This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft File: KfzfdinE4A6QbxQ19EndEJ9BC2w.mft (raw, json) Hash identifier: RQoP/tjzEwNu0YDfDpy5Icn2EHsy0BDdp0Xwv5jfGls= Subject key identifier: D6:C8:CE:AF:54:EE:AE:CF:22:9C:8E:AB:46:37:31:15:F6:9E:39:59 Authority key identifier: 29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C Certificate issuer: /CN=29fcdf7629c4e00e906f1435f449dd109f410b6c Certificate serial: 019AF12CF24640033D8635309A2173B6D076 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft Manifest number: 143E Signing time: Sat 06 Dec 2025 01:00:45 +0000 Manifest this update: Sat 06 Dec 2025 01:00:45 +0000 Manifest next update: Sun 07 Dec 2025 01:00:45 +0000 Files and hashes: 1: KfzfdinE4A6QbxQ19EndEJ9BC2w.crl (hash: D0+HwcM/Ivl6lyMKmnnMEWhcWI7bpJLZdhiP5jqxQ0k=) 2: lKv_MpftntPeWIBfQDo4EvQnOCE.roa (hash: v96JNz5ZiqAWk2kEUzYU+IVtwUC39vYGpp2p54BaFZ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:f2:46:40:03:3d:86:35:30:9a:21:73:b6:d0:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fcdf7629c4e00e906f1435f449dd109f410b6c Validity Not Before: Dec 6 01:00:45 2025 GMT Not After : Dec 7 01:00:45 2025 GMT Subject: CN=d6c8ceaf54eeaecf229c8eab46373115f69e3959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:85:d3:01:cc:17:e1:6e:c8:4b:5e:55:0f:a7: 56:98:89:99:76:6e:fc:12:b2:05:55:7b:de:bb:01: 09:01:99:3b:de:4d:c3:84:91:07:1b:38:b0:52:7c: 35:93:50:2f:c8:22:02:34:d8:70:4c:67:00:f5:f1: c7:81:ce:b1:a0:72:62:a8:23:1a:be:41:d4:ec:bd: 8e:65:3a:7b:3c:d7:90:f4:46:12:a3:de:d7:8e:2d: c9:83:58:13:ed:95:ff:9a:bb:4c:d2:e8:7e:b2:07: 46:93:37:eb:8f:f2:09:28:eb:d3:7c:8f:4b:24:05: e2:82:04:2b:a8:61:81:ad:1e:08:b2:41:52:f4:a4: c5:32:d8:db:53:cb:68:3b:4a:47:dd:67:2c:df:3a: b8:cf:5b:5a:82:13:fa:68:e4:44:96:78:d3:6c:31: 34:3d:e1:d0:d1:ae:7e:be:87:c7:74:01:d8:c4:d0: fe:59:92:5e:2a:a8:e5:69:59:a0:7f:3f:23:be:f2: 01:63:a5:ab:66:95:b9:49:4f:46:46:79:2f:6f:ea: 22:47:dd:e2:87:62:ab:8a:4f:ed:06:d9:8f:c9:ed: fe:d5:ad:09:77:7a:53:a6:2a:f6:17:d9:58:b6:3c: b9:f3:e0:10:3b:f3:72:57:95:af:34:41:9d:e3:69: 87:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C8:CE:AF:54:EE:AE:CF:22:9C:8E:AB:46:37:31:15:F6:9E:39:59 X509v3 Authority Key Identifier: keyid:29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:6a:cc:0a:89:3d:72:26:ef:05:83:46:15:ac:9a:a9:90:ed: d4:50:8d:d2:21:c4:6f:51:98:13:e6:32:f6:02:df:63:62:c3: 