This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json) Hash identifier: 5MyPSf0G0W650ZbTrU8D9MH5E+cVufaTNYpLS0FTD/w= Subject key identifier: 65:43:31:16:61:CC:A0:75:FF:E6:E2:F3:85:3F:DC:57:7D:BA:F0:96 Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Certificate serial: 019B5A51C3632D3D58B20BF587F9AF62567A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft Manifest number: 070D Signing time: Fri 26 Dec 2025 11:01:06 +0000 Manifest this update: Fri 26 Dec 2025 11:01:06 +0000 Manifest next update: Sat 27 Dec 2025 11:01:06 +0000 Files and hashes: 1: 7maLWxU6IkDM2FmAqNdy7l2m8vA.roa (hash: hXSJo4W1y0TIt55yVm6o0sEdz9TFsi3M02ghZ52Dqcs=) 2: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: NjPEdlzpLo2V3I49d0x50zOa1GI0gdB1jtKW7JYb/dk=) 3: qf1_Wz1js3xh5T6fOQssL748W8Y.roa (hash: LIiJDjtWI/OSM/oOUeypQGPeFD9dNyCQffUSuaGgb/s=) 4: uhoFt9UL3_6UT-K7hdXHNLEPe6w.roa (hash: ABkAtvRZwRy7ibQa3d8iTzWCloU1O/vDLYDZwO5edyc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:c3:63:2d:3d:58:b2:0b:f5:87:f9:af:62:56:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08 Validity Not Before: Dec 26 11:01:06 2025 GMT Not After : Dec 27 11:01:06 2025 GMT Subject: CN=6543311661cca075ffe6e2f3853fdc577dbaf096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:fb:ac:d8:ba:10:21:f4:28:26:cc:b1:62:2a: 0f:5a:e3:15:30:dc:a8:40:f3:b7:4d:69:19:fa:f5: 5e:3c:ee:d7:76:3d:99:db:96:c0:ec:23:cc:db:5a: 22:e0:88:d9:d9:51:dd:fc:83:18:bd:d8:02:4c:c3: f5:9b:ae:eb:af:d6:ab:1d:ac:a9:56:e7:ee:1e:e7: f5:9a:25:2d:3f:07:8b:d3:ce:e6:ca:ad:2d:4d:6b: ad:10:c7:49:44:47:80:0d:24:0c:2a:04:b3:16:2d: 56:d9:62:25:6b:cb:92:0e:4a:ec:18:c2:a9:b4:d8: 01:eb:6b:6a:f5:f7:e4:cb:d6:9c:96:25:04:c7:89: 51:09:f9:bb:23:ba:ef:47:af:60:42:93:b0:e7:c7: 69:1e:64:e4:c8:66:e4:3c:9c:db:d5:c0:06:82:d2: c5:98:13:ab:31:27:fe:9d:b7:2d:dd:74:e8:57:e6: 5b:c5:c7:02:0e:22:f6:46:86:36:05:4a:82:d0:53: de:d6:1f:06:8c:8d:e3:21:51:d2:25:4c:90:2a:a4: 32:8e:ea:05:37:ea:0a:d3:de:5c:b0:91:42:c6:d9: 55:78:7a:86:df:ac:52:79:e8:9a:61:73:6b:74:40: 1f:7a:86:dd:9f:c0:21:6b:49:1b:6c:47:55:44:1b: 71:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:43:31:16:61:CC:A0:75:FF:E6:E2:F3:85:3F:DC:57:7D:BA:F0:96 X509v3 Authority Key Identifier: keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:56:f7:eb:91:a1:98:a5:f2:10:db:3f:f5:38:ab:e1:3d:2f: c3:2f:b1:67:d2:96:45:a9:6f:9e:27:4b:b2:ce:5f:91:5b:64: 98:1f:16:86:dd:fa:42:e5:3c:7a:19:53:7d:f1:e8:a4:4a:fa: ba:2a:90:99:8e:18:ed:18:60:0f:9d:6e:da:bf:3a:c7:03:26: 42:32:8b:4c:8b:36:be:5a:65:1c:a4:29:40:dd:25:0a:3f:9e: 73:20:87:21:af:d1:d6:85:08:b5:da:f9:d0:2c:1e:f5:8e:51: 11:59:bf:7b:aa:ad:43:04:3a:aa:30:04:f9:9e:f0:be:11:dd: 14:ea:00:92:6d:ed:3d:44:44:18:ad:db:45:55:9a:5f:1c:cd: 93:e2:d5:b8:5d:76:7e:aa:dc:3f:86:22:4f:4c:b3:a3:bd:67: bd:df:7c:0f:22:4a:3b:fd:d6:04:8a:3a:1d:51:4b:99:c5:6a: 6e:d5:19:4f:d5:7d:2a:f3:e3:2a:27:3d:7d:0e:7f:c9:e0:21: b6:39:91:73:40:2b:14:14:56:14:bf:f2:75:c6:4a:1b:77:45: 38:4f:c3:a4:0e:df:2b:83:6f:2b:fa:da:78:59:49:bf:72:b7: a5:dc:c4:bd:7d:8e:37:4b:06:71:26:6c:4e:dc:83:5c:95:f3: d7:54:fc:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUcNjLT1Ysgv1h/mvYlZ6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0 M2VmMDgwHhcNMjUxMjI2MTEwMTA2WhcNMjUxMjI3MTEwMTA2WjAzMTEwLwYDVQQD Eyg2NTQzMzExNjYxY2NhMDc1ZmZlNmUyZjM4NTNmZGM1NzdkYmFmMDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPus2LoQIfQoJsyxYioPWuMVMNyo QPO3TWkZ+vVePO7Xdj2Z25bA7CPM21oi4IjZ2VHd/IMYvdgCTMP1m67rr9arHayp VufuHuf1miUtPweL087myq0tTWutEMdJREeADSQMKgSzFi1W2WIla8uSDkrsGMKp tNgB62tq9ffky9acliUEx4lRCfm7I7rvR69gQpOw58dpHmTkyGbkPJzb1cAGgtLF mBOrMSf+nbct3XToV+ZbxccCDiL2RoY2BUqC0FPe1h8GjI3jIVHSJUyQKqQyjuoF N+oK095csJFCxtlVeHqG36xSeeiaYXNrdEAfeobdn8Aha0kbbEdVRBtx3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGVDMRZhzKB1/+bi84U/3Fd9uvCWMB8GA1UdIwQY MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFb365Gh mKXyENs/9Tir4T0vwy+xZ9KWRalvnidLss5fkVtkmB8Wht36QuU8ehlTffHopEr6 uiqQmY4Y7RhgD51u2r86xwMmQjKLTIs2vlplHKQpQN0lCj+ecyCHIa/R1oUItdr5 0Cwe9Y5REVm/e6qtQwQ6qjAE+Z7wvhHdFOoAkm3tPUREGK3bRVWaXxzNk+LVuF12 fqrcP4YiT0yzo71nvd98DyJKO/3WBIo6HVFLmcVqbtUZT9V9KvPjKic9fQ5/yeAh tjmRc0ArFBRWFL/ydcZKG3dFOE/DpA7fK4NvK/raeFlJv3K3pdzEvX2ON0sGcSZs TtyDXJXz11T81g== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:26 2025 by rpki-client