This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json) Hash identifier: 8kYvvmKgIp9GzGroibCWUYWoVp61uXxLOcyeSUsgIDU= Subject key identifier: 7A:D9:04:69:C9:B7:44:BB:58:2B:C6:B0:AC:FA:BE:0C:BB:6F:CC:A3 Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3 Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3 Certificate serial: 019B119450CDC222AC32938CEDF351CAC49B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft Manifest number: 07AF Signing time: Fri 12 Dec 2025 08:01:31 +0000 Manifest this update: Fri 12 Dec 2025 08:01:31 +0000 Manifest next update: Sat 13 Dec 2025 08:01:31 +0000 Files and hashes: 1: 187N4PB5lNzYnkhVyKxTgG2ufTQ.roa (hash: nnFT2Pv1VSMMW5/AFw9H17xWytd4IEI7JaypDZR0hFg=) 2: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: iqBxd9sEuuqpkYLcBiK7FLgT5DjnxvW/nE366E29mJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:94:50:cd:c2:22:ac:32:93:8c:ed:f3:51:ca:c4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3 Validity Not Before: Dec 12 08:01:31 2025 GMT Not After : Dec 13 08:01:31 2025 GMT Subject: CN=7ad90469c9b744bb582bc6b0acfabe0cbb6fcca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:08:ba:69:70:21:d9:99:47:c0:a5:39:26:e8: a4:4c:4d:fa:61:15:bd:9d:0a:9a:b2:a8:2f:58:51: f5:75:85:9c:c9:bd:f4:3d:8d:87:a8:ab:cf:13:a5: 84:5a:4a:72:c5:49:1b:db:91:91:35:55:96:71:e9: 3a:11:df:2e:9d:d0:e6:cd:b5:82:0f:33:97:34:a8: 42:8d:fe:61:71:a2:71:bd:fa:4b:f7:9a:33:ef:a0: 7a:8a:0b:4e:1e:25:d1:cd:89:fa:d8:a5:ba:65:0f: 1c:26:4e:1e:d6:8a:37:cd:a4:bf:f6:da:65:bc:da: 85:88:e0:0d:11:77:85:dd:12:ee:44:6f:7a:40:6f: af:5f:2d:9e:40:e9:a2:dc:17:ff:3b:6e:4f:e6:e5: e2:5c:83:e7:e1:13:a5:60:39:fe:7d:ae:00:72:07: 34:97:6b:28:d0:04:ac:e7:ff:86:1a:72:a1:5b:de: f4:cb:d2:ad:ba:00:92:33:11:ef:36:e3:4f:fc:0d: 12:7f:61:64:a4:ff:06:c1:c0:35:8a:27:39:3c:0f: 75:45:70:72:2d:da:7a:15:57:f1:23:78:bc:db:40: 9c:cc:41:4b:17:18:26:1b:8c:d5:03:d7:aa:f9:7a: 05:39:d2:99:4b:c5:f2:70:12:c9:75:22:52:35:d9: 04:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D9:04:69:C9:B7:44:BB:58:2B:C6:B0:AC:FA:BE:0C:BB:6F:CC:A3 X509v3 Authority Key Identifier: keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:e8:c3:5e:c2:ed:48:03:51:24:18:1f:dd:6d:0b:f8:26:41: 3a:55:ee:70:1a:81:b2:68:0f:d5:d3:2c:bc:0e:8e:ec:64:23: 7e:48:f8:f5:38:a6:49:24:eb:24:17:d2:ae:93:28:e1:4c:e5: 