9c:2c:d7:56:c9:9a:93:de:73:1e:9a:fc:fa:56:f9:20:e5:33: 65:4c:8c:6d:86:b5:1c:37:c2:ee:57:73:c2:41:62:90:89:e9: b3:1f:25:d6:35:13:c5:4a:f9:bc:0f:bf:f0:1b:db:2f:ba:18: a1:7f:35:17:68:a1:f4:04:01:34:ea:f5:94:01:a6:ba:39:92: e9:8a:ae:54:50:e8:22:99:7b:71:0e:16:65:a4:72:2e:a6:61: dd:6a:7d:8f:b0:7f:e2:b5:e6:91:21:25:79:a6:c4:54:97:6e: ed:b8:45:7b:ad:62:05:db:27:ea:18:12:55:1c:79:ec:16:fa: eb:a3:f4:e6:3b:e9:05:d5:e4:de:26:98:63:67:3e:f3:50:2e: b3:a3:58:ee:c1:9c:f7:12:ba:8f:65:49:5f:bf:c8:36:a1:b6: 17:e3:44:31:76:25:8e:51:ee:97:ee:df:17:3c:3e:f3:03:21: f0:13:04:2b:4b:63:4b:68:5e:4c:7f:8b:84:8d:fc:c8:ad:3a: 61:f3:16:13:b3:33:f4:f5:c6:e0:47:40:a2:10:ad:85:56:06: 3a:61:72:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLPJGQAM9hjUwmiFzttB2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmNkZjc2MjljNGUwMGU5MDZmMTQzNWY0NDlkZDEwOWY0 MTBiNmMwHhcNMjUxMjA2MDEwMDQ1WhcNMjUxMjA3MDEwMDQ1WjAzMTEwLwYDVQQD EyhkNmM4Y2VhZjU0ZWVhZWNmMjI5YzhlYWI0NjM3MzExNWY2OWUzOTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA44XTAcwX4W7IS15VD6dWmImZdm78 ErIFVXveuwEJAZk73k3DhJEHGziwUnw1k1AvyCICNNhwTGcA9fHHgc6xoHJiqCMa vkHU7L2OZTp7PNeQ9EYSo97Xji3Jg1gT7ZX/mrtM0uh+sgdGkzfrj/IJKOvTfI9L JAXiggQrqGGBrR4IskFS9KTFMtjbU8toO0pH3Wcs3zq4z1taghP6aORElnjTbDE0 PeHQ0a5+vofHdAHYxND+WZJeKqjlaVmgfz8jvvIBY6WrZpW5SU9GRnkvb+oiR93i h2Krik/tBtmPye3+1a0Jd3pTpir2F9lYtjy58+AQO/NyV5WvNEGd42mHKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNbIzq9U7q7PIpyOq0Y3MRX2njlZMB8GA1UdIwQY MBaAFCn833YpxOAOkG8UNfRJ3RCfQQtsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2Z6ZmRpbkU0QTZRYnhRMTlFbmRFSjlCQzJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9kNDdiZTgtMmZmMC00YzkzLWI5MTIt OTA1ZTc2M2YwNDhkLzEvS2Z6ZmRpbkU0QTZRYnhRMTlFbmRFSjlCQzJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9kNDdiZTgtMmZmMC00YzkzLWI5MTItOTA1ZTc2M2YwNDhk LzEvS2Z6ZmRpbkU0QTZRYnhRMTlFbmRFSjlCQzJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeGrMCok9 cibvBYNGFayaqZDt1FCN0iHEb1GYE+Yy9gLfY2LDnCzXVsmak95zHpr8+lb5IOUz ZUyMbYa1HDfC7ldzwkFikInpsx8l1jUTxUr5vA+/8BvbL7oYoX81F2ih9AQBNOr1 lAGmujmS6YquVFDoIpl7cQ4WZaRyLqZh3Wp9j7B/4rXmkSEleabEVJdu7bhFe61i Bdsn6hgSVRx57Bb666P05jvpBdXk3iaYY2c+81Aus6NY7sGc9xK6j2VJX7/INqG2 F+NEMXYljlHul+7fFzw+8wMh8BMEK0tjS2heTH+LhI38yK06YfMWE7Mz9PXG4EdA ohCthVYGOmFykA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:33:51 2025 by rpki-client