This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft File: MklHwK7O_of525bltFvrEK65h6Y.mft (raw, json) Hash identifier: I0S+sbILDKGtZ1JyBV7LkkOx87q5xdgKKEcNZek/XIg= Subject key identifier: 7C:39:2B:84:E1:57:F5:33:6E:B8:C1:1B:5D:CC:57:0F:BE:51:36:F7 Authority key identifier: 32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6 Certificate issuer: /CN=324947c0aecefe87f9db96e5b45beb10aeb987a6 Certificate serial: 019AF2ADBCFFF9A0B3B78E0E078C921D1B29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft Manifest number: 0C76 Signing time: Sat 06 Dec 2025 08:01:03 +0000 Manifest this update: Sat 06 Dec 2025 08:01:03 +0000 Manifest next update: Sun 07 Dec 2025 08:01:03 +0000 Files and hashes: 1: MklHwK7O_of525bltFvrEK65h6Y.crl (hash: 47+StOwOckkQ0d4XqVySdAlWpnaNr0FbzmsubDhDH8I=) 2: TnUa9Ik5MIEZFyAPb51t3lEzTlw.roa (hash: VAA3uHujk9bmdBTaro78iFRxhf25M26lepAeKhwVT4w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:bc:ff:f9:a0:b3:b7:8e:0e:07:8c:92:1d:1b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324947c0aecefe87f9db96e5b45beb10aeb987a6 Validity Not Before: Dec 6 08:01:03 2025 GMT Not After : Dec 7 08:01:03 2025 GMT Subject: CN=7c392b84e157f5336eb8c11b5dcc570fbe5136f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cc:bd:14:5a:16:39:c0:ee:84:01:c4:9c:e8: 51:4d:b8:22:24:3a:59:e2:1d:85:d8:2b:0c:17:30: d7:45:3e:d7:65:a8:df:35:58:12:03:3c:97:ff:05: 81:9a:03:72:f2:8f:ed:77:fc:48:f9:eb:98:fe:97: 07:9c:7c:2a:4a:cc:b2:04:b5:86:c9:42:bb:60:72: c4:c3:cd:cd:4f:4d:0c:89:3f:e1:70:30:d9:cb:79: 98:e3:c7:58:3d:99:dc:4b:a5:a9:0e:8f:ba:19:7d: dd:88:ed:7a:a9:56:90:14:06:45:b6:04:fc:22:00: 52:84:82:78:cd:fa:4f:0d:02:b1:78:ba:2e:5e:32: 35:15:ce:8c:c3:73:fe:e9:b6:3f:fe:e6:13:6d:32: 44:76:d3:06:5d:eb:d1:1d:db:07:71:8e:40:d7:f4: 89:5b:3a:9a:5e:2c:70:f7:a9:26:3f:7e:87:fc:2d: 18:b2:48:71:03:c6:f7:97:c5:b9:87:1b:85:37:b7: 0b:c3:ea:19:34:41:4b:29:3d:93:36:4c:f8:82:96: 3b:94:57:25:7f:5b:23:97:9b:d3:b2:0a:18:c9:b6: c4:5e:41:af:0a:4f:68:3e:69:ea:63:69:e3:a0:44: a7:f0:a8:89:96:27:48:64:76:34:c7:7d:03:00:a6: 5c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:39:2B:84:E1:57:F5:33:6E:B8:C1:1B:5D:CC:57:0F:BE:51:36:F7 X509v3 Authority Key Identifier: keyid:32:49:47:C0:AE:CE:FE:87:F9:DB:96:E5:B4:5B:EB:10:AE:B9:87:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MklHwK7O_of525bltFvrEK65h6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/a8d38b-3176-4cc5-bb4f-c362d2a9e121/1/MklHwK7O_of525bltFvrEK65h6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:95:01:49:ca:8b:48:00:a5:73:41:5b:c0:4a:5e:23:ce:af: 