This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft File: rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft (raw, json) Hash identifier: CXOTxViU9f/UoxWNXV2p/4csbm8LgcXhKlbZRWySDNI= Subject key identifier: 9C:48:FA:75:5F:2D:8D:43:BF:A3:A1:50:21:67:F9:53:CB:93:88:FB Authority key identifier: AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24 Certificate issuer: /CN=aca1f4713024804c445403af63fa644b2a935d24 Certificate serial: 019B2BF8B42BC7A0A597DE27412B2BA934F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft Manifest number: 1791 Signing time: Wed 17 Dec 2025 11:01:17 +0000 Manifest this update: Wed 17 Dec 2025 11:01:17 +0000 Manifest next update: Thu 18 Dec 2025 11:01:17 +0000 Files and hashes: 1: 45YgABqwBFtsKoNWzGWjzGlQmXY.roa (hash: 69CrJ34LHz68GqkpdbfhPTn+j85A3e/17oJ0+upnAuw=) 2: F8W0QKbleYbmz2EN1Tis7Vds59A.roa (hash: GzkXVUL6jOXjlFMqb78IJPo96A7wfBUt8lug7KgSDew=) 3: N8PiG76ntwKAGaSP3YzYnQGkLVI.roa (hash: nUQC/UxGj4cDa5TMObsdW9+d18vToeDUb/QlHw0eCHA=) 4: V_r_ROOdvw6x3g5Jz-742T3rIbU.roa (hash: S0q7P5LnXINS1vQh7LQXUQWUqtUOHV0qMrb+2gHbmYs=) 5: VsMfaSNU6El8JPxhBpkXhVwnLJA.roa (hash: IR2/IgYNGn6z1kJFqLwwyQdlxJTc6K5zoOikMt2zGgM=) 6: n4Mf2ZoxRDO4Gbl-YZdYsqIz4OI.roa (hash: aS1o0h1e6vPqOWTx/X2krBGlRAa3LkoHQcee6mx6EEg=) 7: rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl (hash: eT0Q8wp2s8O3K3PzxpoZdPwmYyI/+3AnMnDk5ycnqTE=) 8: tli9a4MFilhc6bhiwfcm0_eUZQk.roa (hash: idJeUEpDv8hc3pPAuSjLkqMBrYsymPccKUeBDJM0BiA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f8:b4:2b:c7:a0:a5:97:de:27:41:2b:2b:a9:34:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca1f4713024804c445403af63fa644b2a935d24 Validity Not Before: Dec 17 11:01:17 2025 GMT Not After : Dec 18 11:01:17 2025 GMT Subject: CN=9c48fa755f2d8d43bfa3a1502167f953cb9388fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c4:00:af:f8:df:f5:cf:f7:86:56:3f:f0:0a: 80:c7:6f:e1:5c:f3:06:e2:d5:99:ba:04:a2:da:10: e4:53:20:7c:23:0d:5a:64:38:c7:85:7f:9b:ef:ad: e0:18:64:ff:af:39:dd:7a:52:b7:5a:09:e4:6e:1f: e4:d8:c6:88:68:f8:ce:f6:a1:fa:83:79:37:e3:36: dd:87:0e:e9:cf:00:85:44:3a:70:41:1d:b7:84:4b: 85:3c:e3:a3:bb:86:17:a8:a7:d7:72:21:5b:a2:5e: 00:72:ce:d1:47:1f:62:7f:80:0c:e1:6a:d0:bd:a4: b9:66:c5:71:84:ae:9a:d1:23:f7:34:e5:cc:2e:ac: 05:50:3d:0e:c4:0c:b1:3f:8b:1c:3c:b5:65:3c:7b: a1:b3:95:8f:07:02:de:9b:94:e6:fc:a4:73:9f:97: c2:e6:e2:1c:5b:76:05:54:ee:c4:a5:2d:34:1e:7c: a2:4f:9d:45:67:b0:0d:2a:95:b8:5b:c4:93:aa:83: c0:8e:d3:66:ed:d1:cc:20:44:b9:3a:27:22:41:13: 34:bc:4d:9e:8e:d7:c7:da:77:73:7c:81:52:65:f8: af:be:49:cd:a0:d6:16:01:b8:a2:e1:76:b8:94:a1: