This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft File: KANYk6JXplTz-FSVxBaevobeGNE.mft (raw, json) Hash identifier: DuuGf5HP4tVsKj39ilCs6MWOhIpr3e8Bxb0xrqSJTEQ= Subject key identifier: 6B:60:C4:98:A0:6C:B8:50:A4:BA:EF:47:B6:21:AE:FD:C5:BC:11:C2 Authority key identifier: 28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1 Certificate issuer: /CN=28035893a257a654f3f85495c4169ebe86de18d1 Certificate serial: 019AF23FBEB2046A4D3E2141E731DDBDD97A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft Manifest number: 0C9E Signing time: Sat 06 Dec 2025 06:00:55 +0000 Manifest this update: Sat 06 Dec 2025 06:00:55 +0000 Manifest next update: Sun 07 Dec 2025 06:00:55 +0000 Files and hashes: 1: HzZn0ba7QItzyWun3HWfVhfe2Mw.roa (hash: iE4IEBeKKD6peBsX5m6y9GBML1LTBu1RqbqOosqLhr0=) 2: KANYk6JXplTz-FSVxBaevobeGNE.crl (hash: G0AmkovIpRwPkegnK0NACP8mjCSoOKoOUwA0UNji2SY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:be:b2:04:6a:4d:3e:21:41:e7:31:dd:bd:d9:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28035893a257a654f3f85495c4169ebe86de18d1 Validity Not Before: Dec 6 06:00:55 2025 GMT Not After : Dec 7 06:00:55 2025 GMT Subject: CN=6b60c498a06cb850a4baef47b621aefdc5bc11c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1c:61:ce:dc:b6:e5:46:11:a6:d9:f0:2e:14: 4a:53:a6:78:7a:be:83:75:d4:50:5b:29:87:c4:af: 5e:0e:fd:36:8d:4c:b8:4a:dc:93:42:d0:0a:76:c2: e7:47:41:07:d4:d7:8b:94:9d:82:79:05:b1:31:62: c8:4c:c5:d0:4b:01:3b:ab:e2:a9:d2:71:6b:8c:fc: c3:30:8b:b1:01:e9:2e:2a:f8:56:cc:eb:d7:7a:57: bc:5b:a0:70:78:33:fd:60:13:32:a0:48:8e:7b:f3: 03:e3:b0:83:cf:b1:11:8f:83:bc:d5:7f:8c:b3:bb: 9a:eb:8a:1f:63:4d:bf:62:11:f8:69:e1:bc:d9:97: 76:89:f5:43:00:fd:be:17:4e:85:01:01:e2:eb:05: 83:e9:8a:9d:c6:fe:17:d4:03:95:81:b7:3d:fb:7d: 7f:9b:ca:92:72:2a:67:fb:b5:45:37:77:92:ad:41: 3f:1e:49:46:1c:83:b9:4f:76:ce:f2:43:43:ca:1f: 24:c4:f2:3d:3c:fc:d2:eb:81:5d:3b:b7:8f:6f:36: a2:35:ea:cb:40:b8:8a:59:3b:4e:64:1d:97:f3:7e: d8:f6:d9:6a:68:04:ec:48:06:f2:43:e0:79:75:35: 55:8b:08:76:4d:43:08:a1:a6:c9:41:87:c3:7c:1f: 8f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:60:C4:98:A0:6C:B8:50:A4:BA:EF:47:B6:21:AE:FD:C5:BC:11:C2 X509v3 Authority Key Identifier: keyid:28:03:58:93:A2:57:A6:54:F3:F8:54:95:C4:16:9E:BE:86:DE:18:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KANYk6JXplTz-FSVxBaevobeGNE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9b76e3-e4f1-41a2-9f0e-937e00d0732f/1/KANYk6JXplTz-FSVxBaevobeGNE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:d1:85:c0:50:94:64:dc:9d:90:fe:20:a8:29:19:b1:62:c1: c1:e4:6f:88:19:05:90:9c:ca:ce:10:13:1e:41:6e:c6:fa:52: 62:f6:58:96:1d:17:0d:9f:59:f7:a3:95:44:58:b2:27:9d:d3: 65:b5:28:e4:60:4d:ef:33:eb:ef:71:59:3b:89:69:91:9d:8d: 02:36:a8:8a:35:20:23:e6:f1:b2:d4:90:80:04:68:cd:93:d5: 4b:f6:a9:21:28:d1:e2:75:7f:24:67:90:83:6b:0a:d3:3d:76: c6:e7:c1:83:20:3b:6a:21:20:26:3d:d1:98:45:a0:2d:80:80: 76:4a:2b:51:53:05:d1:62:90:d7:2f:de:59:fe:6e:eb:49:77: 5b:c7:d9:4a:e0:dc:04:08:9a:76:08:19:d7:69:b8:dd:fc:c7: 5b:f2:a4:7a:cc:07:15:05:e5:4c:36:38:a3:f2:15:6c:27:73: c9:14:01:76:43:16:6d:36:d8:05:6f:2f:ff:76:15:00:95:a8: 6b:aa:96:cd:ed:d6:91:7d:77:b1:a6:b8:e4:b2:ec:87:db:d6: 06:a1:d4:ee:76:97:90:bf:c4:5f:da:9a:60:dc:2f:04:5f:b5: 8c:a0:23:a9:16:9f:95:10:01:eb:9d:b8:ef:5a:ee:db:8c:0e: 90:63:fc:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP76yBGpNPiFB5zHdvdl6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MDM1ODkzYTI1N2E2NTRmM2Y4NTQ5NWM0MTY5ZWJlODZk ZTE4ZDEwHhcNMjUxMjA2MDYwMDU1WhcNMjUxMjA3MDYwMDU1WjAzMTEwLwYDVQQD Eyg2YjYwYzQ5OGEwNmNiODUwYTRiYWVmNDdiNjIxYWVmZGM1YmMxMWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8hxhzty25UYRptnwLhRKU6Z4er6D ddRQWymHxK9eDv02jUy4StyTQtAKdsLnR0EH1NeLlJ2CeQWxMWLITMXQSwE7q+Kp 0nFrjPzDMIuxAekuKvhWzOvXele8W6BweDP9YBMyoEiOe/MD47CDz7ERj4O81X+M s7ua64ofY02/YhH4aeG82Zd2ifVDAP2+F06FAQHi6wWD6Yqdxv4X1AOVgbc9+31/ m8qScipn+7VFN3eSrUE/HklGHIO5T3bO8kNDyh8kxPI9PPzS64FdO7ePbzaiNerL QLiKWTtOZB2X837Y9tlqaATsSAbyQ+B5dTVViwh2TUMIoabJQYfDfB+PVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGtgxJigbLhQpLrvR7Yhrv3FvBHCMB8GA1UdIwQY MBaAFCgDWJOiV6ZU8/hUlcQWnr6G3hjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS85Yjc2ZTMtZTRmMS00MWEyLTlmMGUt OTM3ZTAwZDA3MzJmLzEvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS85Yjc2ZTMtZTRmMS00MWEyLTlmMGUtOTM3ZTAwZDA3MzJm LzEvS0FOWWs2SlhwbFR6LUZTVnhCYWV2b2JlR05FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdGFwFCU ZNydkP4gqCkZsWLBweRviBkFkJzKzhATHkFuxvpSYvZYlh0XDZ9Z96OVRFiyJ53T ZbUo5GBN7zPr73FZO4lpkZ2NAjaoijUgI+bxstSQgARozZPVS/apISjR4nV/JGeQ g2sK0z12xufBgyA7aiEgJj3RmEWgLYCAdkorUVMF0WKQ1y/eWf5u60l3W8fZSuDc BAiadggZ12m43fzHW/KkeswHFQXlTDY4o/IVbCdzyRQBdkMWbTbYBW8v/3YVAJWo a6qWze3WkX13saa45LLsh9vWBqHU7naXkL/EX9qaYNwvBF+1jKAjqRaflRAB6524 71ru24wOkGP8Kg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:23 2025 by rpki-client