This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json) Hash identifier: L0kuJXBPdoGPb/4N3MqHG/jTMvdlTVJ0ZGSMu89Ym8Y= Subject key identifier: 24:D7:B2:5A:92:41:18:E4:2A:31:4E:1B:26:9C:77:10:E8:74:DE:93 Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7 Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7 Certificate serial: 019B42B721A08629ADF1095D734B77C833DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft Manifest number: 0E34 Signing time: Sun 21 Dec 2025 21:00:56 +0000 Manifest this update: Sun 21 Dec 2025 21:00:56 +0000 Manifest next update: Mon 22 Dec 2025 21:00:56 +0000 Files and hashes: 1: 0vFnPnyD0rk0NBq-vHcuUjmsih4.roa (hash: 8C+9WOepMdgxD+Xcj7Wjy9LCISmYrp2hucRDb6Vj6WM=) 2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: NjntcDkYFcKLF3dGiRxgcz0a178bQSumU7HqDJFtT2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 21:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b7:21:a0:86:29:ad:f1:09:5d:73:4b:77:c8:33:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7 Validity Not Before: Dec 21 21:00:56 2025 GMT Not After : Dec 22 21:00:56 2025 GMT Subject: CN=24d7b25a924118e42a314e1b269c7710e874de93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:be:cf:01:77:f7:87:88:d4:23:da:85:a5:63: 27:a5:48:36:0c:20:ca:c8:77:3c:96:87:43:e4:f7: a4:91:0a:b0:fd:e1:b7:88:2a:dd:72:2f:d9:55:bc: 07:aa:67:9e:a0:0e:ba:09:81:e5:fe:c9:b2:9e:ac: 80:70:fb:14:0e:a0:da:cf:98:a1:1d:62:3e:ef:33: ca:0e:37:22:42:6d:4f:70:a1:14:7e:c8:26:30:05: ac:c8:06:60:c7:ba:df:e3:f0:c1:13:6d:da:a8:9e: ac:17:57:06:d4:82:97:0b:59:fb:76:c3:c7:f0:67: d4:99:04:d3:5e:07:a0:08:b8:09:71:22:51:a1:69: 0d:30:ca:27:2d:2f:5a:fd:32:56:92:36:4f:e5:94: e0:cd:77:f8:9a:ae:69:8d:25:cb:2a:02:d7:79:15: 94:3a:4d:9a:62:a2:2d:e0:df:42:81:9f:70:29:c6: c3:45:8b:9b:b6:9a:c9:5b:9e:8f:1a:48:53:54:2b: 23:1b:f7:ac:0f:57:42:8e:ea:ca:db:e9:f9:48:3d: 89:e2:4f:2a:4e:1f:bc:64:2f:6f:0e:4c:e5:4f:4e: 82:8b:00:90:4f:ec:7f:6a:02:29:77:7e:75:0e:8a: 69:86:ab:d1:b3:d5:74:d0:dc:b0:57:f2:b7:11:62: 1e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D7:B2:5A:92:41:18:E4:2A:31:4E:1B:26:9C:77:10:E8:74:DE:93 X509v3 Authority Key Identifier: keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:58:2b:73:d9:72:89:d2:27:5f:84:fa:fa:4d:94:66:6d:49: 4b:01:b5:cc:67:0a:dc:68:a3:57:48:b5:00:fa:38:34:e6:2f: 85:02:b7:6e:34:02:c2:01:8f:85:af:3b:7a:6c:17:2c:e1:09: f0:81:02:3a:9f:89:0b:dd:84:c9:bd:d6:65:13:78:e4:97:02: 92:f8:c4:b9:3d:a4:a5:ac:67:99:23:0e:8e:f6:05:d3:be:b0: 90:82:6a:13:4c:7e:97:aa:a9:53:36:64:2b:ce:31:45:59:4b: 49:45:67:42:f0:fb:5b:c0:65:7b:43:fe:ef:a9:cd:54:bb:02: f0:f0:cf:28:7f:c0:0b:33:64:c8:d9:84:32:4e:bd:cb:c3:eb: dd:7f:79:a1:1e:7d:c8:79:ad:51:92:d2:66:1a:53:90:90:3c: 38:a0:6f:a1:b5:1f:1a:4d:16:1a:c1:86:14:94:01:c8:cb:39: 85:15:13:db:38:59:01:2b:a1:36:7e:3c:a0:6f:00:fd:ac:a4: 29:ed:a0:1f:f8:d2:92:c6:ab:7c:b8:fd:c2:a0:4d:95:04:cb: 5f:1d:74:31:7c:04:3f:06:19:8a:de:74:19:30:0e:18:09:e9: 50:71:1c:c9:2e:66:ef:08:91:1d:68:a3:7b:97:53:16:1a:d4: 21:03:3b:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCtyGghimt8Qldc0t3yDPaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTZmMDY4M2NjNzRiYWRkMjNhODE0MGMzODVmMWM4MWNl MjRkZjcwHhcNMjUxMjIxMjEwMDU2WhcNMjUxMjIyMjEwMDU2WjAzMTEwLwYDVQQD EygyNGQ3YjI1YTkyNDExOGU0MmEzMTRlMWIyNjljNzcxMGU4NzRkZTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1L7PAXf3h4jUI9qFpWMnpUg2DCDK yHc8lodD5PekkQqw/eG3iCrdci/ZVbwHqmeeoA66CYHl/smynqyAcPsUDqDaz5ih HWI+7zPKDjciQm1PcKEUfsgmMAWsyAZgx7rf4/DBE23aqJ6sF1cG1IKXC1n7dsPH 8GfUmQTTXgegCLgJcSJRoWkNMMonLS9a/TJWkjZP5ZTgzXf4mq5pjSXLKgLXeRWU Ok2aYqIt4N9CgZ9wKcbDRYubtprJW56PGkhTVCsjG/esD1dCjurK2+n5SD2J4k8q Th+8ZC9vDkzlT06CiwCQT+x/agIpd351DopphqvRs9V00NywV/K3EWIekwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCTXslqSQRjkKjFOGyacdxDodN6TMB8GA1UdIwQY MBaAFKym8Gg8x0ut0jqBQMOF8cgc4k33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMt MDgyNzk2MWMwNWUwLzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMtMDgyNzk2MWMwNWUw LzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAflgrc9ly idInX4T6+k2UZm1JSwG1zGcK3GijV0i1APo4NOYvhQK3bjQCwgGPha87emwXLOEJ 8IECOp+JC92Eyb3WZRN45JcCkvjEuT2kpaxnmSMOjvYF076wkIJqE0x+l6qpUzZk K84xRVlLSUVnQvD7W8Ble0P+76nNVLsC8PDPKH/ACzNkyNmEMk69y8Pr3X95oR59 yHmtUZLSZhpTkJA8OKBvobUfGk0WGsGGFJQByMs5hRUT2zhZASuhNn48oG8A/ayk Ke2gH/jSksarfLj9wqBNlQTLXx10MXwEPwYZit50GTAOGAnpUHEcyS5m7wiRHWij e5dTFhrUIQM7/w== -----END CERTIFICATE-----Generated at Mon Dec 22 02:11:32 2025 by rpki-client