This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json) Hash identifier: 0G43alUDDryN42Bp26PVfUrQ3Lx5JlLuOPqFOUbnWqQ= Subject key identifier: 77:F6:4F:E4:20:D3:4E:95:A1:E1:D4:53:E7:05:8E:89:76:5B:56:E0 Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3 Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3 Certificate serial: 019AF19B66C3E455D5EC5C6F7D3D0281D57C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft Manifest number: 0BF0 Signing time: Sat 06 Dec 2025 03:01:24 +0000 Manifest this update: Sat 06 Dec 2025 03:01:24 +0000 Manifest next update: Sun 07 Dec 2025 03:01:24 +0000 Files and hashes: 1: XFrF4ZD8RKmENGKuXlNfyh9_oV8.roa (hash: Syc9HmjiF/DkUOhl4IVh1oQ9jwD6L7ptWtUgxSy9ut8=) 2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: KGM+iBH9h7XJ2ppwHxvMMwFthZpOvjYB/dRTYalmMoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:66:c3:e4:55:d5:ec:5c:6f:7d:3d:02:81:d5:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3 Validity Not Before: Dec 6 03:01:24 2025 GMT Not After : Dec 7 03:01:24 2025 GMT Subject: CN=77f64fe420d34e95a1e1d453e7058e89765b56e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ca:b1:2a:ca:6b:f0:98:05:7c:25:06:14:34: aa:ee:8d:47:93:5a:36:55:2f:bb:62:16:00:81:30: 89:95:c4:a9:78:90:69:0b:0c:15:be:66:10:af:3e: 8f:3f:a5:5e:54:3a:8f:0e:7f:d7:f3:95:1c:57:33: 3a:9f:b8:83:7d:d3:3d:a2:36:f4:71:d1:e3:18:ed: c2:d1:dc:82:86:1b:88:cc:2b:75:74:a0:a6:9e:90: e1:ad:2b:64:d8:e2:0b:64:b8:8d:a5:3d:dd:ae:e7: 5c:49:39:28:46:c3:3e:46:3d:4c:ed:b6:56:ca:0e: 9e:7d:99:30:e7:dd:ac:0b:e7:ce:e7:83:bf:af:45: 67:a6:ab:ca:cb:ca:6a:e1:d3:8c:5b:de:43:90:67: 2e:c9:6a:3f:a3:f3:06:fa:60:bb:5f:c4:20:9f:17: 88:22:50:71:f4:8e:84:c8:41:b4:4e:a5:c1:8e:3d: 28:30:be:7d:c7:2d:a1:90:06:c9:6a:10:31:6c:69: fd:50:8a:b7:45:fc:25:df:6d:d4:f4:36:c8:2f:dc: 6b:3a:8c:92:05:67:a1:c2:11:0d:dc:6e:32:93:95: da:83:11:b9:9d:af:d4:61:6b:d0:c8:c3:59:b0:50: 89:3b:a6:af:07:52:1f:37:b2:fc:35:55:b7:79:65: bd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F6:4F:E4:20:D3:4E:95:A1:E1:D4:53:E7:05:8E:89:76:5B:56:E0 X509v3 Authority Key Identifier: keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:5e:ea:24:49:73:f9:78:19:d6:e1:bf:02:ea:43:75:25:bd: 52:ef:7f:66:ab:30:71:15:29:71:52:31:20:55:fb:1f:7f:6a: 55:51:a0:f6:9d:cc:4f:59:19:28:da:d3:88:22:a9:4f:41:c7: db:7a:5f:bc:bb:54:f4:b7:fc:11:88:7d:ee:04:f7:8d:d2:70: 7d:7a:d6:d1:b5:2b:f5:99:f9:36:11:06:76:f9:b0:d5:99:ab: 55:1f:53:8e:36:ed:2e:cb:6d:5b:0d:e7:1e:94:86:dd:4d:a9: ee:f6:f5:e5:2a:37:c5:5b:53:b9:6d:6e:3a:9b:12:79:71:d4: ab:3c:f8:eb:c2:5e:78:d7:71:9c:3d:96:70:aa:6b:ec:d2:a6: d5:c7:46:cd:8c:57:ad:f3:18:d6:8d:b6:bf:51:1e:21:2c:0a: 27:80:48:b3:ff:53:8b:b8:1c:c1:6a:76:2e:8d:8e:72:0f:ba: e1:5b:7f:4a:74:00:8d:95:75:1e:e1:25:aa:19:97:d2:1a:1a: fa:64:48:04:d6:ae:91:37:ae:b1:43:b8:15:ba:2c:d4:82:fd: 29:1d:69:a6:8a:8a:52:56:fb:c4:9e:84:a2:c8:c6:97:47:ef: 48:9f:97:bf:c8:34:1e:6b:c9:0b:e1:5c:51:77:04:72:14:85: 75:53:5c:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm2bD5FXV7FxvfT0CgdV8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyYWYwM2NhMmRmNjQyM2I3N2QwZWYzNzM3YjBmNDc5MWFh MDM1YTMwHhcNMjUxMjA2MDMwMTI0WhcNMjUxMjA3MDMwMTI0WjAzMTEwLwYDVQQD Eyg3N2Y2NGZlNDIwZDM0ZTk1YTFlMWQ0NTNlNzA1OGU4OTc2NWI1NmUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68qxKspr8JgFfCUGFDSq7o1Hk1o2 VS+7YhYAgTCJlcSpeJBpCwwVvmYQrz6PP6VeVDqPDn/X85UcVzM6n7iDfdM9ojb0 cdHjGO3C0dyChhuIzCt1dKCmnpDhrStk2OILZLiNpT3drudcSTkoRsM+Rj1M7bZW yg6efZkw592sC+fO54O/r0VnpqvKy8pq4dOMW95DkGcuyWo/o/MG+mC7X8QgnxeI IlBx9I6EyEG0TqXBjj0oML59xy2hkAbJahAxbGn9UIq3Rfwl323U9DbIL9xrOoyS BWehwhEN3G4yk5XagxG5na/UYWvQyMNZsFCJO6avB1IfN7L8NVW3eWW9iQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHf2T+Qg006VoeHUU+cFjol2W1bgMB8GA1UdIwQY MBaAFJKvA8ot9kI7d9DvNzew9HkaoDWjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEt NzAzYjZiNzBhN2VjLzEva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS85ODIyYmMtMTU5My00OThjLThmNmEtNzAzYjZiNzBhN2Vj LzEva3E4RHlpMzJRanQzME84M043RDBlUnFnTmFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArV7qJElz +XgZ1uG/AupDdSW9Uu9/ZqswcRUpcVIxIFX7H39qVVGg9p3MT1kZKNrTiCKpT0HH 23pfvLtU9Lf8EYh97gT3jdJwfXrW0bUr9Zn5NhEGdvmw1ZmrVR9TjjbtLsttWw3n HpSG3U2p7vb15So3xVtTuW1uOpsSeXHUqzz468JeeNdxnD2WcKpr7NKm1cdGzYxX rfMY1o22v1EeISwKJ4BIs/9Ti7gcwWp2Lo2Ocg+64Vt/SnQAjZV1HuElqhmX0hoa +mRIBNaukTeusUO4Fbos1IL9KR1ppoqKUlb7xJ6EosjGl0fvSJ+Xv8g0HmvJC+Fc UXcEchSFdVNcnA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:26 2025 by rpki-client