This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft File: kMuqazbmzWh0x47UWk-N1xcwMdk.mft (raw, json) Hash identifier: 38wW+cXXrAtLT+lNqzma+8CSwlK3JsHaOkc+YnR579A= Subject key identifier: 93:50:6C:83:65:5D:BE:CE:03:E0:CF:72:F8:C9:70:FC:B3:A2:81:2C Authority key identifier: 90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9 Certificate issuer: /CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9 Certificate serial: 019B42B79E0895FD7E2B4927F32787659929 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft Manifest number: 0CFC Signing time: Sun 21 Dec 2025 21:01:28 +0000 Manifest this update: Sun 21 Dec 2025 21:01:28 +0000 Manifest next update: Mon 22 Dec 2025 21:01:28 +0000 Files and hashes: 1: c4U2evb93678CsrZ2ZQQemAPoFw.roa (hash: 5ZLOIZ+BzX8i3ipSMR9csvqZ6+nojKYy3y5RkNukgEE=) 2: kMuqazbmzWh0x47UWk-N1xcwMdk.crl (hash: cqVSfcpSV8roNbLUWrDBekFd27545wI1syE1C89PqZc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 21:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b7:9e:08:95:fd:7e:2b:49:27:f3:27:87:65:99:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9 Validity Not Before: Dec 21 21:01:28 2025 GMT Not After : Dec 22 21:01:28 2025 GMT Subject: CN=93506c83655dbece03e0cf72f8c970fcb3a2812c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:60:41:54:ee:65:49:ea:ab:9e:28:cd:5d:89: 86:59:3d:23:b7:78:45:f0:20:ec:21:5d:04:e8:b3: b4:2e:08:25:f5:b2:d2:19:62:60:00:07:ab:e0:d5: 49:02:25:fd:84:4e:27:32:90:2e:95:8d:a6:b1:36: d6:7b:22:6d:f7:84:a0:05:81:ab:16:11:56:22:fb: b5:f6:61:9e:5d:ea:f7:1c:a4:d7:34:8a:46:cb:fd: 0c:ec:cc:86:43:94:9c:4c:57:d7:2b:ef:91:4d:67: b4:11:3f:4b:18:76:29:54:65:50:a6:52:44:6e:44: 4f:3d:d3:b9:50:d2:d1:bc:22:bd:10:bb:09:f1:85: af:42:f5:71:e6:c4:60:58:04:bd:72:7a:b1:f1:ac: 98:56:7f:2d:7b:c4:79:0b:f2:27:29:c8:19:02:b4: 4a:d3:1e:63:9e:ed:b2:e9:08:a5:0e:06:26:d6:11: 23:d8:49:31:6d:fd:70:11:f5:1e:54:0e:6a:de:1a: 73:b7:86:74:3b:fe:a7:f6:a3:33:94:b9:b5:30:9b: 4e:39:86:51:b0:20:f7:10:fe:27:46:1c:52:ec:6d: 17:73:5a:b4:c2:fd:6d:de:53:c0:5a:fd:92:b0:20: 31:0d:09:7e:bc:3b:3e:c3:9e:28:75:b1:9a:74:d1: 58:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:50:6C:83:65:5D:BE:CE:03:E0:CF:72:F8:C9:70:FC:B3:A2:81:2C X509v3 Authority Key Identifier: keyid:90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:de:db:c4:7c:7d:ea:4c:29:c0:ec:c0:be:83:12:38:b1:99: 50:ac:c9:06:ff:df:75:8e:cd:2d:8d:ad:1e:76:ef:1f:7e:3d: 