This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft File: mk123S9GBosIca1FAKxuV3r-Rpw.mft (raw, json) Hash identifier: gXaxgnuPtn/Zt+x2ZQ0IHPB/FtM7rlANFal4JmBJF50= Subject key identifier: 1C:D6:BA:2B:AD:DF:41:73:7A:A6:32:88:32:B6:04:B6:B9:77:26:CA Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c Certificate serial: 019AF164123FDA3E477C6AEF7772BB745F72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft Manifest number: 176C Signing time: Sat 06 Dec 2025 02:00:58 +0000 Manifest this update: Sat 06 Dec 2025 02:00:58 +0000 Manifest next update: Sun 07 Dec 2025 02:00:58 +0000 Files and hashes: 1: g_4HQ6dPEqLM5A1GtfThJC294J4.roa (hash: LZYhI0FV7wY5oWB7xQyZ5bQSIIqgJBDQ7uNwEne/gVE=) 2: j-Wf3znAxyHVOa1yHEzX6v3sp9U.roa (hash: OwOwX0XTVGFVpqs+QebopX8jgHz3h7KxGANJ/Crp1oA=) 3: mk123S9GBosIca1FAKxuV3r-Rpw.crl (hash: OMu8GwrnC7dHyDqTJbI8LBGf8KcPt9hcCP8+K832wC4=) 4: vscV7GZRMa0CPUTvFLBuSp-lIJ8.roa (hash: 2C3QYWkPGEbQmt4ETFEFUqH1R92qUMl/4nE7fTPMPhA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:12:3f:da:3e:47:7c:6a:ef:77:72:bb:74:5f:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c Validity Not Before: Dec 6 02:00:58 2025 GMT Not After : Dec 7 02:00:58 2025 GMT Subject: CN=1cd6ba2baddf41737aa6328832b604b6b97726ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:df:66:9d:21:57:e4:fa:f4:9e:0a:42:3d:bd: 97:ce:8f:e1:ef:a8:53:3c:9c:46:f1:b1:b5:92:b4: 5d:92:63:d6:0b:02:92:d5:e8:7d:63:2e:37:c7:48: 6e:8a:53:43:15:7a:fe:56:46:34:3c:7f:9a:e3:8a: 13:06:2a:44:2f:79:1e:6d:87:3a:5f:5b:53:92:c3: 4e:3b:22:90:ea:35:50:72:7e:8b:29:a7:2d:92:4f: 80:79:dc:bc:aa:5c:f6:a2:8e:60:a9:77:2e:15:44: f0:43:fd:ff:14:86:c6:40:82:0f:74:8b:31:41:e4: a3:0c:02:01:80:33:1e:ed:06:28:ad:44:b0:e3:90: 6d:66:af:d7:e3:eb:76:e2:37:f7:55:7c:00:b5:98: c8:b5:9e:6c:8e:04:bd:0d:52:78:db:c3:81:f4:71: 33:65:7d:05:99:5b:59:53:8d:6c:b1:58:bc:f1:e3: 48:d8:cf:df:b3:f6:da:a4:31:ce:6f:85:2b:38:e0: 2e:e2:b1:c7:41:2e:85:19:a7:60:39:96:52:60:a1: 02:df:d5:66:23:5f:82:e4:d9:23:52:ee:f9:c6:2d: 80:73:8a:b4:a9:13:4c:49:38:2c:42:d9:b3:4c:c9: d5:5d:74:b5:2e:67:b1:cf:2f:3e:a0:b7:9b:3d:0d: ff:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D6:BA:2B:AD:DF:41:73:7A:A6:32:88:32:B6:04:B6:B9:77:26:CA X509v3 Authority Key Identifier: keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:33:4d:4e:5a:39:04:41:52:9a:c6:3b:8f:83:f8:f6:00:83: 