This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json) Hash identifier: z99fzaQg0lovD/cl0XK9HQfqivtfp1oi7jCdM8R8o54= Subject key identifier: 18:EB:2E:D8:7D:EF:1A:62:F1:80:F3:F9:81:27:C8:47:E9:44:21:00 Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Certificate serial: 019B2552164684E00E94825ABCD1595443D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft Manifest number: 177C Signing time: Tue 16 Dec 2025 04:01:35 +0000 Manifest this update: Tue 16 Dec 2025 04:01:35 +0000 Manifest next update: Wed 17 Dec 2025 04:01:35 +0000 Files and hashes: 1: K-YJm4wOeLJG8aJ7KI41BLWAM-4.roa (hash: +ltmXAJQfzovJoKfgWj4x9gqmeiriedONmDgSBwWFc4=) 2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: 1Z+ZReOgs44zspkDApnwnR9PilXLj67LHhV/G2/4hJ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 04:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:52:16:46:84:e0:0e:94:82:5a:bc:d1:59:54:43:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Validity Not Before: Dec 16 04:01:35 2025 GMT Not After : Dec 17 04:01:35 2025 GMT Subject: CN=18eb2ed87def1a62f180f3f98127c847e9442100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a3:0a:2d:94:83:8e:c0:e1:b1:80:d1:34:fb: 18:02:dc:1f:af:7b:84:8f:fa:9c:ea:ff:5a:ba:d7: 53:de:ab:ea:c7:33:8f:64:0f:c4:35:47:45:b1:77: c8:54:e0:b6:e1:38:2f:64:ed:7c:78:0a:d1:de:a5: a4:5a:2c:36:11:3e:ef:b5:76:38:2f:1f:fb:44:18: c0:97:58:0e:92:f4:87:d4:87:3a:2b:22:bb:7f:0c: a2:41:93:67:88:67:f4:05:c9:8d:cb:e6:5b:5a:1f: 1b:c3:b2:86:fb:80:16:db:72:60:74:20:da:f8:b2: 2a:f6:36:bd:a4:99:95:67:59:fb:40:7c:1d:89:87: 79:f3:fd:f8:37:93:d7:d0:11:b2:81:ed:23:de:66: 90:89:c0:0c:d5:13:43:2f:2f:56:9a:2e:73:ff:78: b6:f9:98:b9:b7:07:c7:16:0a:63:fc:c6:db:de:1c: 41:6a:e4:05:64:0b:56:81:a6:5e:e0:b3:2d:cb:c4: 65:c4:5b:2d:07:c7:8e:0a:5b:79:ad:85:77:a2:e1: 62:21:15:05:29:22:38:b9:61:c9:d3:be:20:6d:58: a9:df:9c:84:13:26:60:89:33:f7:f0:70:a2:8f:04: 03:24:b1:01:e2:19:89:20:39:70:e5:b1:35:d5:db: a0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:EB:2E:D8:7D:EF:1A:62:F1:80:F3:F9:81:27:C8:47:E9:44:21:00 X509v3 Authority Key Identifier: keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:eb:c1:c6:33:e4:16:39:c5:e4:6c:40:20:d7:99:5e:93:3b: 9b:ff:65:f2:7c:8e:57:cb:f9:0f:65:ff:06:d1:78:c2:80:97: 05:85:04:25:b0:ce:99:16:98:af:26:b6:47:3d:b2:bf:fd:f4: 47:37:3f:88:6e:97:9e:96:4d:12:60:4b:16:9e:46:87:e1:70: 0b:d9:69:51:5c:9d:62:2e:b6:9f:e0:e1:e9:e5:d3:57:2e:2f: b0:5a:cb:5c:b4:89:bd:b5:2f:e2:6f:44:25:0d:43:3a:5f:0a: ec:69:50:8d:ed:fd:aa:84:3b:ae:fc:08:a2:8b:6e:c1:f6:c9: 00:54:5d:41:94:88:80:cf:35:cf:f0:e3:88:d5:e2:22:f3:5c: a0:f6:82:0a:00:ab:88:6e:ef:cf:d3:2c:36:d3:30:7d:bc:7d: 10:05:93:85:57:87:bf:c3:c7:d3:9b:be:5d:ad:be:8e:db:ea: 11:d4:6c:92:4c:aa:32:8e:79:9c:e4:31:0e:02:1e:74:75:4b: 94:ed:d5:f0:22:8c:8b:ed:a6:73:e3:12:af:cb:f0:ef:4e:35: 1e:2f:5b:1f:ab:27:8c:5d:0c:5d:f5:4b:59:23:1a:4f:7c:d8: 14:57:84:81:9e:9c:eb:00:3a:70:de:a1:5c:9d:b2:6e:d4:2e: b2:83:d7:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUhZGhOAOlIJavNFZVEPQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk Yzc0NzYwHhcNMjUxMjE2MDQwMTM1WhcNMjUxMjE3MDQwMTM1WjAzMTEwLwYDVQQD EygxOGViMmVkODdkZWYxYTYyZjE4MGYzZjk4MTI3Yzg0N2U5NDQyMTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6MKLZSDjsDhsYDRNPsYAtwfr3uE j/qc6v9autdT3qvqxzOPZA/ENUdFsXfIVOC24TgvZO18eArR3qWkWiw2ET7vtXY4 Lx/7RBjAl1gOkvSH1Ic6KyK7fwyiQZNniGf0BcmNy+ZbWh8bw7KG+4AW23JgdCDa +LIq9ja9pJmVZ1n7QHwdiYd58/34N5PX0BGyge0j3maQicAM1RNDLy9Wmi5z/3i2 +Zi5twfHFgpj/Mbb3hxBauQFZAtWgaZe4LMty8RlxFstB8eOClt5rYV3ouFiIRUF KSI4uWHJ074gbVip35yEEyZgiTP38HCijwQDJLEB4hmJIDlw5bE11dugyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjrLth97xpi8YDz+YEnyEfpRCEAMB8GA1UdIwQY MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt ZGJmYWMwMGZiMGVmLzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG+vBxjPk FjnF5GxAINeZXpM7m/9l8nyOV8v5D2X/BtF4woCXBYUEJbDOmRaYrya2Rz2yv/30 Rzc/iG6XnpZNEmBLFp5Gh+FwC9lpUVydYi62n+Dh6eXTVy4vsFrLXLSJvbUv4m9E JQ1DOl8K7GlQje39qoQ7rvwIootuwfbJAFRdQZSIgM81z/DjiNXiIvNcoPaCCgCr iG7vz9MsNtMwfbx9EAWThVeHv8PH05u+Xa2+jtvqEdRskkyqMo55nOQxDgIedHVL lO3V8CKMi+2mc+MSr8vw7041Hi9bH6snjF0MXfVLWSMaT3zYFFeEgZ6c6wA6cN6h XJ2ybtQusoPXpg== -----END CERTIFICATE-----Generated at Tue Dec 16 14:11:35 2025 by rpki-client