This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json) Hash identifier: 9zjspZ99qgqgB13Hel8LblBMmgq9S7LilHRNytj4GZY= Subject key identifier: 06:FC:FB:F6:F3:AA:01:EC:74:86:E1:11:51:63:E3:90:2E:0F:1F:FD Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34 Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234 Certificate serial: 019B51BC1E57C7D6FED517AB6CBA0BEB68D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft Manifest number: 06AC Signing time: Wed 24 Dec 2025 19:00:41 +0000 Manifest this update: Wed 24 Dec 2025 19:00:41 +0000 Manifest next update: Thu 25 Dec 2025 19:00:41 +0000 Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: 9xu/9MF5eBtZhKhUyeyfwWuTzhzaILxkdTzCTWDtKFY=) 2: N3FIvLoAi-SrbWKri-QxAJXERl0.roa (hash: oePUnAR/4Fy7x02aEJQp05kRfdkIvxnqMAYzYP5D1B0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:1e:57:c7:d6:fe:d5:17:ab:6c:ba:0b:eb:68:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234 Validity Not Before: Dec 24 19:00:41 2025 GMT Not After : Dec 25 19:00:41 2025 GMT Subject: CN=06fcfbf6f3aa01ec7486e1115163e3902e0f1ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:3e:d1:17:fe:39:6f:9b:49:8d:c1:ad:07: 28:72:0a:07:f3:d6:1b:2d:19:0a:41:ef:19:55:e1: 51:63:75:93:8b:16:cc:d2:e1:a5:14:91:3c:22:50: 51:32:04:c0:01:8e:0e:0e:db:ad:25:a3:b6:ed:64: 15:ed:b4:a0:66:4b:fb:d9:36:7d:42:a7:15:15:25: a2:6b:cf:19:f3:ed:f0:85:cd:9d:36:f1:f4:16:7c: 39:ac:88:b6:4c:8e:30:ab:e6:1a:d4:f1:9b:5f:56: b9:74:74:6a:be:c5:81:48:45:36:21:c7:91:b8:a0: 8a:13:1c:01:ec:40:cf:91:a2:20:c2:9d:f4:76:0e: b2:f6:85:92:da:12:42:cb:7f:07:b8:82:a6:c8:3a: 3e:a5:19:6a:00:e9:8f:cd:6b:e3:22:30:44:2a:a3: 25:d7:94:d2:89:f4:89:eb:1e:4a:4a:ca:05:92:33: f4:58:cb:21:e9:f6:1b:39:4f:7a:a1:11:9d:f3:22: a4:dd:39:64:93:2b:f6:7c:64:89:a2:49:9e:47:39: f1:d6:f1:00:5c:5e:e3:bd:ae:d1:13:cf:c2:61:2d: 0e:16:3e:4e:18:42:ec:9b:92:04:47:ee:92:25:be: bb:7c:0a:2e:8b:f7:15:7f:91:70:a8:55:a3:29:2d: eb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:FC:FB:F6:F3:AA:01:EC:74:86:E1:11:51:63:E3:90:2E:0F:1F:FD X509v3 Authority Key Identifier: keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:bf:d0:3c:e8:1d:20:5b:23:32:ea:03:05:5a:69:f9:50:42: c9:78:75:b0:b8:48:ab:f3:19:07:a9:b3:56:ad:e8:ee:f1:08: 58:69:03:a1:3e:60:5f:45:a0:99:65:0c:90:bb:6a:06:ee:41: 50:c9:40:6c:f4:aa:be:0d:c6:bf:06:93:20:1a:b5:02:97:23: a8:9a:47:a1:b2:68:2c:f6:f9:a9:e0:07:b8:50:52:de:37:23: 4d:78:f6:cc:31:81:b6:0c:ca:15:ce:c0:db:6d:99:34:49:74: fb:1d:0e:29:fc:5c:a0:3c:d3:81:d5:93:a7:fe:97:a3:fe:3d: 32:40:62:55:a6:0f:57:72:64:86:47:20:1c:05:e4:df:4c:fe: 3d:7d:de:cd:dd:0a:4b:63:fe:15:42:16:3d:95:ba:98:45:9e: 4c:90:07:05:d2:a8:92:59:c8:f1:b7:b8:96:c6:93:68:71:80: 5a:3a:5c:76:2a:6e:44:f4:84:73:4d:20:6e:27:83:43:be:08: 47:ac:44:c6:51:44:0e:82:38:1d:92:6e:67:28:0a:da:e5:21: 96:9e:8b:dd:54:dc:38:b4:88:01:50:de:95:6a:67:97:7f:48: 2b:11:13:04:d2:1f:b4:99:7e:90:ce:05:80:24:8f:11:b7:4d: be:df:2f:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvB5Xx9b+1RerbLoL62jZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YmJiNTRlMzc4MjZjMDM5MGIwNDM3OTI3OWY4ZTA2Y2Zm M2EyMzQwHhcNMjUxMjI0MTkwMDQxWhcNMjUxMjI1MTkwMDQxWjAzMTEwLwYDVQQD EygwNmZjZmJmNmYzYWEwMWVjNzQ4NmUxMTE1MTYzZTM5MDJlMGYxZmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAQ+0Rf+OW+bSY3BrQcocgoH89Yb LRkKQe8ZVeFRY3WTixbM0uGlFJE8IlBRMgTAAY4ODtutJaO27WQV7bSgZkv72TZ9 QqcVFSWia88Z8+3whc2dNvH0Fnw5rIi2TI4wq+Ya1PGbX1a5dHRqvsWBSEU2IceR uKCKExwB7EDPkaIgwp30dg6y9oWS2hJCy38HuIKmyDo+pRlqAOmPzWvjIjBEKqMl 15TSifSJ6x5KSsoFkjP0WMsh6fYbOU96oRGd8yKk3Tlkkyv2fGSJokmeRznx1vEA XF7jva7RE8/CYS0OFj5OGELsm5IER+6SJb67fAoui/cVf5FwqFWjKS3rKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAb8+/bzqgHsdIbhEVFj45AuDx/9MB8GA1UdIwQY MBaAFCi7tU43gmwDkLBDeSefjgbP86I0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mZTcyOTYtZWM4Yy00MTYzLWE1NTQt NzhjMDE3NzYyZjlmLzEvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9mZTcyOTYtZWM4Yy00MTYzLWE1NTQtNzhjMDE3NzYyZjlm LzEvS0x1MVRqZUNiQU9Rc0VONUo1LU9Cc196b2pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl7/QPOgd IFsjMuoDBVpp+VBCyXh1sLhIq/MZB6mzVq3o7vEIWGkDoT5gX0WgmWUMkLtqBu5B UMlAbPSqvg3GvwaTIBq1ApcjqJpHobJoLPb5qeAHuFBS3jcjTXj2zDGBtgzKFc7A 222ZNEl0+x0OKfxcoDzTgdWTp/6Xo/49MkBiVaYPV3JkhkcgHAXk30z+PX3ezd0K S2P+FUIWPZW6mEWeTJAHBdKoklnI8be4lsaTaHGAWjpcdipuRPSEc00gbieDQ74I R6xExlFEDoI4HZJuZygK2uUhlp6L3VTcOLSIAVDelWpnl39IKxETBNIftJl+kM4F gCSPEbdNvt8vxA== -----END CERTIFICATE-----Generated at Wed Dec 24 21:23:53 2025 by rpki-client