d3:d7:ed:de:fa:04:bb:a7:4e:34:81:45:f9:53:42: 5f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:48:FA:75:5F:2D:8D:43:BF:A3:A1:50:21:67:F9:53:CB:93:88:FB X509v3 Authority Key Identifier: keyid:AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:73:9e:93:69:51:3f:9d:26:db:cc:29:62:e2:f2:14:1e:3e: cc:3a:f7:8f:08:dd:38:2d:05:1f:be:9c:e1:ae:ee:45:bc:51: 4b:97:ea:61:10:47:3f:92:7e:67:25:84:81:3e:12:1a:2d:ed: aa:6b:00:3c:2c:53:e0:35:87:46:cb:61:a2:c8:3f:97:f3:43: 9c:fa:70:4a:cf:5b:68:69:6a:c9:0a:92:91:f6:ea:3d:76:a8: f3:a8:c2:3b:88:19:31:94:a3:eb:a6:fe:1b:41:bd:4d:3d:4d: 18:f4:83:30:82:b9:45:73:66:09:31:6a:df:aa:61:e2:8e:3b: 07:21:d7:5d:a1:1f:f1:71:f3:bb:08:d1:47:28:cf:62:17:29: be:50:89:23:12:56:3d:f5:eb:23:6f:1d:27:9f:0c:83:5b:89: 52:f0:85:f3:07:97:ca:19:fe:6e:af:a3:79:c0:ea:e9:e2:10: 7e:70:06:68:f7:69:05:13:0b:82:5c:c0:4f:50:6d:e1:6c:4e: ac:4f:81:2b:c7:7b:cd:35:0e:84:e4:40:d1:30:34:25:02:e2: a6:b0:29:7c:bf:12:ce:d8:b5:fa:1c:09:df:d1:bb:8a:a9:18: 67:86:8d:8a:ee:a6:0c:6e:93:86:3b:05:ad:b7:58:ea:0e:85: 07:a6:70:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+LQrx6Cll94nQSsrqTT2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTFmNDcxMzAyNDgwNGM0NDU0MDNhZjYzZmE2NDRiMmE5 MzVkMjQwHhcNMjUxMjE3MTEwMTE3WhcNMjUxMjE4MTEwMTE3WjAzMTEwLwYDVQQD Eyg5YzQ4ZmE3NTVmMmQ4ZDQzYmZhM2ExNTAyMTY3Zjk1M2NiOTM4OGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8QAr/jf9c/3hlY/8AqAx2/hXPMG 4tWZugSi2hDkUyB8Iw1aZDjHhX+b763gGGT/rzndelK3Wgnkbh/k2MaIaPjO9qH6 g3k34zbdhw7pzwCFRDpwQR23hEuFPOOju4YXqKfXciFbol4Acs7RRx9if4AM4WrQ vaS5ZsVxhK6a0SP3NOXMLqwFUD0OxAyxP4scPLVlPHuhs5WPBwLem5Tm/KRzn5fC 5uIcW3YFVO7EpS00HnyiT51FZ7ANKpW4W8STqoPAjtNm7dHMIES5OiciQRM0vE2e jtfH2ndzfIFSZfivvknNoNYWAbii4Xa4lKHT1+3e+gS7p040gUX5U0JfOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJxI+nVfLY1Dv6OhUCFn+VPLk4j7MB8GA1UdIwQY MBaAFKyh9HEwJIBMRFQDr2P6ZEsqk10kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9jNmQ2YmUtYmY0YS00M2U1LWE5MDgt NWNhMDE2YTEwMDU0LzEvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi9jNmQ2YmUtYmY0YS00M2U1LWE5MDgtNWNhMDE2YTEwMDU0 LzEvcktIMGNUQWtnRXhFVkFPdllfcGtTeXFUWFNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW3Oek2lR P50m28wpYuLyFB4+zDr3jwjdOC0FH76c4a7uRbxRS5fqYRBHP5J+ZyWEgT4SGi3t qmsAPCxT4DWHRsthosg/l/NDnPpwSs9baGlqyQqSkfbqPXao86jCO4gZMZSj66b+ G0G9TT1NGPSDMIK5RXNmCTFq36ph4o47ByHXXaEf8XHzuwjRRyjPYhcpvlCJIxJW PfXrI28dJ58Mg1uJUvCF8weXyhn+bq+jecDq6eIQfnAGaPdpBRMLglzAT1Bt4WxO rE+BK8d7zTUOhORA0TA0JQLiprApfL8Szti1+hwJ39G7iqkYZ4aNiu6mDG6ThjsF rbdY6g6FB6ZwEA== -----END CERTIFICATE-----Generated at Wed Dec 17 16:36:12 2025 by rpki-client