This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json) Hash identifier: hCl1zQIjyvQRexq1Z9aAEVzGfz7SS5BOlt++/RptpWU= Subject key identifier: 73:09:97:4C:DC:F4:9B:71:71:70:B1:75:7F:23:E5:40:13:19:8E:1B Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2 Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2 Certificate serial: 019B0F6E575B179D1E71C897AD511FD68692 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft Manifest number: 0826 Signing time: Thu 11 Dec 2025 22:00:48 +0000 Manifest this update: Thu 11 Dec 2025 22:00:48 +0000 Manifest next update: Fri 12 Dec 2025 22:00:48 +0000 Files and hashes: 1: HwsAcAwNO9JxJWLCv2jrj68hfnA.roa (hash: 0sMtghO8XAE5AkvpZg4vPQp/pLiIiuagLK53j4z/s5k=) 2: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: ComsobkXLd3g4SNHwwyMPRg6HthFPxrxFcsZu4FRyl4=) 3: UwwvQBBO6j_9pYHYLHx-7usc0Bw.roa (hash: C7nkcdmQSHS7lgQHz28p2qZkreR4v70DdZOITk/le4g=) 4: pHa9pNSqhegXl-F2Rnj5qm1kKYY.roa (hash: NaSVWzADFkveB7jFn1yrCHIkaQHOjYyq2bcymguUkY8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 22:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:6e:57:5b:17:9d:1e:71:c8:97:ad:51:1f:d6:86:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2 Validity Not Before: Dec 11 22:00:48 2025 GMT Not After : Dec 12 22:00:48 2025 GMT Subject: CN=7309974cdcf49b717170b1757f23e54013198e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9d:5f:3e:30:9a:6e:1a:f5:1d:06:ac:9b:17: 15:92:9f:3b:d0:9a:92:a6:be:c2:3c:33:99:51:36: 75:bd:e6:5b:fb:13:7d:70:5b:a5:b1:1a:b6:ff:d3: a8:c1:f5:09:fa:d3:58:0a:e7:3f:f6:4e:af:45:5f: fa:6e:00:f8:a0:bc:f4:56:28:45:1b:b8:9e:70:eb: 63:e8:6d:f1:5f:47:6a:4f:f3:c7:9f:37:af:43:ad: 01:3e:31:a4:10:db:ba:ad:f1:c4:ca:96:14:8e:29: 3a:2a:48:b7:28:ca:9c:68:62:ed:d6:cb:f8:03:c4: 9f:62:a4:c0:75:ef:7c:4e:bf:32:51:bb:27:48:37: 49:7d:0c:76:ca:74:aa:ba:c8:6e:78:11:98:fa:09: 9b:56:8e:8e:96:6d:02:54:3d:86:88:57:c5:28:c4: 68:62:0f:dc:ae:92:5f:30:38:61:55:03:8d:60:5a: 5b:3c:11:80:b6:a0:89:ce:c1:57:d6:47:3a:c2:ac: cc:86:a2:9a:c8:a2:ed:f7:1b:54:54:cc:88:64:8b: e5:12:65:31:9d:be:4a:6b:62:08:b9:59:30:7a:29: d3:5e:f9:97:5b:f5:96:91:42:4d:6c:71:80:e4:00: e2:53:d0:41:0b:94:33:58:f3:df:00:71:a4:7b:30: f8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:09:97:4C:DC:F4:9B:71:71:70:B1:75:7F:23:E5:40:13:19:8E:1B X509v3 Authority Key Identifier: keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:93:ff:68:bb:f5:9d:2c:4e:da:09:68:ed:1d:59:d2:45:4b: b2:e8:79:aa:39:ee:fb:26:61:32:dd:c0:bc:bc:24:4e:13:00: 70:ce:b9:38:38:db:4f:0d:1d:3a:c8:b4:46:de:bc:a2:ac:1d: a8:53:cd:09:75:c6:4d:d7:c5:2b:20:bc:9c:8a:a5:51:4c:e8: dc:58:c3:ac:2a:04:fa:de:fc:dd:bb:62:bd:ee:ed:08:8d:b1: fc:1e:8a:d2:1a:44:7e:2b:d2:da:11:df:9e:f8:63:c4:25:e1: a5:59:9f:aa:f3:e7:64:d1:4c:d4:0d:fc:90:a3:05:ef:40:ff: 22:72:24:49:84:a2:9f:ea:8b:3a:1b:1f:47:77:26:db:9c:16: 42:ea:ac:08:7d:e8:b1:2b:75:77:60:4b:4c:70:24:64:ec:9a: ef:59:9d:32:c5:5e:03:5f:0a:75:79:0d:4b:40:56:51:2a:e8: cc:5c:30:45:38:58:24:d2:3e:4c:81:a3:c2:97:5d:8d:6f:02: c3:eb:68:65:2a:00:cc:d6:7b:13:98:02:d2:93:57:e5:a3:4c: 8f:38:79:68:15:c6:34:a6:ca:8b:4b:84:a2:b7:b6:eb:a7:83: dc:83:80:d7:db:73:88:e3:b7:61:3e:7f:78:a0:ec:47:d5:f7: a3:81:ce:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPbldbF50ecciXrVEf1oaSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYTM0ZjlkMWRiZDIwYWE4N2ZiMGY2MmJkMmI2YzVlMzBj NjE0YTIwHhcNMjUxMjExMjIwMDQ4WhcNMjUxMjEyMjIwMDQ4WjAzMTEwLwYDVQQD Eyg3MzA5OTc0Y2RjZjQ5YjcxNzE3MGIxNzU3ZjIzZTU0MDEzMTk4ZTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZ1fPjCabhr1HQasmxcVkp870JqS pr7CPDOZUTZ1veZb+xN9cFulsRq2/9OowfUJ+tNYCuc/9k6vRV/6bgD4oLz0VihF G7iecOtj6G3xX0dqT/PHnzevQ60BPjGkENu6rfHEypYUjik6Kki3KMqcaGLt1sv4 A8SfYqTAde98Tr8yUbsnSDdJfQx2ynSqushueBGY+gmbVo6Olm0CVD2GiFfFKMRo Yg/crpJfMDhhVQONYFpbPBGAtqCJzsFX1kc6wqzMhqKayKLt9xtUVMyIZIvlEmUx nb5Ka2IIuVkweinTXvmXW/WWkUJNbHGA5ADiU9BBC5QzWPPfAHGkezD4GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHMJl0zc9JtxcXCxdX8j5UATGY4bMB8GA1UdIwQY MBaAFDCjT50dvSCqh/sPYr0rbF4wxhSiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9lZTQ3MzItYzNiYS00MDg4LWE1ZmEt ZWI2NTNkMzYyMmJiLzEvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9lZTQ3MzItYzNiYS00MDg4LWE1ZmEtZWI2NTNkMzYyMmJi LzEvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArpP/aLv1 nSxO2glo7R1Z0kVLsuh5qjnu+yZhMt3AvLwkThMAcM65ODjbTw0dOsi0Rt68oqwd qFPNCXXGTdfFKyC8nIqlUUzo3FjDrCoE+t783btive7tCI2x/B6K0hpEfivS2hHf nvhjxCXhpVmfqvPnZNFM1A38kKMF70D/InIkSYSin+qLOhsfR3cm25wWQuqsCH3o sSt1d2BLTHAkZOya71mdMsVeA18KdXkNS0BWUSrozFwwRThYJNI+TIGjwpddjW8C w+toZSoAzNZ7E5gC0pNX5aNMjzh5aBXGNKbKi0uEore266eD3IOA19tziOO3YT5/ eKDsR9X3o4HO3Q== -----END CERTIFICATE-----Generated at Fri Dec 12 05:15:56 2025 by rpki-client