This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft File: kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json) Hash identifier: hmLKPOFKcX1E0wdyyrH00/aXUxw7auvEMH6NSJRara8= Subject key identifier: 51:04:AC:B4:85:9F:AB:95:CA:EC:29:DA:D4:3D:95:35:AD:F6:70:88 Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Certificate serial: 019B251A590629453469431565DDF59D28B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft Manifest number: 1295 Signing time: Tue 16 Dec 2025 03:00:42 +0000 Manifest this update: Tue 16 Dec 2025 03:00:42 +0000 Manifest next update: Wed 17 Dec 2025 03:00:42 +0000 Files and hashes: 1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=) 2: 1wei3P__YsLq8D2DZQdx3r5Se8Q.roa (hash: mJ3sfO2t0ZrVqr8Lh/dS5cWV3uJ23FidlrzCBj85Xpg=) 3: FL9fu1OvmoFGfhkDWCYg6qk3FZw.roa (hash: 4qo1m7CfLoe2e1/s3slGLhDBLmvad/IFz+DUbL4c5ro=) 4: QhTNtcmMP2d8JHj8beOVtwBfn-8.roa (hash: pGtJfsZnHgpcNHsy6MUt5rD0YLB/sQz5xjhWg8xCmoY=) 5: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=) 6: bvT0XxpWvjhSrsyJnY-pHBlHicQ.roa (hash: jO921Nm2+NbwqmtR+BTndgCkDUsWuQ/tZNnxs0Ah0nM=) 7: jOvM-KkjMcocARVIZsXXSmhqwTk.roa (hash: /hlDFttzMgmj+4PtUECpeb46avxwmQavKNZsIngAs74=) 8: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: sZvxjKVaTIcRWk4VPF8dYdD3QyMx3Te0UvmVCu8L3zw=) 9: mI6CMDbVFOggenhN7vYK1kqjlUM.roa (hash: Ix338GJteDKUBZwQ6uAO2I9vp00YeBcogG5YXz8IPLE=) 10: qaPYBIHSJO0VtmaPK-yj9xChj44.roa (hash: SCU2ZI+jqejXCddMhNIesbEWUHlrPpsz2jIcNDVRX0Q=) 11: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:1a:59:06:29:45:34:69:43:15:65:dd:f5:9d:28:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530 Validity Not Before: Dec 16 03:00:42 2025 GMT Not After : Dec 17 03:00:42 2025 GMT Subject: CN=5104acb4859fab95caec29dad43d9535adf67088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ba:03:97:fd:d6:8a:e9:c9:36:77:e8:3a:de: 34:de:e7:99:9c:54:d7:70:a5:7b:e3:b3:ce:f1:98: 23:4e:95:79:2d:ba:a3:8f:f8:ac:07:99:52:46:de: e1:fc:9f:0c:87:ca:8d:5e:61:dd:14:d2:c9:09:f2: 80:f8:26:ea:ae:cf:bb:a0:9c:89:d7:23:3e:f3:e0: 09:3d:ab:0c:15:81:8e:e4:54:38:eb:1f:76:2d:b7: c2:f1:59:4f:74:39:7e:97:00:2f:97:63:24:b2:24: b5:6f:5f:d0:0c:f6:37:4d:b2:5d:69:20:66:c4:ee: 58:3e:8a:6a:2e:9c:64:0a:02:6d:b6:b5:aa:db:3a: 23:ed:e1:b0:f6:ae:7b:04:ad:c3:ea:72:28:60:c1: 83:0d:9c:2d:a5:eb:91:2e:ce:0e:b8:88:74:8d:54: d7:57:22:de:e0:e4:98:d2:9e:1d:2d:d1:17:22:d7: a1:76:70:84:c6:0c:e9:e7:97:d5:64:73:32:65:35: d0:f3:24:29:7e:d0:f3:77:02:65:0a:09:9f:12:69: 2c:9a:97:ca:d2:ca:f4:ef:26:ad:33:32:86:f6:c6: 80:1c:0e:bd:05:e3:13:84:a2:87:a5:10:bc:6b:02: 