This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json) Hash identifier: HRuO6sQ7DqMAWQPaanRK/fCdHLf64hUem3IwUpP1heo= Subject key identifier: 2C:1C:09:DB:66:18:F8:B8:E8:0B:18:A9:99:5B:59:EB:D0:7F:7E:7F Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23 Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223 Certificate serial: 019B3D23791BE33353E29E0D71278A1A9E42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft Manifest number: 0B96 Signing time: Sat 20 Dec 2025 19:01:33 +0000 Manifest this update: Sat 20 Dec 2025 19:01:33 +0000 Manifest next update: Sun 21 Dec 2025 19:01:33 +0000 Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=) 2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: W5hmwWjmqLvRmyjigdSn3VV5v5aH/b5bb6ExBSQiokg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:79:1b:e3:33:53:e2:9e:0d:71:27:8a:1a:9e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223 Validity Not Before: Dec 20 19:01:33 2025 GMT Not After : Dec 21 19:01:33 2025 GMT Subject: CN=2c1c09db6618f8b8e80b18a9995b59ebd07f7e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:97:5b:b9:2b:b6:5e:5c:1a:d7:8c:b6:a0:ab: df:8d:4b:31:98:d8:ed:eb:88:ac:25:da:c4:7e:74: 93:8c:79:52:4a:ad:d1:e3:c7:50:2b:a9:0c:f6:2e: ab:29:e2:ef:9f:15:1e:ff:1d:b3:d9:6f:3f:c0:6e: e3:15:b8:e7:2a:9c:16:ff:44:be:44:d4:7b:0f:6d: 9f:e5:60:69:4e:d6:72:12:16:78:b0:93:fe:4f:d2: 0f:92:3d:c3:e6:83:32:56:99:30:c3:24:79:04:ea: 35:4e:8f:4b:6d:47:61:69:bb:32:06:9c:07:49:43: 1b:e5:8b:33:3b:67:a3:26:04:0a:4b:02:9a:6d:df: d5:0b:f2:29:4f:0b:cc:f4:8b:2c:af:cf:ec:aa:49: 09:cc:1b:77:b0:45:b8:3a:89:4a:b1:b1:b5:fd:6a: de:c7:15:9e:db:07:c3:9f:f5:7b:54:ad:3f:03:d9: 25:64:a8:1e:0a:f4:0d:fd:3b:bd:07:6f:1d:55:15: d5:7f:69:07:6d:5c:35:bd:b7:f9:fb:e6:06:ce:ea: 2c:ce:dd:c9:ad:47:60:59:9e:d8:40:b7:18:b3:f3: f4:78:ab:be:2a:52:1a:3c:e9:63:d0:ca:54:3f:fa: af:55:bb:97:88:ea:ff:80:ad:5a:f3:5e:23:e8:dd: 7e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1C:09:DB:66:18:F8:B8:E8:0B:18:A9:99:5B:59:EB:D0:7F:7E:7F X509v3 Authority Key Identifier: keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:50:83:0a:8b:42:54:29:4f:e6:f9:8e:2c:27:bd:57:81:05: d3:b4:6a:a1:6c:74:b9:d2:bc:73:89:8d:84:ae:83:7e:d9:c7: a7:cd:2f:09:02:6b:81:31:b9:63:98:40:f4:f4:f6:8f:4c:9b: 7d:53:a1:10:4d:20:1b:2d:73:1d:0a:a7:b2:ef:6b:0a:02:36: fa:7c:26:bf:6b:24:f1:f2:e8:90:6e:a8:88:09:23:79:d5:16: 27:01:77:98:91:24:8a:74:1d:87:35:0f:a1:9c:b3:2e:2c:56: f2:a5:ee:45:db:75:a4:9a:e2:75:20:a4:d4:8e:3c:17:bc:cc: 38:b1:04:03:40:bb:cf:ab:df:47:0a:f0:24:55:e9:b7:7d:37: 2b:0a:13:a0:4b:1c:9a:fb:af:4b:01:d7:e8:d7:28:16:f9:1b: 5c:30:99:12:39:5e:27:05:48:ee:93:cd:73:af:c9:d6:5f:3f: 5e:70:69:4e:a0:dd:ba:cf:3b:42:71:9e:8e:a9:57:6c:30:e1: ab:2e:d6:ce:4b:b0:3e:9c:53:40:8a:03:08:1d:c6:ad:83:da: 72:cc:15:8a:e4:00:fb:66:1c:95:6e:ef:7c:65:55:c6:da:96: 30:25:0c:e8:96:f8:9f:af:72:03:be:c8:3c:a8:40:97:af:23: 74:e1:76:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9I3kb4zNT4p4NcSeKGp5CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy YzQyMjMwHhcNMjUxMjIwMTkwMTMzWhcNMjUxMjIxMTkwMTMzWjAzMTEwLwYDVQQD EygyYzFjMDlkYjY2MThmOGI4ZTgwYjE4YTk5OTViNTllYmQwN2Y3ZTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupdbuSu2Xlwa14y2oKvfjUsxmNjt 64isJdrEfnSTjHlSSq3R48dQK6kM9i6rKeLvnxUe/x2z2W8/wG7jFbjnKpwW/0S+ RNR7D22f5WBpTtZyEhZ4sJP+T9IPkj3D5oMyVpkwwyR5BOo1To9LbUdhabsyBpwH SUMb5YszO2ejJgQKSwKabd/VC/IpTwvM9Issr8/sqkkJzBt3sEW4OolKsbG1/Wre xxWe2wfDn/V7VK0/A9klZKgeCvQN/Tu9B28dVRXVf2kHbVw1vbf5++YGzuoszt3J rUdgWZ7YQLcYs/P0eKu+KlIaPOlj0MpUP/qvVbuXiOr/gK1a814j6N1+MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCwcCdtmGPi46AsYqZlbWevQf35/MB8GA1UdIwQY MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXVCDCotC VClP5vmOLCe9V4EF07RqoWx0udK8c4mNhK6DftnHp80vCQJrgTG5Y5hA9PT2j0yb fVOhEE0gGy1zHQqnsu9rCgI2+nwmv2sk8fLokG6oiAkjedUWJwF3mJEkinQdhzUP oZyzLixW8qXuRdt1pJridSCk1I48F7zMOLEEA0C7z6vfRwrwJFXpt303KwoToEsc mvuvSwHX6NcoFvkbXDCZEjleJwVI7pPNc6/J1l8/XnBpTqDdus87QnGejqlXbDDh qy7WzkuwPpxTQIoDCB3GrYPacswViuQA+2YclW7vfGVVxtqWMCUM6Jb4n69yA77I PKhAl68jdOF2pQ== -----END CERTIFICATE-----Generated at Sun Dec 21 03:51:10 2025 by rpki-client