This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: FSzUNSqTx0ThannqwihNRHcH6gG6ZdXons7RbWZ4b78= Subject key identifier: 70:F9:66:E8:F6:FD:88:11:4A:FF:8C:90:EC:27:35:DF:B5:C3:DF:19 Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019B2708BC4C2EA39B7945FC9D9B19229C38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 1296 Signing time: Tue 16 Dec 2025 12:00:42 +0000 Manifest this update: Tue 16 Dec 2025 12:00:42 +0000 Manifest next update: Wed 17 Dec 2025 12:00:42 +0000 Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=) 2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=) 3: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=) 4: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=) 5: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=) 6: bvT0XxpWvjhSrsyJnY-pHBlHicQ.roa (hash: jO921Nm2+NbwqmtR+BTndgCkDUsWuQ/tZNnxs0Ah0nM=) 7: jOvM-KkjMcocARVIZsXXSmhqwTk.roa (hash: /hlDFttzMgmj+4PtUECpeb46avxwmQavKNZsIngAs74=) 8: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: BZ4NADEvMLLv/9XFVzjoX3ktMrVuvEqFSwMlEiLTGzQ=) 9: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=) 10: qaPYBIHSJO0VtmaPK-yj9xChj44.roa (hash: SCU2ZI+jqejXCddMhNIesbEWUHlrPpsz2jIcNDVRX0Q=) 11: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:08:bc:4c:2e:a3:9b:79:45:fc:9d:9b:19:22:9c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Dec 16 12:00:42 2025 GMT Not After : Dec 17 12:00:42 2025 GMT Subject: CN=70f966e8f6fd88114aff8c90ec2735dfb5c3df19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c7:da:1a:32:1b:65:53:20:66:d7:15:f7:3f: b5:f7:cd:87:0d:b8:c8:a2:fe:bc:62:3d:70:c3:db: d4:d9:f3:d6:cb:18:d3:f6:25:89:51:92:af:c1:83: 5e:87:48:12:66:62:c3:09:5e:d0:11:a6:f9:75:7b: 82:58:a7:7c:8a:8b:71:78:cc:b7:62:5f:c2:71:9f: 31:89:f9:a6:28:48:79:07:e6:d0:79:2a:af:6b:ae: 4b:a8:4f:a8:5b:34:89:f3:ec:52:ed:70:30:2c:5a: 5c:c3:e5:1c:65:ce:fc:96:e1:bd:61:f8:55:6c:41: 7c:cb:1a:ff:0e:1e:04:70:8d:04:f1:a7:2c:df:63: 02:39:61:6a:e3:15:f2:70:31:1c:a1:f9:59:6e:a0: 96:11:4a:50:06:b3:f8:72:d3:a2:31:07:96:65:53: d9:c8:36:0a:a5:f4:a2:d6:31:ac:3e:38:45:66:3a: 91:4f:bb:95:91:01:67:87:87:2d:af:b3:51:94:14: 8a:4d:61:57:e1:8e:7a:b3:52:f8:ea:6a:45:d6:51: a2:4d:8a:b1:39:0e:dc:84:b1:f2:2a:0f:b6:a8:86: b6:db:50:20:65:e4:af:1b:0f:ae:3b:5f:6f:fd:25: 17:93:8b:ee:06:78:b4:f1:0b:14:55:27:09:2e:41: 9c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F9:66:E8:F6:FD:88:11:4A:FF:8C:90:EC:27:35:DF:B5:C3:DF:19 X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:e1:4e:26:52:8b:29:3e:1f:9e:91:79:1a:a6:c2:1a:d4:8d: 24:3a:22:53:77:32:61:3f:07:ef:a3:76:b5:bb:74:90:41:f0: 4c:7c:6d:2e:40:c3:ab:89:c6:fc:8b:ef:89:c5:83:5c:54:6a: 57:c2:f8:e9:25:89:68:7e:ba:05:7c:da:7d:f1:ee:7f:20:3e: 07:46:10:73:18:c8:fb:89:95:9c:89:f3:99:35:32:9f:e2:0f: d9:55:4d:ae:2b:78:2e:32:8a:b0:f3:40:e8:82:30:71:fa:12: 75:0b:c1:5e:27:44:1c:bc:1e:dc:c6:81:5c:a4:4b:57:3c:18: b3:71:63:da:2d:9f:e9:9e:65:3a:b1:0f:f4:7a:b2:28:7e:bf: 2b:ea:79:1e:b7:6f:e3:73:d7:48:b0:d6:b5:5f:ad:b2:44:8a: f8:dd:cf:29:0d:97:07:b0:70:fb:d1:ee:7d:46:9f:92:43:32: 39:30:c6:ad:07:cf:76:10:41:c0:83:bd:a7:e0:8f:f9:9a:48: ee:29:54:95:db:10:6d:b8:94:88:cb:58:a5:e1:67:f4:1b:2d: 1d:8c:9c:8d:ce:6b:18:a1:33:37:13:7d:c0:43:c3:0a:86:ca: b3:27:18:20:4c:73:6a:c7:7c:c7:ef:b1:09:4a:60:50:04:4c: 86:3b:4a:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnCLxMLqObeUX8nZsZIpw4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjUxMjE2MTIwMDQyWhcNMjUxMjE3MTIwMDQyWjAzMTEwLwYDVQQD Eyg3MGY5NjZlOGY2ZmQ4ODExNGFmZjhjOTBlYzI3MzVkZmI1YzNkZjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08faGjIbZVMgZtcV9z+1982HDbjI ov68Yj1ww9vU2fPWyxjT9iWJUZKvwYNeh0gSZmLDCV7QEab5dXuCWKd8iotxeMy3 Yl/CcZ8xifmmKEh5B+bQeSqva65LqE+oWzSJ8+xS7XAwLFpcw+UcZc78luG9YfhV bEF8yxr/Dh4EcI0E8acs32MCOWFq4xXycDEcoflZbqCWEUpQBrP4ctOiMQeWZVPZ yDYKpfSi1jGsPjhFZjqRT7uVkQFnh4ctr7NRlBSKTWFX4Y56s1L46mpF1lGiTYqx OQ7chLHyKg+2qIa221AgZeSvGw+uO19v/SUXk4vuBni08QsUVScJLkGcXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHD5Zuj2/YgRSv+MkOwnNd+1w98ZMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0+FOJlKL KT4fnpF5GqbCGtSNJDoiU3cyYT8H76N2tbt0kEHwTHxtLkDDq4nG/IvvicWDXFRq V8L46SWJaH66BXzaffHufyA+B0YQcxjI+4mVnInzmTUyn+IP2VVNrit4LjKKsPNA 6IIwcfoSdQvBXidEHLwe3MaBXKRLVzwYs3Fj2i2f6Z5lOrEP9HqyKH6/K+p5Hrdv 43PXSLDWtV+tskSK+N3PKQ2XB7Bw+9HufUafkkMyOTDGrQfPdhBBwIO9p+CP+ZpI 7ilUldsQbbiUiMtYpeFn9BstHYycjc5rGKEzNxN9wEPDCobKsycYIExzasd8x++x CUpgUARMhjtKaA== -----END CERTIFICATE-----Generated at Tue Dec 16 19:33:33 2025 by rpki-client