This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: rNSgWjBH7+bWq9rOfnltxvdlbrdBEqceBhyXfUk84BE= Subject key identifier: BA:56:06:B8:23:3E:06:82:28:6A:F8:68:E7:E4:A4:3F:50:06:B2:3C Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019AF38A09760D59020422927E361651262F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 0613 Signing time: Sat 06 Dec 2025 12:01:41 +0000 Manifest this update: Sat 06 Dec 2025 12:01:41 +0000 Manifest next update: Sun 07 Dec 2025 12:01:41 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: R230zKG3YGfdu6e41irNERY+iOrZxbO78fk0YHG8FO4=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:8a:09:76:0d:59:02:04:22:92:7e:36:16:51:26:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Dec 6 12:01:41 2025 GMT Not After : Dec 7 12:01:41 2025 GMT Subject: CN=ba5606b8233e0682286af868e7e4a43f5006b23c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e5:7a:92:ba:c5:aa:20:d5:99:b0:45:82:7d: ee:16:2a:d2:30:16:0a:10:7e:cd:c7:d3:b9:f9:08: d7:b9:6f:ba:77:a5:f9:49:9e:e3:2f:b7:45:a9:29: a6:84:de:95:32:1b:9b:80:bc:3b:09:5b:01:e3:1e: 24:4b:dd:12:de:c7:8f:05:d6:07:b6:f3:f4:12:3e: 88:61:24:dd:eb:82:aa:d8:7f:4c:05:67:4d:14:f1: ab:33:27:06:7d:9a:46:22:d1:ba:13:d9:c4:af:a0: b4:66:8b:2e:06:02:5d:72:95:c6:83:d5:94:a2:88: b9:23:f9:0f:5b:43:f1:47:f9:d9:a0:22:90:76:af: 5e:97:c0:00:6d:a5:3a:a3:2e:29:07:83:36:41:ca: df:dd:a4:a7:bb:89:9a:29:5a:d1:13:84:0f:3f:2b: 47:70:13:c5:65:6a:e0:b9:82:2d:4f:83:3b:d3:35: b6:66:e9:66:92:06:82:b2:38:da:81:f3:4d:02:02: 3f:e3:45:95:c7:7e:8d:f4:2c:9a:88:52:45:8e:57: ea:54:55:b1:7a:58:f3:23:98:d2:60:22:e3:56:43: fa:d2:d5:bb:ab:e1:ef:29:23:75:49:0c:09:8f:8f: b7:54:81:e5:3d:2f:78:58:d0:15:44:fd:ae:44:02: 0f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:56:06:B8:23:3E:06:82:28:6A:F8:68:E7:E4:A4:3F:50:06:B2:3C X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:ad:92:a1:26:fe:15:08:8a:0b:93:80:13:47:88:c2:b7:33: 0d:fe:74:e3:6a:04:1e:6b:b8:b5:8f:ac:1c:2a:92:a7:d3:fe: f9:9a:8a:be:69:1b:f1:e0:b0:91:25:4a:52:e5:bf:7b:b7:e5: e3:bd:aa:0d:51:21:79:95:db:24:67:ca:ed:00:9a:9a:89:a2: 57:3a:e2:ae:13:8c:50:f5:e7:7b:4b:6c:0d:b5:cc:e4:50:a3: c1:ce:8f:4d:88:75:ab:00:80:19:81:8c:60:a6:12:5d:ff:77: fc:6c:f1:52:4a:a9:43:19:57:ab:c9:7a:17:9f:d6:52:9e:2e: cd:43:67:ef:f4:49:92:24:94:80:e5:46:fe:8e:b9:0c:10:80: 04:4c:ad:3c:42:48:8c:42:e1:63:95:0e:b6:28:1a:39:7e:05: f6:de:87:55:63:d3:cd:fe:ee:73:ae:be:b6:e9:ad:02:23:ed: a9:8c:2d:c8:2a:64:bf:e0:f5:cf:4c:8b:1b:6b:66:a2:e9:8d: b1:77:13:45:72:17:78:bd:7a:c1:0f:36:18:b6:b6:12:63:4e: 51:34:60:91:f8:25:44:22:37:81:d1:0c:d3:ab:90:10:74:e1: 73:4a:df:37:8a:37:75:53:cb:02:06:e9:71:1d:02:a4:fd:af: 58:74:38:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzigl2DVkCBCKSfjYWUSYvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUxMjA2MTIwMTQxWhcNMjUxMjA3MTIwMTQxWjAzMTEwLwYDVQQD EyhiYTU2MDZiODIzM2UwNjgyMjg2YWY4NjhlN2U0YTQzZjUwMDZiMjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OV6krrFqiDVmbBFgn3uFirSMBYK EH7Nx9O5+QjXuW+6d6X5SZ7jL7dFqSmmhN6VMhubgLw7CVsB4x4kS90S3sePBdYH tvP0Ej6IYSTd64Kq2H9MBWdNFPGrMycGfZpGItG6E9nEr6C0ZosuBgJdcpXGg9WU ooi5I/kPW0PxR/nZoCKQdq9el8AAbaU6oy4pB4M2Qcrf3aSnu4maKVrRE4QPPytH cBPFZWrguYItT4M70zW2ZulmkgaCsjjagfNNAgI/40WVx36N9CyaiFJFjlfqVFWx eljzI5jSYCLjVkP60tW7q+HvKSN1SQwJj4+3VIHlPS94WNAVRP2uRAIPjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLpWBrgjPgaCKGr4aOfkpD9QBrI8MB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXa2SoSb+ FQiKC5OAE0eIwrczDf5042oEHmu4tY+sHCqSp9P++ZqKvmkb8eCwkSVKUuW/e7fl 472qDVEheZXbJGfK7QCamomiVzrirhOMUPXne0tsDbXM5FCjwc6PTYh1qwCAGYGM YKYSXf93/GzxUkqpQxlXq8l6F5/WUp4uzUNn7/RJkiSUgOVG/o65DBCABEytPEJI jELhY5UOtigaOX4F9t6HVWPTzf7uc66+tumtAiPtqYwtyCpkv+D1z0yLG2tmoumN sXcTRXIXeL16wQ82GLa2EmNOUTRgkfglRCI3gdEM06uQEHThc0rfN4o3dVPLAgbp cR0CpP2vWHQ4pA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:50:21 2025 by rpki-client