This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: Mj8gYnbfcmQTqKJyfOG76NdUXHv5R/0cXaON1/+FQ94= Subject key identifier: 3D:3F:AD:6A:C2:FF:A8:C5:F4:B7:80:C0:14:AC:A4:4A:74:D5:AC:40 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 019AF23F690350C71DC7CDDBD5ACAB8F300C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 1552 Signing time: Sat 06 Dec 2025 06:00:33 +0000 Manifest this update: Sat 06 Dec 2025 06:00:33 +0000 Manifest next update: Sun 07 Dec 2025 06:00:33 +0000 Files and hashes: 1: 6KpBI63kEhQRzmhRvVQxSFsUBTI.roa (hash: Ckcyw44N8h4Yete0VsDquepnFPzly6G4UPrg1n68+p4=) 2: Bl50d2SW5pMGbeTLnaL144PRWUQ.roa (hash: bI5Yiq9+r3/RdML3fweIl1fiyaU2NaLiJvR9z1M6k50=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: TiwZqcQmnIZxBkl0pkuGY/4dEHkKpnS8K+otTxpadkQ=) 4: MLMPGj8H9Pi_UwBtlTfByiigjfM.roa (hash: pC0aw2jiKroOvxcRGHKOge3OdR3RFQ8raECTuPmJMXM=) 5: OHP3S03u5tMHflzGMFoSd5vTyZk.roa (hash: nGDY1zJo3dHSTN2PJe0pXCx8heywXO+QdXtgHJbEB2A=) 6: RZnwVTO26PBx3a68dhxrN-N2_9U.roa (hash: 2uzv1j/fxffpUq8amOpURgwfPrkNCx7YPSsxO/BHSJk=) 7: XkZDM_8IFwDF5TaEYGBCOeA1rnY.roa (hash: wJ3Nd2iWllTHLJTwVq5JnkwdVdkkialVRVjZAGjLaUA=) 8: aB7sKw4yBEcglwqSevB86YJRj7Y.roa (hash: PH14Cm3gVr59rgH3FX69SJ0GUOOG1kpk0YkBDPc5P9M=) 9: j1JcZG88WoDJIAs0TuxaORvfLro.roa (hash: yIeCKxXutjytoAiiGxkiUBSn0Vk24wB2GDbKm+IJthI=) 10: nwUsD1fndRShZT-s5ssppnOFmiI.roa (hash: 5Gw61qVpay4Kz2GbqbYja1rnv6svDc1Ma6KW2KgO/Fk=) 11: zphCyxB7JvvZfrdVh3qU9-FSl5c.roa (hash: PYY+kdRiBf7TYzIHyOP800eu0rdgwqkk9pHLsntWJR8=) 12: zvPA1UGui-igyOCxkJMwtvZ5S28.roa (hash: /AfKz5TxnkzdqXaxQMADqDtWb4d/fIp2oXqMIKdkCNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:69:03:50:c7:1d:c7:cd:db:d5:ac:ab:8f:30:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: Dec 6 06:00:33 2025 GMT Not After : Dec 7 06:00:33 2025 GMT Subject: CN=3d3fad6ac2ffa8c5f4b780c014aca44a74d5ac40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d0:1d:5e:57:39:96:b4:65:e6:bf:b1:dd:16: 52:8c:cc:33:43:65:06:8c:5d:2a:5f:6c:5d:4c:d2: 1c:97:9f:0a:8c:0d:90:70:45:06:5b:15:73:90:31: 72:c6:fb:9d:fa:39:86:74:90:42:bd:18:f9:55:1e: 10:45:23:37:df:50:4e:62:89:89:0e:4f:c6:7e:47: f4:fc:e9:0a:3c:8a:a7:d9:44:1c:f5:9b:ec:5c:ef: 51:f0:5a:b5:92:6e:d9:48:cc:2f:43:67:42:24:bc: 8a:cb:bc:1a:0b:24:c3:d8:b1:b9:4e:c6:65:9a:81: 3b:91:38:40:4a:49:32:05:c8:d8:37:39:df:8e:e9: 31:f1:35:b6:65:cb:4f:4e:93:b2:05:9b:a7:f6:13: fd:f3:f1:b5:59:24:d3:7a:02:6c:fd:f9:ca:ae:d9: