This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json) Hash identifier: VAR3iP19hGN5cb4fmLTZ4hk+hnm4cFyR58jF5dtoV24= Subject key identifier: 1C:04:9F:04:34:88:69:0C:62:67:F8:1F:93:11:98:B3:3D:BE:13:B4 Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Certificate serial: 019B5AF60F8ADD51536A5A5AFC8C58C9EBCE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft Manifest number: 0546 Signing time: Fri 26 Dec 2025 14:00:33 +0000 Manifest this update: Fri 26 Dec 2025 14:00:33 +0000 Manifest next update: Sat 27 Dec 2025 14:00:33 +0000 Files and hashes: 1: 4Onxw3ZyCceGdWFdrDz9GypV1To.roa (hash: rLXGfCwokEmOeP6DWTGHar2KAFcpyGY37FcoMJ/rm24=) 2: 6w2llJPr5u5R0U0gFJBhkfjASt8.roa (hash: Et1DM1KW1gT7dKyxGFfIxs38O3+sH74ZansUhbBdzew=) 3: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: gjxi3cuDciu7VbtUAQW2DJZyh/HTLlMdvchkl9HRNvo=) 4: PF9i7XAg4IftQ0nhvDD8LLQN09U.roa (hash: LpN8DuqSJnQx5JIJmOW6tiIYW4UUORtYauIsvCBkUrg=) 5: fNae6M71mV294ZXPAPike0PbceE.roa (hash: yK1vBYE3EmPb37wOJedAwxWWRQFUDScm3ZCALz4wEUs=) 6: nFiPEMhy3ZN7Kzd1c5drtsfC2Ms.roa (hash: K/fi1bP7PVVo/L+gbRw+2aDpJIZXZHh+7f96KzgbyVo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 14:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:0f:8a:dd:51:53:6a:5a:5a:fc:8c:58:c9:eb:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Validity Not Before: Dec 26 14:00:33 2025 GMT Not After : Dec 27 14:00:33 2025 GMT Subject: CN=1c049f043488690c6267f81f931198b33dbe13b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:96:d8:ce:38:95:3b:c8:61:0f:db:41:f7:ea: 32:60:52:5e:3f:1e:93:78:17:72:99:b3:f7:67:ca: d3:71:79:9a:f2:7b:de:91:99:f1:72:3e:16:7a:17: fa:9e:4c:3b:9f:44:d9:bc:7a:65:94:75:79:ba:7d: b7:f7:f4:48:4d:e7:e9:52:0a:5f:70:f4:49:36:7c: 79:a8:8f:5d:d3:fb:3b:1c:8c:25:2b:70:27:da:08: 55:a8:f1:53:d5:1e:5a:3c:ec:e3:c0:96:ac:03:2f: e3:38:7a:5d:36:80:a6:fd:52:d9:18:f9:7a:3d:95: 6c:23:be:38:d4:80:b0:3f:fa:c9:3d:38:1d:ee:a6: 19:95:f5:68:92:c9:7a:9e:0d:dc:06:9b:ef:70:3a: f1:d8:9f:eb:2d:51:7e:9a:2e:21:df:13:2f:60:08: 03:11:d7:12:a5:28:01:0a:4e:85:13:06:b7:51:00: 72:0c:39:d3:24:84:f1:1b:0d:47:a4:7b:fd:da:43: 75:6e:d9:24:8d:6c:9c:ba:70:48:7f:f2:ce:6b:aa: 45:cc:f5:fa:2e:f9:02:0d:0d:32:2e:38:ca:06:ec: 97:c2:3f:8a:28:51:bf:3e:14:f1:1e:6d:03:49:54: