This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json) Hash identifier: zRVGOSutbzbK6KQyVg33h7fzsHTGbgWn088rWJCmRx0= Subject key identifier: BA:72:B9:40:93:ED:73:78:FE:53:A8:D0:60:1E:93:14:9F:0A:E5:80 Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9 Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9 Certificate serial: 019B2EF992D5B8B9E20EEA185E3F9277AC42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft Manifest number: 0766 Signing time: Thu 18 Dec 2025 01:01:06 +0000 Manifest this update: Thu 18 Dec 2025 01:01:06 +0000 Manifest next update: Fri 19 Dec 2025 01:01:06 +0000 Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=) 2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: nLATrMlNJ1pNN/Oixre90bhEAqmXvWuhUFQZGP9zaZ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:92:d5:b8:b9:e2:0e:ea:18:5e:3f:92:77:ac:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9 Validity Not Before: Dec 18 01:01:06 2025 GMT Not After : Dec 19 01:01:06 2025 GMT Subject: CN=ba72b94093ed7378fe53a8d0601e93149f0ae580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:44:ea:49:7a:69:2b:f6:65:41:f9:a5:29:f5: 07:52:3c:b9:db:e3:c3:1b:55:2b:74:cf:c5:10:86: 20:1f:b5:b5:54:3a:14:23:d2:5d:b2:83:12:e1:5b: f5:12:9e:62:6a:59:1b:1e:eb:ac:6a:a7:01:b3:ae: c6:70:fe:7a:d0:2f:43:27:91:a8:a3:e8:d5:67:8f: a5:84:ea:6b:10:f7:b5:99:53:c6:cf:aa:c9:47:e5: 0a:42:3d:54:9e:e0:fe:f8:cf:4b:64:ba:3e:3b:51: a3:3e:c3:35:9d:0e:db:d3:e4:0c:ec:4d:df:0c:50: f1:78:dd:7c:29:87:5a:bc:4f:13:e8:75:c4:30:e3: 37:8e:7e:61:59:c0:b3:4c:65:19:b4:fb:85:3d:6d: a0:c7:95:ab:1c:8b:fd:02:23:a1:34:b3:9f:fd:6b: b1:36:0d:58:0d:2a:5c:40:db:72:2f:db:66:96:a3: 2d:bf:22:6d:c1:22:ff:2b:48:a6:4a:d7:0b:e8:6b: 6f:40:87:81:f3:77:35:f9:fb:bf:aa:56:d0:e5:c3: 35:a5:0a:7f:fe:91:e9:2e:de:65:58:4c:df:e8:d7: f0:2d:d6:7a:34:91:78:a4:72:bd:54:1d:51:4a:fc: 1e:7f:4c:07:6a:d4:cb:59:22:0e:6c:37:99:41:9d: 8b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:72:B9:40:93:ED:73:78:FE:53:A8:D0:60:1E:93:14:9F:0A:E5:80 X509v3 Authority Key Identifier: keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:3f:32:59:3d:f9:0c:4d:64:be:9a:8a:3f:f8:30:3e:e5:34: 97:b6:76:3c:47:e6:e8:c9:69:19:54:85:c3:91:bf:dc:64:45: 14:2b:4e:81:74:6d:1e:1c:71:5d:87:f0:7b:d4:c3:1e:dc:69: 40:f8:e4:33:49:7b:c8:c9:fa:17:d5:df:72:2d:51:f2:9a:50: b9:e8:be:ab:77:db:06:51:b7:e6:50:f2:21:34:cc:e2:d6:04: 14:b8:17:d1:dc:5c:f4:76:f0:8f:53:49:2e:4f:f7:13:8c:1e: 0f:d1:f5:55:3c:4d:24:30:30:0c:98:14:64:e8:88:e0:df:0e: 4a:50:3d:e4:87:64:4d:2e:9e:ca:57:0b:be:ef:15:5c:3e:c9: 6c:82:53:b9:de:3d:01:23:64:4e:9c:fe:c4:0d:bd:0f:2c:8b: 2c:d2:f6:ca:0a:7c:bd:d2:ee:fd:0a:f8:b9:47:75:c1:64:b1: 69:44:c4:33:7b:21:bf:38:86:29:1d:9b:0a:60:37:7a:8e:88: b8:3a:4c:4c:8c:73:ad:0e:8b:6a:97:87:08:3f:04:64:5a:73: 86:9b:5f:37:d9:69:72:e0:f3:20:43:89:9e:dd:a2:46:15:cd: 0e:7d:82:b1:1f:eb:53:93:5a:7f:c8:3e:f5:1b:cd:23:98:b7: 66:78:64:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+ZLVuLniDuoYXj+Sd6xCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYzAwMTM3ZWU2ZGZhZWI0ZWE0ODIzYmMxNzNjM2JjMDAw MzFkZjkwHhcNMjUxMjE4MDEwMTA2WhcNMjUxMjE5MDEwMTA2WjAzMTEwLwYDVQQD EyhiYTcyYjk0MDkzZWQ3Mzc4ZmU1M2E4ZDA2MDFlOTMxNDlmMGFlNTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8UTqSXppK/ZlQfmlKfUHUjy52+PD G1UrdM/FEIYgH7W1VDoUI9JdsoMS4Vv1Ep5ialkbHuusaqcBs67GcP560C9DJ5Go o+jVZ4+lhOprEPe1mVPGz6rJR+UKQj1UnuD++M9LZLo+O1GjPsM1nQ7b0+QM7E3f DFDxeN18KYdavE8T6HXEMOM3jn5hWcCzTGUZtPuFPW2gx5WrHIv9AiOhNLOf/Wux Ng1YDSpcQNtyL9tmlqMtvyJtwSL/K0imStcL6GtvQIeB83c1+fu/qlbQ5cM1pQp/ /pHpLt5lWEzf6NfwLdZ6NJF4pHK9VB1RSvwef0wHatTLWSIObDeZQZ2L5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLpyuUCT7XN4/lOo0GAekxSfCuWAMB8GA1UdIwQY MBaAFJDAATfubfrrTqSCO8Fzw7wAAx35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUt MGE1MjViNjlkYjhmLzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUtMGE1MjViNjlkYjhm LzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAT8yWT35 DE1kvpqKP/gwPuU0l7Z2PEfm6MlpGVSFw5G/3GRFFCtOgXRtHhxxXYfwe9TDHtxp QPjkM0l7yMn6F9Xfci1R8ppQuei+q3fbBlG35lDyITTM4tYEFLgX0dxc9Hbwj1NJ Lk/3E4weD9H1VTxNJDAwDJgUZOiI4N8OSlA95IdkTS6eylcLvu8VXD7JbIJTud49 ASNkTpz+xA29DyyLLNL2ygp8vdLu/Qr4uUd1wWSxaUTEM3shvziGKR2bCmA3eo6I uDpMTIxzrQ6LapeHCD8EZFpzhptfN9lpcuDzIEOJnt2iRhXNDn2CsR/rU5Naf8g+ 9RvNI5i3Znhkxg== -----END CERTIFICATE-----Generated at Thu Dec 18 07:08:45 2025 by rpki-client