This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json) Hash identifier: afF2GCIXQ2jKvzrg+HrlYX+G7Hp8FtMH6RJ3//DQgak= Subject key identifier: D2:D9:5D:46:38:DA:CB:6D:38:D3:56:EC:11:B8:DA:E6:28:D6:C5:3D Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d Certificate serial: 019B631F7C003D9B6BC813EC46DDBC906C2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft Manifest number: 0C82 Signing time: Sun 28 Dec 2025 04:02:46 +0000 Manifest this update: Sun 28 Dec 2025 04:02:46 +0000 Manifest next update: Mon 29 Dec 2025 04:02:46 +0000 Files and hashes: 1: 0i9Bsr9ABLnx3mgPWtu21_vME3g.roa (hash: TMrcqTSOi1Ov7CcLLSWohgeiaaCi8xEADwSrQIF/DCo=) 2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: 74OpoB8oj/JL08Q3cJgdCIsRbMuXWSxHp2KUTYpMaUE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:1f:7c:00:3d:9b:6b:c8:13:ec:46:dd:bc:90:6c:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d Validity Not Before: Dec 28 04:02:46 2025 GMT Not After : Dec 29 04:02:46 2025 GMT Subject: CN=d2d95d4638dacb6d38d356ec11b8dae628d6c53d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:31:65:40:07:0c:4c:88:d2:e0:78:b0:6e:9f: 33:9f:9b:35:7c:ad:cc:04:ba:ae:33:ff:3e:b2:05: 8c:ef:e9:91:d2:03:6a:b7:a0:4a:1f:b2:cf:56:1f: be:b2:9a:d6:39:41:0c:98:08:09:77:56:fe:1f:8f: 8d:5d:bd:6c:96:79:da:9b:4b:4c:44:32:6b:a0:00: 36:8f:22:54:c1:3e:4b:97:66:65:7d:4b:60:b6:cf: 01:25:51:99:bf:9b:41:e6:50:60:8f:27:a7:73:e2: fa:a0:e3:79:cb:a0:f5:31:7d:70:96:9d:6e:5b:0d: 35:a0:d9:60:09:81:08:25:47:5c:f2:f2:db:74:de: b1:aa:22:f8:e6:ca:10:5a:c8:de:6d:0d:7e:b1:07: 11:21:c7:68:68:22:73:af:d0:83:87:0c:3b:d7:2b: 02:1e:81:85:29:a7:72:13:47:94:3a:6b:7b:4a:3f: bd:a4:a1:51:54:1c:b5:93:29:29:a9:44:42:7f:aa: c3:c9:5e:92:0d:a7:c3:e4:94:4e:64:e6:75:e4:eb: e9:41:b2:d0:87:63:68:19:12:cc:f3:9c:e7:24:d3: 3d:73:3c:7f:99:29:03:d9:8c:5e:cd:6a:cc:8b:3f: 1a:be:1d:03:a5:b8:2b:5f:52:6a:ac:25:a6:17:71: bb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D9:5D:46:38:DA:CB:6D:38:D3:56:EC:11:B8:DA:E6:28:D6:C5:3D X509v3 Authority Key Identifier: keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:b8:7f:87:30:06:eb:33:24:e0:4e:16:25:43:c1:03:fc:e3: b1:6e:47:62:85:3a:f2:e1:d0:da:9c:df:32:ef:c5:d7:81:eb: 25:79:5e:96:28:59:f5:75:0e:6c:2d:54:e8:2a:b8:a6:ff:bb: 52:b2:6b:f9:26:cd:31:1d:37:93:63:e2:a6:49:4b:66:4a:b6: b7:2c:bb:46:94:fc:d9:9f:2e:c0:fd:44:0e:3d:2a:b6:60:f9: 64:97:f0:62:26:3c:bf:55:a9:88:63:3e:35:5c:e9:c5:e2:dd: 1e:5e:26:b6:91:be:14:b9:80:ae:f9:28:32:5e:2e:34:47:5b: 47:57:3a:1f:a1:47:9c:01:d9:c2:b0:c9:d8:ba:c8:a2:82:55: ce:72:76:4b:7f:70:1b:e6:bb:0a:ef:15:ef:28:e7:ea:1a:21: d1:cb:d2:c7:00:d8:ed:78:e7:3e:d4:87:35:ec:41:0f:9c:79: 15:9a:ed:8a:57:07:47:aa:3f:21:8f:e9:a0:bb:a3:37:25:50: b5:98:26:de:a4:bf:f8:e7:ba:11:19:ab:3b:ee:51:e7:0f:40: 70:f1:00:8c:91:bb:df:46:ae:ad:a8:8f:d1:18:02:16:f0:84: b0:f6:5e:ef:df:89:53:75:60:77:70:58:8e:8d:d7:91:f1:4c: a2:e3:46:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtjH3wAPZtryBPsRt28kGwrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4Y2I1ZjNmYjk1NzI1MWFhZDRiYTA5ZDBiYWI3MzUyYjc0 YmIwN2QwHhcNMjUxMjI4MDQwMjQ2WhcNMjUxMjI5MDQwMjQ2WjAzMTEwLwYDVQQD EyhkMmQ5NWQ0NjM4ZGFjYjZkMzhkMzU2ZWMxMWI4ZGFlNjI4ZDZjNTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujFlQAcMTIjS4Hiwbp8zn5s1fK3M BLquM/8+sgWM7+mR0gNqt6BKH7LPVh++sprWOUEMmAgJd1b+H4+NXb1slnnam0tM RDJroAA2jyJUwT5Ll2ZlfUtgts8BJVGZv5tB5lBgjyenc+L6oON5y6D1MX1wlp1u Ww01oNlgCYEIJUdc8vLbdN6xqiL45soQWsjebQ1+sQcRIcdoaCJzr9CDhww71ysC HoGFKadyE0eUOmt7Sj+9pKFRVBy1kykpqURCf6rDyV6SDafD5JROZOZ15OvpQbLQ h2NoGRLM85znJNM9czx/mSkD2YxezWrMiz8avh0DpbgrX1JqrCWmF3G7RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNLZXUY42sttONNW7BG42uYo1sU9MB8GA1UdIwQY MBaAFCjLXz+5VyUarUugnQurc1K3S7B9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUt MTUzNmZjNzgzODVkLzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUtMTUzNmZjNzgzODVk LzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAirh/hzAG 6zMk4E4WJUPBA/zjsW5HYoU68uHQ2pzfMu/F14HrJXlelihZ9XUObC1U6Cq4pv+7 UrJr+SbNMR03k2PipklLZkq2tyy7RpT82Z8uwP1EDj0qtmD5ZJfwYiY8v1WpiGM+ NVzpxeLdHl4mtpG+FLmArvkoMl4uNEdbR1c6H6FHnAHZwrDJ2LrIooJVznJ2S39w G+a7Cu8V7yjn6hoh0cvSxwDY7XjnPtSHNexBD5x5FZrtilcHR6o/IY/poLujNyVQ tZgm3qS/+Oe6ERmrO+5R5w9AcPEAjJG730auraiP0RgCFvCEsPZe79+JU3Vgd3BY jo3XkfFMouNGDQ== -----END CERTIFICATE-----Generated at Sun Dec 28 08:01:40 2025 by rpki-client