This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft File: KMID1l3y1lvbzzyINELdq1WjvN4.mft (raw, json) Hash identifier: uZ7lbgtGefK/mh/6BrMkPOICk3KxwcGhqcVg1Uf6z9I= Subject key identifier: 8F:7E:62:91:89:CD:84:97:FA:AC:E5:05:BC:78:88:2C:A1:3C:15:53 Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE Certificate issuer: /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde Certificate serial: 019B3CB537AFFD9169065025C5D0406B11A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft Manifest number: 0D76 Signing time: Sat 20 Dec 2025 17:01:07 +0000 Manifest this update: Sat 20 Dec 2025 17:01:07 +0000 Manifest next update: Sun 21 Dec 2025 17:01:07 +0000 Files and hashes: 1: KMID1l3y1lvbzzyINELdq1WjvN4.crl (hash: HDagCHlCCigo/8uwsTwqKDKfuHG36ZWWZ/HZZ7CCZms=) 2: eEe-w2donDCxX-tAzaEpFb0UtVY.roa (hash: g2d5FELl0EWl1pKF09WRuqqNzRt0N8/ZzyiwDHce4Xk=) 3: kA_OSzYdIA2vmO2YYor5kHVNHTQ.roa (hash: na+fNS4+KPnZVKtvI9VPkmEDxvmlZJBhohUxDwUJWbE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b5:37:af:fd:91:69:06:50:25:c5:d0:40:6b:11:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde Validity Not Before: Dec 20 17:01:07 2025 GMT Not After : Dec 21 17:01:07 2025 GMT Subject: CN=8f7e629189cd8497faace505bc78882ca13c1553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:99:20:97:8e:d2:fb:0c:a9:1f:bd:42:53:2b: 9f:f5:a1:02:2d:df:ab:71:4c:30:2d:88:0b:66:e0: ed:94:60:06:cb:4e:24:6e:b7:40:77:6f:0f:cd:f7: 87:e1:11:5b:f5:61:d0:ab:1b:01:98:35:4e:34:cd: ef:1d:f5:33:b6:df:50:04:a5:f1:5f:cb:63:b4:90: 91:3f:2f:8a:a8:61:d9:75:fe:bd:6e:43:f9:f5:24: 6f:8a:8f:d5:2a:4f:cf:a6:4d:dd:d6:93:a6:73:52: 7a:7b:13:a2:06:e9:08:a3:c5:40:11:50:b2:87:82: db:8e:01:d3:45:d3:39:39:05:3f:f2:d3:36:3f:e9: ba:22:e0:b0:03:e0:d2:0b:aa:2c:3d:3a:53:c7:17: ed:bf:61:ed:7f:27:2f:7a:cd:76:e8:fc:d4:dd:02: 90:49:62:d7:ce:21:0d:e6:12:64:40:33:bf:d0:24: 80:49:f5:c7:3a:1d:4f:69:03:49:a5:dd:bf:56:d6: 12:da:38:7c:93:26:25:57:fb:84:b4:5f:75:2c:5f: e1:d4:c2:e1:8a:bc:b9:7e:94:dd:2b:cc:9f:e4:8f: 2e:35:12:cb:65:45:a8:13:de:33:3a:8e:00:28:cc: 6f:49:51:b3:c3:4c:46:6b:d6:8b:0f:1b:cf:02:8f: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7E:62:91:89:CD:84:97:FA:AC:E5:05:BC:78:88:2C:A1:3C:15:53 X509v3 Authority Key Identifier: keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:87:c2:1c:9e:d7:9e:e4:13:6a:a3:03:07:ef:a6:e4:4a:d3: 02:96:f8:dc:03:40:9e:23:e8:fa:87:08:75:67:03:e7:80:31: 6d:f7:82:b4:59:66:92:05:7d:29:d5:eb:9d:92:95:9c:48:84: d3:d5:c2:0d:44:af:0a:3e:71:c1:61:2c:c1:85:42:a7:aa:20: f4:8a:67:82:3a:0e:5b:67:58:74:1f:d8:9e:cd:3d:c9:ce:59: 95:95:f9:19:81:d6:92:af:f6:7e:79:e5:74:d5:30:80:5a:76: 72:5a:cb:56:dd:1d:dd:87:c2:49:84:80:7e:22:8d:50:1a:84: 6f:7c:bc:c1:11:ab:59:ac:85:9c:71:14:5e:84:d8:a3:9f:5e: ea:1d:6a:08:fc:84:d2:62:c2:15:6c:bc:16:cd:9f:b7:ad:b1: 1b:67:6e:85:9b:31:b2:b7:58:5a:5a:df:74:e8:b0:7a:5b:e0: ea:c5:ca:73:f2:b2:bd:c7:3b:b3:e4:43:59:95:1d:26:f7:86: ad:fa:a7:61:c5:8f:9b:27:b5:ec:19:08:8e:1e:1e:63:52:d8: 72:f6:1d:81:e1:6a:f7:59:5e:85:be:46:b9:74:e8:da:15:04: 7b:fa:f1:eb:49:58:b5:57:d5:16:9f:65:a2:ce:98:5e:52:8d: a8:10:fd:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tTev/ZFpBlAlxdBAaxGpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YzIwM2Q2NWRmMmQ2NWJkYmNmM2M4ODM0NDJkZGFiNTVh M2JjZGUwHhcNMjUxMjIwMTcwMTA3WhcNMjUxMjIxMTcwMTA3WjAzMTEwLwYDVQQD Eyg4ZjdlNjI5MTg5Y2Q4NDk3ZmFhY2U1MDViYzc4ODgyY2ExM2MxNTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Zkgl47S+wypH71CUyuf9aECLd+r cUwwLYgLZuDtlGAGy04kbrdAd28PzfeH4RFb9WHQqxsBmDVONM3vHfUztt9QBKXx X8tjtJCRPy+KqGHZdf69bkP59SRvio/VKk/Ppk3d1pOmc1J6exOiBukIo8VAEVCy h4LbjgHTRdM5OQU/8tM2P+m6IuCwA+DSC6osPTpTxxftv2Htfycves126PzU3QKQ SWLXziEN5hJkQDO/0CSASfXHOh1PaQNJpd2/VtYS2jh8kyYlV/uEtF91LF/h1MLh iry5fpTdK8yf5I8uNRLLZUWoE94zOo4AKMxvSVGzw0xGa9aLDxvPAo9f4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI9+YpGJzYSX+qzlBbx4iCyhPBVTMB8GA1UdIwQY MBaAFCjCA9Zd8tZb2888iDRC3atVo7zeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmIt ODg1OTIwNDMwMjZmLzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmItODg1OTIwNDMwMjZm LzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKYfCHJ7X nuQTaqMDB++m5ErTApb43ANAniPo+ocIdWcD54AxbfeCtFlmkgV9KdXrnZKVnEiE 09XCDUSvCj5xwWEswYVCp6og9IpngjoOW2dYdB/Yns09yc5ZlZX5GYHWkq/2fnnl dNUwgFp2clrLVt0d3YfCSYSAfiKNUBqEb3y8wRGrWayFnHEUXoTYo59e6h1qCPyE 0mLCFWy8Fs2ft62xG2duhZsxsrdYWlrfdOiwelvg6sXKc/Kyvcc7s+RDWZUdJveG rfqnYcWPmye17BkIjh4eY1LYcvYdgeFq91lehb5GuXTo2hUEe/rx60lYtVfVFp9l os6YXlKNqBD9Mg== -----END CERTIFICATE-----Generated at Sat Dec 20 22:13:12 2025 by rpki-client