This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json) Hash identifier: rhVf+pu6rlNpFD9bQCzm2S8sQUgE+zYgPJ+DXhdIxfk= Subject key identifier: D4:BC:0A:D8:F6:30:66:44:42:B1:B4:55:E3:53:B4:C8:27:5C:15:3B Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd Certificate serial: 019B21E23F5BE2A1D36243CE2F0AC41346B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft Manifest number: 0B6E Signing time: Mon 15 Dec 2025 12:00:33 +0000 Manifest this update: Mon 15 Dec 2025 12:00:33 +0000 Manifest next update: Tue 16 Dec 2025 12:00:33 +0000 Files and hashes: 1: REM4mLJG7EnsBgBtsv162D0wKhg.roa (hash: lvlcTJIeXHpqeTqGfZTwiMwS8+bWAY5YDqELcR5epC0=) 2: Tkqht9ZvM7aeuWPx5RB29sIJQsY.roa (hash: GjW60rpkATBwTZcA2wdYPAVMSlJOCTBR0jsl1OrgYgE=) 3: XddNSlbeSdL2BDOBSBtXKwmbrLQ.roa (hash: YTwv2DMMu/UpDiaZkqxeVtYaDul2+Oka8KEh6z36NkA=) 4: b10-uyzSDsE84X1NxkfqXsdCqjM.roa (hash: 656/1JM/Gtv27/XvapYOtDJ81ebQFKIEF9n9ARvTwoo=) 5: bXzPu6L2HXchD9ZujQmLXPM_bDM.roa (hash: KqR406WMI/nRws1aNrGcGP+z2vKLl1H8bxnYaFt2+LA=) 6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: gYrG7XUqWUBSdHm4gqGpOp4q6FTfM3dA/Y4qAR4+i8U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 12:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:e2:3f:5b:e2:a1:d3:62:43:ce:2f:0a:c4:13:46:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd Validity Not Before: Dec 15 12:00:33 2025 GMT Not After : Dec 16 12:00:33 2025 GMT Subject: CN=d4bc0ad8f630664442b1b455e353b4c8275c153b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9e:40:00:26:ff:f9:ae:2e:cc:91:a2:1c:45: 33:96:6e:8f:c1:15:38:34:f6:2b:dd:24:33:bb:e0: 47:c7:f7:9e:f0:ec:c8:1a:93:df:83:3a:9c:df:d7: b0:89:49:26:e4:20:d3:17:da:1f:6c:5c:ad:b1:44: 3f:c0:59:a0:b8:90:c1:89:b0:d3:4f:df:37:d4:af: e7:2d:56:3a:91:b6:8e:4e:d3:56:1c:5e:55:70:68: be:c8:97:50:ca:d9:dd:27:2a:fb:04:96:15:f5:ff: a2:77:dd:ed:e3:44:3d:ed:76:36:c0:bc:cb:a6:12: b6:f4:30:d3:bd:da:b9:c5:26:69:df:4b:a1:ac:27: 99:52:aa:aa:8c:3c:a1:87:99:18:d3:6f:23:09:40: 24:24:88:91:96:1c:ed:b3:91:3d:94:89:c3:f5:80: c9:7d:c5:65:da:98:cb:b8:c9:6c:82:77:19:f5:57: ea:c0:ae:47:60:34:5b:a1:ea:19:42:7c:37:2f:07: 07:5d:12:be:52:af:c1:06:26:df:76:09:ac:d5:10: 3a:e9:1c:98:4f:42:57:5e:c1:a5:83:3d:6f:51:0f: 2d:25:16:2a:32:ae:0a:96:ad:a0:df:90:64:fe:fc: 4f:0d:40:b8:cd:2b:05:b2:eb:b5:ab:e8:5c:25:ea: 28:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:BC:0A:D8:F6:30:66:44:42:B1:B4:55:E3:53:B4:C8:27:5C:15:3B