This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json) Hash identifier: sqX9B91/5o+/3hjAP1//6i/Blrx++tUoevt+nbuSMVE= Subject key identifier: 96:9F:C0:4F:7C:C0:FA:96:35:6F:C5:8A:0F:67:77:B3:01:5A:61:97 Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Certificate serial: 019AF16451BFC8279B2E8B4FFA9CBBC6792F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft Manifest number: 050C Signing time: Sat 06 Dec 2025 02:01:14 +0000 Manifest this update: Sat 06 Dec 2025 02:01:14 +0000 Manifest next update: Sun 07 Dec 2025 02:01:14 +0000 Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=) 2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=) 3: HxZyQaGrGtOk8RKg0Mhbl06w1Co.roa (hash: T6PK192RHox/GMNjjl8t8FiOFdhRf0h3waZVXZOPKpk=) 4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: 4yRJkpTSUxJ6KIhjXEWeaFG3yuuY28FxRzRpkRI77Ag=) 5: PwMQ2FB61zxu5sQ2E09luTqKMvk.roa (hash: izn212mH5oYV5cpl26pTxpZxIsUMzoPkaD7C7yvNm8E=) 6: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=) 7: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=) 8: od9af71GeQfA9Hxa-pUi9HfyQbQ.roa (hash: XWeJ2o3YIDMGq+Gf7bx+E7FN5efcdXQkm09+SRPSSXw=) 9: ypFL40Xoi4y05qu3ogA3n6gvBmc.roa (hash: Osn8j8oSksWpQIeEIhv5U30zU1XAWvsewtWKW4S5v1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:51:bf:c8:27:9b:2e:8b:4f:fa:9c:bb:c6:79:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Validity Not Before: Dec 6 02:01:14 2025 GMT Not After : Dec 7 02:01:14 2025 GMT Subject: CN=969fc04f7cc0fa96356fc58a0f6777b3015a6197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:3b:11:45:cc:e1:40:d3:e9:97:44:18:65: dd:4e:5d:bb:ea:00:74:93:d0:63:24:51:75:68:21: 28:7f:34:70:a3:16:18:01:68:07:3b:b7:b9:9f:44: ab:37:b0:fc:7e:65:fb:97:5a:06:0e:5f:4c:ee:dc: 4d:d9:97:72:9f:92:d7:05:9c:54:d5:9c:c3:f9:91: cb:ee:37:e9:70:aa:bc:da:59:1e:5d:4d:b2:f8:bd: a1:94:4b:25:ad:5a:1b:db:c9:ec:9c:12:d4:57:09: 68:c3:05:ba:86:bc:7d:f5:33:37:61:7d:38:c2:a4: 24:d8:4e:c1:e1:fa:46:70:e8:62:67:77:44:fa:6f: c2:ee:04:35:07:6f:87:b9:d5:fa:a7:40:f5:b2:46: 7e:4a:6f:18:88:13:7f:82:d3:89:b1:6f:e4:42:b9: d5:ad:69:85:5d:10:9a:02:74:78:a3:eb:23:4b:b8: 91:ce:3c:a3:90:6f:d8:40:f7:ef:04:85:c2:6a:86: 6b:55:29:76:87:95:8f:8b:b1:d5:fc:1d:9a:fa:50: c0:f5:38:15:c6:55:fa:92:79:01:c0:64:8f:64:fa: 95:a1:91:8b:1c:45:02:19:c6:74:fc:2c:d5:5d:97: f3:cb:5e:4d:25:9e:fa:b7:cf:5f:a1:8b:ce:62:e4: 26:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9F:C0:4F:7C:C0:FA:96:35:6F:C5:8A:0F:67:77:B3:01:5A:61:97 X509v3 Authority Key Identifier: keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:d6:ff:5a:96:42:1a:7a:e2:49:15:63:0d:d5:c0:23:85:88: 08:94:7d:a9:ff:f4:c9:b2:3d:7d:02:ee:7e:95:1e:cc:c0:61: 94:47:40:e4:8f:ea:55:90:f7:26:c0:8f:5f:d4:0d:5f:85:54: 7a:22:00:f6:89:74:c6:69:dc:01:89:a4:1e:36:66:c5:88:95: 0b:c9:b5:ac:36:77:ba:47:47:d8:3e:1b:74:5b:f8:e1:31:1a: 07:0b:4f:e9:56:48:a9:73:a0:9a:0d:23:8b:51:fd:ac:d7:ea: 45:87:04:5a:a1:17:d6:87:82:fa:de:26:97:50:d4:2d:96:98: 2c:6a:c2:a9:ef:fd:c7:0f:9b:bd:c4:cf:67:f7:8a:e0:47:ea: aa:dc:94:a0:07:71:e1:8b:46:03:df:ea:01:cf:05:7c:bc:2b: ac:3a:1a:c3:6c:f5:54:75:af:e7:3a:0f:a5:27:59:8e:30:79: 6f:d1:ab:39:02:82:f2:35:bc:d1:34:28:82:89:b5:90:e5:37: 0e:d6:8d:8d:8a:b9:28:da:43:e6:21:b0:8e:08:de:9d:46:87: 41:cf:b3:a5:78:39:84:49:b0:b1:c2:fb:1d:5f:72:5d:3f:ee: 19:9e:f9:24:15:2e:77:a3:ef:09:47:27:ae:18:cd:04:e0:ad: f3:8d:a7:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZFG/yCebLotP+py7xnkvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh NTI2ZDgwHhcNMjUxMjA2MDIwMTE0WhcNMjUxMjA3MDIwMTE0WjAzMTEwLwYDVQQD Eyg5NjlmYzA0ZjdjYzBmYTk2MzU2ZmM1OGEwZjY3NzdiMzAxNWE2MTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfE7EUXM4UDT6ZdEGGXdTl276gB0 k9BjJFF1aCEofzRwoxYYAWgHO7e5n0SrN7D8fmX7l1oGDl9M7txN2Zdyn5LXBZxU 1ZzD+ZHL7jfpcKq82lkeXU2y+L2hlEslrVob28nsnBLUVwlowwW6hrx99TM3YX04 wqQk2E7B4fpGcOhiZ3dE+m/C7gQ1B2+HudX6p0D1skZ+Sm8YiBN/gtOJsW/kQrnV rWmFXRCaAnR4o+sjS7iRzjyjkG/YQPfvBIXCaoZrVSl2h5WPi7HV/B2a+lDA9TgV xlX6knkBwGSPZPqVoZGLHEUCGcZ0/CzVXZfzy15NJZ76t89foYvOYuQmMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJafwE98wPqWNW/Fig9nd7MBWmGXMB8GA1UdIwQY MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAINb/WpZC GnriSRVjDdXAI4WICJR9qf/0ybI9fQLufpUezMBhlEdA5I/qVZD3JsCPX9QNX4VU eiIA9ol0xmncAYmkHjZmxYiVC8m1rDZ3ukdH2D4bdFv44TEaBwtP6VZIqXOgmg0j i1H9rNfqRYcEWqEX1oeC+t4ml1DULZaYLGrCqe/9xw+bvcTPZ/eK4EfqqtyUoAdx 4YtGA9/qAc8FfLwrrDoaw2z1VHWv5zoPpSdZjjB5b9GrOQKC8jW80TQogom1kOU3 DtaNjYq5KNpD5iGwjgjenUaHQc+zpXg5hEmwscL7HV9yXT/uGZ75JBUud6PvCUcn rhjNBOCt842nmQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:01:24 2025 by rpki-client