This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft File: kziECSasc-rVthh5GeiPEAMimco.mft (raw, json) Hash identifier: mcUAj+VQXv7nIniA4PQXySGrrNHtSpSm8nSmnBYEFMg= Subject key identifier: C4:72:7A:C8:7B:F6:93:5F:FE:C1:26:30:31:45:B6:B1:7C:D2:61:F2 Authority key identifier: 93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA Certificate issuer: /CN=9338840926ac73ead5b6187919e88f10032299ca Certificate serial: 019AF0BF9185C7353345B723474C6E51AD27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft Manifest number: 55 Signing time: Fri 05 Dec 2025 23:01:17 +0000 Manifest this update: Fri 05 Dec 2025 23:01:17 +0000 Manifest next update: Sat 06 Dec 2025 23:01:17 +0000 Files and hashes: 1: EYqilavXprc2FLL8KIowGf2TSuo.roa (hash: 6uN/QSpU/95Lf3RHLemvXq4xBYigUHIrCbA+BPlWG1c=) 2: Q19n_Odq8OLPbbKb7YsfCyN0tDE.roa (hash: Gs4XriuYX+dQoQwaB99+U61vIT5aHV9N7U3+i1qD1ak=) 3: UhOlZ1gWF-A2pyAb44IeBGN_OgY.roa (hash: eG58vuvoosMx0i4HfksqHRUHWT1C5k08ekOkTneq/NQ=) 4: e59mOeQsrW-90segmPPLWMjT0YI.roa (hash: toiB1Qv2MIoXXFo0FWdc3w36O3AKCGfMQKznYcWinGU=) 5: frvooIXI0spMsdwwLhMi1BanYsg.roa (hash: pABU3Dqr2P48klsoUZB26bEkHa7gjlst9UNAnT2zGX0=) 6: joN3X-mRLakXHrwEWC_3n3sGuII.roa (hash: mwXuMQtF9Qvbb6s7M2Xwl6LdZT+OlHznvx0PU3HKz0Q=) 7: kziECSasc-rVthh5GeiPEAMimco.crl (hash: ElL8hjLZzBGty3mLbYF8pDKL8cbj3Bqa4bgw1+Tidyg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:91:85:c7:35:33:45:b7:23:47:4c:6e:51:ad:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9338840926ac73ead5b6187919e88f10032299ca Validity Not Before: Dec 5 23:01:17 2025 GMT Not After : Dec 6 23:01:17 2025 GMT Subject: CN=c4727ac87bf6935ffec126303145b6b17cd261f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:95:de:b7:0b:2a:c6:a0:d9:62:13:88:73:9c: a4:2d:de:88:1b:07:6b:34:24:e0:45:95:45:90:75: ed:97:d4:cf:ec:53:31:83:eb:a5:c1:26:bc:e2:c8: d4:6f:a6:1d:c3:d9:81:04:7f:99:6d:29:02:02:8e: 6e:16:b6:b7:7e:4e:49:86:ab:66:34:02:6b:6b:1d: 3c:2a:95:cd:c5:bd:a8:1c:43:7d:a3:a4:c9:09:98: a2:4e:52:31:a5:a0:f9:23:e5:2e:4c:4a:0a:68:54: 23:74:14:3e:e2:45:80:78:e1:85:4e:ed:2a:6d:28: f5:22:ae:e2:67:50:77:3c:93:7d:da:56:4d:6f:67: 8f:7f:9b:98:56:00:35:1f:84:2d:bf:be:1f:34:9a: 5a:1d:e8:de:64:73:bf:d9:de:d2:45:af:5e:9c:c0: 11:96:ed:77:25:df:16:5f:15:0e:16:fd:97:e7:9e: 25:28:9a:0b:6d:dc:76:8c:33:a5:42:31:ce:7a:ed: 6b:32:54:15:41:b1:f5:05:6b:09:9f:6d:23:e7:d1: 18:75:12:88:b0:19:b4:30:09:98:7e:4b:63:0a:44: aa:f5:12:b8:b8:cb:e8:6f:2c:cb:bf:de:f1:0d:b7: aa:59:29:69:82:33:d7:bf:d5:5e:df:f7:89:52:bb: 00:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:72:7A:C8:7B:F6:93:5F:FE:C1:26:30:31:45:B6:B1:7C:D2:61:F2 X509v3 Authority Key Identifier: keyid:93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:d9:4a:81:4a:fb:5e:fb:93:fb:25:d2:80:75:dc:97:43:5e: 9f:4e:30:24:cf:9e:aa:f1:16:7a:1f:18:80:5b:08:3d:8c:6a: 5b:b9:fe:31:82:88:ae:1a:47:65:5b:45:dd:b8:7a:88:3f:ec: 77:c5:51:3c:7c:e8:ee:2d:72:8c:b7:a8:90:3c:0a:f5:ba:5c: 8f:93:99:00:fa:51:fc:31:e3:eb:e6:42:e2:79:30:5d:47:e7: 8e:75:ba:33:e9:01:54:41:5d:a1:4f:45:7e:6c:86:58:5c:df: 61:dd:b7:96:38:df:30:08:b1:60:62:d6:a6:f5:62:2c:14:75: 3f:90:24:7d:a4:bb:8b:40:ad:3d:2b:16:16:bb:48:c9:0d:b9: ac:4f:6b:4d:49:ed:bd:23:c0:e7:3b:b1:e0:28:69:d6:f7:1e: 02:a6:3d:c6:29:99:ab:fb:20:36:89:48:57:7a:05:28:15:7d: e7:96:f9:4d:21:7e:b2:dd:16:13:aa:d9:45:c7:b9:89:94:2b: ab:f2:08:41:b7:fb:65:b7:3f:a0:aa:3a:cc:5e:48:07:fc:16: bd:79:c2:64:ca:87:d6:8a:8e:71:4d:07:78:fb:de:02:e8:b6: db:2a:a1:9c:f0:16:b3:79:58:30:54:de:00:f8:fe:be:28:d5: 5f:90:c8:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv5GFxzUzRbcjR0xuUa0nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMzg4NDA5MjZhYzczZWFkNWI2MTg3OTE5ZTg4ZjEwMDMy Mjk5Y2EwHhcNMjUxMjA1MjMwMTE3WhcNMjUxMjA2MjMwMTE3WjAzMTEwLwYDVQQD EyhjNDcyN2FjODdiZjY5MzVmZmVjMTI2MzAzMTQ1YjZiMTdjZDI2MWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pXetwsqxqDZYhOIc5ykLd6IGwdr NCTgRZVFkHXtl9TP7FMxg+ulwSa84sjUb6Ydw9mBBH+ZbSkCAo5uFra3fk5Jhqtm NAJrax08KpXNxb2oHEN9o6TJCZiiTlIxpaD5I+UuTEoKaFQjdBQ+4kWAeOGFTu0q bSj1Iq7iZ1B3PJN92lZNb2ePf5uYVgA1H4Qtv74fNJpaHejeZHO/2d7SRa9enMAR lu13Jd8WXxUOFv2X554lKJoLbdx2jDOlQjHOeu1rMlQVQbH1BWsJn20j59EYdRKI sBm0MAmYfktjCkSq9RK4uMvobyzLv97xDbeqWSlpgjPXv9Ve3/eJUrsAowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMRyesh79pNf/sEmMDFFtrF80mHyMB8GA1UdIwQY MBaAFJM4hAkmrHPq1bYYeRnojxADIpnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUt ZWE3YWU3MmJkMzJkLzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUtZWE3YWU3MmJkMzJk LzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdtlKgUr7 XvuT+yXSgHXcl0Nen04wJM+eqvEWeh8YgFsIPYxqW7n+MYKIrhpHZVtF3bh6iD/s d8VRPHzo7i1yjLeokDwK9bpcj5OZAPpR/DHj6+ZC4nkwXUfnjnW6M+kBVEFdoU9F fmyGWFzfYd23ljjfMAixYGLWpvViLBR1P5AkfaS7i0CtPSsWFrtIyQ25rE9rTUnt vSPA5zux4Chp1vceAqY9ximZq/sgNolIV3oFKBV955b5TSF+st0WE6rZRce5iZQr q/IIQbf7Zbc/oKo6zF5IB/wWvXnCZMqH1oqOcU0HePveAui22yqhnPAWs3lYMFTe APj+vijVX5DIig== -----END CERTIFICATE-----Generated at Sat Dec 6 08:02:28 2025 by rpki-client