This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft File: rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft (raw, json) Hash identifier: d7ZJLeYxlds3eV4S6bCgfCQTEGSvkZPlP3W40U9D+ic= Subject key identifier: 39:D4:D4:1F:B8:16:92:A8:0F:42:01:D0:F5:BE:F5:86:19:F5:D1:E2 Authority key identifier: AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24 Certificate issuer: /CN=aca1f4713024804c445403af63fa644b2a935d24 Certificate serial: 019AF12DA9DF6FCDAC6D95C4F341A707118B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft Manifest number: 176D Signing time: Sat 06 Dec 2025 01:01:32 +0000 Manifest this update: Sat 06 Dec 2025 01:01:32 +0000 Manifest next update: Sun 07 Dec 2025 01:01:32 +0000 Files and hashes: 1: 45YgABqwBFtsKoNWzGWjzGlQmXY.roa (hash: 69CrJ34LHz68GqkpdbfhPTn+j85A3e/17oJ0+upnAuw=) 2: F8W0QKbleYbmz2EN1Tis7Vds59A.roa (hash: GzkXVUL6jOXjlFMqb78IJPo96A7wfBUt8lug7KgSDew=) 3: N8PiG76ntwKAGaSP3YzYnQGkLVI.roa (hash: nUQC/UxGj4cDa5TMObsdW9+d18vToeDUb/QlHw0eCHA=) 4: V_r_ROOdvw6x3g5Jz-742T3rIbU.roa (hash: S0q7P5LnXINS1vQh7LQXUQWUqtUOHV0qMrb+2gHbmYs=) 5: i44JVxMTVgkMbhmNJMaUgaK-WQI.roa (hash: cxxt5MnNL7SzuLLNZDQp6rhtaTD9wJRJZPKAxjU7gO4=) 6: n4Mf2ZoxRDO4Gbl-YZdYsqIz4OI.roa (hash: aS1o0h1e6vPqOWTx/X2krBGlRAa3LkoHQcee6mx6EEg=) 7: rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl (hash: 4pUQ739PzpxJ2fZeFKEr1Ei7P5T8groVSMffoQ0jCgQ=) 8: tli9a4MFilhc6bhiwfcm0_eUZQk.roa (hash: idJeUEpDv8hc3pPAuSjLkqMBrYsymPccKUeBDJM0BiA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:a9:df:6f:cd:ac:6d:95:c4:f3:41:a7:07:11:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca1f4713024804c445403af63fa644b2a935d24 Validity Not Before: Dec 6 01:01:32 2025 GMT Not After : Dec 7 01:01:32 2025 GMT Subject: CN=39d4d41fb81692a80f4201d0f5bef58619f5d1e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c3:e2:61:50:ed:94:ef:7e:94:8a:a8:22:06: c2:98:b8:1b:bf:2c:b0:7a:69:9e:b9:2c:f8:df:1e: b9:ac:77:aa:47:05:af:8b:33:9b:3c:25:36:ea:dc: d1:bf:d1:e3:05:55:51:a1:06:a8:ee:53:af:c6:ff: 0c:94:9c:ec:66:9c:40:3d:df:bb:10:47:64:7b:2f: e8:0c:c7:7c:28:0e:f1:97:6d:16:9b:4a:90:24:5d: 7e:d8:bd:80:de:8d:06:19:b7:e7:e4:29:a7:70:e5: 53:2f:77:60:e3:4d:c0:fa:ab:05:c9:81:f7:f1:2c: 56:bd:6c:0c:d5:d7:86:82:81:05:09:08:76:d2:76: 47:24:13:5a:72:45:22:ca:c3:fb:93:79:3c:cd:a2: 0a:ae:13:0a:72:9d:6a:bf:52:a9:08:cf:21:e7:97: b5:bb:c7:71:b8:a6:6c:81:70:15:a5:41:0e:d6:6d: f5:2f:e4:2c:e1:61:96:28:47:b5:98:38:55:c3:76: 14:0f:1a:fe:ab:7a:b0:69:8d:b8:c5:af:22:0a:e6: 2d:04:cf:7c:34:04:13:28:ce:e6:bb:c8:01:ba:6a: 5e:07:5c:a1:6e:47:53:2f:f7:d4:05:05:6f:d6:43: 