69:4c:f0:70:b2:c4:79:81:42:34:8b:27:c2:84:31:c1:51:e2: 4d:b8:ff:b6:08:0c:12:c2:21:d6:a1:f1:c2:d4:f7:64:b4:fb: 51:c7:9f:1d:3e:43:8f:be:e0:9a:ef:00:f9:e7:ee:89:cc:e5: 0a:d1:f1:d2:b0:5d:7b:01:2b:e6:b1:4b:81:c1:96:4a:90:21: cd:29:a2:1b:67:31:a7:e4:42:b6:13:81:ac:a3:91:15:2c:8b: 80:1e:81:5a:33:db:9b:36:ab:f0:59:d5:b9:7f:88:70:21:09: 7b:3b:2b:13:1d:9f:a0:dd:ec:5b:e4:79:de:3f:ee:03:c5:9e: d1:83:ca:49:36:db:ca:ab:0d:2c:4d:14:4d:7e:86:1b:9f:0b: 3b:a8:34:26:ec:7e:05:e8:cb:43:67:36:03:1b:02:f1:cf:1e: 0f:39:42:6b:05:68:fd:97:d0:31:df:7b:3e:de:e2:ad:52:02: 30:12:81:bb:02:a5:ba:95:6c:cf:30:25:6e:cc:d2:35:a0:b5: 46:20:d4:cc:65:a9:5b:ad:1c:f2:45:b1:9e:8c:7a:ba:de:b9: bd:81:0a:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCt54Ilf1+K0kn8yeHZZkpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwY2JhYTZiMzZlNmNkNjg3NGM3OGVkNDVhNGY4ZGQ3MTcz MDMxZDkwHhcNMjUxMjIxMjEwMTI4WhcNMjUxMjIyMjEwMTI4WjAzMTEwLwYDVQQD Eyg5MzUwNmM4MzY1NWRiZWNlMDNlMGNmNzJmOGM5NzBmY2IzYTI4MTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGBBVO5lSeqrnijNXYmGWT0jt3hF 8CDsIV0E6LO0Lggl9bLSGWJgAAer4NVJAiX9hE4nMpAulY2msTbWeyJt94SgBYGr FhFWIvu19mGeXer3HKTXNIpGy/0M7MyGQ5ScTFfXK++RTWe0ET9LGHYpVGVQplJE bkRPPdO5UNLRvCK9ELsJ8YWvQvVx5sRgWAS9cnqx8ayYVn8te8R5C/InKcgZArRK 0x5jnu2y6QilDgYm1hEj2Ekxbf1wEfUeVA5q3hpzt4Z0O/6n9qMzlLm1MJtOOYZR sCD3EP4nRhxS7G0Xc1q0wv1t3lPAWv2SsCAxDQl+vDs+w54odbGadNFYKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJNQbINlXb7OA+DPcvjJcPyzooEsMB8GA1UdIwQY MBaAFJDLqms25s1odMeO1FpPjdcXMDHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva011cWF6Ym16V2gweDQ3VVdrLU4xeGN3TWRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8wNmNhNWQtZDBjNC00MjE1LTg5Njgt YjZkNGM0ZmMwYzIxLzEva011cWF6Ym16V2gweDQ3VVdrLU4xeGN3TWRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy8wNmNhNWQtZDBjNC00MjE1LTg5NjgtYjZkNGM0ZmMwYzIx LzEva011cWF6Ym16V2gweDQ3VVdrLU4xeGN3TWRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE97bxHx9 6kwpwOzAvoMSOLGZUKzJBv/fdY7NLY2tHnbvH349aUzwcLLEeYFCNIsnwoQxwVHi Tbj/tggMEsIh1qHxwtT3ZLT7UcefHT5Dj77gmu8A+efuiczlCtHx0rBdewEr5rFL gcGWSpAhzSmiG2cxp+RCthOBrKORFSyLgB6BWjPbmzar8FnVuX+IcCEJezsrEx2f oN3sW+R53j/uA8We0YPKSTbbyqsNLE0UTX6GG58LO6g0Jux+BejLQ2c2AxsC8c8e DzlCawVo/ZfQMd97Pt7irVICMBKBuwKlupVszzAlbszSNaC1RiDUzGWpW60c8kWx nox6ut65vYEKmw== -----END CERTIFICATE-----Generated at Mon Dec 22 04:43:52 2025 by rpki-client