This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft File: KgzEYwHIsf1GOSkwGPulNlOiZbI.mft (raw, json) Hash identifier: PImFNRto6LAO+4RhqUd8P0mUQAwItnj+BTKERUueXVY= Subject key identifier: 44:25:D0:12:69:96:FD:53:16:B6:B6:06:A1:6D:4F:1B:6F:03:03:6F Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2 Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2 Certificate serial: 019B3F4871504AE5ADFFA6485F499BB8C579 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft Manifest number: 178D Signing time: Sun 21 Dec 2025 05:01:10 +0000 Manifest this update: Sun 21 Dec 2025 05:01:10 +0000 Manifest next update: Mon 22 Dec 2025 05:01:10 +0000 Files and hashes: 1: 25LU7394eXHg-PBe4_GLTG3VIkw.roa (hash: HyP22/g9CSOKH8mPcT6JDAYedjiAUR/5O/lp9cDajCk=) 2: KgzEYwHIsf1GOSkwGPulNlOiZbI.crl (hash: iKz7KwAw2Zo1QrSNLak8eU8TVxFNxXNdzbWJZ8lblEU=) 3: VUqvat4WtfuUczhMBY4TDvxEK_s.roa (hash: Zqzw2dEApvnq4zRqyWAKudIEokzGJ+rSfWzcaKX+at0=) 4: jfIFCuUZlCfoxkAB48zp-OMBSv0.roa (hash: tfMbXizXQYE7ANVbZs7KN2qDtk5wxuAhU53t/l8imds=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:71:50:4a:e5:ad:ff:a6:48:5f:49:9b:b8:c5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2 Validity Not Before: Dec 21 05:01:10 2025 GMT Not After : Dec 22 05:01:10 2025 GMT Subject: CN=4425d0126996fd5316b6b606a16d4f1b6f03036f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ee:86:b0:cc:47:4c:69:fd:c0:fe:db:90:f6: 77:6b:31:35:03:57:d0:2c:62:d2:bf:a3:92:50:73: 8a:9b:90:84:38:87:c1:8a:f3:5d:78:c6:03:26:4b: 2e:97:15:52:41:d7:46:77:fc:a2:32:2a:a7:f2:a4: 09:e7:ae:6c:e2:4c:59:d0:2c:d8:95:9d:90:ae:2d: 08:fa:29:59:9f:47:ea:63:a3:56:4b:08:5a:72:2e: 83:e5:cc:d5:0d:85:12:a1:70:b4:98:24:ef:77:18: 9f:d5:df:67:e7:fd:46:e6:0c:af:4c:de:b8:3d:2a: 77:64:6f:f1:ab:03:da:39:1a:93:cf:58:f4:8a:01: 8d:b8:ee:47:0c:4b:78:73:08:32:24:ea:34:0c:53: f8:ef:de:b9:eb:d8:5e:b7:17:41:24:28:da:61:75: 76:4f:5c:5c:22:a9:03:25:59:1b:0a:a4:91:90:e8: 52:ec:6f:ff:56:5a:b2:fd:79:f5:f6:d6:db:3b:29: 88:61:c1:fb:9c:e7:33:9d:55:b4:98:24:4d:89:b0: 8f:8c:03:a9:34:93:e1:cc:ef:96:2c:6d:d6:c1:2b: 6e:4f:b5:99:dd:b4:89:3a:e9:e3:69:2b:39:88:36: 3f:2f:0d:10:14:1e:b4:6c:a6:25:c1:ac:bd:53:ef: 95:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:25:D0:12:69:96:FD:53:16:B6:B6:06:A1:6D:4F:1B:6F:03:03:6F X509v3 Authority Key Identifier: keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:bf:67:aa:71:87:df:d2:b3:67:42:13:8b:fa:71:d5:9e:bd: 1b:9a:78:57:02:27:7a:e8:78:27:af:56:9e:04:ff:7d:ec:4b: 9f:ca:65:50:c5:d0:0e:14:38:73:8b:5e:99:c1:d3:ff:ff:f8: 6b:4b:4f:47:51:52:0e:e0:39:57:94:6d:c5:a9:86:85:ea:93: be:86:c2:d0:45:e0:1f:ef:eb:00:f9:51:2b:b2:72:59:1b:99: 7a:51:fa:89:a2:29:4f:48:74:8c:b2:e9:92:2e:01:2a:9e:10: 95:7c:0f:29:4f:60:d3:ce:de:b4:7a:75:db:c4:5c:3f:ec:c3: 91:7d:8b:24:61:f8:a7:bd:d7:eb:9c:39:d4:7b:cf:a0:94:6e: aa:12:b7:74:40:b3:2d:43:94:a2:c9:df:55:27:fc:48:c5:f5: ea:53:66:2d:8e:84:db:02:45:fa:ed:f5:0c:f2:e8:0b:6f:8b: 4c:77:4f:ca:59:00:06:ad:a5:21:fc:3c:5f:91:3e:05:5f:fc: cd:0a:1d:49:3b:dd:72:8d:29:69:04:5b:53:0d:f5:e8:88:a5: 2c:17:84:58:51:f8:c9:a3:28:fc:b2:7e:b6:84:df:8b:e4:45: 29:82:7a:99:5f:97:07:d6:e2:49:17:23:00:86:e5:cf:7d:86: 4e:2f:f8:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SHFQSuWt/6ZIX0mbuMV5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhMGNjNDYzMDFjOGIxZmQ0NjM5MjkzMDE4ZmJhNTM2NTNh MjY1YjIwHhcNMjUxMjIxMDUwMTEwWhcNMjUxMjIyMDUwMTEwWjAzMTEwLwYDVQQD Eyg0NDI1ZDAxMjY5OTZmZDUzMTZiNmI2MDZhMTZkNGYxYjZmMDMwMzZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzu6GsMxHTGn9wP7bkPZ3azE1A1fQ LGLSv6OSUHOKm5CEOIfBivNdeMYDJksulxVSQddGd/yiMiqn8qQJ565s4kxZ0CzY lZ2Qri0I+ilZn0fqY6NWSwhaci6D5czVDYUSoXC0mCTvdxif1d9n5/1G5gyvTN64 PSp3ZG/xqwPaORqTz1j0igGNuO5HDEt4cwgyJOo0DFP4796569hetxdBJCjaYXV2 T1xcIqkDJVkbCqSRkOhS7G//Vlqy/Xn19tbbOymIYcH7nOcznVW0mCRNibCPjAOp NJPhzO+WLG3WwStuT7WZ3bSJOunjaSs5iDY/Lw0QFB60bKYlway9U++V8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQl0BJplv1TFra2BqFtTxtvAwNvMB8GA1UdIwQY MBaAFCoMxGMByLH9RjkpMBj7pTZTomWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8yODYyZDEtMmNjOS00NTY1LTg2YzIt MmJiNTU5N2EyNDM1LzEvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8yODYyZDEtMmNjOS00NTY1LTg2YzItMmJiNTU5N2EyNDM1 LzEvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPL9nqnGH 39KzZ0ITi/px1Z69G5p4VwIneuh4J69WngT/fexLn8plUMXQDhQ4c4temcHT///4 a0tPR1FSDuA5V5RtxamGheqTvobC0EXgH+/rAPlRK7JyWRuZelH6iaIpT0h0jLLp ki4BKp4QlXwPKU9g087etHp128RcP+zDkX2LJGH4p73X65w51HvPoJRuqhK3dECz LUOUosnfVSf8SMX16lNmLY6E2wJF+u31DPLoC2+LTHdPylkABq2lIfw8X5E+BV/8 zQodSTvdco0paQRbUw316IilLBeEWFH4yaMo/LJ+toTfi+RFKYJ6mV+XB9biSRcj AIblz32GTi/4TQ== -----END CERTIFICATE-----Generated at Sun Dec 21 08:14:31 2025 by rpki-client