This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json) Hash identifier: buXD0Aom1dK8H6PzvHveN7X+kLRPM6LsXcqIauiZS+Y= Subject key identifier: 31:4D:2A:BA:24:C7:F8:DC:1E:20:73:DD:ED:9A:9A:81:92:2D:C1:D2 Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Certificate serial: 019AF3F705E586BFBC1C819ABAB35932EEA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft Manifest number: 06D8 Signing time: Sat 06 Dec 2025 14:00:43 +0000 Manifest this update: Sat 06 Dec 2025 14:00:43 +0000 Manifest next update: Sun 07 Dec 2025 14:00:43 +0000 Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=) 2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: bWYTuA49EWSAJwOCe9jVg53nrsj1NAnasGG/H6w+4E8=) 3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=) 4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:05:e5:86:bf:bc:1c:81:9a:ba:b3:59:32:ee:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Validity Not Before: Dec 6 14:00:43 2025 GMT Not After : Dec 7 14:00:43 2025 GMT Subject: CN=314d2aba24c7f8dc1e2073dded9a9a81922dc1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:09:7a:ca:83:aa:35:a1:a0:c6:44:99:9a:b8: 5d:f2:23:58:0d:51:ee:3a:4f:02:6b:08:5b:f8:6f: 33:de:f3:b8:cf:ce:44:b1:35:60:90:cc:96:14:97: a7:60:bc:5c:3e:37:06:3c:1e:c2:17:27:ab:72:2a: 33:dd:4e:94:4c:b4:e7:d0:56:8c:af:0f:3d:b2:fa: 14:8f:65:a1:ba:fd:24:86:d3:26:96:4e:08:d2:19: 7e:82:35:4f:e4:14:32:11:2e:36:97:22:da:73:fc: ca:1d:16:bb:60:40:4b:6d:54:2d:20:ac:54:33:97: 18:31:6e:8b:0b:0c:87:f1:cc:36:7d:a0:70:c3:d0: 41:a3:c5:d7:6d:12:c4:31:3f:2c:ae:5c:80:9a:9c: c3:ed:7f:fb:64:53:f9:7f:1b:60:f0:0a:ba:5a:18: 74:91:5f:fa:a2:2a:a2:80:8f:8c:73:86:8e:75:5d: 09:49:d2:de:4e:49:a5:79:fd:01:95:4e:ad:34:b6: 01:da:f1:1a:29:9e:da:f3:81:61:eb:57:5b:15:b0: d2:6d:df:a5:e2:ef:0e:2c:bb:c0:1f:ad:af:90:e5: 6a:5e:94:ee:ae:ef:24:77:95:58:27:ea:9c:29:6e: 11:98:82:c4:cb:ee:d1:7b:25:8a:a7:f8:de:88:db: d6:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:4D:2A:BA:24:C7:F8:DC:1E:20:73:DD:ED:9A:9A:81:92:2D:C1:D2 X509v3 Authority Key Identifier: keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:81:41:ff:cb:6e:d2:2f:f7:ff:46:8b:bb:06:6c:55:53:e3: 22:fa:17:64:2a:3e:67:bd:5b:2d:74:73:c1:99:74:cb:a7:5f: 49:67:cf:a0:e4:d1:5d:3d:3c:94:5e:3b:86:1e:75:e9:fb:ee: ed:ec:b7:5e:69:66:1c:ce:0d:de:c7:67:fd:6f:46:71:22:38: b0:e1:22:8f:1d:b2:0d:3e:c0:c3:c8:3b:c2:46:49:32:29:7c: 30:6a:30:c5:71:fc:c5:21:3b:27:7b:79:6d:0c:61:a0:dc:cb: 54:69:98:11:fa:ae:41:39:05:24:06:a2:af:1e:3f:bc:34:d7: 33:22:20:8e:5f:d4:d9:92:42:c8:37:56:da:ea:d1:99:b2:90: 2a:b6:a1:89:d4:6e:7c:0b:c9:02:2c:67:f5:92:38:7e:38:e1: 50:00:d3:95:77:3f:09:6a:05:d6:a2:4d:5a:ec:ae:27:7f:ae: 21:cc:39:6d:f8:9c:32:42:ca:60:00:9f:d6:6f:c1:fc:a7:01: b8:b4:55:ce:17:aa:61:18:74:7a:41:3b:8c:7c:07:6a:c8:8b: a1:0d:78:54:d9:22:9d:5e:a0:db:13:ce:35:e2:ce:b2:30:f3: ba:89:9f:09:f7:eb:41:32:f7:c9:b2:0e:8b:86:5c:fa:75:49: e7:5c:8c:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9wXlhr+8HIGaurNZMu6kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0 M2VmMDgwHhcNMjUxMjA2MTQwMDQzWhcNMjUxMjA3MTQwMDQzWjAzMTEwLwYDVQQD EygzMTRkMmFiYTI0YzdmOGRjMWUyMDczZGRlZDlhOWE4MTkyMmRjMWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQl6yoOqNaGgxkSZmrhd8iNYDVHu Ok8Cawhb+G8z3vO4z85EsTVgkMyWFJenYLxcPjcGPB7CFyercioz3U6UTLTn0FaM rw89svoUj2Whuv0khtMmlk4I0hl+gjVP5BQyES42lyLac/zKHRa7YEBLbVQtIKxU M5cYMW6LCwyH8cw2faBww9BBo8XXbRLEMT8srlyAmpzD7X/7ZFP5fxtg8Aq6Whh0 kV/6oiqigI+Mc4aOdV0JSdLeTkmlef0BlU6tNLYB2vEaKZ7a84Fh61dbFbDSbd+l 4u8OLLvAH62vkOVqXpTuru8kd5VYJ+qcKW4RmILEy+7ReyWKp/jeiNvWTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDFNKrokx/jcHiBz3e2amoGSLcHSMB8GA1UdIwQY MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlYFB/8tu 0i/3/0aLuwZsVVPjIvoXZCo+Z71bLXRzwZl0y6dfSWfPoOTRXT08lF47hh516fvu 7ey3XmlmHM4N3sdn/W9GcSI4sOEijx2yDT7Aw8g7wkZJMil8MGowxXH8xSE7J3t5 bQxhoNzLVGmYEfquQTkFJAairx4/vDTXMyIgjl/U2ZJCyDdW2urRmbKQKrahidRu fAvJAixn9ZI4fjjhUADTlXc/CWoF1qJNWuyuJ3+uIcw5bficMkLKYACf1m/B/KcB uLRVzheqYRh0ekE7jHwHasiLoQ14VNkinV6g2xPONeLOsjDzuomfCffrQTL3ybIO i4Zc+nVJ51yMhg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:04:17 2025 by rpki-client