This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json) Hash identifier: a7sJ9TfUXJK4lKAfVmQptcB71yA8NG9GoI2HxC3NrwQ= Subject key identifier: 32:0F:41:19:F1:9F:A7:94:99:3E:66:AE:3C:C8:33:7E:9B:BD:FF:9E Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d Certificate serial: 019AF20935D91A75281A388CE0C708324C8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft Manifest number: 077E Signing time: Sat 06 Dec 2025 05:01:21 +0000 Manifest this update: Sat 06 Dec 2025 05:01:21 +0000 Manifest next update: Sun 07 Dec 2025 05:01:21 +0000 Files and hashes: 1: 1-PjUZT902dDkd6VPDrdDPHXwUZw.roa (hash: MHJPB3k7tQCL3suOF/2f4yZcUJ+jnvq9tJxwFWeEEbc=) 2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: qTmc/V0+cnwMDUj0T/jYwZuz1AV/wjw77kTv+HGieUg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:35:d9:1a:75:28:1a:38:8c:e0:c7:08:32:4c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d Validity Not Before: Dec 6 05:01:21 2025 GMT Not After : Dec 7 05:01:21 2025 GMT Subject: CN=320f4119f19fa794993e66ae3cc8337e9bbdff9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:95:1d:1c:e4:96:17:1a:d0:9e:6f:78:85: 37:e7:3c:b0:12:3b:73:28:a7:26:96:3d:e4:f4:7d: b5:0a:4d:57:cb:2b:8a:3b:40:5a:fa:76:d8:21:54: e4:23:69:22:0d:d0:52:95:35:93:a1:0a:2b:61:07: 7a:f7:65:ea:c7:b1:08:e0:26:b6:d8:ee:50:61:ee: 2f:d8:e9:6b:8c:28:63:b6:0a:a2:b0:ab:18:e4:55: 46:1b:90:53:f0:9c:24:63:e7:d4:a6:f4:ea:66:4d: 6c:1d:0b:98:7d:7f:17:09:78:8e:36:ad:71:2a:10: e3:10:1a:ad:03:b6:69:bd:92:25:ff:ce:7c:09:aa: d7:a5:f7:8f:e2:70:ab:e7:68:b1:98:7d:94:5c:80: 09:d5:23:df:bc:93:e2:9f:b5:0e:8f:4f:2c:65:b9: 3d:72:1f:38:28:91:c3:86:6c:af:70:62:04:35:05: 86:17:02:1d:7d:51:6d:37:e8:ba:ab:b7:0f:e0:38: e0:a9:80:cf:ab:a7:92:f0:48:84:00:9f:b8:7b:87: fe:a1:13:42:83:58:aa:8e:78:50:ac:0c:d5:59:46: b5:37:4c:4b:32:8f:c0:46:a7:1b:95:a2:d8:24:d9: c6:a1:bf:ea:a1:22:f2:90:02:18:91:20:75:21:f6: f3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:0F:41:19:F1:9F:A7:94:99:3E:66:AE:3C:C8:33:7E:9B:BD:FF:9E X509v3 Authority Key Identifier: keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:47:75:25:b5:7c:2b:8f:1f:c4:2f:72:7c:54:fc:ca:a7:d3: 00:f3:2e:11:61:8f:4d:a1:39:c3:60:44:a1:5e:69:2c:9b:23: 93:41:b0:66:9c:c3:7f:35:3e:de:21:d4:b8:4c:9d:f3:6c:3f: 59:84:f4:c7:d1:d9:69:19:ad:83:b1:4b:a7:cc:8c:14:45:d0: 6e:58:16:8c:cb:fa:4f:7a:a2:3c:94:d8:23:d0:46:24:dd:c8: 2a:03:be:fa:1a:f7:f9:e7:0b:1b:89:71:5b:e9:16:4d:3b:c6: fe:95:7c:a5:f4:44:bc:c3:25:9d:a1:44:4f:9c:8a:cf:6c:51: fe:6b:19:17:f6:43:87:c5:25:1a:ad:e1:97:93:b0:c1:b0:b8: 53:c3:a2:3e:c2:3c:e9:87:4f:26:ab:a0:cb:b6:53:82:ec:40: 94:0d:87:2a:1f:d8:ff:a9:bb:31:94:f3:1b:b9:60:a1:2b:48: 79:3f:5d:1d:0a:4f:56:82:7a:c3:24:3c:7e:d2:01:71:5b:9c: b3:d1:3f:9c:84:b9:43:18:ec:80:01:d8:0d:51:f5:54:a8:75: d1:29:c8:4f:29:69:55:24:20:2b:9c:df:8e:43:5c:84:08:25: 21:d5:77:ab:33:9b:10:53:c6:22:af:3e:90:27:e9:8e:d0:9e: 87:2a:cc:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTXZGnUoGjiM4McIMkyLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxN2MzM2M3NTk2MTMxOGQ4ZWUzY2IxMzQ2NGE5MGQwMGFi OGJkMmQwHhcNMjUxMjA2MDUwMTIxWhcNMjUxMjA3MDUwMTIxWjAzMTEwLwYDVQQD EygzMjBmNDExOWYxOWZhNzk0OTkzZTY2YWUzY2M4MzM3ZTliYmRmZjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26OVHRzklhca0J5veIU35zywEjtz KKcmlj3k9H21Ck1XyyuKO0Ba+nbYIVTkI2kiDdBSlTWToQorYQd692Xqx7EI4Ca2 2O5QYe4v2OlrjChjtgqisKsY5FVGG5BT8JwkY+fUpvTqZk1sHQuYfX8XCXiONq1x KhDjEBqtA7ZpvZIl/858CarXpfeP4nCr52ixmH2UXIAJ1SPfvJPin7UOj08sZbk9 ch84KJHDhmyvcGIENQWGFwIdfVFtN+i6q7cP4DjgqYDPq6eS8EiEAJ+4e4f+oRNC g1iqjnhQrAzVWUa1N0xLMo/ARqcblaLYJNnGob/qoSLykAIYkSB1IfbzswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDIPQRnxn6eUmT5mrjzIM36bvf+eMB8GA1UdIwQY MBaAFJF8M8dZYTGNjuPLE0ZKkNAKuL0tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAt YzM3NjFhNzVkMDQ3LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAtYzM3NjFhNzVkMDQ3 LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb0d1JbV8 K48fxC9yfFT8yqfTAPMuEWGPTaE5w2BEoV5pLJsjk0GwZpzDfzU+3iHUuEyd82w/ WYT0x9HZaRmtg7FLp8yMFEXQblgWjMv6T3qiPJTYI9BGJN3IKgO++hr3+ecLG4lx W+kWTTvG/pV8pfREvMMlnaFET5yKz2xR/msZF/ZDh8UlGq3hl5OwwbC4U8OiPsI8 6YdPJqugy7ZTguxAlA2HKh/Y/6m7MZTzG7lgoStIeT9dHQpPVoJ6wyQ8ftIBcVuc s9E/nIS5QxjsgAHYDVH1VKh10SnITylpVSQgK5zfjkNchAglIdV3qzObEFPGIq8+ kCfpjtCehyrMag== -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:38 2025 by rpki-client