This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json) Hash identifier: Sj47mvXGfnxXqOEogGsS0lx+e/iXOROfVpBYty9x130= Subject key identifier: 47:A4:1A:2A:F9:87:B4:53:CF:5D:6E:EA:48:15:45:F0:66:F6:F1:26 Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4 Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4 Certificate serial: 019BF5AC3B266608A606927589C4ED1DB54C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft Manifest number: 05C4 Signing time: Sun 25 Jan 2026 15:01:03 +0000 Manifest this update: Sun 25 Jan 2026 15:01:03 +0000 Manifest next update: Mon 26 Jan 2026 15:01:03 +0000 Files and hashes: 1: AXdXSPys8K4gKCZL761_CRlXkQg.roa (hash: Eq65FPzgWfwxVUVR4WpFvfNbVj2sB466X23GUTRrgvw=) 2: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: XLVxCQbXgDLw8XnWiFoe6aapoMbinT+dEByXzvikQqI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:3b:26:66:08:a6:06:92:75:89:c4:ed:1d:b5:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4 Validity Not Before: Jan 25 15:01:03 2026 GMT Not After : Jan 26 15:01:03 2026 GMT Subject: CN=47a41a2af987b453cf5d6eea481545f066f6f126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:51:63:55:e7:97:10:df:0e:5b:83:8a:8b:7f: 8a:0f:af:83:6f:2c:29:2f:ae:9f:52:64:f1:e6:25: 86:40:1b:5a:c3:1e:e6:ba:20:11:88:c0:7f:77:3c: 46:19:c6:26:eb:16:41:92:0e:ee:64:4b:a2:fd:6f: 0b:df:19:2c:24:01:3f:d5:9a:c8:97:cc:a3:b2:aa: b6:0a:9a:b6:1b:bd:8b:3c:4d:8c:dc:b0:e1:d7:3d: b5:ef:80:e5:aa:e1:56:1c:05:e5:6a:55:77:ac:f5: 44:cf:2b:97:94:51:4a:0b:88:1e:c5:ed:22:f5:36: 8c:38:ac:de:76:35:9d:55:c0:f1:dc:c3:74:5f:36: 5b:db:fc:5d:0b:9b:e6:d2:62:c7:e9:bd:f0:11:63: c0:48:c7:b3:f5:90:a9:ac:a5:95:a4:eb:a5:f5:fc: 29:0a:c2:41:68:0d:c7:8f:b5:29:6f:4c:3e:65:3f: 38:2b:f7:e3:57:2d:c1:69:85:b7:6b:a0:ea:2e:22: be:1f:1d:c7:ae:db:23:3f:3d:42:44:68:c1:35:fd: 85:86:91:ca:35:8c:37:73:35:d2:0e:6e:d7:e3:c2: b9:38:8c:09:7b:7f:68:b4:7a:55:01:57:26:96:db: d6:aa:9c:c4:99:94:a6:de:8f:84:86:37:85:3d:11: 8a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A4:1A:2A:F9:87:B4:53:CF:5D:6E:EA:48:15:45:F0:66:F6:F1:26 X509v3 Authority Key Identifier: keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:fd:53:c6:c4:c2:83:54:41:d2:94:8f:e9:c8:9d:27:a6:de: 4d:72:33:08:82:ea:8d:9f:91:c3:e5:5f:f2:d1:86:28:e4:f2: ea:04:39:00:e1:85:15:4d:a6:8a:42:7e:03:e5:62:c2:4f:ad: dd:28:59:dc:3f:9d:99:3c:f4:fa:9f:83:43:99:22:72:ee:d1: 2f:05:8f:05:53:4f:06:a7:34:83:f6:6e:08:a2:8f:0c:e9:0f: cb:38:43:e3:29:f0:ae:1a:19:2e:c2:b8:e1:54:8e:38:09:fb: 30:ff:2e:54:52:c3:c2:a4:f4:29:4d:5c:13:0f:dc:a9:02:cd: 64:cf:d8:64:7f:4c:d0:cf:fd:e9:f4:e2:9d:15:03:67:08:02: 74:05:78:e5:bf:a1:13:7e:5c:3e:1c:9d:15:39:23:00:5e:bf: 4c:4c:b0:f8:4e:ff:8c:fa:fc:14:9f:dc:2f:b2:01:68:02:d0: 13:ed:e8:75:38:f6:77:c0:bf:60:9b:30:a4:ae:1d:21:1d:94: bb:9d:bb:d5:f1:82:ff:01:83:8f:1a:97:83:b9:06:8e:82:27: 1f:c4:b2:6e:f0:3b:8e:d5:82:d7:90:66:37:a8:30:df:89:65: 9c:43:28:e2:a9:34:3b:57:c3:b6:95:fa:64:4e:34:01:4c:31: dd:d6:50:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rDsmZgimBpJ1icTtHbVMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4OTU0ZTI4ZjZlMDFjYTVjNzM1M2JjMzcyZjM2OWE1ZjUx ZDliYjQwHhcNMjYwMTI1MTUwMTAzWhcNMjYwMTI2MTUwMTAzWjAzMTEwLwYDVQQD Eyg0N2E0MWEyYWY5ODdiNDUzY2Y1ZDZlZWE0ODE1NDVmMDY2ZjZmMTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1FjVeeXEN8OW4OKi3+KD6+Dbywp L66fUmTx5iWGQBtawx7muiARiMB/dzxGGcYm6xZBkg7uZEui/W8L3xksJAE/1ZrI l8yjsqq2Cpq2G72LPE2M3LDh1z2174DlquFWHAXlalV3rPVEzyuXlFFKC4gexe0i 9TaMOKzedjWdVcDx3MN0XzZb2/xdC5vm0mLH6b3wEWPASMez9ZCprKWVpOul9fwp CsJBaA3Hj7Upb0w+ZT84K/fjVy3BaYW3a6DqLiK+Hx3HrtsjPz1CRGjBNf2FhpHK NYw3czXSDm7X48K5OIwJe39otHpVAVcmltvWqpzEmZSm3o+EhjeFPRGKYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEekGir5h7RTz11u6kgVRfBm9vEmMB8GA1UdIwQY MBaAFCiVTij24BylxzU7w3LzaaX1HZu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgt OTVjZTJjNzU1ZDQ3LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgtOTVjZTJjNzU1ZDQ3 LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVf1TxsTC g1RB0pSP6cidJ6beTXIzCILqjZ+Rw+Vf8tGGKOTy6gQ5AOGFFU2mikJ+A+Viwk+t 3ShZ3D+dmTz0+p+DQ5kicu7RLwWPBVNPBqc0g/ZuCKKPDOkPyzhD4ynwrhoZLsK4 4VSOOAn7MP8uVFLDwqT0KU1cEw/cqQLNZM/YZH9M0M/96fTinRUDZwgCdAV45b+h E35cPhydFTkjAF6/TEyw+E7/jPr8FJ/cL7IBaALQE+3odTj2d8C/YJswpK4dIR2U u5271fGC/wGDjxqXg7kGjoInH8SybvA7jtWC15BmN6gw34llnEMo4qk0O1fDtpX6 ZE40AUwx3dZQPg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:06:00 2026 by rpki-client