This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft File: KC5DLtiL7BrRRURJYygU1DmWseA.mft (raw, json) Hash identifier: 9CO4qJUHm8P4m1i48lvmhB25Dct6jEAKRdjVsyz7zYM= Subject key identifier: 9C:5B:94:9E:90:26:F0:84:21:F1:14:E1:02:B8:2F:8A:05:74:94:BD Authority key identifier: 28:2E:43:2E:D8:8B:EC:1A:D1:45:44:49:63:28:14:D4:39:96:B1:E0 Certificate issuer: /CN=282e432ed88bec1ad1454449632814d43996b1e0 Certificate serial: 019AF464D85118B86B2630CDB99C7285B2A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft Manifest number: 0DBA Signing time: Sat 06 Dec 2025 16:00:40 +0000 Manifest this update: Sat 06 Dec 2025 16:00:40 +0000 Manifest next update: Sun 07 Dec 2025 16:00:40 +0000 Files and hashes: 1: 9FnOB-XBygoB-RgBBWEsPTbvFTc.roa (hash: faK52ZKxn8mhj7q+v4KziaARqXuKQdUnupgh7Jp3IVk=) 2: KC5DLtiL7BrRRURJYygU1DmWseA.crl (hash: FhCAIcoNyDjRBUKuJ1ai60wR6zrlCImPiH302WV9pKY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:d8:51:18:b8:6b:26:30:cd:b9:9c:72:85:b2:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282e432ed88bec1ad1454449632814d43996b1e0 Validity Not Before: Dec 6 16:00:40 2025 GMT Not After : Dec 7 16:00:40 2025 GMT Subject: CN=9c5b949e9026f08421f114e102b82f8a057494bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:1b:9c:fe:9d:5f:46:0d:5c:31:ad:b5:55:95: 06:08:72:d1:83:7f:1d:6f:0e:aa:27:85:2d:8e:97: 29:2c:9d:d0:b8:1b:e3:90:b6:53:7f:af:cf:07:65: e6:16:40:2f:6a:68:da:24:05:5a:87:c9:af:33:49: 71:89:be:cd:b5:78:3f:d5:ac:77:d6:9b:f4:e0:81: 0b:b3:8b:50:b2:01:4e:92:b5:6c:81:c9:ee:ea:52: a1:5d:53:8f:76:c5:d1:80:2f:cc:cb:ae:80:a9:71: 71:62:f8:16:25:72:50:1c:33:6f:b1:95:3b:bf:f3: 42:e9:56:b8:99:92:a5:79:f5:d5:87:78:0f:94:32: 61:ff:21:93:6c:25:55:07:0b:ba:14:3c:c9:91:34: 3f:09:92:3b:99:13:5a:cf:d0:a4:37:75:1a:6b:e5: 9f:b0:d5:54:cc:a0:c0:2c:aa:cd:ce:e6:3a:87:9a: db:3e:b0:03:00:ef:56:7c:77:6c:01:4e:80:fd:6c: 4a:3b:1b:a6:05:7c:e8:f1:2f:99:a5:7d:ac:5e:47: 97:d1:a3:9c:6f:ba:dd:b7:fb:6f:59:69:a8:8e:5f: 14:b4:c8:a8:06:6d:63:7f:aa:eb:b2:d0:44:29:20: 8e:4f:e6:93:99:79:78:7a:81:9b:a9:49:8b:11:41: 3b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5B:94:9E:90:26:F0:84:21:F1:14:E1:02:B8:2F:8A:05:74:94:BD X509v3 Authority Key Identifier: keyid:28:2E:43:2E:D8:8B:EC:1A:D1:45:44:49:63:28:14:D4:39:96:B1:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KC5DLtiL7BrRRURJYygU1DmWseA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/c60f08-b24b-4dc4-a27c-fc0aa72e8ead/1/KC5DLtiL7BrRRURJYygU1DmWseA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:cc:eb:60:be:07:ef:fe:f1:e0:af:a6:12:fc:5d:e7:63:aa: