This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json) Hash identifier: CsLFx13bWnX6B91q6BZyDC2tg1FD93XJe+ZkTz2afvU= Subject key identifier: FE:70:74:4A:09:8B:CB:F4:4D:EB:0F:27:49:17:45:A3:45:A0:B0:C5 Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c Certificate serial: 019B1502FFEB88D585D6725A2E8E554E7A34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft Manifest number: 090D Signing time: Sat 13 Dec 2025 00:01:16 +0000 Manifest this update: Sat 13 Dec 2025 00:01:16 +0000 Manifest next update: Sun 14 Dec 2025 00:01:16 +0000 Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: L/ZUb1YuaO3va6MOnl8CYeSvT55BMPiSo635WQL76sc=) 2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 00:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:15:02:ff:eb:88:d5:85:d6:72:5a:2e:8e:55:4e:7a:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c Validity Not Before: Dec 13 00:01:16 2025 GMT Not After : Dec 14 00:01:16 2025 GMT Subject: CN=fe70744a098bcbf44deb0f27491745a345a0b0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d4:21:24:45:e9:3e:a0:e3:cb:bd:c0:df:c1: ef:ed:34:b3:54:f1:1b:23:83:d7:ca:04:13:0d:b2: 72:1b:0e:c0:f1:42:d2:c2:49:d1:8e:fb:73:9f:a1: 5d:09:ef:f5:80:c3:85:6a:37:f8:87:ed:b3:20:b4: fa:81:12:e5:00:93:18:4c:7e:c2:d1:a3:9e:ac:6e: 04:72:74:87:d4:5d:02:a7:e8:45:9b:0e:da:27:7d: cd:92:33:f3:fd:78:64:73:0e:2b:a8:6b:00:cf:1c: 52:07:87:c1:65:80:a1:3c:c3:a6:4e:93:c4:7e:3b: 3f:ea:f3:42:20:2d:71:d3:d7:6e:11:6b:8a:66:a3: d3:82:a0:22:cf:22:d8:33:94:4b:e6:c3:9f:c7:54: 01:b5:a9:19:51:fc:5a:84:59:f4:ac:30:9d:66:59: 4b:b3:62:9d:c0:84:19:1e:62:b8:34:3f:bf:48:d5: 7d:65:f7:6e:e4:3f:76:d7:53:9a:03:e7:53:d5:5d: 89:09:24:06:5f:a4:04:cc:57:ed:c7:03:a7:d3:69: 1d:37:60:73:8d:66:ae:75:e7:8b:19:f1:47:85:e3: 56:e7:04:dd:cd:7e:18:5e:ca:c6:05:85:ff:51:3d: 9b:df:23:c8:ff:09:95:dc:50:50:7a:b7:ab:1a:14: 9a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:70:74:4A:09:8B:CB:F4:4D:EB:0F:27:49:17:45:A3:45:A0:B0:C5 X509v3 Authority Key Identifier: keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:6b:92:c8:ea:b3:fb:c9:35:cf:8a:5e:45:18:9b:f6:15:7b: ad:71:7b:5a:9c:39:d5:7f:0f:d9:9f:b7:ac:99:71:da:3e:ff: 9d:52:ba:34:79:ce:9c:f8:38:bd:42:38:6e:46:bc:5b:49:f7: 24:c2:41:6e:d0:d3:a6:71:30:36:54:8b:d3:7b:87:28:67:65: 3c:45:c1:2c:37:f2:62:a7:a2:a6:bf:9b:2b:a6:07:d0:6d:a2: 06:f2:07:e3:75:14:4e:43:30:bc:02:72:95:1f:bc:d3:29:93: 01:dc:57:30:54:5c:ef:f2:e5:d3:20:39:ce:9e:59:cf:7c:0a: af:05:8b:bf:bb:bc:0a:9a:e7:b9:35:fd:02:ed:b4:6b:bd:1c: 67:35:c7:80:b4:4b:14:56:f0:fb:75:79:c1:2d:b4:d7:64:a7: c9:ec:47:31:8a:28:9e:0a:0f:f8:42:fb:43:25:ef:66:fd:e6: 6f:3f:91:73:88:b2:b6:f8:ef:4f:6d:e3:8b:2d:bb:e7:91:7a: 14:81:8e:47:d4:70:18:6c:38:5a:c6:ef:76:86:70:b9:1f:b7: a1:ee:b1:58:66:8a:47:36:88:3d:d8:c1:2a:ff:c7:93:ec:ae: 3c:91:6c:71:fa:dd:fb:18:fc:e9:4c:61:bf:48:7d:c1:ad:89: a8:22:58:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsVAv/riNWF1nJaLo5VTno0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMDM2MjJiM2M1NGU0NWY0MTY2ZjMwMTc5OGY4NmRiYmE0 NzE4MGMwHhcNMjUxMjEzMDAwMTE2WhcNMjUxMjE0MDAwMTE2WjAzMTEwLwYDVQQD EyhmZTcwNzQ0YTA5OGJjYmY0NGRlYjBmMjc0OTE3NDVhMzQ1YTBiMGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntQhJEXpPqDjy73A38Hv7TSzVPEb I4PXygQTDbJyGw7A8ULSwknRjvtzn6FdCe/1gMOFajf4h+2zILT6gRLlAJMYTH7C 0aOerG4EcnSH1F0Cp+hFmw7aJ33NkjPz/Xhkcw4rqGsAzxxSB4fBZYChPMOmTpPE fjs/6vNCIC1x09duEWuKZqPTgqAizyLYM5RL5sOfx1QBtakZUfxahFn0rDCdZllL s2KdwIQZHmK4ND+/SNV9Zfdu5D9211OaA+dT1V2JCSQGX6QEzFftxwOn02kdN2Bz jWaudeeLGfFHheNW5wTdzX4YXsrGBYX/UT2b3yPI/wmV3FBQererGhSaZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5wdEoJi8v0TesPJ0kXRaNFoLDFMB8GA1UdIwQY MBaAFJMDYis8VORfQWbzAXmPhtu6RxgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjkt OTUwYzdlNzMyNDVjLzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjktOTUwYzdlNzMyNDVj LzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV2uSyOqz +8k1z4peRRib9hV7rXF7Wpw51X8P2Z+3rJlx2j7/nVK6NHnOnPg4vUI4bka8W0n3 JMJBbtDTpnEwNlSL03uHKGdlPEXBLDfyYqeipr+bK6YH0G2iBvIH43UUTkMwvAJy lR+80ymTAdxXMFRc7/Ll0yA5zp5Zz3wKrwWLv7u8CprnuTX9Au20a70cZzXHgLRL FFbw+3V5wS2012SnyexHMYoongoP+EL7QyXvZv3mbz+Rc4iytvjvT23jiy2755F6 FIGOR9RwGGw4WsbvdoZwuR+3oe6xWGaKRzaIPdjBKv/Hk+yuPJFscfrd+xj86Uxh v0h9wa2JqCJYmQ== -----END CERTIFICATE-----Generated at Sat Dec 13 04:11:06 2025 by rpki-client