This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json) Hash identifier: VorDQLLOj1CtRAcLDrvwNOP8d9T7NWm6YKbrgnmU0rs= Subject key identifier: 65:E3:EA:A4:9F:74:32:F2:F2:20:9A:63:C4:A0:24:88:8B:5F:7A:1B Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Certificate serial: 019AF12E51A1FD38095D3D43C52E7360AD35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 01:02:15 +0000 Manifest this update: Sat 06 Dec 2025 01:02:15 +0000 Manifest next update: Sun 07 Dec 2025 01:02:15 +0000 Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=) 2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 0Z8Wit/vmOiLG90//w6efC9/oTADtxEEuHLtfsIkr6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:51:a1:fd:38:09:5d:3d:43:c5:2e:73:60:ad:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Validity Not Before: Dec 6 01:02:15 2025 GMT Not After : Dec 7 01:02:15 2025 GMT Subject: CN=65e3eaa49f7432f2f2209a63c4a024888b5f7a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d5:34:86:2a:a7:99:70:37:41:ee:92:2a:05: 75:94:d7:34:fc:b3:42:77:e8:36:81:4c:1e:0d:b0: 04:65:e8:a1:d0:93:19:f3:cb:4b:db:c4:b9:9f:76: ee:3b:cb:00:b6:e5:81:40:5e:8f:a6:d3:a6:48:b6: 72:bc:70:ce:aa:47:5a:91:5e:97:79:02:6f:35:7a: 28:6d:02:ef:b0:ec:7b:39:2b:8a:ab:1d:b6:03:a9: f7:61:c3:87:ad:b6:ee:b6:8e:f2:5a:91:c2:e7:67: ee:4c:5f:cc:31:9e:49:22:f7:1b:4c:e8:19:6b:79: 54:a1:b4:af:c6:f0:c6:a6:45:82:54:d5:18:45:c5: 35:ce:e7:90:53:ce:13:1e:49:9b:1d:58:d3:48:b1: c4:46:5a:fe:7b:15:d1:d1:61:05:62:36:63:e2:f6: 27:57:2b:53:f1:66:ae:1a:b3:f3:b4:f4:10:8d:6c: 46:de:eb:6e:2e:12:c6:de:d4:b9:f0:72:35:7b:3d: 4f:79:ea:69:e7:1d:1f:2a:ba:5a:5e:66:a7:7b:14: a3:62:a0:5e:15:28:8c:c9:09:61:c2:fa:ae:db:0e: d8:22:e5:56:7e:66:80:09:49:8f:3b:ba:96:c7:ac: 1d:67:00:be:a9:9d:b0:ac:89:a8:92:99:be:eb:b8: 82:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E3:EA:A4:9F:74:32:F2:F2:20:9A:63:C4:A0:24:88:8B:5F:7A:1B X509v3 Authority Key Identifier: keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:4e:f9:26:18:5c:a2:0a:ad:8c:75:86:1f:02:e1:32:c6:54: fc:27:dc:c3:51:3c:07:bb:6e:be:d0:91:24:f6:48:ae:6d:05: 8a:eb:f8:30:90:00:8b:8b:66:67:2a:60:5b:4b:58:12:30:38: 5f:fd:0d:2e:3c:ae:69:3c:28:af:64:00:58:ee:13:58:18:13: 00:81:eb:66:7f:8c:7c:45:4a:31:75:6f:5b:53:73:2e:6e:04: b7:8d:58:eb:74:19:4b:76:bd:e3:0f:c9:c8:e4:f7:70:9b:4a: 44:b9:0b:9b:e2:64:6c:33:e6:65:cf:8c:38:db:d1:2b:ea:73: f7:f6:2c:d3:00:2f:93:d1:4d:ab:ac:07:c9:88:a8:a7:9f:6f: 4e:0e:6f:e8:0a:0d:3d:95:11:ae:2c:ef:c6:a0:83:60:01:8f: 67:e7:ba:22:93:63:cb:40:76:42:cb:bd:c7:57:9d:26:cd:36: aa:5c:ef:06:0a:c3:e6:05:fc:0c:c7:60:29:c6:0e:c4:c2:0c: 3a:b8:05:c1:fd:a6:c1:71:5f:db:d0:e1:a4:f4:93:d2:6d:37: a2:79:b3:f1:82:aa:13:c7:6a:4d:c0:c0:ef:c0:11:2a:66:4b: 08:66:e2:9f:f5:b1:02:2d:ec:4f:06:55:dc:8d:10:bd:ba:92: a8:86:c8:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlGh/TgJXT1DxS5zYK01MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2 MzFiYjMwHhcNMjUxMjA2MDEwMjE1WhcNMjUxMjA3MDEwMjE1WjAzMTEwLwYDVQQD Eyg2NWUzZWFhNDlmNzQzMmYyZjIyMDlhNjNjNGEwMjQ4ODhiNWY3YTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9U0hiqnmXA3Qe6SKgV1lNc0/LNC d+g2gUweDbAEZeih0JMZ88tL28S5n3buO8sAtuWBQF6PptOmSLZyvHDOqkdakV6X eQJvNXoobQLvsOx7OSuKqx22A6n3YcOHrbbuto7yWpHC52fuTF/MMZ5JIvcbTOgZ a3lUobSvxvDGpkWCVNUYRcU1zueQU84THkmbHVjTSLHERlr+exXR0WEFYjZj4vYn VytT8WauGrPztPQQjWxG3utuLhLG3tS58HI1ez1Peepp5x0fKrpaXmanexSjYqBe FSiMyQlhwvqu2w7YIuVWfmaACUmPO7qWx6wdZwC+qZ2wrImokpm+67iCHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGXj6qSfdDLy8iCaY8SgJIiLX3obMB8GA1UdIwQY MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0 LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnE75Jhhc ogqtjHWGHwLhMsZU/Cfcw1E8B7tuvtCRJPZIrm0Fiuv4MJAAi4tmZypgW0tYEjA4 X/0NLjyuaTwor2QAWO4TWBgTAIHrZn+MfEVKMXVvW1NzLm4Et41Y63QZS3a94w/J yOT3cJtKRLkLm+JkbDPmZc+MONvRK+pz9/Ys0wAvk9FNq6wHyYiop59vTg5v6AoN PZURrizvxqCDYAGPZ+e6IpNjy0B2Qsu9x1edJs02qlzvBgrD5gX8DMdgKcYOxMIM OrgFwf2mwXFf29DhpPST0m03onmz8YKqE8dqTcDA78ARKmZLCGbin/WxAi3sTwZV 3I0QvbqSqIbIzw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:29 2025 by rpki-client