46:97:98:10:7e:5d:3d:91:d4:96:31:41:f7:c0:b4: d9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D4:D4:1F:B8:16:92:A8:0F:42:01:D0:F5:BE:F5:86:19:F5:D1:E2 X509v3 Authority Key Identifier: keyid:AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:82:28:62:ef:f9:5e:5d:b6:46:3f:d2:f8:29:b0:fd:90:85: b4:b3:32:e6:89:6f:47:cb:20:f4:fb:db:9d:56:5c:84:f1:c3: eb:43:9f:da:39:34:7d:84:80:6a:16:fe:a2:a9:6e:c6:52:22: f9:bd:2f:5d:e4:04:fa:f1:bf:be:0e:00:54:30:73:ee:d1:83: 35:63:d6:c2:3a:3f:e9:1c:06:df:f3:98:16:7d:7e:29:0f:d0: e7:9d:87:19:51:b8:6e:2c:2e:70:4d:fa:23:fc:1e:47:36:2d: a8:0a:5a:62:25:c6:21:ca:cd:c4:74:c9:b0:ae:eb:37:ff:b1: ef:e5:0a:a4:8b:f5:9f:90:34:3d:af:36:bc:ea:95:dc:3d:25: d5:1f:4a:86:d7:27:78:52:d1:f6:68:eb:31:c7:87:4f:06:6b: 9f:cb:72:5b:d2:6b:8e:e3:3e:c8:9b:75:dd:67:c2:c8:f1:8a: 71:98:a5:b5:34:2f:1e:2a:07:97:16:b9:95:5c:f2:fe:c9:1a: 1e:0c:e3:47:e0:f6:d8:95:8f:bd:91:ab:f4:d8:e1:ef:db:63: ac:df:9b:d7:a9:08:08:84:9b:65:78:90:c2:5f:42:f6:1f:f5: 3a:3f:31:69:20:94:ca:40:23:34:4e:c5:f6:7b:d2:35:b1:fd: 1e:e6:4b:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLanfb82sbZXE80GnBxGLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTFmNDcxMzAyNDgwNGM0NDU0MDNhZjYzZmE2NDRiMmE5 MzVkMjQwHhcNMjUxMjA2MDEwMTMyWhcNMjUxMjA3MDEwMTMyWjAzMTEwLwYDVQQD EygzOWQ0ZDQxZmI4MTY5MmE4MGY0MjAxZDBmNWJlZjU4NjE5ZjVkMWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8PiYVDtlO9+lIqoIgbCmLgbvyyw emmeuSz43x65rHeqRwWvizObPCU26tzRv9HjBVVRoQao7lOvxv8MlJzsZpxAPd+7 EEdkey/oDMd8KA7xl20Wm0qQJF1+2L2A3o0GGbfn5CmncOVTL3dg403A+qsFyYH3 8SxWvWwM1deGgoEFCQh20nZHJBNackUiysP7k3k8zaIKrhMKcp1qv1KpCM8h55e1 u8dxuKZsgXAVpUEO1m31L+Qs4WGWKEe1mDhVw3YUDxr+q3qwaY24xa8iCuYtBM98 NAQTKM7mu8gBumpeB1yhbkdTL/fUBQVv1kNGl5gQfl09kdSWMUH3wLTZWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDnU1B+4FpKoD0IB0PW+9YYZ9dHiMB8GA1UdIwQY MBaAFKyh9HEwJIBMRFQDr2P6ZEsqk10kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9jNmQ2YmUtYmY0YS00M2U1LWE5MDgt NWNhMDE2YTEwMDU0LzEvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi9jNmQ2YmUtYmY0YS00M2U1LWE5MDgtNWNhMDE2YTEwMDU0 LzEvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhoIoYu/5 Xl22Rj/S+Cmw/ZCFtLMy5olvR8sg9PvbnVZchPHD60Of2jk0fYSAahb+oqluxlIi +b0vXeQE+vG/vg4AVDBz7tGDNWPWwjo/6RwG3/OYFn1+KQ/Q552HGVG4biwucE36 I/weRzYtqApaYiXGIcrNxHTJsK7rN/+x7+UKpIv1n5A0Pa82vOqV3D0l1R9Khtcn eFLR9mjrMceHTwZrn8tyW9JrjuM+yJt13WfCyPGKcZiltTQvHioHlxa5lVzy/ska HgzjR+D22JWPvZGr9Njh79tjrN+b16kICISbZXiQwl9C9h/1Oj8xaSCUykAjNE7F 9nvSNbH9HuZLFg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:23 2025 by rpki-client