e7:6b:60:ea:68:0b:a3:01:ca:17:d3:3e:34:84:65: dc:96:66:54:54:45:ce:f6:13:35:3d:35:69:70:e6: 4a:a7:ee:75:10:8d:d5:04:4d:83:ab:94:23:5e:da: e5:4c:a6:8e:71:c3:ea:f4:ba:c4:50:77:d4:c6:58: cf:96:3e:06:b1:1c:f0:4a:09:a1:b1:38:84:65:94: cd:d9:b6:34:7e:c1:e6:a2:c9:32:4f:5e:ab:e6:10: d7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:3F:AD:6A:C2:FF:A8:C5:F4:B7:80:C0:14:AC:A4:4A:74:D5:AC:40 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:54:72:1f:ea:63:ac:47:0b:24:4f:89:5e:52:76:82:e2:71: 0f:fe:85:31:ab:01:14:d5:4c:cb:ca:43:6c:18:e8:23:ed:24: 43:36:e7:96:8d:f5:c2:be:1f:8c:a2:4a:cd:c7:cd:ea:04:c0: 3b:ea:83:d1:7b:d5:51:08:24:09:ec:4b:21:73:3c:92:30:0c: 9a:66:ba:f8:0f:6b:8e:6c:51:92:1e:07:ea:84:3d:df:87:30: b4:b7:d8:fd:84:cb:9e:e3:77:a3:de:c2:f2:48:9d:28:99:15: 56:bc:61:84:c6:7e:80:4e:8e:71:38:dd:70:1f:42:66:82:7d: d0:3b:00:d4:b0:29:5f:5a:0a:55:0e:ec:67:43:20:a1:17:b0: 20:61:e6:31:57:44:20:87:71:fb:dd:33:ef:a3:46:c1:ae:91: c6:05:d9:45:39:00:d1:0b:20:9a:c5:4a:2f:f5:a2:3b:34:ba: e1:7e:74:b7:83:67:f4:51:1a:74:10:75:91:06:28:1a:6d:73: ef:2c:65:e1:a7:a3:ee:80:66:59:0e:8c:40:a8:f2:c8:76:ba: a9:8e:50:db:fd:71:16:66:07:4f:bf:42:1e:cd:c9:59:7b:94: 5d:a2:08:ae:6b:3b:57:0e:ed:ce:67:38:92:08:45:22:b9:28: 11:6b:13:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP2kDUMcdx83b1ayrjzAMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjUxMjA2MDYwMDMzWhcNMjUxMjA3MDYwMDMzWjAzMTEwLwYDVQQD EygzZDNmYWQ2YWMyZmZhOGM1ZjRiNzgwYzAxNGFjYTQ0YTc0ZDVhYzQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotAdXlc5lrRl5r+x3RZSjMwzQ2UG jF0qX2xdTNIcl58KjA2QcEUGWxVzkDFyxvud+jmGdJBCvRj5VR4QRSM331BOYomJ Dk/Gfkf0/OkKPIqn2UQc9ZvsXO9R8Fq1km7ZSMwvQ2dCJLyKy7waCyTD2LG5TsZl moE7kThASkkyBcjYNznfjukx8TW2ZctPTpOyBZun9hP98/G1WSTTegJs/fnKrtnn a2DqaAujAcoX0z40hGXclmZUVEXO9hM1PTVpcOZKp+51EI3VBE2Dq5QjXtrlTKaO ccPq9LrEUHfUxljPlj4GsRzwSgmhsTiEZZTN2bY0fsHmoskyT16r5hDXawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD0/rWrC/6jF9LeAwBSspEp01axAMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEVRyH+pj rEcLJE+JXlJ2guJxD/6FMasBFNVMy8pDbBjoI+0kQzbnlo31wr4fjKJKzcfN6gTA O+qD0XvVUQgkCexLIXM8kjAMmma6+A9rjmxRkh4H6oQ934cwtLfY/YTLnuN3o97C 8kidKJkVVrxhhMZ+gE6OcTjdcB9CZoJ90DsA1LApX1oKVQ7sZ0MgoRewIGHmMVdE IIdx+90z76NGwa6RxgXZRTkA0QsgmsVKL/WiOzS64X50t4Nn9FEadBB1kQYoGm1z 7yxl4aej7oBmWQ6MQKjyyHa6qY5Q2/1xFmYHT79CHs3JWXuUXaIIrms7Vw7tzmc4 kghFIrkoEWsTZQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:26:27 2025 by rpki-client