This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json) Hash identifier: wzE8TtUlF6FnSbu+mZJ+3/Bxlhan/ASJbfMkBixc1RY= Subject key identifier: 92:F7:F2:2E:94:D2:F7:15:29:74:2E:53:DE:C6:66:03:89:34:8F:D5 Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44 Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444 Certificate serial: 019B2EF9E2AA27893E5D150F853FD79FC32B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft Manifest number: 178C Signing time: Thu 18 Dec 2025 01:01:26 +0000 Manifest this update: Thu 18 Dec 2025 01:01:26 +0000 Manifest next update: Fri 19 Dec 2025 01:01:26 +0000 Files and hashes: 1: 1-w_Sx8LRPBvLvkJLZOQlFfGluOo.roa (hash: jW6TH6eaQc46mg+HMpMqf3iTbPrehVKAIBq6ffyUgyg=) 2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: Ra15WAmu0rU466VbRzbwfWUE/urv4uyINg9bhrRoaeo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:e2:aa:27:89:3e:5d:15:0f:85:3f:d7:9f:c3:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444 Validity Not Before: Dec 18 01:01:26 2025 GMT Not After : Dec 19 01:01:26 2025 GMT Subject: CN=92f7f22e94d2f71529742e53dec6660389348fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4d:ca:12:91:70:a3:d0:05:8b:35:86:a1:33: f6:70:c6:47:2e:19:9c:ca:4f:7b:23:89:20:08:75: 3b:f2:50:4a:eb:ad:4a:cf:9a:43:09:c7:03:9a:6c: 3d:69:11:2b:3b:f6:b0:b4:85:06:86:91:cd:fd:87: f6:bf:8c:39:dc:e2:ed:15:a3:f0:3c:c8:67:fd:9b: b8:73:41:bf:94:dc:6b:fa:9e:66:2a:20:93:8c:7c: e8:bf:b2:ec:b4:5f:8b:19:e3:13:f9:bf:a8:8b:e8: 3c:56:24:45:35:45:65:4a:02:ae:b6:eb:ca:e8:be: e6:8e:a9:fa:a3:10:4f:58:a5:7b:24:82:76:8a:d5: b9:12:0f:2d:00:4b:4b:8a:9d:38:d1:2d:3b:be:1d: 87:69:0f:36:a3:d8:f8:6f:3e:3a:2e:bb:96:ed:8d: bb:26:dc:b9:4e:27:6e:43:b6:9f:ae:68:1e:43:ea: ec:a3:f4:e7:3c:71:02:9a:65:8e:d3:72:19:56:ec: 6a:0b:66:57:b0:40:95:71:da:7f:8b:61:99:4b:95: e5:11:9f:14:cb:e8:a6:cc:86:2a:bd:eb:d2:35:0e: 2c:e0:b0:28:f0:c3:0e:64:7a:5b:cc:ac:ce:ec:a0: 02:9f:33:b2:8b:da:8f:16:bd:f3:47:53:a0:21:c9: 12:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F7:F2:2E:94:D2:F7:15:29:74:2E:53:DE:C6:66:03:89:34:8F:D5 X509v3 Authority Key Identifier: keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:a3:96:c0:35:96:6b:6d:88:98:cb:c1:2e:9a:28:95:6c:a9: 2c:0e:ea:01:42:3f:92:c9:71:db:0b:a8:d4:75:a8:3c:f0:27: 4a:ac:4e:3f:b4:0a:a5:e8:21:d4:a5:db:4c:f1:7d:80:72:95: ff:c0:39:71:93:12:52:f9:e1:db:20:3a:33:ed:38:20:2f:2f: cf:25:66:a1:88:2b:b0:ea:25:1d:7c:80:3e:58:ed:00:56:77: e7:07:e5:1f:8a:ff:7e:cf:12:ad:d7:59:e9:5f:46:43:4e:01: 9a:3d:d9:7e:f0:0b:7d:77:19:77:c4:bc:b2:6f:78:59:72:2e: 80:6a:f3:f2:aa:9a:cb:41:60:15:92:b0:86:76:f5:e2:da:66: e8:33:5b:86:58:55:03:26:a1:01:46:d3:d2:5a:a8:80:2b:e8: c1:57:c6:0e:e4:d9:32:d4:5b:b6:3a:a7:54:60:ac:54:61:31: 82:09:cb:87:78:37:81:18:b4:2f:53:c2:80:0a:5b:4e:62:5a: 1f:68:a4:14:84:68:c7:d8:cb:57:c7:18:de:48:6e:fc:34:31: 77:52:65:53:cb:97:36:6a:4c:dc:d4:7e:d6:6f:0b:ab:f0:fe: d7:f7:93:6c:2d:dc:11:bf:61:06:63:fe:68:80:e1:d3:52:b4: 85:5e:88:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+eKqJ4k+XRUPhT/Xn8MrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYzFjODViZjVjNTM0NzFhOTk3ZWY5ZmE5OTlkMGMxNmJl ODU0NDQwHhcNMjUxMjE4MDEwMTI2WhcNMjUxMjE5MDEwMTI2WjAzMTEwLwYDVQQD Eyg5MmY3ZjIyZTk0ZDJmNzE1Mjk3NDJlNTNkZWM2NjYwMzg5MzQ4ZmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA103KEpFwo9AFizWGoTP2cMZHLhmc yk97I4kgCHU78lBK661Kz5pDCccDmmw9aRErO/awtIUGhpHN/Yf2v4w53OLtFaPw PMhn/Zu4c0G/lNxr+p5mKiCTjHzov7LstF+LGeMT+b+oi+g8ViRFNUVlSgKutuvK 6L7mjqn6oxBPWKV7JIJ2itW5Eg8tAEtLip040S07vh2HaQ82o9j4bz46LruW7Y27 Jty5TiduQ7afrmgeQ+rso/TnPHECmmWO03IZVuxqC2ZXsECVcdp/i2GZS5XlEZ8U y+imzIYqvevSNQ4s4LAo8MMOZHpbzKzO7KACnzOyi9qPFr3zR1OgIckSOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJL38i6U0vcVKXQuU97GZgOJNI/VMB8GA1UdIwQY MBaAFJHByFv1xTRxqZfvn6mZ0MFr6FREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2Et NDUxNDM3NGU2ZmZhLzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2EtNDUxNDM3NGU2ZmZh LzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQqOWwDWW a22ImMvBLpoolWypLA7qAUI/kslx2wuo1HWoPPAnSqxOP7QKpegh1KXbTPF9gHKV /8A5cZMSUvnh2yA6M+04IC8vzyVmoYgrsOolHXyAPljtAFZ35wflH4r/fs8SrddZ 6V9GQ04Bmj3ZfvALfXcZd8S8sm94WXIugGrz8qqay0FgFZKwhnb14tpm6DNbhlhV AyahAUbT0lqogCvowVfGDuTZMtRbtjqnVGCsVGExggnLh3g3gRi0L1PCgApbTmJa H2ikFIRox9jLV8cY3khu/DQxd1JlU8uXNmpM3NR+1m8Lq/D+1/eTbC3cEb9hBmP+ aIDh01K0hV6Iqg== -----END CERTIFICATE-----Generated at Thu Dec 18 03:07:24 2025 by rpki-client