This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json) Hash identifier: IoD9mHrYlV0oKLu+JIxj/sauHvADeszXVA6LXDvD4m0= Subject key identifier: E3:50:4F:E9:52:B2:C5:76:47:91:93:78:14:B4:BB:38:A8:68:B1:D0 Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Certificate serial: 019B4F6043C4A5BDB133DE15DB2968608DA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft Manifest number: 0C26 Signing time: Wed 24 Dec 2025 08:01:07 +0000 Manifest this update: Wed 24 Dec 2025 08:01:07 +0000 Manifest next update: Thu 25 Dec 2025 08:01:07 +0000 Files and hashes: 1: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: w7zSbqMBw6IfwFFWUtQUc9TQZu0e0puhW/+c2P8DxQY=) 2: ujshoVbtlbnSXRjfddrO_lj_i6Y.roa (hash: TIADVGye8UfQII8nMINRYu1sRAiyXpRTwVUYNwZle+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 08:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:60:43:c4:a5:bd:b1:33:de:15:db:29:68:60:8d:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Validity Not Before: Dec 24 08:01:07 2025 GMT Not After : Dec 25 08:01:07 2025 GMT Subject: CN=e3504fe952b2c5764791937814b4bb38a868b1d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a4:8d:cc:46:55:dc:01:5b:75:d0:dd:fc:3e: aa:25:eb:58:d0:e2:e3:1e:66:7d:d8:d3:59:60:aa: 8c:78:9c:2d:04:78:d7:ad:4e:46:76:ff:0e:88:d8: db:2d:92:7e:c0:83:5a:46:c8:9f:57:5d:24:70:93: 5a:2f:3c:83:47:8c:b1:aa:d4:3a:6d:57:68:9a:03: 74:cc:e0:23:af:2e:d6:84:36:2a:8c:1a:a8:45:07: 27:6f:85:a6:13:a9:35:2a:3d:41:72:5c:f1:8e:32: ad:14:65:01:1a:0c:e7:ad:fe:ac:58:cf:02:fa:8f: ca:f1:db:30:52:13:f3:17:c0:e4:0d:ff:74:9d:cf: b7:d1:4b:58:6b:b9:61:a9:8c:b6:1d:ea:25:07:f0: 4b:c1:92:3f:79:e0:00:80:a3:03:1b:65:5a:53:fb: 9b:94:98:be:f4:b4:c1:c9:5d:5b:54:69:ba:09:0e: b7:1f:b5:5e:1a:7c:5e:76:a8:03:05:36:24:da:82: 72:06:4b:5b:6d:e9:a6:59:92:93:24:83:c7:c5:b9: 9e:e1:65:6e:1f:87:f2:cd:75:d8:bb:39:91:d8:c9: 15:e3:ce:c3:94:b7:10:ab:5f:44:40:49:36:fc:53: 4b:e3:6c:ff:bb:30:8a:e0:e3:88:95:ab:66:bd:45: 23:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:50:4F:E9:52:B2:C5:76:47:91:93:78:14:B4:BB:38:A8:68:B1:D0 X509v3 Authority Key Identifier: keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:fe:13:e1:e1:e4:9b:85:98:3d:6f:d1:0c:82:af:6f:a7:03: 24:bf:9a:05:0b:ea:f0:28:35:8d:cc:cb:b8:72:7c:f7:0c:ca: f9:0a:e7:2d:fe:a5:04:3d:7c:63:5f:4f:7b:76:71:35:0f:7a: 3a:dc:4c:aa:34:86:a5:37:cf:9b:e8:0d:e2:48:1a:f1:ed:04: de:32:5b:0f:cc:b7:06:23:a8:89:90:3a:9c:1f:ef:e8:6c:de: f5:18:0e:34:bb:b3:d8:45:d9:c3:8c:f6:4a:35:6d:f8:eb:0f: 09:19:75:21:77:37:21:13:b8:02:d1:3d:49:56:3f:93:a6:0b: f7:30:2b:58:7c:c1:6f:a6:cf:bc:35:0a:c7:56:11:1a:40:8a: 51:5c:c6:e9:2b:e5:04:ed:16:98:6f:b3:78:17:e2:98:b3:f4: c0:fc:6f:9d:d7:01:77:89:45:bc:da:1b:9d:f2:47:0d:4c:ab: 73:cf:ee:8c:41:82:b7:24:e9:f9:f8:02:54:71:0b:2d:f7:f5: 30:e0:66:9b:4f:7f:91:28:46:1c:51:dd:f4:0d:1a:5f:18:74: cd:12:73:33:47:02:38:ed:9e:98:7b:23:1f:9e:f7:5d:47:d3: d5:27:5d:07:21:76:82:cc:67:7e:ab:ab:e3:75:58:cf:e9:a1: 2f:12:c4:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPYEPEpb2xM94V2yloYI2kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMTg4Y2E2NGM0NjcwYTZlYjU2YjQyYTUwYTEwNTg4YWQ5 NjQ3ZWUwHhcNMjUxMjI0MDgwMTA3WhcNMjUxMjI1MDgwMTA3WjAzMTEwLwYDVQQD EyhlMzUwNGZlOTUyYjJjNTc2NDc5MTkzNzgxNGI0YmIzOGE4NjhiMWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaSNzEZV3AFbddDd/D6qJetY0OLj HmZ92NNZYKqMeJwtBHjXrU5Gdv8OiNjbLZJ+wINaRsifV10kcJNaLzyDR4yxqtQ6 bVdomgN0zOAjry7WhDYqjBqoRQcnb4WmE6k1Kj1BclzxjjKtFGUBGgznrf6sWM8C +o/K8dswUhPzF8DkDf90nc+30UtYa7lhqYy2HeolB/BLwZI/eeAAgKMDG2VaU/ub lJi+9LTByV1bVGm6CQ63H7VeGnxedqgDBTYk2oJyBktbbemmWZKTJIPHxbme4WVu H4fyzXXYuzmR2MkV487DlLcQq19EQEk2/FNL42z/uzCK4OOIlatmvUUjBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONQT+lSssV2R5GTeBS0uzioaLHQMB8GA1UdIwQY MBaAFJEYjKZMRnCm61a0KlChBYitlkfuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQt MTQ3MTc3YjgzN2RlLzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQtMTQ3MTc3YjgzN2Rl LzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS/4T4eHk m4WYPW/RDIKvb6cDJL+aBQvq8Cg1jczLuHJ89wzK+QrnLf6lBD18Y19Pe3ZxNQ96 OtxMqjSGpTfPm+gN4kga8e0E3jJbD8y3BiOoiZA6nB/v6Gze9RgONLuz2EXZw4z2 SjVt+OsPCRl1IXc3IRO4AtE9SVY/k6YL9zArWHzBb6bPvDUKx1YRGkCKUVzG6Svl BO0WmG+zeBfimLP0wPxvndcBd4lFvNobnfJHDUyrc8/ujEGCtyTp+fgCVHELLff1 MOBmm09/kShGHFHd9A0aXxh0zRJzM0cCOO2emHsjH573XUfT1SddByF2gsxnfqur 43VYz+mhLxLEig== -----END CERTIFICATE-----Generated at Wed Dec 24 13:38:49 2025 by rpki-client