This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json) Hash identifier: LG3sfCpG8BBDBwF8E0ZyLqtc5FE4VyIVdMbVMzSjXkY= Subject key identifier: 8A:08:CD:F9:12:13:DF:55:90:1A:14:43:9D:13:38:97:35:13:AC:5C Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Certificate serial: 019AF0511DADB108EF424C55D2B60839A73B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft Manifest number: 1766 Signing time: Fri 05 Dec 2025 21:00:39 +0000 Manifest this update: Fri 05 Dec 2025 21:00:39 +0000 Manifest next update: Sat 06 Dec 2025 21:00:39 +0000 Files and hashes: 1: 0l-uuc0ta--zZGivAH1vRPmB_34.roa (hash: N3+ixN59bx1CAdzBVH5dBhTA7XSG6tSZGbX7+qQ9kkU=) 2: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: gsTbcAxpXoELIGdv6Lg1L5+HquvhZFMoNoKmw3QYB2Q=) 3: ZjCHU3LEGq34M383f_KumGN_eB4.roa (hash: YxlGAgs8g3hAPxhoH9iP3cLnbEfE9zXQU/84spENz30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 21:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:1d:ad:b1:08:ef:42:4c:55:d2:b6:08:39:a7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Validity Not Before: Dec 5 21:00:39 2025 GMT Not After : Dec 6 21:00:39 2025 GMT Subject: CN=8a08cdf91213df55901a14439d1338973513ac5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:ef:cb:30:7f:b1:e4:6b:c5:72:14:c4:6f: 6b:a4:0a:e9:f2:d7:53:c6:04:a7:fe:b3:89:4e:89: c8:e8:24:aa:c0:6e:b0:02:44:80:30:7f:ec:5f:a9: 85:46:74:38:fc:34:5b:ca:64:f3:a2:46:21:28:82: 05:fe:ac:2a:57:71:c7:c6:9b:a5:eb:b3:f5:2a:98: 02:26:1a:70:a8:75:7c:9d:b6:8a:13:01:a6:77:d0: 0d:ea:7c:ea:53:ce:bd:58:1d:12:ac:4e:0f:d1:fe: 6e:a3:61:9d:d8:ff:d9:ac:21:88:53:3f:f2:5f:51: 37:7a:b2:3a:ee:64:c3:a8:85:91:f0:55:ad:ad:88: c2:0a:f2:bd:2b:5e:49:98:20:fe:2b:99:ab:b2:c0: 52:2f:3a:fa:aa:59:d1:bb:2c:e4:d0:12:5d:b2:8d: e2:0a:1f:81:6e:72:b2:9e:ca:f4:f9:12:86:70:f2: 3b:1d:9a:b4:13:56:a9:85:63:25:e4:c8:67:d6:8c: 63:c8:9d:6c:b7:6b:42:90:18:a8:82:8d:54:e2:36: 95:d5:ff:21:46:ef:e9:0b:62:8e:02:96:40:ea:bf: 6b:d9:fb:fe:a7:c7:f5:bc:fc:ca:97:c4:ac:59:2d: b4:6b:af:b5:21:8e:1c:cf:d4:54:5e:b4:02:54:85: 17:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:08:CD:F9:12:13:DF:55:90:1A:14:43:9D:13:38:97:35:13:AC:5C X509v3 Authority Key Identifier: keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:9f:8c:fa:b1:c4:8d:6f:da:a1:e2:27:16:f5:8f:ab:46:6f: 87:c7:d5:5f:5e:1c:b3:f3:51:96:20:56:50:0e:b4:f0:31:5b: 5e:08:40:64:ac:e6:04:c1:57:51:70:77:24:64:c9:8f:df:ae: d5:2d:c8:93:a9:db:60:47:1b:a1:3e:9c:9a:93:2e:53:61:ef: 72:ef:9c:3b:52:22:19:92:8b:f5:59:9a:cf:2b:1b:7c:bd:c3: d3:ff:17:f0:a0:3e:3d:90:be:30:58:8c:0e:29:86:12:e8:58: a4:cd:a3:77:57:e4:fe:e0:b2:3d:80:96:d5:6d:cd:ce:18:57: 0f:d2:3d:c9:d9:4b:f1:f9:90:4d:52:bd:dd:72:97:3c:d1:b9: 3b:7b:07:e5:60:c2:fd:1c:e1:1b:8f:24:56:44:d0:ae:93:32: a8:1b:53:4b:9f:ff:59:d4:28:b4:e2:36:4a:a3:10:5c:1d:40: 31:c8:77:c9:80:99:58:59:1c:0f:e6:d0:5e:85:63:3f:5b:a4: 6f:30:28:36:43:d6:5e:f0:0e:f9:00:0d:32:9c:ee:a7:9c:5f: 83:ed:ca:09:b0:9b:08:c9:91:dc:d1:f4:04:0e:fe:95:04:1f: cf:ca:1a:33:83:07:1b:f2:8d:2a:bd:63:9c:59:6b:65:bb:cd: c7:40:fd:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUR2tsQjvQkxV0rYIOac7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk Yjg5NzMwHhcNMjUxMjA1MjEwMDM5WhcNMjUxMjA2MjEwMDM5WjAzMTEwLwYDVQQD Eyg4YTA4Y2RmOTEyMTNkZjU1OTAxYTE0NDM5ZDEzMzg5NzM1MTNhYzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL/vyzB/seRrxXIUxG9rpArp8tdT xgSn/rOJTonI6CSqwG6wAkSAMH/sX6mFRnQ4/DRbymTzokYhKIIF/qwqV3HHxpul 67P1KpgCJhpwqHV8nbaKEwGmd9AN6nzqU869WB0SrE4P0f5uo2Gd2P/ZrCGIUz/y X1E3erI67mTDqIWR8FWtrYjCCvK9K15JmCD+K5mrssBSLzr6qlnRuyzk0BJdso3i Ch+BbnKynsr0+RKGcPI7HZq0E1aphWMl5Mhn1oxjyJ1st2tCkBiogo1U4jaV1f8h Ru/pC2KOApZA6r9r2fv+p8f1vPzKl8SsWS20a6+1IY4cz9RUXrQCVIUXUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoIzfkSE99VkBoUQ50TOJc1E6xcMB8GA1UdIwQY MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARZ+M+rHE jW/aoeInFvWPq0Zvh8fVX14cs/NRliBWUA608DFbXghAZKzmBMFXUXB3JGTJj9+u 1S3Ik6nbYEcboT6cmpMuU2Hvcu+cO1IiGZKL9VmazysbfL3D0/8X8KA+PZC+MFiM DimGEuhYpM2jd1fk/uCyPYCW1W3NzhhXD9I9ydlL8fmQTVK93XKXPNG5O3sH5WDC /RzhG48kVkTQrpMyqBtTS5//WdQotOI2SqMQXB1AMch3yYCZWFkcD+bQXoVjP1uk bzAoNkPWXvAO+QANMpzup5xfg+3KCbCbCMmR3NH0BA7+lQQfz8oaM4MHG/KNKr1j nFlrZbvNx0D92w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:13:54 2025 by rpki-client