This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft File: kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json) Hash identifier: qG++rN0BX85rfjS4z9bzMOMlo17QiM21x0aAtHfakWk= Subject key identifier: 9F:A7:6F:B9:EF:9B:D4:F5:3D:76:D7:AD:3E:FC:3F:EB:B6:61:44:00 Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9 Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9 Certificate serial: 019B3E6D477871F03298454D996D2CC86181 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 01:01:47 +0000 Manifest this update: Sun 21 Dec 2025 01:01:47 +0000 Manifest next update: Mon 22 Dec 2025 01:01:47 +0000 Files and hashes: 1: E7tuzODCvj1Y4rQf0ix9lEI7vNs.roa (hash: 7tjdPPhW07eifJoW12vu1rvxuuaPJc8oBZTFD5/C/EY=) 2: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: N/HidvyH3LM50LkrwVuppZLs36Sg6KizH4xCJgfn/38=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 01:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6d:47:78:71:f0:32:98:45:4d:99:6d:2c:c8:61:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9 Validity Not Before: Dec 21 01:01:47 2025 GMT Not After : Dec 22 01:01:47 2025 GMT Subject: CN=9fa76fb9ef9bd4f53d76d7ad3efc3febb6614400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:65:37:30:4f:50:aa:ca:0f:c7:07:06:00:db: 50:45:45:cd:a0:41:06:e2:89:5a:98:0e:c6:f1:3e: 61:6c:25:7a:24:41:30:67:d3:87:eb:87:94:57:d9: 8a:90:4c:64:14:08:7f:3d:ea:a7:f2:d9:0b:49:a1: ce:28:a4:76:2b:c9:42:ea:08:2f:e8:17:50:8b:44: 96:e0:6b:87:ea:ed:da:ab:fd:4f:16:46:b0:7b:c6: 5f:79:57:a0:4a:e4:cc:b2:1f:33:35:40:f2:be:ef: 1d:2c:a2:40:2a:f3:fe:f4:a6:90:06:16:4c:8d:5a: c4:30:c5:e1:b3:c4:1b:88:79:1a:e9:05:77:de:39: a8:d9:57:aa:e2:a5:37:ce:99:8e:99:01:35:ab:43: 7f:79:f3:39:7e:eb:3c:ea:12:ae:f6:04:a8:bc:74: 88:a7:82:a9:2b:72:56:bd:5f:5d:18:da:66:66:d4: b3:de:c7:4f:29:3a:15:18:76:e7:00:8d:88:b1:5f: 1a:dc:46:70:89:bb:07:23:bb:41:92:c4:dd:da:f3: d3:36:9a:ea:96:78:bc:5b:9c:fc:0a:43:43:70:32: e4:cd:21:2c:c0:73:3a:d8:57:36:bc:4e:89:fc:3b: b4:16:83:cc:d0:4d:1f:74:3c:96:82:19:29:69:f4: f3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A7:6F:B9:EF:9B:D4:F5:3D:76:D7:AD:3E:FC:3F:EB:B6:61:44:00 X509v3 Authority Key Identifier: keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:fb:c5:56:db:f1:61:4e:60:95:be:59:d8:f1:cb:cf:65:38: 10:4e:f3:1e:f9:02:6a:3e:38:fa:fc:65:bf:b9:22:6a:f6:84: f1:db:e1:f0:14:c1:c6:b4:a8:b4:b8:5c:96:7c:ed:32:2c:0e: 84:d1:33:c6:f8:15:f1:52:0d:aa:f5:fc:50:a7:d2:43:15:0a: a7:d7:6a:ad:4b:ec:02:28:6f:a0:2f:71:c7:b7:47:99:d0:ea: 62:45:47:be:e1:e7:03:7e:e0:ec:a4:95:da:c0:6f:b2:7f:36: 49:f8:2b:a3:9e:c4:41:d6:e7:3a:51:75:64:3a:fc:96:ed:6c: 12:62:f1:36:fe:74:12:20:06:de:2f:31:b6:c7:a3:88:28:72: 86:95:65:8e:7b:7e:18:ab:c3:49:4c:d4:f2:90:40:a4:9b:7a: cc:bf:53:39:b2:3a:0c:50:4e:39:49:79:06:d5:c5:26:6f:53: 30:bd:d1:c6:19:af:f8:0f:3e:a3:80:d7:6f:0e:b7:1d:da:95: 82:eb:24:c6:90:4b:84:d4:3a:24:e9:b7:93:f7:e6:cf:e3:97: ae:3e:17:10:9a:75:02:ca:71:f0:30:e6:c7:95:ba:65:64:5a: e8:31:d2:93:1b:d5:64:5d:55:ad:a1:37:c7:31:a4:63:2a:92: 96:04:0f:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bUd4cfAymEVNmW0syGGBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYjBhYzI5YjEwOGYzNzIzMTZmYmY0ZWE5M2UxNDg3MzFh NGM0ZTkwHhcNMjUxMjIxMDEwMTQ3WhcNMjUxMjIyMDEwMTQ3WjAzMTEwLwYDVQQD Eyg5ZmE3NmZiOWVmOWJkNGY1M2Q3NmQ3YWQzZWZjM2ZlYmI2NjE0NDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGU3ME9QqsoPxwcGANtQRUXNoEEG 4olamA7G8T5hbCV6JEEwZ9OH64eUV9mKkExkFAh/Peqn8tkLSaHOKKR2K8lC6ggv 6BdQi0SW4GuH6u3aq/1PFkawe8ZfeVegSuTMsh8zNUDyvu8dLKJAKvP+9KaQBhZM jVrEMMXhs8QbiHka6QV33jmo2Veq4qU3zpmOmQE1q0N/efM5fus86hKu9gSovHSI p4KpK3JWvV9dGNpmZtSz3sdPKToVGHbnAI2IsV8a3EZwibsHI7tBksTd2vPTNprq lni8W5z8CkNDcDLkzSEswHM62Fc2vE6J/Du0FoPM0E0fdDyWghkpafTzJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ+nb7nvm9T1PXbXrT78P+u2YUQAMB8GA1UdIwQY MBaAFJCwrCmxCPNyMW+/Tqk+FIcxpMTpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0xDc0tiRUk4M0l4Yjc5T3FUNFVoekdreE9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8yZjYzMmMtYmQ1NC00MDM2LTkwYjYt ZDI1M2NkM2U3YTM0LzEva0xDc0tiRUk4M0l4Yjc5T3FUNFVoekdreE9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8yZjYzMmMtYmQ1NC00MDM2LTkwYjYtZDI1M2NkM2U3YTM0 LzEva0xDc0tiRUk4M0l4Yjc5T3FUNFVoekdreE9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADfvFVtvx YU5glb5Z2PHLz2U4EE7zHvkCaj44+vxlv7kiavaE8dvh8BTBxrSotLhclnztMiwO hNEzxvgV8VINqvX8UKfSQxUKp9dqrUvsAihvoC9xx7dHmdDqYkVHvuHnA37g7KSV 2sBvsn82Sfgro57EQdbnOlF1ZDr8lu1sEmLxNv50EiAG3i8xtsejiChyhpVljnt+ GKvDSUzU8pBApJt6zL9TObI6DFBOOUl5BtXFJm9TML3Rxhmv+A8+o4DXbw63HdqV guskxpBLhNQ6JOm3k/fmz+OXrj4XEJp1Aspx8DDmx5W6ZWRa6DHSkxvVZF1VraE3 xzGkYyqSlgQPmg== -----END CERTIFICATE-----Generated at Sun Dec 21 11:26:31 2025 by rpki-client