This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json) Hash identifier: ZO7Ng1XfbQg5Grk0S+UlyI3zT2oedNPRrJP17U+VNiQ= Subject key identifier: BE:95:39:0F:4F:8F:46:14:BC:58:F3:E9:C4:3A:1B:09:DC:B1:96:9E Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Certificate serial: 019B292DE6C45FDAF8A5CA6A4CB1569AF2AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft Manifest number: 177E Signing time: Tue 16 Dec 2025 22:00:32 +0000 Manifest this update: Tue 16 Dec 2025 22:00:32 +0000 Manifest next update: Wed 17 Dec 2025 22:00:32 +0000 Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=) 2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 3esUjBciwPg/8fJibY0LPXFcB8zVCBc1FvHueyIDpNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 22:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:2d:e6:c4:5f:da:f8:a5:ca:6a:4c:b1:56:9a:f2:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Validity Not Before: Dec 16 22:00:32 2025 GMT Not After : Dec 17 22:00:32 2025 GMT Subject: CN=be95390f4f8f4614bc58f3e9c43a1b09dcb1969e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:84:aa:08:2e:b1:5e:ee:3f:86:6a:3a:90:18: 29:95:1b:7d:80:9b:7a:66:a0:12:b4:d2:53:2a:06: b6:c9:b8:4c:9d:77:c0:73:9e:be:02:46:e4:88:03: 2b:01:0b:d2:e5:52:ff:99:f2:65:ee:18:05:f7:89: f2:d1:ba:c3:5e:73:23:1e:c3:fc:77:16:93:20:ab: 65:86:99:ab:94:05:d3:f2:34:16:0f:91:7b:2f:3d: 0d:36:22:2b:89:8a:cd:64:70:2b:7e:98:c0:b1:b8: da:c7:78:2b:5c:b0:7a:43:cf:b4:68:79:b2:3a:eb: 0e:56:fb:0f:91:4e:57:91:da:25:b4:a9:27:70:da: f0:34:f1:a7:00:bd:95:fd:5c:7e:d5:b2:96:97:f4: 29:a6:8d:cb:1b:34:f6:81:a2:0c:58:b9:0d:f5:1b: 54:d1:ef:86:3c:9a:9f:74:95:27:8e:2b:8a:04:6c: 78:d7:e1:0d:be:8e:b9:33:8e:7e:d3:50:b8:56:7e: 7f:d7:e0:ab:bd:43:36:65:9d:6b:d4:41:2e:63:f1: 43:a6:b8:8a:62:35:86:65:9e:a7:90:56:65:2c:22: 1f:a9:f4:f6:90:f3:96:ad:f5:d5:64:83:d1:21:e0: 60:8e:f8:b8:fa:7f:80:2e:d7:a0:e5:dc:d5:c3:bd: 9b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:95:39:0F:4F:8F:46:14:BC:58:F3:E9:C4:3A:1B:09:DC:B1:96:9E X509v3 Authority Key Identifier: keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:20:20:63:df:90:2b:c6:bf:99:17:4d:2f:b0:bf:b6:49:a7: 36:15:f5:70:0a:07:16:af:a7:fe:47:02:7b:84:9c:fe:01:2c: 19:e0:e0:36:d2:7e:ce:0c:7f:32:cf:c3:ea:0c:6a:5b:96:5e: fc:25:69:e2:05:b0:bb:d0:be:31:0f:b5:f8:e4:97:f3:93:2d: 00:c0:c1:7a:02:7e:ba:18:f2:8d:e2:5e:e5:a8:6c:d3:1d:1d: 16:93:53:60:df:54:28:d4:9d:6c:24:47:e5:e8:da:68:8b:a5: d2:43:98:a6:10:ce:76:7a:24:07:8b:7c:7e:39:47:7d:1b:73: 43:b7:c3:da:0e:74:2c:84:fb:6d:a6:dd:0b:f0:b3:56:64:f8: 67:5b:36:ad:51:d5:ae:ca:28:17:0f:6a:9d:70:a8:37:b0:c5: c3:2b:49:14:69:d2:63:b1:8f:d8:07:ae:bd:0a:95:39:92:1e: ea:63:f1:40:b3:ed:fe:2d:b3:52:e0:00:88:b3:83:55:be:4b: 56:b4:9a:4e:d7:fe:53:7c:91:7f:bb:4b:07:1f:5d:71:4b:79: bf:7b:d1:dd:00:4f:68:e9:25:3d:f4:5e:e2:cf:b8:8f:62:68: 7d:99:66:bc:1e:36:e7:2f:0c:ec:d1:19:bf:45:f4:89:60:b8: 05:08:73:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZspLebEX9r4pcpqTLFWmvKqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2 MzFiYjMwHhcNMjUxMjE2MjIwMDMyWhcNMjUxMjE3MjIwMDMyWjAzMTEwLwYDVQQD EyhiZTk1MzkwZjRmOGY0NjE0YmM1OGYzZTljNDNhMWIwOWRjYjE5NjllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6YSqCC6xXu4/hmo6kBgplRt9gJt6 ZqAStNJTKga2ybhMnXfAc56+AkbkiAMrAQvS5VL/mfJl7hgF94ny0brDXnMjHsP8 dxaTIKtlhpmrlAXT8jQWD5F7Lz0NNiIriYrNZHArfpjAsbjax3grXLB6Q8+0aHmy OusOVvsPkU5XkdoltKkncNrwNPGnAL2V/Vx+1bKWl/Qppo3LGzT2gaIMWLkN9RtU 0e+GPJqfdJUnjiuKBGx41+ENvo65M45+01C4Vn5/1+CrvUM2ZZ1r1EEuY/FDpriK YjWGZZ6nkFZlLCIfqfT2kPOWrfXVZIPRIeBgjvi4+n+ALteg5dzVw72bDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6VOQ9Pj0YUvFjz6cQ6GwncsZaeMB8GA1UdIwQY MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0 LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQiAgY9+Q K8a/mRdNL7C/tkmnNhX1cAoHFq+n/kcCe4Sc/gEsGeDgNtJ+zgx/Ms/D6gxqW5Ze /CVp4gWwu9C+MQ+1+OSX85MtAMDBegJ+uhjyjeJe5ahs0x0dFpNTYN9UKNSdbCRH 5ejaaIul0kOYphDOdnokB4t8fjlHfRtzQ7fD2g50LIT7babdC/CzVmT4Z1s2rVHV rsooFw9qnXCoN7DFwytJFGnSY7GP2AeuvQqVOZIe6mPxQLPt/i2zUuAAiLODVb5L VrSaTtf+U3yRf7tLBx9dcUt5v3vR3QBPaOklPfRe4s+4j2JofZlmvB425y8M7NEZ v0X0iWC4BQhzCA== -----END CERTIFICATE-----Generated at Wed Dec 17 07:39:45 2025 by rpki-client