:35:5D:8C:9B:AE:71:EF:2E:D3:81:2C:AA:8A Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8 Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8 Certificate serial: 019AF2096E48E4FD21661D094BFE9789F87A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft Manifest number: 0289 Signing time: Sat 06 Dec 2025 05:01:35 +0000 Manifest this update: Sat 06 Dec 2025 05:01:35 +0000 Manifest next update: Sun 07 Dec 2025 05:01:35 +0000 Files and hashes: 1: N05LSOD5G7OCVr2R2Lk3Qm3IMnc.roa (hash: 2FUijApprdSPC+yt20CbCF23SFHyPUM/peKf0m3x+RA=) 2: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: uj8soMb821HsMV53ntUN5E8LZ9YG+njLK9I96y1GI7w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:6e:48:e4:fd:21:66:1d:09:4b:fe:97:89:f8:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8 Validity Not Before: Dec 6 05:01:35 2025 GMT Not After : Dec 7 05:01:35 2025 GMT Subject: CN=07f62d6cecec17355d8c9bae71ef2ed3812caa8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d6:85:3e:3a:91:73:54:7b:29:6e:06:ef:4a: d9:c7:bd:f0:a1:77:58:94:bc:34:22:f4:e0:f6:d5: ea:82:7a:92:15:41:fb:fc:7b:f3:61:e5:e1:71:a7: 2b:65:3b:2d:b8:6f:a8:56:44:61:90:90:83:13:7a: eb:2a:0e:3c:32:f9:eb:bf:f2:39:9c:d3:d2:cd:a7: 2d:00:97:02:74:c2:ea:07:79:5e:14:8b:14:3f:2d: 84:f4:fb:49:12:5f:2a:09:43:9d:ab:aa:1a:a7:46: 59:91:b5:00:c8:a6:85:73:2a:78:ae:24:de:77:bd: 9c:75:4d:2f:fa:fd:85:6d:6c:91:f4:b4:0c:27:a9: 8d:1c:29:af:18:b2:9f:b5:24:2b:49:31:b3:92:a9: e6:a8:e1:11:35:cd:40:2e:d7:4f:63:29:74:de:f6: 86:97:88:c4:59:c6:fe:d6:44:f6:39:7c:e9:61:f5: 4c:c9:17:da:89:c6:b6:6b:ac:6d:c3:8b:fe:ee:1a: d9:08:65:b4:ed:fc:9d:cc:1a:f9:55:3d:d2:8a:3f: 72:ae:68:d7:5b:86:5d:93:39:43:85:10:6b:7e:b2: b7:bb:7e:e7:62:d4:e9:7f:ca:95:be:75:b8:66:54: 09:c6:8c:0f:3a:34:95:a3:a4:c6:e0:d6:7a:00:1c: be:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F6:2D:6C:EC:EC:17:35:5D:8C:9B:AE:71:EF:2E:D3:81:2C:AA:8A X509v3 Authority Key Identifier: keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:75:6d:9c:23:67:2f:0c:8d:7f:ed:97:39:41:36:d2:16:83: 1f:e4:ba:c7:af:ac:cf:22:f5:3f:d2:9c:64:55:12:80:7b:00: 44:92:34:80:11:0a:83:30:38:74:7b:93:cc:69:4f:f9:18:80: 82:96:66:f3:a1:62:6a:95:ed:4d:a7:12:ec:21:8f:90:52:6e: 2f:e4:8c:6c:c0:15:0a:75:c6:02:ed:9b:a2:5f:02:d6:98:56: 43:46:bb:77:9c:64:96:32:b6:5f:97:d8:0a:ee:67:15:fc:5d: aa:0f:54:a4:61:b8:d6:14:30:e8:2e:6a:b6:e4:7e:67:67:13: 08:03:da:73:dd:5e:be:54:e0:bb:23:fd:6a:b8:34:96:7f:d7: 69:d3:1b:9f:dc:f2:ff:2e:f0:56:b8:99:62:df:8d:cd:f5:5b: a0:dc:65:9c:f8:2e:19:79:6a:b9:4f:0d:34:d6:d1:07:d6:ae: 62:b4:1d:7d:ba:7a:7d:d6:4c:83:31:f6:83:7f:e0:a7:b6:64: a1:0f:43:92:09:39:6f:ed:57:15:51:c2:b9:eb:f2:c5:e0:ba: dc:ee:a7:69:d4:15:0d:44:b5:33:be:bb:25:66:7d:b4:47:ff: fa:3c:85:da:c4:b8:bc:a8:06:f1:0c:d7:bd:e8:1d:80:b5:fb: e5:de:2d:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCW5I5P0hZh0JS/6Xifh6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYmQ1ODgzYzgyYWVkMjVmZWYxYjE4ZDcwZDAyMTViMDdm NzI3ZDgwHhcNMjUxMjA2MDUwMTM1WhcNMjUxMjA3MDUwMTM1WjAzMTEwLwYDVQQD EygwN2Y2MmQ2Y2VjZWMxNzM1NWQ4YzliYWU3MWVmMmVkMzgxMmNhYThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4taFPjqRc1R7KW4G70rZx73woXdY lLw0IvTg9tXqgnqSFUH7/HvzYeXhcacrZTstuG+oVkRhkJCDE3rrKg48Mvnrv/I5 nNPSzactAJcCdMLqB3leFIsUPy2E9PtJEl8qCUOdq6oap0ZZkbUAyKaFcyp4riTe d72cdU0v+v2FbWyR9LQMJ6mNHCmvGLKftSQrSTGzkqnmqOERNc1ALtdPYyl03vaG l4jEWcb+1kT2OXzpYfVMyRfaica2a6xtw4v+7hrZCGW07fydzBr5VT3Sij9yrmjX W4ZdkzlDhRBrfrK3u37nYtTpf8qVvnW4ZlQJxowPOjSVo6TG4NZ6ABy+EwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf2LWzs7Bc1XYybrnHvLtOBLKqKMB8GA1UdIwQY MBaAFJG9WIPIKu0l/vGxjXDQIVsH9yfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85ZDU2YTMtNDQxNy00OTQwLWJhYTIt OWU5NjJjZDlkZDgyLzEva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85ZDU2YTMtNDQxNy00OTQwLWJhYTItOWU5NjJjZDlkZDgy LzEva2IxWWc4Z3E3U1gtOGJHTmNOQWhXd2YzSjlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALXVtnCNn LwyNf+2XOUE20haDH+S6x6+szyL1P9KcZFUSgHsARJI0gBEKgzA4dHuTzGlP+RiA gpZm86FiapXtTacS7CGPkFJuL+SMbMAVCnXGAu2bol8C1phWQ0a7d5xkljK2X5fY Cu5nFfxdqg9UpGG41hQw6C5qtuR+Z2cTCAPac91evlTguyP9arg0ln/XadMbn9zy /y7wVriZYt+NzfVboNxlnPguGXlquU8NNNbRB9auYrQdfbp6fdZMgzH2g3/gp7Zk oQ9Dkgk5b+1XFVHCuevyxeC63O6nadQVDUS1M767JWZ9tEf/+jyF2sS4vKgG8QzX vegdgLX75d4trw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:13:17 2025 by rpki-client