c1:db:01:b2:88:84:bc:c6:fe:54:34:75:f2:d6:9b: 58:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:04:9F:04:34:88:69:0C:62:67:F8:1F:93:11:98:B3:3D:BE:13:B4 X509v3 Authority Key Identifier: keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:07:36:61:d7:60:9e:2d:93:c0:e4:f0:1c:c1:69:2c:28:8a: 6a:2d:f9:f4:cd:80:da:cd:ac:e4:85:be:7a:8b:15:31:23:8b: 25:04:46:24:e0:06:b6:d3:ae:d9:19:7c:1f:ee:65:9e:0f:6a: 5d:3f:05:f2:78:a9:6a:11:0b:d4:fe:c6:3f:9a:5b:00:94:b7: c9:fd:80:74:05:ee:3d:cf:cc:2c:27:57:96:db:2b:5d:c9:04: f3:da:c9:46:c2:6c:9b:82:ca:ba:31:eb:f6:b6:96:69:c9:11: 52:d9:13:aa:3c:46:0b:54:17:33:c4:a0:85:1a:7f:35:a7:d4: b4:41:60:da:31:0f:2c:ff:e6:7c:dd:df:0c:b5:2c:11:df:b1: 79:10:08:a9:0c:cb:0c:3f:2d:fa:4e:6c:bd:e8:d4:83:d1:2b: c1:8b:63:83:68:6a:f6:09:ab:f9:c0:8c:70:c0:ed:0b:0d:d2: 13:63:0c:65:c6:19:3b:53:d8:db:55:b5:df:3b:c8:51:9f:d3: 86:fd:e4:6d:5b:c0:4f:93:62:cf:31:6b:88:aa:09:4f:a8:b0: 12:d3:77:fd:28:c5:ff:78:ee:ec:32:ee:66:b7:8b:25:31:f4: aa:be:38:2a:0f:4c:25:31:1a:47:9d:7b:04:64:49:0d:e3:00: 7b:67:ae:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9g+K3VFTalpa/IxYyevOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh NTI2ZDgwHhcNMjUxMjI2MTQwMDMzWhcNMjUxMjI3MTQwMDMzWjAzMTEwLwYDVQQD EygxYzA0OWYwNDM0ODg2OTBjNjI2N2Y4MWY5MzExOThiMzNkYmUxM2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypbYzjiVO8hhD9tB9+oyYFJePx6T eBdymbP3Z8rTcXma8nvekZnxcj4Wehf6nkw7n0TZvHpllHV5un239/RITefpUgpf cPRJNnx5qI9d0/s7HIwlK3An2ghVqPFT1R5aPOzjwJasAy/jOHpdNoCm/VLZGPl6 PZVsI7441ICwP/rJPTgd7qYZlfVoksl6ng3cBpvvcDrx2J/rLVF+mi4h3xMvYAgD EdcSpSgBCk6FEwa3UQByDDnTJITxGw1HpHv92kN1btkkjWycunBIf/LOa6pFzPX6 LvkCDQ0yLjjKBuyXwj+KKFG/PhTxHm0DSVTB2wGyiIS8xv5UNHXy1ptY4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBwEnwQ0iGkMYmf4H5MRmLM9vhO0MB8GA1UdIwQY MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAawc2Yddg ni2TwOTwHMFpLCiKai359M2A2s2s5IW+eosVMSOLJQRGJOAGttOu2Rl8H+5lng9q XT8F8nipahEL1P7GP5pbAJS3yf2AdAXuPc/MLCdXltsrXckE89rJRsJsm4LKujHr 9raWackRUtkTqjxGC1QXM8SghRp/NafUtEFg2jEPLP/mfN3fDLUsEd+xeRAIqQzL DD8t+k5svejUg9ErwYtjg2hq9gmr+cCMcMDtCw3SE2MMZcYZO1PY21W13zvIUZ/T hv3kbVvAT5NizzFriKoJT6iwEtN3/SjF/3ju7DLuZreLJTH0qr44Kg9MJTEaR517 BGRJDeMAe2euyA== -----END CERTIFICATE-----Generated at Fri Dec 26 21:03:38 2025 by rpki-client