This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json) Hash identifier: cajMXh7WzPuYma28loOmOtUo8CdM2M8oXQZniNQodw0= Subject key identifier: A6:92:B8:D8:4E:CB:C7:05:DA:71:43:65:33:B4:70:C5:A8:D6:91:77 Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Certificate serial: 019B06D8CF11754B021F6F1807BAF4443FA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft Manifest number: 061D Signing time: Wed 10 Dec 2025 06:00:30 +0000 Manifest this update: Wed 10 Dec 2025 06:00:30 +0000 Manifest next update: Thu 11 Dec 2025 06:00:30 +0000 Files and hashes: 1: 05o0ilxpLPFj724SFa-brN8vzXk.roa (hash: CPN9MrS7MYDAN7zH2nr9vN3ZoOoKTAOXjde0z1Y3r4g=) 2: 5h88FMdyJ4BKxPsdcgHQyCeiggw.roa (hash: Owv+GMEcs1uONJHFnOZ4mKs3NxskXYOAjZpyCXtz47Y=) 3: 7HfOX3VXYMpd2AIPBc7-S-uMs_8.roa (hash: k5M6cr3ux0zaC3HrK4AQu/eEDnL7gIrijJy4BZ0Nw4M=) 4: 7OOt-MnHsX07hiPdKHIMZaJ8wrg.roa (hash: 7nZ90mtRGZWhPbm1Puw7IzZkWIgR1R3W35D51WFY05w=) 5: BT9PpbhARp2PKEupubiiio8TvBc.roa (hash: PoRHUsj11iEWOHUhXg6p185DLswF97IfYO5dpNwM+4k=) 6: F1OWe033_DuZ-JjrisCh6PYvi1s.roa (hash: bLONjsizRZ/N6QYxCW6KHMn5K6t8a7PJWP3/t57vEJk=) 7: K3PHjFr5iZQBePAHzZD7020H3CQ.roa (hash: cYqNDwyqOAThtjZwtvIGK4yhgMYUiG7kHacZddA60SQ=) 8: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: 52zPglsKkh/50PrmoXB+VAq3cyXK/F3cwn0Jl4nQ7oM=) 9: PwDUcjqBkiIEULzXxKTVGmmTWG4.roa (hash: FRJ/j45X7Ib31MDYnkP96sRJLV09a4YTIEwHH8GRm+c=) 10: SGJaxM1tftN6eWW_JhWZIZdq6Hs.roa (hash: i3+GB/wkLsPOj8TleSkbJUTDI0kj7dMA6dFb0QRWP+8=) 11: X-V1c33BeHLMq6YPZ6efCsl3cMM.roa (hash: qD2GqEyAmd2okDBw6OR3DlzX+O8r0bDHBHVLHEg9U3g=) 12: X6A7ZOxQkF-N5TBF6hNZ0D-sPxQ.roa (hash: sOJamuYIhYJWJLrvAE1wd1xA2gh7NgXmer7n43KBLdc=) 13: Y68HM_eE8K1w4SS6fxm68_4816Q.roa (hash: j5XSBxx8t0t2IG8jaeix/JPoU5Vp2pcHE0yvoVN43nY=) 14: eM7RoSEq3C715iKtcwBUqsiVTDM.roa (hash: U7xNVv9g2fKrI4EOjzXQcIX1ekwna/aEJqfXxfKaR90=) 15: u-M1H4DlyfJcf3cI4KPf60AAf5E.roa (hash: rqvHkJ1B+GOatMUS6IQfjBMvmK91Ea22MfD3TS1yuVM=) 16: us6ukJjPwguMUHmhc8SpjnjeHOE.roa (hash: RuHDwxtF2zmik+S8Nhu0t8NrGvwHVQJraNmp1nORf/c=) 17: zvMqPtiLMOCgjOxqm6euJp83YNA.roa (hash: jIvx8RFgHAKB/kauSEcxDljiE/0sDn1/Jfcw3a0iCKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:06:d8:cf:11:75:4b:02:1f:6f:18:07:ba:f4:44:3f:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44 Validity Not Before: Dec 10 06:00:30 2025 GMT Not After : Dec 11 06:00:30 2025 GMT Subject: CN=a692b8d84ecbc705da71436533b470c5a8d69177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b2:79:3d:49:83:c9:5f:7d:dd:d2:12:90:ff: ae:e5:30:b0:43:db:10:88:25:fe:5b:7a:ed:31:0c: 32:12:fc:ed:03:de:0a:d6:77:4f:40:a0:b9:4e:f7: 84:6b:c1:83:3c:9e:49:88:f1:be:73:f2:e3:2f:d8: 6e:e1:fe:e5:ff:af:ce:7c:d4:ca:34:17:75:5d:14: 7d:97:58:8c:9c:44:5f:bb:9c:2a:a3:a9:88:cd:7f: f2:e0:0c:e0:72:9b:ca:ba:ef:63:ae:d1:fa:39:48: 