This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json) Hash identifier: gRJIIHVS0Z/skqr/XRTIeeWIn9EXR1utsJ/tnrAjAps= Subject key identifier: B4:65:0D:DD:BA:6F:A7:50:DF:22:01:C9:A4:DA:4E:0B:A3:E1:90:45 Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c Certificate serial: 019AF42DD196482EB9C7D6E12F64B4B6891C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft Manifest number: 08FC Signing time: Sat 06 Dec 2025 15:00:34 +0000 Manifest this update: Sat 06 Dec 2025 15:00:34 +0000 Manifest next update: Sun 07 Dec 2025 15:00:34 +0000 Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: GblOsCBBilFU8LEQAJveJFEr5bHqoVWVlFPl709aLOQ=) 2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2d:d1:96:48:2e:b9:c7:d6:e1:2f:64:b4:b6:89:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c Validity Not Before: Dec 6 15:00:34 2025 GMT Not After : Dec 7 15:00:34 2025 GMT Subject: CN=b4650dddba6fa750df2201c9a4da4e0ba3e19045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:aa:53:f7:4c:3d:3c:cf:87:48:71:f4:71:ce: da:df:35:1b:5a:3f:d4:e6:45:8c:24:42:44:5a:cd: 83:c7:ab:dd:2a:56:ee:33:ab:9a:c2:f4:c2:e3:76: 46:26:68:1e:a8:a3:ae:fd:93:96:2a:f1:a0:39:c7: 70:72:c3:72:e2:c7:50:bd:72:29:ac:ec:c7:33:ea: d0:81:71:7d:a2:f4:31:4c:ca:a5:f5:b1:9d:df:f8: 53:3b:f3:d1:77:29:9f:8d:9b:09:cf:ae:16:b9:46: 71:68:36:31:5b:1c:ce:fe:10:69:b2:dd:20:97:5c: 8e:f8:5a:d3:ce:41:8c:87:16:e9:eb:f6:82:06:20: b4:a6:4c:8a:38:3b:aa:e7:06:6c:da:a8:04:e2:0b: 70:03:b1:38:15:26:01:e6:de:14:ea:0f:95:93:15: 56:ef:4e:e8:ba:3f:0d:59:72:20:96:2f:b5:3a:e2: d9:69:f4:49:27:d3:86:66:4c:43:e9:93:26:04:e9: ff:23:5b:c2:4b:74:fd:d1:74:b8:74:06:d6:ff:35: 56:70:7f:b3:00:e4:66:b3:12:b2:bb:84:f6:4a:27: 62:53:1d:8d:07:b4:42:f1:13:3a:b3:f2:ec:af:60: b0:91:0c:a1:56:36:07:ef:89:32:9c:8d:ca:1e:89: 89:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:65:0D:DD:BA:6F:A7:50:DF:22:01:C9:A4:DA:4E:0B:A3:E1:90:45 X509v3 Authority Key Identifier: keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:a6:0f:79:d8:5f:af:7b:91:e9:7e:89:42:a2:39:ed:86:cb: 83:67:bf:20:11:b3:be:14:d7:c1:04:d1:3c:33:46:e9:58:09: aa:05:4c:35:8a:c5:90:27:81:2b:fe:a0:d9:65:19:42:68:4e: b0:48:80:bf:88:6d:d0:40:d8:fc:b6:84:9e:1a:96:fa:c8:48: 85:d2:a4:13:07:35:37:d7:a3:b2:cf:a7:ad:ac:c5:f0:12:f9: e0:81:20:f9:2b:1b:ed:9e:fb:f3:60:87:1e:56:4f:8c:ce:4b: 68:49:0f:3d:4e:73:af:db:92:c7:d0:eb:b7:cb:ef:35:70:7f: 94:d1:1f:70:53:ef:98:bb:18:97:fe:06:21:c9:8b:7b:45:79: 4f:90:b8:cc:fc:c2:ef:48:3c:06:72:c3:bd:ee:b7:08:b3:d5: 0b:c5:09:26:a5:8b:19:6b:22:1a:ac:d7:d1:b2:bf:72:07:1a: 19:1e:65:08:a8:6e:4f:d4:a6:3f:fb:e2:bc:8c:ce:ac:08:2f: 89:4b:ea:20:2a:2f:26:43:b4:4e:e0:e5:56:36:cb:bd:62:e0: 38:20:16:ad:32:6d:47:e2:e3:b9:df:f6:b1:e8:ca:c6:de:d1: 56:bc:de:b6:5c:81:0e:3a:0c:df:08:81:10:b1:b7:d1:61:1c: 61:1b:3b:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LdGWSC65x9bhL2S0tokcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMDM2MjJiM2M1NGU0NWY0MTY2ZjMwMTc5OGY4NmRiYmE0 NzE4MGMwHhcNMjUxMjA2MTUwMDM0WhcNMjUxMjA3MTUwMDM0WjAzMTEwLwYDVQQD EyhiNDY1MGRkZGJhNmZhNzUwZGYyMjAxYzlhNGRhNGUwYmEzZTE5MDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6pT90w9PM+HSHH0cc7a3zUbWj/U 5kWMJEJEWs2Dx6vdKlbuM6uawvTC43ZGJmgeqKOu/ZOWKvGgOcdwcsNy4sdQvXIp rOzHM+rQgXF9ovQxTMql9bGd3/hTO/PRdymfjZsJz64WuUZxaDYxWxzO/hBpst0g l1yO+FrTzkGMhxbp6/aCBiC0pkyKODuq5wZs2qgE4gtwA7E4FSYB5t4U6g+VkxVW 707ouj8NWXIgli+1OuLZafRJJ9OGZkxD6ZMmBOn/I1vCS3T90XS4dAbW/zVWcH+z AORmsxKyu4T2SidiUx2NB7RC8RM6s/Lsr2CwkQyhVjYH74kynI3KHomJiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLRlDd26b6dQ3yIByaTaTguj4ZBFMB8GA1UdIwQY MBaAFJMDYis8VORfQWbzAXmPhtu6RxgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjkt OTUwYzdlNzMyNDVjLzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjktOTUwYzdlNzMyNDVj LzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARKYPedhf r3uR6X6JQqI57YbLg2e/IBGzvhTXwQTRPDNG6VgJqgVMNYrFkCeBK/6g2WUZQmhO sEiAv4ht0EDY/LaEnhqW+shIhdKkEwc1N9ejss+nrazF8BL54IEg+Ssb7Z7782CH HlZPjM5LaEkPPU5zr9uSx9Drt8vvNXB/lNEfcFPvmLsYl/4GIcmLe0V5T5C4zPzC 70g8BnLDve63CLPVC8UJJqWLGWsiGqzX0bK/cgcaGR5lCKhuT9SmP/vivIzOrAgv iUvqICovJkO0TuDlVjbLvWLgOCAWrTJtR+Ljud/2sejKxt7RVrzetlyBDjoM3wiB ELG30WEcYRs7ug== -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:46 2025 by rpki-client