50:4a:d1:fc:c1:98:a2:ac:6d:46:ac:9b:50:0f:4a:21:73:03: 97:4b:35:ce:3a:c2:bf:b9:4b:9a:fc:52:ad:de:34:d2:f3:a8: 70:6c:de:b5:13:31:45:ae:79:86:2e:54:43:1b:3c:81:6f:3b: ed:ea:0e:ff:d6:00:f1:47:25:ce:97:4c:f2:08:67:1c:72:fa: 4d:7a:7a:5a:e0:2f:06:bd:27:12:fd:60:46:55:f9:4d:4d:3c: b4:d1:e7:4a:5b:be:91:89:d0:90:bc:ab:a3:2b:6c:8a:3f:28: c4:7a:2d:3f:45:e1:09:ec:17:2c:15:4c:cd:bb:44:50:3d:d0: 30:56:0b:c6:41:e3:75:37:52:e9:10:29:87:3e:a5:52:75:9b: ab:3c:9b:c6:e5:7a:44:d3:5f:df:8b:9b:72:03:4d:3e:d3:39: 85:57:ce:c0:03:e4:cc:a1:59:69:cf:72:db:4f:24:3a:93:0a: ea:dd:5e:6c:e3:62:ca:47:18:25:f3:0d:bb:8a:d7:17:7e:ab: a0:55:a0:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRlFDNwiKsMpOM7fNRysSbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MGNjNGQwYWQ1ZGFmYzI3YWE0ZTM0MmZhODBlMzQ4MTRl ODQ1YzMwHhcNMjUxMjEyMDgwMTMxWhcNMjUxMjEzMDgwMTMxWjAzMTEwLwYDVQQD Eyg3YWQ5MDQ2OWM5Yjc0NGJiNTgyYmM2YjBhY2ZhYmUwY2JiNmZjY2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgi6aXAh2ZlHwKU5JuikTE36YRW9 nQqasqgvWFH1dYWcyb30PY2HqKvPE6WEWkpyxUkb25GRNVWWcek6Ed8undDmzbWC DzOXNKhCjf5hcaJxvfpL95oz76B6igtOHiXRzYn62KW6ZQ8cJk4e1oo3zaS/9tpl vNqFiOANEXeF3RLuRG96QG+vXy2eQOmi3Bf/O25P5uXiXIPn4ROlYDn+fa4Acgc0 l2so0ASs5/+GGnKhW970y9KtugCSMxHvNuNP/A0Sf2FkpP8GwcA1iic5PA91RXBy Ldp6FVfxI3i820CczEFLFxgmG4zVA9eq+XoFOdKZS8XycBLJdSJSNdkEWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHrZBGnJt0S7WCvGsKz6vgy7b8yjMB8GA1UdIwQY MBaAFCkMxNCtXa/CeqTjQvqA40gU6EXDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1F6RTBLMWRyOEo2cE9OQy1vRGpTQlRvUmNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85MjM1MmYtNDA1MS00NTBlLWIzYTYt MmUwMDc4Y2VlMTgyLzEvS1F6RTBLMWRyOEo2cE9OQy1vRGpTQlRvUmNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS85MjM1MmYtNDA1MS00NTBlLWIzYTYtMmUwMDc4Y2VlMTgy LzEvS1F6RTBLMWRyOEo2cE9OQy1vRGpTQlRvUmNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiejDXsLt SANRJBgf3W0L+CZBOlXucBqBsmgP1dMsvA6O7GQjfkj49TimSSTrJBfSrpMo4Uzl UErR/MGYoqxtRqybUA9KIXMDl0s1zjrCv7lLmvxSrd400vOocGzetRMxRa55hi5U Qxs8gW877eoO/9YA8UclzpdM8ghnHHL6TXp6WuAvBr0nEv1gRlX5TU08tNHnSlu+ kYnQkLyroytsij8oxHotP0XhCewXLBVMzbtEUD3QMFYLxkHjdTdS6RAphz6lUnWb qzybxuV6RNNf34ubcgNNPtM5hVfOwAPkzKFZac9y208kOpMK6t1ebONiykcYJfMN u4rXF36roFWgCw== -----END CERTIFICATE-----Generated at Fri Dec 12 11:53:31 2025 by rpki-client