This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft File: KXNk9QJTTodxoMYll5TCbibUvKQ.mft (raw, json) Hash identifier: 1lrbhtThBCDiV3QLpTkCou3hmmUASDNf9NVFRgJyaEg= Subject key identifier: BB:57:95:45:B2:87:2E:29:FD:7E:E8:E9:64:74:EA:AD:93:C3:62:C8 Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4 Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4 Certificate serial: 019AF12D0B61F0D41D33AFAD41B0233FB455 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft Manifest number: 15CC Signing time: Sat 06 Dec 2025 01:00:52 +0000 Manifest this update: Sat 06 Dec 2025 01:00:52 +0000 Manifest next update: Sun 07 Dec 2025 01:00:52 +0000 Files and hashes: 1: 2Cp_JC-1gSdENPjM_UWn9lNVG7o.roa (hash: +35xjqek9Nhlc/Z0+VDCYx/DAJw10REdvRuvu6t5M3s=) 2: 30p15OIB4xzHle9tD78XYhbRDYI.roa (hash: 9HVb43mRInURyExw74+VWFanW5TCiRHL7zKkRNQfWwc=) 3: 46l3zcDNK_2V63AreaLMsQrAgaE.roa (hash: yY63fb353nPGfB15WkNs5SfqIg+XAt04c2yklxwzqUk=) 4: DrQJgIgCadGbo__38qvLm4f2buQ.roa (hash: Wx23py7fw++y8qecqXEe1C97qUaOVg6INU3OjKvg+YE=) 5: KXNk9QJTTodxoMYll5TCbibUvKQ.crl (hash: 3S0tXM3UZ4RW25GYYjHZn0QSDMqt5fk0mS33ok0SiSQ=) 6: Kc-1Z4R9k1b9QbprK1lrnIRFuzo.roa (hash: mIf5b4mKVeZgEr7VsdotpcNIdYch/DFkBdwgO8kit9A=) 7: lTAav4yQpZ87qw_zIchzIsq-5gM.roa (hash: 3b9+qDTSwpfJP/SrqHspJoxR/TN3seQEWvBLhEVGMW0=) 8: x8RX4rKBNmZcMpsvt4Nm7APSjAM.roa (hash: zc30VoGi96Z1iHoOnbaFFXszAPpJE3UJpyJWRy15Byo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:0b:61:f0:d4:1d:33:af:ad:41:b0:23:3f:b4:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4 Validity Not Before: Dec 6 01:00:52 2025 GMT Not After : Dec 7 01:00:52 2025 GMT Subject: CN=bb579545b2872e29fd7ee8e96474eaad93c362c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:fb:47:7b:b8:94:b6:62:24:93:6b:47:c3: 6a:29:13:d0:9b:9f:9e:f0:ea:24:1a:99:6f:2d:6d: 8b:21:b1:ca:1f:c4:37:86:f7:f7:d2:33:e8:f3:60: f8:68:c4:76:5a:2f:51:47:7c:2d:a4:95:58:86:5b: 37:3e:c2:72:30:9d:4a:e3:89:3e:f4:a3:8b:40:ca: b4:0a:44:f3:49:b6:25:67:aa:bc:bf:98:47:3d:f6: c3:83:5f:61:dc:56:d4:d0:67:6b:d9:f0:55:90:0e: 27:3d:97:39:6a:bc:96:21:24:1c:ed:38:4a:c8:10: 04:c5:0f:94:4e:59:0a:50:05:62:91:20:4a:4b:75: fa:28:d5:8c:7b:d0:bd:fe:a2:43:6b:aa:c1:33:be: 3c:07:e1:49:e6:73:9e:94:12:bb:89:59:cf:c8:d9: 48:73:8f:87:32:f5:8f:a0:df:9e:82:58:1f:21:9c: 47:c0:61:35:67:14:a2:28:3f:e6:15:23:94:10:32: 10:ff:1d:42:fc:99:18:89:5d:64:81:7d:68:e9:e6: 7b:30:6a:68:37:ed:d6:8a:b7:81:f3:ad:ec:b8:7b: 13:41:83:d5:5f:b8:4b:de:a3:5d:1a:c4:94:a2:13: 4c:2d:c0:4b:b9:03:0d:5c:f1:bb:4e:80:61:6a:32: 50:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:95:45:B2:87:2E:29:FD:7E:E8:E9:64:74:EA:AD:93:C3:62:C8 X509v3 Authority Key Identifier: keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:3c:69:dc:a0:64:13:ba:a4:ea:8d:47:85:20:79:c7:bd:c8: fd:7c:f8:67:ea:9b:70:86:18:65:71:6e:23:fe:5b:0a:6d:dc: f7:ff:e5:49:6f:38:11:1d:c7:58:95:21:54:93:da:aa:8e:d5: 35:73:33:4f:db:7f:37:73:b6:74:16:f3:df:6d:fc:95:6e:54: b4:e2:f1:c6:43:b4:3a:8c:a5:07:ee:75:88:30:5c:28:67:ab: e4:c2:78:3e:51:ce:88:08:29:07:8b:8a:8d:c0:a7:18:fc:1a: 47:ca:9c:19:16:e5:36:fd:64:99:89:88:0b:95:fc:7c:20:e5: 3a:09:d8:cc:42:6a:79:d4:61:92:96:60:c6:a0:6b:46:71:d7: 6e:76:b1:c8:59:f3:49:3e:bb:a3:4a:0d:52:0f:77:33:37:c6: 84:14:f8:9d:4b:96:34:8f:1f:7c:4b:76:d8:4b:4e:d3:8a:be: 31:07:1a:70:d8:4b:e4:a3:61:8e:4a:28:e4:08:b3:bc:02:bb: b4:48:ff:27:03:39:53:cf:8b:d4:74:7b:b5:42:a6:f2:4e:c4: 9f:6e:86:27:44:7e:b2:d3:dd:66:51:d7:86:19:ce:4c:1a:ff: e3:05:a3:6e:8d:20:46:5c:46:14:72:0c:17:d5:6d:aa:98:39: 94:d9:1a:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLQth8NQdM6+tQbAjP7RVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NzM2NGY1MDI1MzRlODc3MWEwYzYyNTk3OTRjMjZlMjZk NGJjYTQwHhcNMjUxMjA2MDEwMDUyWhcNMjUxMjA3MDEwMDUyWjAzMTEwLwYDVQQD EyhiYjU3OTU0NWIyODcyZTI5ZmQ3ZWU4ZTk2NDc0ZWFhZDkzYzM2MmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7b7R3u4lLZiJJNrR8NqKRPQm5+e 8OokGplvLW2LIbHKH8Q3hvf30jPo82D4aMR2Wi9RR3wtpJVYhls3PsJyMJ1K44k+ 9KOLQMq0CkTzSbYlZ6q8v5hHPfbDg19h3FbU0Gdr2fBVkA4nPZc5aryWISQc7ThK yBAExQ+UTlkKUAVikSBKS3X6KNWMe9C9/qJDa6rBM748B+FJ5nOelBK7iVnPyNlI c4+HMvWPoN+eglgfIZxHwGE1ZxSiKD/mFSOUEDIQ/x1C/JkYiV1kgX1o6eZ7MGpo N+3WireB863suHsTQYPVX7hL3qNdGsSUohNMLcBLuQMNXPG7ToBhajJQCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLtXlUWyhy4p/X7o6WR06q2Tw2LIMB8GA1UdIwQY MBaAFClzZPUCU06HcaDGJZeUwm4m1LykMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUt MGEwZjNlNzhhNDkzLzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNDU4MjAtMzU0Ni00MDdjLTgzYTUtMGEwZjNlNzhhNDkz LzEvS1hOazlRSlRUb2R4b01ZbGw1VENiaWJVdktRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUjxp3KBk E7qk6o1HhSB5x73I/Xz4Z+qbcIYYZXFuI/5bCm3c9//lSW84ER3HWJUhVJPaqo7V NXMzT9t/N3O2dBbz3238lW5UtOLxxkO0OoylB+51iDBcKGer5MJ4PlHOiAgpB4uK jcCnGPwaR8qcGRblNv1kmYmIC5X8fCDlOgnYzEJqedRhkpZgxqBrRnHXbnaxyFnz ST67o0oNUg93MzfGhBT4nUuWNI8ffEt22EtO04q+MQcacNhL5KNhjkoo5AizvAK7 tEj/JwM5U8+L1HR7tUKm8k7En26GJ0R+stPdZlHXhhnOTBr/4wWjbo0gRlxGFHIM F9Vtqpg5lNkahA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:52 2025 by rpki-client