This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json) Hash identifier: 8uFwVfwD6bD9X69uUxUyWv+icuutaJ9g5HmyVDe2qHc= Subject key identifier: 4B:26:00:6C:4C:53:09:65:BC:ED:22:32:1D:31:61:0B:39:53:43:69 Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Certificate serial: 019B5C7740A87854D0C29316A425931FCB60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft Manifest number: 179E Signing time: Fri 26 Dec 2025 21:01:17 +0000 Manifest this update: Fri 26 Dec 2025 21:01:17 +0000 Manifest next update: Sat 27 Dec 2025 21:01:17 +0000 Files and hashes: 1: 0l-uuc0ta--zZGivAH1vRPmB_34.roa (hash: N3+ixN59bx1CAdzBVH5dBhTA7XSG6tSZGbX7+qQ9kkU=) 2: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: 2og7kTgtwv4+ODWQKDt7SY1W9vKzNcmaj0yjLXMMlTk=) 3: ZjCHU3LEGq34M383f_KumGN_eB4.roa (hash: YxlGAgs8g3hAPxhoH9iP3cLnbEfE9zXQU/84spENz30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:77:40:a8:78:54:d0:c2:93:16:a4:25:93:1f:cb:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Validity Not Before: Dec 26 21:01:17 2025 GMT Not After : Dec 27 21:01:17 2025 GMT Subject: CN=4b26006c4c530965bced22321d31610b39534369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3f:9b:c9:15:a6:15:2d:04:7b:7a:48:6e:da: 8b:6e:37:a9:a1:aa:f2:2d:3e:e3:7b:3f:97:e8:5a: 9d:74:12:37:ae:f1:75:3f:63:3b:7d:b9:11:6f:d5: f4:65:b6:28:78:43:dd:ef:e6:c1:ec:6e:c9:2d:a0: aa:13:4f:43:d8:40:f1:a7:76:9c:fa:7d:84:99:8e: 35:76:13:01:bc:40:d7:84:a4:8f:09:86:f1:2c:0d: 0f:ed:7a:37:c3:16:5e:04:2b:7b:df:f8:6a:67:0b: 6f:ed:d6:dc:0c:97:76:dd:71:e6:57:a1:07:89:dd: 20:7c:77:d0:8b:27:3e:b3:2f:ee:e6:3f:8b:34:da: 9c:d8:61:46:d8:25:70:c0:f0:34:a4:dd:57:ea:02: 62:2b:30:f2:8c:8a:28:79:6f:c9:37:ed:c4:0f:a4: ad:51:df:df:4b:6c:5f:71:8c:71:30:ac:a5:75:c0: 1a:9e:e5:09:5e:74:a9:d5:32:a1:9c:99:a2:83:a5: 1b:a1:02:97:47:82:0b:e7:31:b3:3a:db:98:56:75: f6:6d:ec:a5:53:45:f7:e7:4a:48:ba:51:15:79:4d: c7:53:d9:e9:8f:86:88:f4:cc:54:c1:b6:1f:f3:94: af:e9:82:0d:90:ef:2f:fe:88:79:88:f1:ff:2d:61: cf:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:26:00:6C:4C:53:09:65:BC:ED:22:32:1D:31:61:0B:39:53:43:69 X509v3 Authority Key Identifier: keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:4f:a5:29:96:c8:9a:7a:89:2c:7c:1b:ad:c1:d2:06:bf:e2: 4d:64:07:4b:5e:8e:25:db:1e:7a:3d:81:5d:e6:6e:de:24:72: 02:9d:5d:25:a1:fd:8b:2a:04:02:07:93:2a:ba:4a:24:1f:e5: 31:4d:d0:9a:7b:03:d0:a6:e1:92:c1:b2:48:67:26:df:7b:80: 42:92:e0:4a:38:6b:9b:a2:2a:e2:1d:51:11:65:17:17:ca:72: 7d:40:bd:e3:80:9d:99:35:d8:ce:9c:84:f7:f4:cc:2e:8f:81: 34:11:ee:66:75:39:80:60:2e:40:61:84:c3:a2:97:47:e7:37: 15:80:0f:b2:06:db:01:d8:dd:f8:51:97:39:f6:c0:7a:7d:ff: 74:70:14:e8:b4:32:a5:21:26:30:7a:92:65:91:f0:a7:be:e9: 42:f4:29:2f:1d:a5:61:9b:20:63:43:a0:9b:33:ef:6c:a8:80: 8f:c8:86:88:61:85:23:c4:e7:a4:a5:9b:de:b9:13:b1:cb:fa: 7c:f4:bb:03:93:98:3e:fa:3c:92:9d:db:ba:50:c6:fd:44:19: ca:b0:1e:50:6a:2f:72:ed:16:e8:77:cb:8a:b1:77:63:b5:28: af:40:47:1e:91:c1:54:a0:6f:d5:c9:7e:7e:82:8c:a0:e8:77: c6:f4:31:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcd0CoeFTQwpMWpCWTH8tgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk Yjg5NzMwHhcNMjUxMjI2MjEwMTE3WhcNMjUxMjI3MjEwMTE3WjAzMTEwLwYDVQQD Eyg0YjI2MDA2YzRjNTMwOTY1YmNlZDIyMzIxZDMxNjEwYjM5NTM0MzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtD+byRWmFS0Ee3pIbtqLbjepoary LT7jez+X6FqddBI3rvF1P2M7fbkRb9X0ZbYoeEPd7+bB7G7JLaCqE09D2EDxp3ac +n2EmY41dhMBvEDXhKSPCYbxLA0P7Xo3wxZeBCt73/hqZwtv7dbcDJd23XHmV6EH id0gfHfQiyc+sy/u5j+LNNqc2GFG2CVwwPA0pN1X6gJiKzDyjIooeW/JN+3ED6St Ud/fS2xfcYxxMKyldcAanuUJXnSp1TKhnJmig6UboQKXR4IL5zGzOtuYVnX2beyl U0X350pIulEVeU3HU9npj4aI9MxUwbYf85Sv6YINkO8v/oh5iPH/LWHPTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEsmAGxMUwllvO0iMh0xYQs5U0NpMB8GA1UdIwQY MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApE+lKZbI mnqJLHwbrcHSBr/iTWQHS16OJdseej2BXeZu3iRyAp1dJaH9iyoEAgeTKrpKJB/l MU3QmnsD0KbhksGySGcm33uAQpLgSjhrm6Iq4h1REWUXF8pyfUC944CdmTXYzpyE 9/TMLo+BNBHuZnU5gGAuQGGEw6KXR+c3FYAPsgbbAdjd+FGXOfbAen3/dHAU6LQy pSEmMHqSZZHwp77pQvQpLx2lYZsgY0OgmzPvbKiAj8iGiGGFI8TnpKWb3rkTscv6 fPS7A5OYPvo8kp3bulDG/UQZyrAeUGovcu0W6HfLirF3Y7Uor0BHHpHBVKBv1cl+ foKMoOh3xvQxdQ== -----END CERTIFICATE-----Generated at Fri Dec 26 23:10:51 2025 by rpki-client