This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json) Hash identifier: xfdZAEBw3ULDTgcbgWX0wcLz3ZipPLWw9TqIB5U5lt0= Subject key identifier: 33:E6:B8:7B:65:09:8B:37:DC:A6:BA:D9:02:05:C9:5A:86:17:56:04 Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12 Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012 Certificate serial: 019AF19B6F42CC8E6D7FCB2F0218D914A8B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft Manifest number: 0BD6 Signing time: Sat 06 Dec 2025 03:01:26 +0000 Manifest this update: Sat 06 Dec 2025 03:01:26 +0000 Manifest next update: Sun 07 Dec 2025 03:01:26 +0000 Files and hashes: 1: fhqhrm_dY2gYWI5oCp04pibtM_o.roa (hash: s8FH9ikZ8P5QdYR5uDaZwWuPJb6gYAb8hHHjeN9RXKc=) 2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: IL8XXwe+PPp85z+Gq1EC/tzVWOz4GBqn81iouLuTNq0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:6f:42:cc:8e:6d:7f:cb:2f:02:18:d9:14:a8:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012 Validity Not Before: Dec 6 03:01:26 2025 GMT Not After : Dec 7 03:01:26 2025 GMT Subject: CN=33e6b87b65098b37dca6bad90205c95a86175604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a5:f6:00:fd:77:d5:91:44:b3:2e:e2:bd:e2: d0:1a:ca:51:db:a2:e7:4b:78:3f:11:2e:82:14:6a: 2c:f5:80:08:42:2a:81:20:eb:9e:82:66:6d:50:f6: 8d:46:cf:c8:9e:7a:5b:2d:2b:a9:e7:48:d1:68:b5: 1c:76:de:14:16:d1:55:a7:e4:d0:80:17:e4:81:ea: 29:62:86:49:15:00:4d:e5:27:f4:44:c0:7f:2e:35: d0:6b:83:b6:63:b2:f9:05:a2:37:61:62:c3:86:49: 3d:d2:32:5e:19:fd:4f:b2:c8:77:c9:fe:71:8f:92: 7c:89:f1:9f:94:1e:2a:1f:16:80:3a:21:0a:86:26: 78:9e:e1:b6:b7:be:51:12:8b:83:79:22:bf:89:ee: aa:bc:d5:ed:b6:6e:10:be:b8:13:1a:af:3a:01:f9: 60:04:29:26:68:63:d0:ea:0b:82:08:bc:16:e6:74: 91:fe:e1:90:70:9b:33:c0:ab:ef:30:cd:42:1d:98: 1b:d9:7d:cf:e9:54:83:4e:34:44:aa:73:a8:ff:32: 53:ab:53:c0:f8:40:c1:af:12:ff:c5:d0:cd:a4:5b: 1e:61:02:7c:67:22:84:9a:5b:97:39:aa:f2:e7:da: a6:25:46:fd:11:96:12:51:5f:e8:14:d0:8e:4f:cb: 9f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E6:B8:7B:65:09:8B:37:DC:A6:BA:D9:02:05:C9:5A:86:17:56:04 X509v3 Authority Key Identifier: keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:b0:8a:bf:21:f5:fa:27:4f:fc:82:54:ff:b3:b6:a7:4c:39: ee:a7:92:4e:54:05:37:05:38:bf:98:ea:60:bd:03:fe:85:1d: ad:c9:3e:72:03:39:e3:d8:68:21:25:2c:2e:61:05:8d:1e:ae: d6:60:2d:7c:ba:13:2c:10:ba:11:67:08:c5:8d:cb:78:fb:9a: a8:ff:da:a8:09:a9:42:88:1f:c9:d3:f8:61:0c:d3:d9:af:62: 75:7c:ff:0b:d9:65:f9:1e:d4:a7:19:f5:7f:60:07:12:24:c5: 8c:05:eb:48:ed:11:44:8f:e0:a4:96:37:58:52:ad:a0:c5:6b: c1:11:ae:1a:da:b8:75:3d:77:f2:f1:87:12:b9:fc:f7:b2:71: 61:1f:ff:e4:db:da:44:9d:b6:84:8f:ab:3f:a9:82:89:c6:4b: 2d:8b:c4:56:52:17:c3:f5:ec:84:be:9c:b8:dc:ca:2f:16:5f: 91:2f:75:4a:62:7f:61:87:7c:95:f5:08:9d:4d:df:e3:ba:96: bf:f6:f3:5f:57:df:08:cd:0b:e0:8a:a9:dd:70:d5:98:3d:a4: 00:71:73:5b:ab:55:4e:af:e1:dc:96:52:a9:c1:7b:32:82:23: d1:7f:be:86:50:6d:30:1f:f8:85:83:65:0a:13:0b:19:82:93: 8e:7c:a4:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm29CzI5tf8svAhjZFKiyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwZGZmMzFkMWIwNDQ0ZDQyMDRkZTE1ODRkMDBkZGY5Njhk MGIwMTIwHhcNMjUxMjA2MDMwMTI2WhcNMjUxMjA3MDMwMTI2WjAzMTEwLwYDVQQD EygzM2U2Yjg3YjY1MDk4YjM3ZGNhNmJhZDkwMjA1Yzk1YTg2MTc1NjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaX2AP131ZFEsy7iveLQGspR26Ln S3g/ES6CFGos9YAIQiqBIOuegmZtUPaNRs/InnpbLSup50jRaLUcdt4UFtFVp+TQ gBfkgeopYoZJFQBN5Sf0RMB/LjXQa4O2Y7L5BaI3YWLDhkk90jJeGf1Pssh3yf5x j5J8ifGflB4qHxaAOiEKhiZ4nuG2t75REouDeSK/ie6qvNXttm4QvrgTGq86Aflg BCkmaGPQ6guCCLwW5nSR/uGQcJszwKvvMM1CHZgb2X3P6VSDTjREqnOo/zJTq1PA +EDBrxL/xdDNpFseYQJ8ZyKEmluXOary59qmJUb9EZYSUV/oFNCOT8uf4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDPmuHtlCYs33Ka62QIFyVqGF1YEMB8GA1UdIwQY MBaAFJDf8x0bBETUIE3hWE0A3flo0LASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUt OWYyMTRkMWJhOTM0LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUtOWYyMTRkMWJhOTM0 LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFLCKvyH1 +idP/IJU/7O2p0w57qeSTlQFNwU4v5jqYL0D/oUdrck+cgM549hoISUsLmEFjR6u 1mAtfLoTLBC6EWcIxY3LePuaqP/aqAmpQogfydP4YQzT2a9idXz/C9ll+R7Upxn1 f2AHEiTFjAXrSO0RRI/gpJY3WFKtoMVrwRGuGtq4dT138vGHErn897JxYR//5Nva RJ22hI+rP6mCicZLLYvEVlIXw/XshL6cuNzKLxZfkS91SmJ/YYd8lfUInU3f47qW v/bzX1ffCM0L4Iqp3XDVmD2kAHFzW6tVTq/h3JZSqcF7MoIj0X++hlBtMB/4hYNl ChMLGYKTjnykKA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:38:25 2025 by rpki-client