28:7e:ec:1b:81:06:9f:10:59:b1:4a:71:1c:65:4b:f4:07:9b: 70:de:11:85:29:72:eb:f1:44:44:18:87:1f:02:22:36:d3:77: 75:4d:1f:0b:f8:53:d8:61:2f:dd:e8:54:5b:20:57:c2:7d:9f: b6:bc:0c:85:7d:cd:2d:a0:1e:4e:b5:84:a8:00:61:c1:09:17: 69:84:33:18:c9:66:95:58:93:53:fc:0f:a7:03:0d:09:a0:b9: 51:f7:45:3c:6a:05:41:3c:c1:79:14:cd:86:44:5f:d8:52:42: 83:50:b8:2a:7a:4c:10:15:55:34:66:96:96:c8:16:8b:19:a4: 17:48:80:57:e4:fb:aa:6f:c4:ff:7d:bc:47:fe:a9:91:b8:29: cf:34:e6:de:60:aa:c2:d0:1f:3e:17:23:85:85:d6:21:04:4a: 40:f9:37:29:95:96:3b:af:e6:02:3c:f8:01:bf:1c:82:04:78: b9:ba:88:f9:3c:d5:85:88:3a:81:09:93:48:5e:50:48:48:c7: 61:47:37:5d:94:8c:2c:77:3a:53:86:69:70:90:8d:df:68:f3: 51:aa:e8:9c:55:1f:b4:19:11:2f:e6:dc:d5:dd:8b:81:91:80: 9d:10:c0:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrbz/+aCzt44OB4ySHRspMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDk0N2MwYWVjZWZlODdmOWRiOTZlNWI0NWJlYjEwYWVi OTg3YTYwHhcNMjUxMjA2MDgwMTAzWhcNMjUxMjA3MDgwMTAzWjAzMTEwLwYDVQQD Eyg3YzM5MmI4NGUxNTdmNTMzNmViOGMxMWI1ZGNjNTcwZmJlNTEzNmY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2sy9FFoWOcDuhAHEnOhRTbgiJDpZ 4h2F2CsMFzDXRT7XZajfNVgSAzyX/wWBmgNy8o/td/xI+euY/pcHnHwqSsyyBLWG yUK7YHLEw83NT00MiT/hcDDZy3mY48dYPZncS6WpDo+6GX3diO16qVaQFAZFtgT8 IgBShIJ4zfpPDQKxeLouXjI1Fc6Mw3P+6bY//uYTbTJEdtMGXevRHdsHcY5A1/SJ WzqaXixw96kmP36H/C0YskhxA8b3l8W5hxuFN7cLw+oZNEFLKT2TNkz4gpY7lFcl f1sjl5vTsgoYybbEXkGvCk9oPmnqY2njoESn8KiJlidIZHY0x30DAKZcmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHw5K4ThV/UzbrjBG13MVw++UTb3MB8GA1UdIwQY MBaAFDJJR8Cuzv6H+duW5bRb6xCuuYemMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9hOGQzOGItMzE3Ni00Y2M1LWJiNGYt YzM2MmQyYTllMTIxLzEvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9hOGQzOGItMzE3Ni00Y2M1LWJiNGYtYzM2MmQyYTllMTIx LzEvTWtsSHdLN09fb2Y1MjVibHRGdnJFSzY1aDZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD5UBScqL SAClc0FbwEpeI86vKH7sG4EGnxBZsUpxHGVL9AebcN4RhSly6/FERBiHHwIiNtN3 dU0fC/hT2GEv3ehUWyBXwn2ftrwMhX3NLaAeTrWEqABhwQkXaYQzGMlmlViTU/wP pwMNCaC5UfdFPGoFQTzBeRTNhkRf2FJCg1C4KnpMEBVVNGaWlsgWixmkF0iAV+T7 qm/E/328R/6pkbgpzzTm3mCqwtAfPhcjhYXWIQRKQPk3KZWWO6/mAjz4Ab8cggR4 ubqI+TzVhYg6gQmTSF5QSEjHYUc3XZSMLHc6U4ZpcJCN32jzUaronFUftBkRL+bc 1d2LgZGAnRDAXA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:19:42 2025 by rpki-client