This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json) Hash identifier: XiIVxfudElHr5BGybh3ELpI+xxFNQvMvJcqlAgtf7JQ= Subject key identifier: 6A:0D:81:6E:86:7F:71:6F:DA:D8:6B:0C:9F:D6:C3:74:D4:26:90:52 Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14 Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14 Certificate serial: 019AF12E67822DDE552D01695A8EE4F05F76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 01:02:21 +0000 Manifest this update: Sat 06 Dec 2025 01:02:21 +0000 Manifest next update: Sun 07 Dec 2025 01:02:21 +0000 Files and hashes: 1: 7BBxm-pOfIQ_PKZVSyNJpMaI0IU.roa (hash: RHWzpm6xp1Dxz5mtJzESRJSHt2NjPD2I75shupyZFg0=) 2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: 7CsSU3t2HDg8Vhb9WJ00P6Amo2tYpuxbBE9WCjQRs04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:67:82:2d:de:55:2d:01:69:5a:8e:e4:f0:5f:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14 Validity Not Before: Dec 6 01:02:21 2025 GMT Not After : Dec 7 01:02:21 2025 GMT Subject: CN=6a0d816e867f716fdad86b0c9fd6c374d4269052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:25:f4:3e:6f:b6:ae:94:d6:76:48:a7:d7:9a: a7:fc:b6:9c:bf:3d:a4:22:69:eb:df:2c:9f:27:55: e2:7a:97:75:5a:94:53:0b:02:39:7c:01:d7:f7:20: a6:1b:1e:e5:5e:37:46:d1:27:c0:b4:35:8b:83:f2: 68:a3:f2:c9:89:12:37:5a:71:43:14:c6:f8:a2:eb: f1:c6:0c:dc:65:33:b3:12:7f:79:9c:d8:fd:2e:cd: 45:96:90:cb:cd:c0:4c:5e:70:16:0c:ab:a9:bf:5f: bc:1e:b6:85:35:17:b7:06:05:7d:b8:2e:8c:1b:33: 01:60:9b:df:81:10:4e:00:9e:08:6c:a9:f9:d8:8e: 3e:8f:18:17:73:fc:c6:88:a9:54:1e:0f:e7:7f:e4: 54:77:2f:07:c7:3e:a6:5e:72:cb:e9:69:1e:23:a3: 93:3a:03:71:e9:99:b5:73:52:36:ab:42:d2:c4:73: 84:12:59:b2:7a:b9:30:86:d2:b1:15:bc:5d:de:27: 9a:6a:66:8c:74:f0:2b:ca:68:51:42:6b:b9:12:1c: a8:b5:71:1b:4e:f4:b8:61:24:61:f1:f1:d9:2b:a6: 2a:86:8e:57:fd:3f:c4:7f:dd:7e:fc:8a:65:ad:ee: cf:cb:6e:96:01:fd:21:c0:fe:97:86:6d:04:2f:99: cd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0D:81:6E:86:7F:71:6F:DA:D8:6B:0C:9F:D6:C3:74:D4:26:90:52 X509v3 Authority Key Identifier: keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:f0:ee:62:b2:1e:d8:e2:92:e5:33:e3:c6:7e:59:6b:11:98: 6e:bb:f5:59:d0:70:2f:78:46:3c:64:02:e5:47:9f:fb:1c:b6: c0:a6:39:6e:71:32:af:50:5d:52:f0:97:8c:6c:4f:e1:2f:b1: 09:d1:00:6a:ab:75:c3:1e:8b:1f:18:24:ad:ff:80:aa:f5:13: 4f:6c:2f:cb:36:db:8e:da:9e:f7:6e:12:86:c7:8e:8b:a0:a4: f7:6e:05:46:8f:a4:73:7b:f7:93:7b:42:48:e1:29:8c:74:f8: 18:ac:44:ac:3f:cd:69:84:6e:5d:d2:17:20:23:6c:ca:d2:87: 1c:84:0f:ef:ef:13:a7:8d:5e:49:44:a3:3b:8a:2b:fb:8a:d8: 28:04:28:7a:21:1c:d2:45:d7:6e:4e:fd:43:a2:75:62:c6:6e: e3:f6:0d:48:06:26:1a:bb:3a:cf:0e:b9:e8:09:3f:20:9c:ab: 05:40:a0:82:4a:bc:53:68:3d:dd:2f:15:76:4c:46:c8:75:08: 66:f2:c8:fe:9e:e9:2f:61:87:46:7a:d7:2b:8e:08:27:92:08: e0:1e:f1:ee:5b:50:fe:f2:65:c5:13:ec:83:18:93:2d:f4:63: 72:bf:60:41:be:bc:04:f7:55:e9:31:be:fd:ad:4f:e4:b5:c5: ec:6f:db:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLmeCLd5VLQFpWo7k8F92MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxODI4M2Q3ODVjYzg4ZWY4NTIwODYyYWMxNjFmMjdiNTYz MGJjMTQwHhcNMjUxMjA2MDEwMjIxWhcNMjUxMjA3MDEwMjIxWjAzMTEwLwYDVQQD Eyg2YTBkODE2ZTg2N2Y3MTZmZGFkODZiMGM5ZmQ2YzM3NGQ0MjY5MDUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyX0Pm+2rpTWdkin15qn/Lacvz2k Imnr3yyfJ1Xiepd1WpRTCwI5fAHX9yCmGx7lXjdG0SfAtDWLg/Joo/LJiRI3WnFD FMb4ouvxxgzcZTOzEn95nNj9Ls1FlpDLzcBMXnAWDKupv1+8HraFNRe3BgV9uC6M GzMBYJvfgRBOAJ4IbKn52I4+jxgXc/zGiKlUHg/nf+RUdy8Hxz6mXnLL6WkeI6OT OgNx6Zm1c1I2q0LSxHOEElmyerkwhtKxFbxd3ieaamaMdPArymhRQmu5EhyotXEb TvS4YSRh8fHZK6Yqho5X/T/Ef91+/Iplre7Py26WAf0hwP6Xhm0EL5nNewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGoNgW6Gf3Fv2thrDJ/Ww3TUJpBSMB8GA1UdIwQY MBaAFJGCg9eFzIjvhSCGKsFh8ntWMLwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMt ZjMyMjYwZTA1NzAwLzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9jY2E0NzYtYTNjOC00YTY1LThjMGMtZjMyMjYwZTA1NzAw LzEva1lLRDE0WE1pTy1GSUlZcXdXSHllMVl3dkJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALfDuYrIe 2OKS5TPjxn5ZaxGYbrv1WdBwL3hGPGQC5Uef+xy2wKY5bnEyr1BdUvCXjGxP4S+x CdEAaqt1wx6LHxgkrf+AqvUTT2wvyzbbjtqe924ShseOi6Ck924FRo+kc3v3k3tC SOEpjHT4GKxErD/NaYRuXdIXICNsytKHHIQP7+8Tp41eSUSjO4or+4rYKAQoeiEc 0kXXbk79Q6J1YsZu4/YNSAYmGrs6zw656Ak/IJyrBUCggkq8U2g93S8VdkxGyHUI ZvLI/p7pL2GHRnrXK44IJ5II4B7x7ltQ/vJlxRPsgxiTLfRjcr9gQb68BPdV6TG+ /a1P5LXF7G/b/g== -----END CERTIFICATE-----Generated at Sat Dec 6 08:25:51 2025 by rpki-client