This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft File: kziECSasc-rVthh5GeiPEAMimco.mft (raw, json) Hash identifier: s5jkR/6fWV3UfqbXhrnLpyccWFZit4g38Eb5dYATcF0= Subject key identifier: 45:76:20:12:B2:39:68:17:D5:BD:F8:89:A8:98:81:3D:C9:E4:9E:E7 Authority key identifier: 93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA Certificate issuer: /CN=9338840926ac73ead5b6187919e88f10032299ca Certificate serial: 019B5AF676697C5FC248DDD01CF617CBE857 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft Manifest number: 8C Signing time: Fri 26 Dec 2025 14:01:00 +0000 Manifest this update: Fri 26 Dec 2025 14:01:00 +0000 Manifest next update: Sat 27 Dec 2025 14:01:00 +0000 Files and hashes: 1: EYqilavXprc2FLL8KIowGf2TSuo.roa (hash: 6uN/QSpU/95Lf3RHLemvXq4xBYigUHIrCbA+BPlWG1c=) 2: Q19n_Odq8OLPbbKb7YsfCyN0tDE.roa (hash: Gs4XriuYX+dQoQwaB99+U61vIT5aHV9N7U3+i1qD1ak=) 3: UhOlZ1gWF-A2pyAb44IeBGN_OgY.roa (hash: eG58vuvoosMx0i4HfksqHRUHWT1C5k08ekOkTneq/NQ=) 4: e59mOeQsrW-90segmPPLWMjT0YI.roa (hash: toiB1Qv2MIoXXFo0FWdc3w36O3AKCGfMQKznYcWinGU=) 5: frvooIXI0spMsdwwLhMi1BanYsg.roa (hash: pABU3Dqr2P48klsoUZB26bEkHa7gjlst9UNAnT2zGX0=) 6: joN3X-mRLakXHrwEWC_3n3sGuII.roa (hash: mwXuMQtF9Qvbb6s7M2Xwl6LdZT+OlHznvx0PU3HKz0Q=) 7: kziECSasc-rVthh5GeiPEAMimco.crl (hash: jex0MgZJOUErS9iNQCLrUUEWKP59LgCyJF2ttezGl2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:76:69:7c:5f:c2:48:dd:d0:1c:f6:17:cb:e8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9338840926ac73ead5b6187919e88f10032299ca Validity Not Before: Dec 26 14:01:00 2025 GMT Not After : Dec 27 14:01:00 2025 GMT Subject: CN=45762012b2396817d5bdf889a898813dc9e49ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7e:ba:2d:c8:72:08:20:fe:78:b1:92:7a:a5: 0d:84:74:da:2d:38:78:cc:80:e2:12:fb:62:91:5f: 24:b0:e6:b4:db:05:25:c9:b1:cc:80:ab:ff:26:20: 16:5d:61:41:1f:f2:25:cc:51:cc:d4:28:62:a0:63: 3a:58:ca:2d:3b:72:60:4a:e7:e2:d3:d7:00:c5:ac: 04:3d:c2:b3:c8:60:cf:13:0f:85:c3:61:17:a9:58: e2:83:8f:cc:74:22:27:1c:27:2f:aa:d5:5e:6a:a6: 3f:1a:58:6f:d4:20:f5:bf:b5:a5:83:13:7a:03:f1: c7:0b:c5:5e:9f:e6:91:81:0d:57:a9:31:d6:08:20: 34:c6:4e:1c:53:47:9d:0f:11:92:2f:66:e6:8f:a7: 04:51:19:dc:11:fd:8b:df:7e:03:bb:83:69:b3:78: ab:f4:51:b8:58:f9:52:ac:4c:01:8f:1f:e5:58:04: 58:d3:57:01:0e:ca:15:ea:78:5c:d5:a5:30:80:e0: 9a:dd:5e:2c:bb:04:61:1a:57:2e:a8:cb:ea:e8:c4: ca:be:0e:bf:cb:2e:c1:40:bb:49:06:41:c8:65:fe: af:f2:6a:32:95:95:f4:eb:3c:12:75:06:5b:f9:90: 21:60:b8:13:10:72:06:19:15:a6:7b:a9:ea:ce:f3: bc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:76:20:12:B2:39:68:17:D5:BD:F8:89:A8:98:81:3D:C9:E4:9E:E7 X509v3 Authority Key Identifier: keyid:93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:5f:2e:d8:72:c0:15:fb:ca:b5:de:28:53:62:e5:e5:0a:3e: 21:a3:d3:c9:58:f8:ca:d6:87:36:d2:28:57:ff:f6:6f:a2:19: dd:18:78:b3:60:0c:65:84:22:35:8b:e5:f7:fb:6d:50:0d:23: 45:a4:ef:64:07:65:97:7a:c1:c0:fc:38:ca:d1:8a:1b:da:31: 23:49:ca:5e:64:af:67:cf:38:4d:07:06:05:22:20:a4:52:fe: 0e:e8:43:0e:d9:18:37:8c:b9:68:f2:75:58:77:a0:13:0e:8d: 14:f5:57:99:b5:75:e9:7e:9b:eb:6f:fc:c5:71:e8:9d:76:95: ef:6c:08:7e:7c:0d:d7:69:6c:41:0f:b5:ad:9b:86:b9:dc:7f: be:39:5e:7a:47:9a:d3:69:50:3b:2b:12:11:2b:cf:a1:8a:b3: bc:25:90:aa:23:75:b0:c0:e6:11:00:a1:19:a7:6e:47:d0:33: cd:85:3a:4d:25:27:14:f7:da:07:43:dd:a8:56:64:31:d9:d0: 02:0b:ed:be:13:51:c8:70:25:94:28:91:1f:3d:82:98:96:6d: f8:dd:3a:f6:ab:f6:22:82:74:23:fe:b7:7b:db:80:3b:27:5a: 2c:ba:c0:46:fc:59:05:f3:5f:56:33:4e:c7:68:e0:eb:f8:2e: 63:b1:34:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9nZpfF/CSN3QHPYXy+hXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMzg4NDA5MjZhYzczZWFkNWI2MTg3OTE5ZTg4ZjEwMDMy Mjk5Y2EwHhcNMjUxMjI2MTQwMTAwWhcNMjUxMjI3MTQwMTAwWjAzMTEwLwYDVQQD Eyg0NTc2MjAxMmIyMzk2ODE3ZDViZGY4ODlhODk4ODEzZGM5ZTQ5ZWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAun66LchyCCD+eLGSeqUNhHTaLTh4 zIDiEvtikV8ksOa02wUlybHMgKv/JiAWXWFBH/IlzFHM1ChioGM6WMotO3JgSufi 09cAxawEPcKzyGDPEw+Fw2EXqVjig4/MdCInHCcvqtVeaqY/Glhv1CD1v7WlgxN6 A/HHC8Ven+aRgQ1XqTHWCCA0xk4cU0edDxGSL2bmj6cEURncEf2L334Du4Nps3ir 9FG4WPlSrEwBjx/lWARY01cBDsoV6nhc1aUwgOCa3V4suwRhGlcuqMvq6MTKvg6/ yy7BQLtJBkHIZf6v8moylZX06zwSdQZb+ZAhYLgTEHIGGRWme6nqzvO8TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEV2IBKyOWgX1b34iaiYgT3J5J7nMB8GA1UdIwQY MBaAFJM4hAkmrHPq1bYYeRnojxADIpnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUt ZWE3YWU3MmJkMzJkLzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUtZWE3YWU3MmJkMzJk LzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWl8u2HLA FfvKtd4oU2Ll5Qo+IaPTyVj4ytaHNtIoV//2b6IZ3Rh4s2AMZYQiNYvl9/ttUA0j RaTvZAdll3rBwPw4ytGKG9oxI0nKXmSvZ884TQcGBSIgpFL+DuhDDtkYN4y5aPJ1 WHegEw6NFPVXmbV16X6b62/8xXHonXaV72wIfnwN12lsQQ+1rZuGudx/vjleekea 02lQOysSESvPoYqzvCWQqiN1sMDmEQChGaduR9AzzYU6TSUnFPfaB0PdqFZkMdnQ AgvtvhNRyHAllCiRHz2CmJZt+N069qv2IoJ0I/63e9uAOydaLLrARvxZBfNfVjNO x2jg6/guY7E0zQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:09 2025 by rpki-client