This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json) Hash identifier: qhz7KkHm3SuMmjSSfN2HIh3XBKgZEzYqIFDQVMwyRks= Subject key identifier: 70:72:71:76:13:DA:C7:53:87:D2:03:E8:DD:14:6A:97:EF:37:6F:65 Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20 Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420 Certificate serial: 019AF12E4DAAB1E12B38B948AB6FD9478F38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft Manifest number: 16B9 Signing time: Sat 06 Dec 2025 01:02:14 +0000 Manifest this update: Sat 06 Dec 2025 01:02:14 +0000 Manifest next update: Sun 07 Dec 2025 01:02:14 +0000 Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=) 2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: xJbmFG7UymEyX3DYYso6okQvU7vngIR1gKcWj78yfE4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:4d:aa:b1:e1:2b:38:b9:48:ab:6f:d9:47:8f:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420 Validity Not Before: Dec 6 01:02:14 2025 GMT Not After : Dec 7 01:02:14 2025 GMT Subject: CN=7072717613dac75387d203e8dd146a97ef376f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:1a:d4:05:45:14:ec:e7:5b:5c:ee:b2:3b: 49:29:a0:c7:06:d0:95:f4:ef:6d:42:db:14:25:ac: 9d:92:52:20:d8:7c:1b:53:7e:00:a9:a6:97:ab:d7: da:14:ff:f2:b5:40:b3:36:87:e2:90:52:a6:ae:b9: 76:2b:0a:a4:cb:15:a1:d4:fe:f9:cb:f8:18:cf:16: c1:1d:ab:77:69:eb:58:95:24:54:d8:19:a4:52:e8: f2:34:34:87:11:cf:08:44:df:df:a1:b6:d3:60:ad: cf:c9:01:ee:c0:c6:9b:1c:44:b2:80:6e:ca:ec:1f: fe:83:f6:df:30:ec:9f:f7:5d:37:60:37:29:ff:fc: 41:7b:51:25:ae:bf:9e:2f:e8:ca:f4:b5:46:73:0a: 90:a4:5b:a0:4c:98:18:15:2d:82:ad:ab:c0:ce:c1: c0:3b:5f:ce:e0:86:2e:87:c3:99:4d:28:e1:18:1e: 12:dc:9b:ae:e7:40:05:4f:db:99:1e:49:61:76:f7: ad:cc:e1:eb:1a:88:a9:a2:0d:cb:7f:13:08:53:ee: 7d:15:c4:37:82:72:1e:51:bd:64:95:14:a4:3b:e3: 36:27:4b:0e:3a:36:ab:06:62:c7:b2:1e:c8:5d:7e: 4a:65:f7:2d:8d:c8:41:64:03:53:b6:59:fb:69:1d: 6d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:72:71:76:13:DA:C7:53:87:D2:03:E8:DD:14:6A:97:EF:37:6F:65 X509v3 Authority Key Identifier: keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:7b:f1:7a:a6:3c:0c:d5:26:82:ad:66:ef:cf:48:65:89:8b: 5c:f3:1f:ad:c9:6f:79:ef:e1:ec:37:33:b2:7b:a2:3f:2a:89: 65:1a:e2:3a:2a:a3:ab:5f:9b:49:d0:ed:19:e8:2a:ac:92:45: 2b:c1:10:7a:63:93:b7:74:24:ee:a9:ed:b3:c8:23:78:f4:b8: 75:9d:47:57:28:69:d5:d5:3d:9b:76:c2:ee:c9:54:fc:1f:e8: 63:ff:79:bc:4a:57:44:a3:a0:76:07:c1:c0:67:05:ee:4a:9a: 86:02:9e:f3:51:cb:2c:d0:82:6e:57:0a:2e:33:d7:44:b9:8b: 49:4c:6a:2d:be:4d:b8:ab:23:80:b5:ed:3e:29:f5:cf:d8:7e: e6:e0:3a:c7:19:92:2d:bc:ec:c3:bb:d1:40:aa:5b:0f:e5:65: 9b:3c:88:47:f3:75:1d:5f:dc:65:10:fc:f3:8b:fc:dd:bb:d6: f7:ee:18:2a:8b:ee:16:bd:24:79:05:e1:69:73:43:44:6a:e5: 91:46:d1:8c:b8:5b:51:aa:a6:ba:7b:ab:b1:2b:0d:70:f9:05: e8:79:b7:2c:33:bc:1c:c2:9c:e6:55:8d:ae:90:53:aa:3d:b9: cb:c5:66:2c:34:23:77:4e:aa:f0:2a:9b:c6:bd:bc:d3:9d:86: 1a:0c:bd:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLk2qseErOLlIq2/ZR484MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwY2NkOTEzYTk5YmFmZDg5M2UwN2JhOTY4YTY3NDM0ZTNk ZjU0MjAwHhcNMjUxMjA2MDEwMjE0WhcNMjUxMjA3MDEwMjE0WjAzMTEwLwYDVQQD Eyg3MDcyNzE3NjEzZGFjNzUzODdkMjAzZThkZDE0NmE5N2VmMzc2ZjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUca1AVFFOznW1zusjtJKaDHBtCV 9O9tQtsUJaydklIg2HwbU34AqaaXq9faFP/ytUCzNofikFKmrrl2KwqkyxWh1P75 y/gYzxbBHat3aetYlSRU2BmkUujyNDSHEc8IRN/fobbTYK3PyQHuwMabHESygG7K 7B/+g/bfMOyf9103YDcp//xBe1Elrr+eL+jK9LVGcwqQpFugTJgYFS2CravAzsHA O1/O4IYuh8OZTSjhGB4S3Juu50AFT9uZHklhdvetzOHrGoipog3LfxMIU+59FcQ3 gnIeUb1klRSkO+M2J0sOOjarBmLHsh7IXX5KZfctjchBZANTtln7aR1tlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHBycXYT2sdTh9ID6N0UapfvN29lMB8GA1UdIwQY MBaAFJDM2ROpm6/Yk+B7qWimdDTj31QgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWIt ZjZhNTEzZGUyZmVhLzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWItZjZhNTEzZGUyZmVh LzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKHvxeqY8 DNUmgq1m789IZYmLXPMfrclvee/h7DczsnuiPyqJZRriOiqjq1+bSdDtGegqrJJF K8EQemOTt3Qk7qnts8gjePS4dZ1HVyhp1dU9m3bC7slU/B/oY/95vEpXRKOgdgfB wGcF7kqahgKe81HLLNCCblcKLjPXRLmLSUxqLb5NuKsjgLXtPin1z9h+5uA6xxmS Lbzsw7vRQKpbD+VlmzyIR/N1HV/cZRD884v83bvW9+4YKovuFr0keQXhaXNDRGrl kUbRjLhbUaqmunursSsNcPkF6Hm3LDO8HMKc5lWNrpBTqj25y8VmLDQjd06q8Cqb xr28052GGgy96Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:39 2025 by rpki-client