X509v3 Authority Key Identifier: keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:46:2b:c3:57:58:8f:19:47:d6:e2:28:4b:b5:66:f4:d2:24: 41:d4:79:84:8f:cf:05:a0:3b:56:57:93:86:ba:d9:34:79:69: 74:69:1b:9c:68:64:95:49:72:fe:0c:31:d8:2a:02:ba:c2:d2: 31:a1:ef:c4:f2:40:46:67:b4:08:3d:03:a9:31:05:a1:09:db: ee:0f:f3:c9:27:74:45:ec:97:65:ad:e2:6b:86:bc:d5:3b:b5: c0:31:27:88:f2:cf:2e:39:2f:8e:54:fe:ca:60:32:f1:03:7f: eb:f6:2e:94:04:99:1d:01:c5:ac:42:01:a2:7d:ed:2b:7d:49: c7:d2:0c:78:17:9a:4b:18:90:db:6a:d5:75:7b:1d:43:f7:f5: 95:98:ee:81:9c:b8:d3:8a:ad:55:df:c5:ee:67:ba:7b:a0:64: cb:f4:84:2a:e4:a7:9a:12:ec:b8:96:11:db:d3:2d:f4:ca:cf: 87:60:ae:e8:25:f8:fa:81:1d:b2:e3:98:88:b4:4b:04:42:6a: 0f:57:6e:48:b6:28:4c:dc:fb:4d:3e:51:64:9b:ef:43:7c:ad: 6d:67:ca:dc:04:f6:5c:3a:de:ab:06:80:c3:64:a4:1f:6f:ca: e0:c3:ec:ac:76:06:2d:59:7e:dc:32:85:64:c4:c2:db:5a:05: 2f:45:87:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsh4j9b4qHTYkPOLwrEE0azMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMzgxYmM5NjlkZTZhZGMzZDFkZGMwZWI4OWJkZWVhY2U5 ODA1Y2QwHhcNMjUxMjE1MTIwMDMzWhcNMjUxMjE2MTIwMDMzWjAzMTEwLwYDVQQD EyhkNGJjMGFkOGY2MzA2NjQ0NDJiMWI0NTVlMzUzYjRjODI3NWMxNTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm55AACb/+a4uzJGiHEUzlm6PwRU4 NPYr3SQzu+BHx/ee8OzIGpPfgzqc39ewiUkm5CDTF9ofbFytsUQ/wFmguJDBibDT T9831K/nLVY6kbaOTtNWHF5VcGi+yJdQytndJyr7BJYV9f+id93t40Q97XY2wLzL phK29DDTvdq5xSZp30uhrCeZUqqqjDyhh5kY028jCUAkJIiRlhzts5E9lInD9YDJ fcVl2pjLuMlsgncZ9VfqwK5HYDRboeoZQnw3LwcHXRK+Uq/BBibfdgms1RA66RyY T0JXXsGlgz1vUQ8tJRYqMq4Klq2g35Bk/vxPDUC4zSsFsuu1q+hcJeoofQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNS8Ctj2MGZEQrG0VeNTtMgnXBU7MB8GA1UdIwQY MBaAFJE4G8lp3mrcPR3cDrib3urOmAXNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMt MjU2ZGE5NWQxMzQ1LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMtMjU2ZGE5NWQxMzQ1 LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW0Yrw1dY jxlH1uIoS7Vm9NIkQdR5hI/PBaA7VleThrrZNHlpdGkbnGhklUly/gwx2CoCusLS MaHvxPJARme0CD0DqTEFoQnb7g/zySd0ReyXZa3ia4a81Tu1wDEniPLPLjkvjlT+ ymAy8QN/6/YulASZHQHFrEIBon3tK31Jx9IMeBeaSxiQ22rVdXsdQ/f1lZjugZy4 04qtVd/F7me6e6Bky/SEKuSnmhLsuJYR29Mt9MrPh2Cu6CX4+oEdsuOYiLRLBEJq D1duSLYoTNz7TT5RZJvvQ3ytbWfK3AT2XDreqwaAw2SkH2/K4MPsrHYGLVl+3DKF ZMTC21oFL0WHrA== -----END CERTIFICATE-----Generated at Mon Dec 15 19:36:56 2025 by rpki-client