c3:52:9b:a1:8f:08:23:bb:5b:f9:31:85:71:c8:0e:01:a1:06: 75:b0:09:ca:73:f9:ac:34:99:aa:dc:53:eb:69:dd:38:a2:1d: 0d:3d:60:ba:3e:2a:fe:ed:6b:99:e2:61:bd:e4:25:c3:18:23: a7:ea:70:55:01:01:bd:5a:58:23:18:74:a7:d3:a0:96:1f:0c: e2:c0:72:bf:6e:62:96:1a:13:c3:82:ed:2c:c7:2c:ce:c5:5e: a1:91:84:3f:68:37:89:0c:1e:b7:b1:58:cb:11:35:c8:3e:3a: aa:b7:d5:50:fb:c4:fa:24:fd:70:21:b6:6d:11:56:8d:ff:cb: 3a:f8:18:b5:bd:56:fb:d6:5b:71:ec:69:26:44:7e:22:de:7b: 62:93:df:63:b8:ba:a6:79:d3:3c:20:3f:5f:fb:cd:63:78:53: 37:20:78:2a:c9:8f:91:f6:f7:82:ee:42:a1:eb:ae:97:05:39: d5:9b:c7:1e:48:be:c3:1b:0e:de:03:bb:c6:71:ca:5a:78:92: ab:e7:5d:50:f1:fd:36:80:6b:e8:bd:59:7e:5a:e2:bd:2d:77: 16:12:4a:a9:87:9a:1a:fb:25:8f:de:8c:62:e8:1c:1c:5b:3f: 27:c5:db:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZNhRGLhrJjDNuZxyhbKlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MmU0MzJlZDg4YmVjMWFkMTQ1NDQ0OTYzMjgxNGQ0Mzk5 NmIxZTAwHhcNMjUxMjA2MTYwMDQwWhcNMjUxMjA3MTYwMDQwWjAzMTEwLwYDVQQD Eyg5YzViOTQ5ZTkwMjZmMDg0MjFmMTE0ZTEwMmI4MmY4YTA1NzQ5NGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRuc/p1fRg1cMa21VZUGCHLRg38d bw6qJ4UtjpcpLJ3QuBvjkLZTf6/PB2XmFkAvamjaJAVah8mvM0lxib7NtXg/1ax3 1pv04IELs4tQsgFOkrVsgcnu6lKhXVOPdsXRgC/My66AqXFxYvgWJXJQHDNvsZU7 v/NC6Va4mZKlefXVh3gPlDJh/yGTbCVVBwu6FDzJkTQ/CZI7mRNaz9CkN3Uaa+Wf sNVUzKDALKrNzuY6h5rbPrADAO9WfHdsAU6A/WxKOxumBXzo8S+ZpX2sXkeX0aOc b7rdt/tvWWmojl8UtMioBm1jf6rrstBEKSCOT+aTmXl4eoGbqUmLEUE74QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJxblJ6QJvCEIfEU4QK4L4oFdJS9MB8GA1UdIwQY MBaAFCguQy7Yi+wa0UVESWMoFNQ5lrHgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0M1REx0aUw3QnJSUlVSSll5Z1UxRG1Xc2VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9jNjBmMDgtYjI0Yi00ZGM0LWEyN2Mt ZmMwYWE3MmU4ZWFkLzEvS0M1REx0aUw3QnJSUlVSSll5Z1UxRG1Xc2VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi9jNjBmMDgtYjI0Yi00ZGM0LWEyN2MtZmMwYWE3MmU4ZWFk LzEvS0M1REx0aUw3QnJSUlVSSll5Z1UxRG1Xc2VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWczrYL4H 7/7x4K+mEvxd52Oqw1KboY8II7tb+TGFccgOAaEGdbAJynP5rDSZqtxT62ndOKId DT1guj4q/u1rmeJhveQlwxgjp+pwVQEBvVpYIxh0p9Oglh8M4sByv25ilhoTw4Lt LMcszsVeoZGEP2g3iQwet7FYyxE1yD46qrfVUPvE+iT9cCG2bRFWjf/LOvgYtb1W +9ZbcexpJkR+It57YpPfY7i6pnnTPCA/X/vNY3hTNyB4KsmPkfb3gu5CoeuulwU5 1ZvHHki+wxsO3gO7xnHKWniSq+ddUPH9NoBr6L1ZflrivS13FhJKqYeaGvslj96M YugcHFs/J8Xb9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 20:53:31 2025 by rpki-client