76:a5:9c:cf:08:01:36:f6:df:9b:b1:ca:d5:6d:e2: 28:ab:0b:12:5f:e0:a6:12:ea:8e:b0:c7:55:ae:31: b4:f2:e6:2c:9a:fc:11:af:2e:09:a8:47:1f:8d:38: 7b:d4:7f:20:3f:a3:f0:cf:94:59:72:8d:ba:99:de: d0:8f:0e:3f:24:f3:00:39:b9:49:f6:89:1d:fe:82: ac:85:ce:75:3c:30:f9:7f:cf:2c:b3:86:aa:1d:b7: 48:c3:e1:1a:1a:d6:56:67:17:bd:3d:d2:64:06:0d: f9:ac:e2:57:6a:4a:0d:0b:98:89:37:e3:73:93:81: 0c:8d:29:cc:cb:ac:fb:94:00:9e:31:64:87:b3:5c: 2e:75:51:bb:58:92:33:5d:58:15:e3:b3:ae:6b:22: 3d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:92:B8:D8:4E:CB:C7:05:DA:71:43:65:33:B4:70:C5:A8:D6:91:77 X509v3 Authority Key Identifier: keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:e4:71:3b:c1:2e:6a:a0:56:74:98:52:75:36:ff:5f:0d:f0: 3e:23:63:f3:e9:86:e3:65:03:9c:34:3c:dc:e8:59:68:33:f5: e1:60:f1:4b:f6:53:e1:e5:74:46:7c:07:fe:24:41:43:bc:24: b5:be:e2:af:80:c3:17:30:e4:4e:cf:aa:27:ff:11:fc:f8:c7: a7:8f:63:e5:c3:bb:30:bb:cf:3e:7a:14:b9:1a:23:fb:25:56: 85:08:13:e2:bb:d4:49:80:19:b8:96:59:0e:42:35:42:18:4b: 39:b5:62:b5:43:ff:34:da:15:21:b6:aa:d5:c0:c1:83:21:fd: 73:4f:4e:7c:1d:b8:f3:31:1f:4b:f1:cd:31:e8:ba:19:d2:7b: 54:bc:2e:0b:40:8c:01:c2:c6:56:d6:fb:55:7a:89:07:22:9f: e2:9d:cc:18:34:6e:18:72:a7:64:0c:29:c7:34:87:c8:46:14: 2c:1e:b1:b8:65:cc:f0:fe:a8:a9:57:bd:95:4b:2a:27:1d:ca: bc:b3:96:26:58:68:c8:3f:bb:99:74:42:27:97:8c:ee:e5:c8: 1a:7c:2e:1c:78:f3:1e:28:c5:32:72:8b:bd:58:54:dd:29:a0: 76:53:de:46:40:5f:de:cc:ce:8b:fd:19:48:07:97:17:11:6d: f8:87:38:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsG2M8RdUsCH28YB7r0RD+jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl MTRlNDQwHhcNMjUxMjEwMDYwMDMwWhcNMjUxMjExMDYwMDMwWjAzMTEwLwYDVQQD EyhhNjkyYjhkODRlY2JjNzA1ZGE3MTQzNjUzM2I0NzBjNWE4ZDY5MTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLJ5PUmDyV993dISkP+u5TCwQ9sQ iCX+W3rtMQwyEvztA94K1ndPQKC5TveEa8GDPJ5JiPG+c/LjL9hu4f7l/6/OfNTK NBd1XRR9l1iMnERfu5wqo6mIzX/y4AzgcpvKuu9jrtH6OUh2pZzPCAE29t+bscrV beIoqwsSX+CmEuqOsMdVrjG08uYsmvwRry4JqEcfjTh71H8gP6Pwz5RZco26md7Q jw4/JPMAOblJ9okd/oKshc51PDD5f88ss4aqHbdIw+EaGtZWZxe9PdJkBg35rOJX akoNC5iJN+Nzk4EMjSnMy6z7lACeMWSHs1wudVG7WJIzXVgV47OuayI9EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKaSuNhOy8cF2nFDZTO0cMWo1pF3MB8GA1UdIwQY MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0 LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeRxO8Eu aqBWdJhSdTb/Xw3wPiNj8+mG42UDnDQ83OhZaDP14WDxS/ZT4eV0RnwH/iRBQ7wk tb7ir4DDFzDkTs+qJ/8R/PjHp49j5cO7MLvPPnoUuRoj+yVWhQgT4rvUSYAZuJZZ DkI1QhhLObVitUP/NNoVIbaq1cDBgyH9c09OfB248zEfS/HNMei6GdJ7VLwuC0CM AcLGVtb7VXqJByKf4p3MGDRuGHKnZAwpxzSHyEYULB6xuGXM8P6oqVe9lUsqJx3K vLOWJlhoyD+7mXRCJ5eM7uXIGnwuHHjzHijFMnKLvVhU3SmgdlPeRkBf3szOi/0Z SAeXFxFt+Ic4iw== -----END CERTIFICATE-----Generated at Wed Dec 10 10:09:58 2025 by rpki-client