This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft File: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft (raw, json) Hash identifier: Ig3K5ag3hpcMg4NdOahB3qhi1c+hkjrnFogDjKrihUA= Subject key identifier: 2E:EA:47:D3:19:2C:FE:CE:70:95:40:E0:B7:F4:47:7F:AA:B5:79:E1 Authority key identifier: 90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1 Certificate issuer: /CN=90c3cae86555687324319d1226938c703ee4edc1 Certificate serial: 019AF12EFB525DC02A037DBFECB6B568EC9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft Manifest number: 07B8 Signing time: Sat 06 Dec 2025 01:02:59 +0000 Manifest this update: Sat 06 Dec 2025 01:02:59 +0000 Manifest next update: Sun 07 Dec 2025 01:02:59 +0000 Files and hashes: 1: 0uXZsIzOuGlbguIFz3Zkl5De9lU.roa (hash: YNeeVSttuQ98olLv+5aLbTyXkKQvSMcGX+VvVs9cMAQ=) 2: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl (hash: X3SpxLJwmFcF04WQoYZ+MjAJH/KN6YYaCSEXNlWNJp4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:fb:52:5d:c0:2a:03:7d:bf:ec:b6:b5:68:ec:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90c3cae86555687324319d1226938c703ee4edc1 Validity Not Before: Dec 6 01:02:59 2025 GMT Not After : Dec 7 01:02:59 2025 GMT Subject: CN=2eea47d3192cfece709540e0b7f4477faab579e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:2d:5a:bd:16:ff:c2:66:77:4a:2f:c2:43: e2:29:a7:78:7f:a8:f5:3c:7c:89:5b:4d:10:65:a2: c5:4f:dd:56:2c:a4:ae:88:70:7b:25:6f:da:9e:c9: 44:3b:f2:82:30:4b:51:d0:70:2d:ee:27:12:8c:41: 4e:fb:54:e2:6f:80:48:14:8d:cf:9e:08:30:4d:74: a9:0c:c1:46:47:47:78:fa:09:a1:e7:a8:4f:50:9b: 96:0d:42:44:fd:c5:3a:77:29:8c:15:02:42:73:c0: 3c:2c:5c:23:72:39:4e:7a:09:5b:df:f1:02:e9:0d: 5b:bc:ef:2b:9b:c9:14:62:2c:d9:09:86:e9:cf:76: 73:71:4f:be:1b:b7:2e:58:16:27:92:5a:9d:d7:e6: 48:fa:85:63:91:ac:c1:c4:34:31:d9:b1:38:45:a0: 7b:04:37:59:2b:55:90:b6:21:2f:50:19:0b:01:89: d8:94:3b:64:13:ac:96:22:9a:e7:7b:d5:d0:41:ed: b3:21:61:58:4b:13:07:48:2a:dc:ad:90:ff:28:57: 6a:84:5d:27:44:08:a4:d1:74:63:6e:a9:6d:22:9c: 0a:91:bb:b7:2c:c6:5b:76:df:2d:44:08:ab:41:13: 5c:94:33:38:77:b5:92:a3:73:82:51:e2:38:66:27: 06:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:EA:47:D3:19:2C:FE:CE:70:95:40:E0:B7:F4:47:7F:AA:B5:79:E1 X509v3 Authority Key Identifier: keyid:90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ed:c2:3b:4f:de:25:23:6a:2b:93:27:4b:66:f8:20:e5:58:a4: 