This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json) Hash identifier: va9I7pccgFAU2li9qq8rqmHYAhK+qXzUFSGwod5lRLc= Subject key identifier: 84:18:7C:98:C9:EC:97:C7:61:15:B9:0C:97:9E:F7:36:0D:B2:B2:C6 Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23 Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223 Certificate serial: 019AF1D226A259D6C1559D6EB7F3F4A40654 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft Manifest number: 0B6F Signing time: Sat 06 Dec 2025 04:01:12 +0000 Manifest this update: Sat 06 Dec 2025 04:01:12 +0000 Manifest next update: Sun 07 Dec 2025 04:01:12 +0000 Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=) 2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: sMuLtMJ+M8G08m2OrNDHXDSRyeCnsswPeASAO9b594Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:26:a2:59:d6:c1:55:9d:6e:b7:f3:f4:a4:06:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223 Validity Not Before: Dec 6 04:01:12 2025 GMT Not After : Dec 7 04:01:12 2025 GMT Subject: CN=84187c98c9ec97c76115b90c979ef7360db2b2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:14:b4:19:df:37:75:9c:02:0c:79:76:0c: 91:42:a9:0f:38:7a:2b:6a:84:92:bd:b1:92:12:aa: 12:99:06:19:a1:86:0c:e5:39:8e:2f:bb:11:4c:1c: 8b:6c:56:62:24:8d:ca:14:67:21:4e:61:08:2e:d3: 3c:7c:8e:52:01:9c:f3:b0:16:94:9b:3d:d1:aa:c3: 6b:9c:04:21:80:e8:8d:90:d4:d8:11:63:6d:04:6c: 9d:da:72:52:14:5d:c1:1b:12:a1:94:07:e2:97:22: d1:19:e1:ac:2a:c6:4c:04:7e:3f:1e:b0:bf:34:37: 3a:50:05:63:e4:10:5d:e6:dc:fa:72:93:0c:98:eb: 4b:13:83:5a:29:89:4e:c0:e7:67:34:83:b4:13:0d: 9a:8c:e6:4b:1e:8a:8c:39:cc:dc:44:55:e7:e3:3f: e4:4c:bf:44:32:bd:51:0d:a0:57:35:b7:1b:94:40: 6c:52:37:f2:83:dc:79:21:28:f8:ad:d6:b4:bf:d1: 86:37:df:f7:d4:f0:02:a4:f3:43:79:cb:1b:47:43: 92:17:04:37:0d:3a:e4:2e:d5:10:cd:31:f5:aa:af: 79:5a:73:f3:97:fb:e0:7b:90:69:3f:66:fa:75:11: 72:5a:39:84:d5:56:c0:bd:74:1d:7d:64:3e:9c:32: ca:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:18:7C:98:C9:EC:97:C7:61:15:B9:0C:97:9E:F7:36:0D:B2:B2:C6 X509v3 Authority Key Identifier: keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:20:23:63:45:b8:3c:7b:e7:f9:7c:a1:e3:f9:3d:52:eb:f7: 33:c6:ae:43:8d:39:d9:50:1f:34:12:dd:fe:3e:81:78:9f:4e: 84:83:fa:98:db:a1:39:44:52:e7:05:9e:e3:6f:19:98:9f:4b: 33:a2:33:04:6d:c3:ea:b3:63:30:98:b7:28:70:8a:72:7f:7d: 6f:21:99:c7:64:76:9d:d0:40:04:cf:8f:4f:cf:58:3a:38:81: 67:f4:33:87:c1:93:5b:3c:eb:e2:b4:5e:eb:e1:66:58:72:63: 8d:8e:b5:78:ad:af:e1:ff:b1:16:69:c2:fb:d9:89:8d:77:27: e6:79:39:9c:bc:d1:f0:60:f0:49:ef:40:58:6d:2d:a6:df:fd: 80:e7:a5:d5:b5:78:60:a8:9d:d8:fc:21:c5:00:c7:c2:90:35: d3:2d:df:36:e2:12:8a:bc:69:3a:2a:a7:be:1f:29:5b:31:06: 2b:39:ec:b3:73:bf:14:59:cd:12:cb:7a:2b:d0:28:08:b4:6d: 31:0b:6f:fd:06:60:f8:74:2e:18:c7:a9:ec:f4:c7:b3:b4:d1: 90:e3:fb:78:36:92:ef:c1:62:bf:e0:e0:23:87:79:b1:61:79: 86:b0:90:cf:e6:ab:85:49:84:fe:37:d0:a0:0b:9f:58:1f:53: f5:c0:c6:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0iaiWdbBVZ1ut/P0pAZUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy YzQyMjMwHhcNMjUxMjA2MDQwMTEyWhcNMjUxMjA3MDQwMTEyWjAzMTEwLwYDVQQD Eyg4NDE4N2M5OGM5ZWM5N2M3NjExNWI5MGM5NzllZjczNjBkYjJiMmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApt8UtBnfN3WcAgx5dgyRQqkPOHor aoSSvbGSEqoSmQYZoYYM5TmOL7sRTByLbFZiJI3KFGchTmEILtM8fI5SAZzzsBaU mz3RqsNrnAQhgOiNkNTYEWNtBGyd2nJSFF3BGxKhlAfilyLRGeGsKsZMBH4/HrC/ NDc6UAVj5BBd5tz6cpMMmOtLE4NaKYlOwOdnNIO0Ew2ajOZLHoqMOczcRFXn4z/k TL9EMr1RDaBXNbcblEBsUjfyg9x5ISj4rda0v9GGN9/31PACpPNDecsbR0OSFwQ3 DTrkLtUQzTH1qq95WnPzl/vge5BpP2b6dRFyWjmE1VbAvXQdfWQ+nDLKgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIQYfJjJ7JfHYRW5DJee9zYNsrLGMB8GA1UdIwQY MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhyAjY0W4 PHvn+Xyh4/k9Uuv3M8auQ4052VAfNBLd/j6BeJ9OhIP6mNuhOURS5wWe428ZmJ9L M6IzBG3D6rNjMJi3KHCKcn99byGZx2R2ndBABM+PT89YOjiBZ/Qzh8GTWzzr4rRe 6+FmWHJjjY61eK2v4f+xFmnC+9mJjXcn5nk5nLzR8GDwSe9AWG0tpt/9gOel1bV4 YKid2PwhxQDHwpA10y3fNuISirxpOiqnvh8pWzEGKznss3O/FFnNEst6K9AoCLRt MQtv/QZg+HQuGMep7PTHs7TRkOP7eDaS78Fiv+DgI4d5sWF5hrCQz+arhUmE/jfQ oAufWB9T9cDGQA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:45:43 2025 by rpki-client