This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json) Hash identifier: j9qev5eOaUxLvuLD4cAAHQKGicx1nScg2GfLHgeBp6E= Subject key identifier: 62:E4:3C:65:EC:6B:55:F7:25:5A:D2:F4:E2:E3:A2:A1:9E:3A:66:17 Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44 Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444 Certificate serial: 019AF12EC03C3C818CF0F921099CC62DBD01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft Manifest number: 176C Signing time: Sat 06 Dec 2025 01:02:44 +0000 Manifest this update: Sat 06 Dec 2025 01:02:44 +0000 Manifest next update: Sun 07 Dec 2025 01:02:44 +0000 Files and hashes: 1: 1-w_Sx8LRPBvLvkJLZOQlFfGluOo.roa (hash: jW6TH6eaQc46mg+HMpMqf3iTbPrehVKAIBq6ffyUgyg=) 2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: D7rbJJxIXt3lRywuqOHwi20emQ51zPJ26JTOZVl3rQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c0:3c:3c:81:8c:f0:f9:21:09:9c:c6:2d:bd:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444 Validity Not Before: Dec 6 01:02:44 2025 GMT Not After : Dec 7 01:02:44 2025 GMT Subject: CN=62e43c65ec6b55f7255ad2f4e2e3a2a19e3a6617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:56:81:d9:1d:d3:ca:c8:9b:0c:ee:39:f0:2e: a2:e2:d0:c8:23:e5:46:df:a6:de:04:31:30:71:a3: f9:79:5d:9c:62:c5:0e:8f:64:b1:5a:6f:3a:b4:d5: 60:c7:06:ad:fa:13:85:51:09:11:25:11:0d:a1:29: 7f:0f:89:fa:c4:bd:a0:b6:9f:b4:0d:1a:54:06:1b: ed:6d:c8:4a:4b:51:6b:e5:09:d5:e1:b6:56:54:c0: a0:d3:0a:f3:87:e4:7f:cf:e6:42:f2:b2:ed:01:13: 3c:12:32:a8:d5:2c:6b:ba:4d:75:5c:4e:35:b2:36: 93:65:d0:8a:15:73:ef:6c:d0:d4:8a:5b:8c:c1:70: 45:70:73:7f:0c:c6:0a:8c:3d:d5:00:d9:35:04:15: 5e:5d:08:24:5e:59:25:39:51:7a:ad:9e:16:50:f4: 72:74:fd:ca:97:27:f8:5d:c1:51:2f:26:b6:93:ce: b6:eb:e5:13:d0:ee:01:63:05:ee:e9:9a:61:7c:e8: a7:45:0b:b7:4c:6c:cf:a1:b7:cf:c4:6e:95:25:9b: bf:9b:52:1e:68:7f:d5:e3:7c:13:ce:a6:f5:24:38: 56:60:53:cc:08:99:6d:ce:b4:3e:26:90:b8:63:ad: 82:b8:99:bf:af:04:80:1a:70:24:5d:73:be:24:38: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E4:3C:65:EC:6B:55:F7:25:5A:D2:F4:E2:E3:A2:A1:9E:3A:66:17 X509v3 Authority Key Identifier: keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:b2:5c:4c:10:55:56:c5:52:58:f3:a9:6f:52:8d:f0:8e:4d: a8:77:f6:03:83:e6:1e:ec:d2:b5:c7:53:b3:c6:89:e3:ca:54: 44:ff:cd:e2:24:38:86:e8:86:e8:16:cd:2e:38:65:74:1e:dd: 60:3a:60:4e:0f:0f:fd:c6:e0:b5:a0:cb:98:d0:22:16:24:e5: 02:96:fa:ef:51:5c:0b:8a:53:3b:86:97:44:e9:8e:d1:6c:b2: d1:a0:cd:89:54:1f:32:d1:ad:19:08:c6:af:59:82:73:9a:1f: 09:f9:33:6e:15:87:99:39:e2:d2:d8:7a:a1:38:7c:7e:03:09: f0:ba:52:fc:72:5d:91:1a:53:d5:f0:d6:3c:ce:59:89:72:23: 8b:2b:92:15:76:1e:05:30:b0:9e:ac:bd:58:a5:18:6d:bd:6d: 1f:a1:16:4a:21:d8:2c:f3:f9:0f:27:f0:a1:06:c5:02:28:49: 0c:09:88:c5:83:91:1b:4b:1f:cf:ae:70:41:79:d9:1b:8e:aa: c3:3e:2e:bb:d1:f4:7f:d9:e6:28:24:0b:6b:37:d3:44:a4:4e: 85:1d:ef:a7:5c:e4:3a:99:06:a8:90:75:f5:dc:1f:47:f3:4e: 47:6a:af:85:f7:74:ce:7b:0d:89:94:83:82:7d:c4:0c:10:87: 22:be:9a:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsA8PIGM8PkhCZzGLb0BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYzFjODViZjVjNTM0NzFhOTk3ZWY5ZmE5OTlkMGMxNmJl ODU0NDQwHhcNMjUxMjA2MDEwMjQ0WhcNMjUxMjA3MDEwMjQ0WjAzMTEwLwYDVQQD Eyg2MmU0M2M2NWVjNmI1NWY3MjU1YWQyZjRlMmUzYTJhMTllM2E2NjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6laB2R3TysibDO458C6i4tDII+VG 36beBDEwcaP5eV2cYsUOj2SxWm86tNVgxwat+hOFUQkRJRENoSl/D4n6xL2gtp+0 DRpUBhvtbchKS1Fr5QnV4bZWVMCg0wrzh+R/z+ZC8rLtARM8EjKo1Sxruk11XE41 sjaTZdCKFXPvbNDUiluMwXBFcHN/DMYKjD3VANk1BBVeXQgkXlklOVF6rZ4WUPRy dP3Klyf4XcFRLya2k8626+UT0O4BYwXu6ZphfOinRQu3TGzPobfPxG6VJZu/m1Ie aH/V43wTzqb1JDhWYFPMCJltzrQ+JpC4Y62CuJm/rwSAGnAkXXO+JDjbLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGLkPGXsa1X3JVrS9OLjoqGeOmYXMB8GA1UdIwQY MBaAFJHByFv1xTRxqZfvn6mZ0MFr6FREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2Et NDUxNDM3NGU2ZmZhLzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2EtNDUxNDM3NGU2ZmZh LzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN7JcTBBV VsVSWPOpb1KN8I5NqHf2A4PmHuzStcdTs8aJ48pURP/N4iQ4huiG6BbNLjhldB7d YDpgTg8P/cbgtaDLmNAiFiTlApb671FcC4pTO4aXROmO0Wyy0aDNiVQfMtGtGQjG r1mCc5ofCfkzbhWHmTni0th6oTh8fgMJ8LpS/HJdkRpT1fDWPM5ZiXIjiyuSFXYe BTCwnqy9WKUYbb1tH6EWSiHYLPP5DyfwoQbFAihJDAmIxYORG0sfz65wQXnZG46q wz4uu9H0f9nmKCQLazfTRKROhR3vp1zkOpkGqJB19dwfR/NOR2qvhfd0znsNiZSD gn3EDBCHIr6aJw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:03:36 2025 by rpki-client