This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json) Hash identifier: M7rkNEdAKjlBN+C8SiT5bPklKbbfFLdEka94HCwnbko= Subject key identifier: FC:2A:2C:27:A1:A8:72:01:EF:6F:01:60:5A:BF:61:89:81:DA:0C:C6 Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Certificate serial: 019B3C7DC764137748FAF288BBF0BA0ECA14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 16:00:34 +0000 Manifest this update: Sat 20 Dec 2025 16:00:34 +0000 Manifest next update: Sun 21 Dec 2025 16:00:34 +0000 Files and hashes: 1: 91oUMgCP74fspZxBBljzGiQPBlI.roa (hash: Ys2eA6I4wLf+Ld2RnHYB/UxEHZh1MaBORWqhbF+NkdI=) 2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: 7bt8qyphwfCR2TXdC6PhmpY0imnrTInVuzQR9ldA3oo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7d:c7:64:13:77:48:fa:f2:88:bb:f0:ba:0e:ca:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3 Validity Not Before: Dec 20 16:00:34 2025 GMT Not After : Dec 21 16:00:34 2025 GMT Subject: CN=fc2a2c27a1a87201ef6f01605abf618981da0cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:dd:6d:21:e3:c3:f3:4d:3f:0a:42:72:e8:07: 4f:f0:3c:20:85:a1:0d:0b:b6:48:ec:36:60:bb:44: 0e:46:7a:6c:06:2c:4f:4e:a7:a5:70:5f:9d:68:28: 95:00:47:c7:35:b0:55:2d:b8:2e:db:5a:0d:f1:53: e8:25:1c:42:16:74:b9:fa:10:54:2f:be:9d:bb:fe: f3:a3:23:03:09:d0:f9:03:e7:49:6f:ad:72:14:1f: 0d:39:07:a0:99:5d:2d:c1:09:0e:68:be:8d:46:04: 99:6d:51:80:af:6c:ee:cf:50:51:c0:3f:86:c1:1f: a9:0a:c9:72:8a:5c:fd:1d:82:3f:22:ba:76:93:ef: f0:73:c1:05:72:b5:78:21:c3:ba:0e:aa:2d:4e:e3: 4f:ba:8f:54:ba:51:0d:a5:5b:2e:2c:ab:6b:fc:c8: be:27:5d:92:90:71:8d:0b:a2:65:86:74:5c:26:e1: 05:bc:1b:8a:32:99:48:72:f1:33:04:b6:7c:09:be: dc:d3:ab:2b:b5:d3:f9:30:68:ce:4a:71:72:5e:5a: 00:02:4e:77:ab:43:a2:18:c9:19:ca:d9:0f:e4:f5: ba:98:82:c0:77:71:fd:fb:6a:16:86:65:3e:79:c0: fb:be:ef:f3:a5:c3:6e:21:7b:7d:53:21:f3:35:dd: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2A:2C:27:A1:A8:72:01:EF:6F:01:60:5A:BF:61:89:81:DA:0C:C6 X509v3 Authority Key Identifier: keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:5e:63:82:2f:9d:b0:ce:75:04:dd:50:d0:7a:95:9a:c5:f9: e8:8d:2c:94:5f:2f:3e:33:ed:70:a0:e1:fd:a3:44:20:fa:ec: f3:53:b7:78:11:8c:48:b4:c1:8e:a3:b1:32:8f:6a:20:4c:3b: 35:46:ad:f7:46:99:89:3e:fb:8c:4a:a7:97:82:42:d5:4a:92: a8:dd:08:59:bc:b2:f5:3b:58:2c:09:04:97:aa:d5:23:3f:e2: a3:14:6a:b6:65:ea:ab:d5:27:a0:1a:89:a1:d7:a6:ed:28:ae: ba:06:36:7a:7f:e1:41:67:98:b8:39:3d:2c:cf:d1:68:ef:51: 41:f8:c4:14:7f:bf:52:65:8b:a1:91:df:00:2d:ae:bc:9a:6c: 3a:fc:82:5e:d5:7d:f0:f8:d9:3d:b8:b4:40:d5:c9:c8:da:25: 50:b7:f9:ee:fb:27:ae:1d:7b:8e:4e:d0:59:9c:1a:44:d2:64: 29:87:80:a1:2c:2c:3a:6d:d1:94:d8:4b:2f:93:f7:e6:3b:eb: 46:95:5f:2d:f3:44:d0:e3:2b:16:12:5f:b3:54:e3:62:7a:aa: 93:cf:50:d9:5b:33:0d:e1:7b:78:ac:e2:ee:85:1f:4c:35:4c: b8:b4:ec:3c:f7:4c:ae:cd:02:23:c0:72:02:cd:1c:8b:93:da: e5:cf:e7:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fcdkE3dI+vKIu/C6DsoUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNDMzNmRhMWViNzIxNmUyMGVjMDRhN2YwMzFlYjRhMWI2 MzFiYjMwHhcNMjUxMjIwMTYwMDM0WhcNMjUxMjIxMTYwMDM0WjAzMTEwLwYDVQQD EyhmYzJhMmMyN2ExYTg3MjAxZWY2ZjAxNjA1YWJmNjE4OTgxZGEwY2M2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkt1tIePD800/CkJy6AdP8DwghaEN C7ZI7DZgu0QORnpsBixPTqelcF+daCiVAEfHNbBVLbgu21oN8VPoJRxCFnS5+hBU L76du/7zoyMDCdD5A+dJb61yFB8NOQegmV0twQkOaL6NRgSZbVGAr2zuz1BRwD+G wR+pCslyilz9HYI/Irp2k+/wc8EFcrV4IcO6DqotTuNPuo9UulENpVsuLKtr/Mi+ J12SkHGNC6JlhnRcJuEFvBuKMplIcvEzBLZ8Cb7c06srtdP5MGjOSnFyXloAAk53 q0OiGMkZytkP5PW6mILAd3H9+2oWhmU+ecD7vu/zpcNuIXt9UyHzNd1PEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPwqLCehqHIB728BYFq/YYmB2gzGMB8GA1UdIwQY MBaAFJpDNtoetyFuIOwEp/Ax60obYxuzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYt ZmE4ODA2YTAyNGM0LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9hN2U5YjktNmJhYy00NTM4LWE5ZTYtZmE4ODA2YTAyNGM0 LzEvbWtNMjJoNjNJVzRnN0FTbjhESHJTaHRqRzdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnl5jgi+d sM51BN1Q0HqVmsX56I0slF8vPjPtcKDh/aNEIPrs81O3eBGMSLTBjqOxMo9qIEw7 NUat90aZiT77jEqnl4JC1UqSqN0IWbyy9TtYLAkEl6rVIz/ioxRqtmXqq9UnoBqJ odem7SiuugY2en/hQWeYuDk9LM/RaO9RQfjEFH+/UmWLoZHfAC2uvJpsOvyCXtV9 8PjZPbi0QNXJyNolULf57vsnrh17jk7QWZwaRNJkKYeAoSwsOm3RlNhLL5P35jvr RpVfLfNE0OMrFhJfs1TjYnqqk89Q2VszDeF7eKzi7oUfTDVMuLTsPPdMrs0CI8By As0ci5Pa5c/n3g== -----END CERTIFICATE-----Generated at Sat Dec 20 22:03:47 2025 by rpki-client