This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft File: knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft (raw, json) Hash identifier: WIsr1TEXrHyI3m4v1OimqLJSDlxD75oJwVMRmH+GNDk= Subject key identifier: 55:DD:B6:D0:78:A1:44:79:AE:BF:DF:1F:95:3B:D2:7B:6A:D1:6A:D4 Authority key identifier: 92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96 Certificate issuer: /CN=927b1e56ac7d07802c4567c4679435159b422096 Certificate serial: 019B435C2267B42E9C479100085434D0D5B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft Manifest number: 178D Signing time: Mon 22 Dec 2025 00:01:09 +0000 Manifest this update: Mon 22 Dec 2025 00:01:09 +0000 Manifest next update: Tue 23 Dec 2025 00:01:09 +0000 Files and hashes: 1: ZZutCOlh3Ali7o57VArVQ-r6xEQ.roa (hash: Z8oFv1O8k+i1SuyJDIP9mmTPP/Uv75FEkkBOgolEt4M=) 2: knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl (hash: nAm8mkwPUoePcWRKS6P+Mt3sNc4YdFlhkqmf3Wz97OE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:5c:22:67:b4:2e:9c:47:91:00:08:54:34:d0:d5:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=927b1e56ac7d07802c4567c4679435159b422096 Validity Not Before: Dec 22 00:01:09 2025 GMT Not After : Dec 23 00:01:09 2025 GMT Subject: CN=55ddb6d078a14479aebfdf1f953bd27b6ad16ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:09:79:fd:81:14:ea:8d:55:3c:b8:d6:15:10: 0d:a7:78:af:77:0e:2d:3d:7c:64:68:34:3d:bd:8b: 23:c7:a4:72:2e:fd:f2:59:06:cd:09:5c:43:ed:7e: 4b:ac:bc:f9:42:81:91:0c:0d:ac:32:40:da:04:d1: e8:35:a9:e2:7a:53:09:70:a5:9f:b5:25:4d:9c:79: 94:c7:f9:ae:4c:43:14:da:a7:68:33:94:81:6a:0b: 84:1d:89:ab:56:46:0d:ff:3e:77:fd:d2:91:61:d0: 52:02:74:c3:33:2c:0a:2e:43:34:06:ad:e7:1e:c7: b7:50:c4:da:75:d7:66:89:df:73:ee:a0:e3:09:52: dd:e0:0b:29:13:5c:cd:80:92:c0:17:74:1b:d2:89: 3d:ac:22:63:01:89:ce:db:b7:d8:67:4a:89:79:04: 7d:8d:7a:64:b8:95:35:13:81:01:97:12:84:dd:25: 0d:26:af:3f:5d:02:79:1c:17:02:20:32:dc:5e:1e: 58:68:3d:92:50:43:46:59:9a:ce:c1:fa:7a:c9:7c: 7a:ef:60:9c:51:25:25:b7:d9:23:65:c7:5b:60:48: 06:3b:48:e6:ac:62:4b:2c:03:a8:4a:c9:2e:78:f1: 99:a6:bc:b6:bc:94:94:93:f3:4b:8c:da:15:a3:ab: 0e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DD:B6:D0:78:A1:44:79:AE:BF:DF:1F:95:3B:D2:7B:6A:D1:6A:D4 X509v3 Authority Key Identifier: keyid:92:7B:1E:56:AC:7D:07:80:2C:45:67:C4:67:94:35:15:9B:42:20:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knseVqx9B4AsRWfEZ5Q1FZtCIJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f11dea-305e-4898-9192-365347f416c0/1/knseVqx9B4AsRWfEZ5Q1FZtCIJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c6:6a:87:8c:ab:8f:d3:56:3c:09:83:6b:0b:0a:af:57:53: d8:94:80:cd:33:07:10:86:1a:cf:1f:83:d7:e5:d8:1e:f8:5f: bb:4d:36:9c:f3:cf:cd:1a:f0:b5:0f:ad:c0:70:8f:8c:d2:30: 09:82:75:7a:04:41:7d:8b:7e:a5:92:1b:14:5b:b2:13:89:c1: 0f:07:03:86:07:74:fc:f8:37:b3:8a:bf:44:c6:6f:8f:1f:c3: d1:3b:e6:a2:89:03:a6:9e:5d:38:b8:39:8f:cb:3b:f8:d1:45: d7:df:fa:c4:dc:d7:90:fd:47:f0:83:e7:bb:96:41:da:6c:5a: a6:c2:c3:8a:1e:01:9b:51:29:87:bf:06:47:94:0d:dd:90:9a: 3c:5a:a2:b6:50:43:34:91:e0:61:a1:72:75:29:d0:9d:e3:27: f9:3f:0c:25:ee:11:f3:58:84:46:ce:66:84:a9:5a:61:33:10: 30:04:76:37:aa:d9:63:ec:71:7c:52:b9:fa:22:15:cf:f8:bc: 0d:83:bd:0e:53:67:64:14:3f:c2:05:ee:4b:a7:49:4a:20:c8: e5:b6:8e:13:f9:4f:c6:fc:ce:7b:e2:60:b6:3b:21:44:26:37: 71:be:08:64:05:35:9d:e0:3f:bb:b6:1d:0f:a3:04:2a:82:09: a8:d5:8f:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDXCJntC6cR5EACFQ00NW2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyN2IxZTU2YWM3ZDA3ODAyYzQ1NjdjNDY3OTQzNTE1OWI0 MjIwOTYwHhcNMjUxMjIyMDAwMTA5WhcNMjUxMjIzMDAwMTA5WjAzMTEwLwYDVQQD Eyg1NWRkYjZkMDc4YTE0NDc5YWViZmRmMWY5NTNiZDI3YjZhZDE2YWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwl5/YEU6o1VPLjWFRANp3ivdw4t PXxkaDQ9vYsjx6RyLv3yWQbNCVxD7X5LrLz5QoGRDA2sMkDaBNHoNanielMJcKWf tSVNnHmUx/muTEMU2qdoM5SBaguEHYmrVkYN/z53/dKRYdBSAnTDMywKLkM0Bq3n Hse3UMTadddmid9z7qDjCVLd4AspE1zNgJLAF3Qb0ok9rCJjAYnO27fYZ0qJeQR9 jXpkuJU1E4EBlxKE3SUNJq8/XQJ5HBcCIDLcXh5YaD2SUENGWZrOwfp6yXx672Cc USUlt9kjZcdbYEgGO0jmrGJLLAOoSskuePGZpry2vJSUk/NLjNoVo6sO3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFXdttB4oUR5rr/fH5U70ntq0WrUMB8GA1UdIwQY MBaAFJJ7HlasfQeALEVnxGeUNRWbQiCWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva25zZVZxeDlCNEFzUldmRVo1UTFGWnRDSUpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9mMTFkZWEtMzA1ZS00ODk4LTkxOTIt MzY1MzQ3ZjQxNmMwLzEva25zZVZxeDlCNEFzUldmRVo1UTFGWnRDSUpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9mMTFkZWEtMzA1ZS00ODk4LTkxOTItMzY1MzQ3ZjQxNmMw LzEva25zZVZxeDlCNEFzUldmRVo1UTFGWnRDSUpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG8Zqh4yr j9NWPAmDawsKr1dT2JSAzTMHEIYazx+D1+XYHvhfu002nPPPzRrwtQ+twHCPjNIw CYJ1egRBfYt+pZIbFFuyE4nBDwcDhgd0/Pg3s4q/RMZvjx/D0TvmookDpp5dOLg5 j8s7+NFF19/6xNzXkP1H8IPnu5ZB2mxapsLDih4Bm1Eph78GR5QN3ZCaPFqitlBD NJHgYaFydSnQneMn+T8MJe4R81iERs5mhKlaYTMQMAR2N6rZY+xxfFK5+iIVz/i8 DYO9DlNnZBQ/wgXuS6dJSiDI5baOE/lPxvzOe+JgtjshRCY3cb4IZAU1neA/u7Yd D6MEKoIJqNWPgw== -----END CERTIFICATE-----Generated at Mon Dec 22 04:22:49 2025 by rpki-client