9b:58:8b:64:b3:8a:a6:d4:92:6a:3d:bc:14:70:47:69:9e:48: a4:c6:dc:00:65:08:cb:a4:48:9c:ce:7f:84:80:ca:5f:21:fb: a6:af:38:66:4d:35:a9:6d:e3:f2:32:f3:84:84:6b:4c:c3:95: 5d:e9:69:f6:4f:fa:df:bb:a6:7c:35:d0:ce:24:6f:39:86:1c: d2:59:4f:ec:0b:32:0e:bb:39:b3:bb:68:f3:a1:fd:54:02:4c: 15:d3:db:cd:20:d0:39:b2:8f:74:86:a1:10:75:7a:5a:61:1c: 77:1c:ff:47:87:ef:24:b8:4e:b7:e7:ae:dc:72:c1:4a:b1:f7: fa:4b:55:8c:ea:42:77:e0:7d:82:37:02:4a:01:6b:80:34:88: c9:da:1c:ae:41:be:ed:7f:c1:01:60:d9:6c:d8:89:8c:fb:4e: bd:7b:2e:29:d2:7e:d0:5f:0b:66:ad:5d:54:91:96:c1:06:bb: 89:17:53:8b:c6:bf:07:51:ae:db:f2:30:6c:54:1e:5d:44:11: 34:04:4b:1a:44:41:b8:90:c5:6b:44:81:da:36:43:85:d2:45: d5:40:04:23:2e:bf:a5:26:ce:90:13:4b:81:66:c2:b4:b7:4f: e2:6d:f0:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLvtSXcAqA32/7La1aOycMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYzNjYWU4NjU1NTY4NzMyNDMxOWQxMjI2OTM4YzcwM2Vl NGVkYzEwHhcNMjUxMjA2MDEwMjU5WhcNMjUxMjA3MDEwMjU5WjAzMTEwLwYDVQQD EygyZWVhNDdkMzE5MmNmZWNlNzA5NTQwZTBiN2Y0NDc3ZmFhYjU3OWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWMtWr0W/8Jmd0ovwkPiKad4f6j1 PHyJW00QZaLFT91WLKSuiHB7JW/anslEO/KCMEtR0HAt7icSjEFO+1Tib4BIFI3P nggwTXSpDMFGR0d4+gmh56hPUJuWDUJE/cU6dymMFQJCc8A8LFwjcjlOeglb3/EC 6Q1bvO8rm8kUYizZCYbpz3ZzcU++G7cuWBYnklqd1+ZI+oVjkazBxDQx2bE4RaB7 BDdZK1WQtiEvUBkLAYnYlDtkE6yWIprne9XQQe2zIWFYSxMHSCrcrZD/KFdqhF0n RAik0XRjbqltIpwKkbu3LMZbdt8tRAirQRNclDM4d7WSo3OCUeI4ZicGwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7qR9MZLP7OcJVA4Lf0R3+qtXnhMB8GA1UdIwQY MBaAFJDDyuhlVWhzJDGdEiaTjHA+5O3BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva01QSzZHVlZhSE1rTVowU0pwT01jRDdrN2NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC82NGRiMjQtYmMzNi00Y2ExLWFiMDIt YjEzOWIyYTNmZTQ5LzEva01QSzZHVlZhSE1rTVowU0pwT01jRDdrN2NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC82NGRiMjQtYmMzNi00Y2ExLWFiMDItYjEzOWIyYTNmZTQ5 LzEva01QSzZHVlZhSE1rTVowU0pwT01jRDdrN2NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA7cI7T94l I2orkydLZvgg5Vikm1iLZLOKptSSaj28FHBHaZ5IpMbcAGUIy6RInM5/hIDKXyH7 pq84Zk01qW3j8jLzhIRrTMOVXelp9k/637umfDXQziRvOYYc0llP7AsyDrs5s7to 86H9VAJMFdPbzSDQObKPdIahEHV6WmEcdxz/R4fvJLhOt+eu3HLBSrH3+ktVjOpC d+B9gjcCSgFrgDSIydocrkG+7X/BAWDZbNiJjPtOvXsuKdJ+0F8LZq1dVJGWwQa7 iRdTi8a/B1Gu2/IwbFQeXUQRNARLGkRBuJDFa0SB2jZDhdJF1UAEIy6/pSbOkBNL gWbCtLdP4m3wHw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:00 2025 by rpki-client