05:8c:5f:25:81:c3:70:32:b3:ce:fd:44:5a:5f:4f: 8a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:04:AC:B4:85:9F:AB:95:CA:EC:29:DA:D4:3D:95:35:AD:F6:70:88 X509v3 Authority Key Identifier: keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:02:e4:6d:73:df:8b:d7:47:e8:91:a6:60:f0:c3:26:0f:93: 51:c0:4a:97:5e:b7:0b:d6:94:0f:45:da:9f:52:d4:89:83:03: 6a:1b:71:3f:0e:79:48:b2:1c:05:71:8f:76:46:cb:89:ad:d2: 30:9e:34:af:c2:54:25:d7:0f:6e:37:e4:5e:a9:97:03:60:48: 48:71:c4:1b:32:8f:39:3f:10:09:a5:57:44:48:e7:ad:bf:ea: c2:d0:38:b7:bc:6c:4d:be:e9:71:01:cb:86:36:11:71:c5:b4: df:d0:cd:ff:5f:c1:c2:cc:36:fc:51:6d:9b:b2:99:61:a7:73: 8f:3c:ba:14:67:95:6b:b8:bd:aa:cc:13:27:9f:9c:0f:d8:a2: e8:aa:c3:dc:1e:4a:3f:b6:d6:8e:85:8f:66:f6:bc:9f:25:69: 78:50:2d:65:01:fe:3a:47:4a:72:48:14:f3:e3:45:5e:d2:3a: db:12:72:fe:3f:dd:46:92:07:4b:b1:14:61:72:a0:11:5a:6b: 54:62:a4:8c:b0:f7:86:96:bc:9c:5d:c9:61:cc:b5:9c:e1:ec: 5b:0d:fa:13:5f:4e:63:ae:ea:03:03:74:c8:5c:c0:77:6f:ff: 3c:cf:2f:8d:1f:75:e5:1d:d6:39:d0:1f:99:66:0a:9e:63:8d: ae:f2:66:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslGlkGKUU0aUMVZd31nSiwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxZDBjNzhjMzA5YTNlOTlkYzlhYjc0ZjJjZGMwNDg0ODU5 ZTc1MzAwHhcNMjUxMjE2MDMwMDQyWhcNMjUxMjE3MDMwMDQyWjAzMTEwLwYDVQQD Eyg1MTA0YWNiNDg1OWZhYjk1Y2FlYzI5ZGFkNDNkOTUzNWFkZjY3MDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLoDl/3WiunJNnfoOt403ueZnFTX cKV747PO8ZgjTpV5Lbqjj/isB5lSRt7h/J8Mh8qNXmHdFNLJCfKA+Cbqrs+7oJyJ 1yM+8+AJPasMFYGO5FQ46x92LbfC8VlPdDl+lwAvl2MksiS1b1/QDPY3TbJdaSBm xO5YPopqLpxkCgJttrWq2zoj7eGw9q57BK3D6nIoYMGDDZwtpeuRLs4OuIh0jVTX VyLe4OSY0p4dLdEXItehdnCExgzp55fVZHMyZTXQ8yQpftDzdwJlCgmfEmksmpfK 0sr07yatMzKG9saAHA69BeMThKKHpRC8awIFjF8lgcNwMrPO/URaX0+KRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFEErLSFn6uVyuwp2tQ9lTWt9nCIMB8GA1UdIwQY MBaAFJHQx4wwmj6Z3Jq3TyzcBISFnnUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEt NDg1MmM4ZmY4YWYyLzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8yOTNhMmYtMzk5Ny00OTdmLTllZjEtNDg1MmM4ZmY4YWYy LzEva2RESGpEQ2FQcG5jbXJkUExOd0VoSVdlZFRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtgLkbXPf i9dH6JGmYPDDJg+TUcBKl163C9aUD0Xan1LUiYMDahtxPw55SLIcBXGPdkbLia3S MJ40r8JUJdcPbjfkXqmXA2BISHHEGzKPOT8QCaVXREjnrb/qwtA4t7xsTb7pcQHL hjYRccW039DN/1/Bwsw2/FFtm7KZYadzjzy6FGeVa7i9qswTJ5+cD9ii6KrD3B5K P7bWjoWPZva8nyVpeFAtZQH+OkdKckgU8+NFXtI62xJy/j/dRpIHS7EUYXKgEVpr VGKkjLD3hpa8nF3JYcy1nOHsWw36E19OY67qAwN0yFzAd2//PM8vjR915R3WOdAf mWYKnmONrvJmMg== -----END CERTIFICATE-----Generated at Tue Dec 16 09:43:52 2025 by rpki-client