This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json) Hash identifier: qUuPpcK2vupq12GkPgYqB6QwHAnV1j2/tLF6Vbj45I0= Subject key identifier: 04:47:3C:60:55:4B:3B:DB:61:4A:A5:30:66:64:5C:08:5F:64:0E:65 Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c Certificate serial: 019B435BF3962731027DABA5F75F70858E27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft Manifest number: 0925 Signing time: Mon 22 Dec 2025 00:00:57 +0000 Manifest this update: Mon 22 Dec 2025 00:00:57 +0000 Manifest next update: Tue 23 Dec 2025 00:00:57 +0000 Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: cmrv9mxgaF35+2g5P0SqBQh1YammFKzMD0x+6nzrFvA=) 2: v_98mZARWXkG0c7MrFhUfz1ZnSk.roa (hash: CoGKVro1tI7BKUl2OeE8GJuS6b7gkbb5BZSSNbzRr+I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:5b:f3:96:27:31:02:7d:ab:a5:f7:5f:70:85:8e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c Validity Not Before: Dec 22 00:00:57 2025 GMT Not After : Dec 23 00:00:57 2025 GMT Subject: CN=04473c60554b3bdb614aa53066645c085f640e65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:03:43:ce:15:39:f4:40:a9:ea:9b:f2:ae:a5: f3:43:02:ee:71:ef:ec:39:c3:d9:db:8d:9d:80:3d: 1a:49:6b:24:3d:1d:ae:4c:bc:16:9b:27:9c:4a:63: 9d:e5:a5:9c:4c:e0:d8:ac:d2:44:89:29:32:5e:7d: 97:9d:53:e6:e8:e1:8c:aa:2c:ac:5b:ff:c4:9a:f3: 56:05:1a:b2:0c:2b:c2:d6:e1:7f:2b:25:36:36:53: 39:72:66:ca:5d:79:b0:94:5e:cc:e1:a7:a2:67:15: 87:62:61:6d:06:5d:a9:82:74:8e:27:e3:b9:15:d3: f7:92:86:b6:a1:93:da:45:1f:4c:ab:17:63:26:e2: 44:8e:b0:e7:d4:2e:87:20:08:12:63:b7:3e:19:b7: b2:ee:e4:b9:9b:dc:c2:26:56:0f:d0:e1:87:ab:41: ac:0d:29:e0:a0:1d:ac:7a:bf:52:35:22:b6:ec:89: 43:c9:76:05:77:7a:b9:70:42:45:35:42:1d:38:8d: eb:0e:e0:c6:b8:cc:75:06:7b:07:52:03:6f:80:ab: 93:dc:a8:cd:5d:8d:e5:8b:ca:c7:4e:c9:97:f4:b4: 41:b1:a8:6e:71:c9:17:3a:bd:ce:65:bf:36:07:ab: bc:4e:3f:3b:40:da:f5:a9:bf:4b:d4:2e:79:23:1e: 7c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:47:3C:60:55:4B:3B:DB:61:4A:A5:30:66:64:5C:08:5F:64:0E:65 X509v3 Authority Key Identifier: keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:a9:33:f2:ef:ef:3f:d7:94:1f:69:65:be:f9:5f:3b:d9:68: f8:44:75:ca:ec:ac:b5:be:d9:55:c3:72:c9:d8:5c:4e:0e:92: 65:28:c6:df:dc:41:45:e8:d2:d3:84:33:20:60:5e:0a:07:7d: db:b1:9a:f7:8a:61:a7:31:b4:6e:69:a8:c4:cf:c5:d8:c3:60: ad:b6:8e:b5:17:91:2b:c8:5e:7c:58:7e:32:43:66:75:4b:3f: 63:cc:cd:a3:cf:2f:24:8b:b3:38:6f:7d:9e:70:2f:30:0e:4c: 84:24:93:87:95:a7:70:28:2e:4e:18:fc:ab:f5:47:fb:bd:92: 7d:c5:14:15:87:67:7e:d6:10:56:9e:54:e4:46:f8:ec:a0:08: c8:10:70:41:2b:29:ea:65:df:6b:4b:90:fd:6f:1e:70:63:08: 1a:9c:20:9e:6c:c7:14:b2:91:a5:f0:18:66:1e:1d:bb:f2:7f: f6:8b:0d:1a:64:d8:61:54:a8:69:a3:86:03:ff:09:8d:cc:e4: 49:73:f1:0d:79:2c:94:1c:af:ae:bb:81:24:86:18:74:0d:d3: d3:33:2b:cc:a6:6e:27:ce:1d:f8:c2:e1:3e:df:94:b0:cb:cc: a2:d4:8b:f9:1c:7d:03:c9:35:ee:1d:9a:31:66:60:74:4b:ff: e7:d0:02:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDW/OWJzECfaul919whY4nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMDM2MjJiM2M1NGU0NWY0MTY2ZjMwMTc5OGY4NmRiYmE0 NzE4MGMwHhcNMjUxMjIyMDAwMDU3WhcNMjUxMjIzMDAwMDU3WjAzMTEwLwYDVQQD EygwNDQ3M2M2MDU1NGIzYmRiNjE0YWE1MzA2NjY0NWMwODVmNjQwZTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQNDzhU59ECp6pvyrqXzQwLuce/s OcPZ242dgD0aSWskPR2uTLwWmyecSmOd5aWcTODYrNJEiSkyXn2XnVPm6OGMqiys W//EmvNWBRqyDCvC1uF/KyU2NlM5cmbKXXmwlF7M4aeiZxWHYmFtBl2pgnSOJ+O5 FdP3koa2oZPaRR9MqxdjJuJEjrDn1C6HIAgSY7c+Gbey7uS5m9zCJlYP0OGHq0Gs DSngoB2ser9SNSK27IlDyXYFd3q5cEJFNUIdOI3rDuDGuMx1BnsHUgNvgKuT3KjN XY3li8rHTsmX9LRBsahucckXOr3OZb82B6u8Tj87QNr1qb9L1C55Ix582wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFARHPGBVSzvbYUqlMGZkXAhfZA5lMB8GA1UdIwQY MBaAFJMDYis8VORfQWbzAXmPhtu6RxgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjkt OTUwYzdlNzMyNDVjLzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjktOTUwYzdlNzMyNDVj LzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXKkz8u/v P9eUH2llvvlfO9lo+ER1yuystb7ZVcNyydhcTg6SZSjG39xBRejS04QzIGBeCgd9 27Ga94phpzG0bmmoxM/F2MNgrbaOtReRK8hefFh+MkNmdUs/Y8zNo88vJIuzOG99 nnAvMA5MhCSTh5WncCguThj8q/VH+72SfcUUFYdnftYQVp5U5Eb47KAIyBBwQSsp 6mXfa0uQ/W8ecGMIGpwgnmzHFLKRpfAYZh4du/J/9osNGmTYYVSoaaOGA/8Jjczk SXPxDXkslByvrruBJIYYdA3T0zMrzKZuJ84d+MLhPt+UsMvMotSL+Rx9A8k17h2a MWZgdEv/59AC8g== -----END CERTIFICATE-----Generated at Mon Dec 22 06:56:23 2025 by rpki-client