08:f8:ed:e4:58:14:7f:b5:9b:11:16:67:79:15:a1:ed:3f:12: b8:52:a2:d7:0b:57:cd:ae:e1:c9:ac:db:aa:2e:fe:ae:d7:ae: 0d:6e:67:89:4c:3a:c8:bc:05:1a:c2:fd:65:02:a7:52:84:82: 48:2e:bd:49:c0:f8:08:8c:9d:97:65:1f:41:b3:d0:c7:b7:58: 40:21:3a:79:34:41:d0:7b:d3:66:1d:41:f2:7e:c9:f9:99:8f: 78:fd:64:04:28:92:7e:4d:71:ea:6f:2f:f1:c7:0f:9f:08:d0: 85:19:ba:31:df:c5:b3:ee:27:69:0a:20:f6:19:65:0d:89:e0: 1e:45:3c:11:7a:0e:09:0a:7a:92:c4:7a:00:ee:de:1a:24:9f: 26:86:0e:8b:c0:2d:52:4d:6e:c3:a4:1d:15:f9:ca:a4:ae:d7: ce:ef:e0:32:8e:4d:24:d2:33:3b:88:db:92:d8:3b:06:37:0b: 83:e2:0e:a4:3c:46:14:09:ac:ec:aa:dd:ae:51:e9:c4:24:86: 88:47:a0:e5:8c:70:8f:ac:80:eb:4f:21:a8:3b:f0:99:4e:c5: b9:80:0a:33:d6:d2:7a:90:a1:d6:a0:98:fe:ea:7e:ed:b0:02: 11:4f:f5:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZBI/2j5HfGrvd3K7dF9yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGQ3NmRkMmY0NjA2OGIwODcxYWQ0NTAwYWM2ZTU3N2Fm ZTQ2OWMwHhcNMjUxMjA2MDIwMDU4WhcNMjUxMjA3MDIwMDU4WjAzMTEwLwYDVQQD EygxY2Q2YmEyYmFkZGY0MTczN2FhNjMyODgzMmI2MDRiNmI5NzcyNmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/d9mnSFX5Pr0ngpCPb2Xzo/h76hT PJxG8bG1krRdkmPWCwKS1eh9Yy43x0huilNDFXr+VkY0PH+a44oTBipEL3kebYc6 X1tTksNOOyKQ6jVQcn6LKactkk+Aedy8qlz2oo5gqXcuFUTwQ/3/FIbGQIIPdIsx QeSjDAIBgDMe7QYorUSw45BtZq/X4+t24jf3VXwAtZjItZ5sjgS9DVJ428OB9HEz ZX0FmVtZU41ssVi88eNI2M/fs/bapDHOb4UrOOAu4rHHQS6FGadgOZZSYKEC39Vm I1+C5NkjUu75xi2Ac4q0qRNMSTgsQtmzTMnVXXS1Lmexzy8+oLebPQ3/8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBzWuiut30FzeqYyiDK2BLa5dybKMB8GA1UdIwQY MBaAFJpNdt0vRgaLCHGtRQCsbld6/kacMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lZDdjOGEtMzk1Mi00NDAxLTlkZDQt NDQ2OTJkYmNjYjMyLzEvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9lZDdjOGEtMzk1Mi00NDAxLTlkZDQtNDQ2OTJkYmNjYjMy LzEvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAczNNTlo5 BEFSmsY7j4P49gCDCPjt5FgUf7WbERZneRWh7T8SuFKi1wtXza7hyazbqi7+rteu DW5niUw6yLwFGsL9ZQKnUoSCSC69ScD4CIydl2UfQbPQx7dYQCE6eTRB0HvTZh1B 8n7J+ZmPeP1kBCiSfk1x6m8v8ccPnwjQhRm6Md/Fs+4naQog9hllDYngHkU8EXoO CQp6ksR6AO7eGiSfJoYOi8AtUk1uw6QdFfnKpK7Xzu/gMo5NJNIzO4jbktg7BjcL g+IOpDxGFAms7KrdrlHpxCSGiEeg5Yxwj6yA608hqDvwmU7FuYAKM9bSepCh1qCY /up+7bACEU/1HA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:28 2025 by rpki-client