This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json) Hash identifier: PypJyqLM6PAEg8jaHXIMCKitOnhQnh+ChXeAUtfLVNc= Subject key identifier: 92:C0:33:BE:22:EE:DD:DE:59:D3:68:7D:23:4F:D6:6F:BC:E8:AD:94 Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4 Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4 Certificate serial: 019AF1D2492C5EACE3E488730501548D2F07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft Manifest number: 053D Signing time: Sat 06 Dec 2025 04:01:21 +0000 Manifest this update: Sat 06 Dec 2025 04:01:21 +0000 Manifest next update: Sun 07 Dec 2025 04:01:21 +0000 Files and hashes: 1: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: fZLkOGXopE/+Yw0FYU8YUk/bTOboIdMziN0SkTKJF9c=) 2: o05sdzj6m4fQO6_WrgnQWVEGn8s.roa (hash: 4PZyqJElCUrsee8Vele9Jxa/SXWOHXm1LP7RgEQB9SY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:49:2c:5e:ac:e3:e4:88:73:05:01:54:8d:2f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4 Validity Not Before: Dec 6 04:01:21 2025 GMT Not After : Dec 7 04:01:21 2025 GMT Subject: CN=92c033be22eeddde59d3687d234fd66fbce8ad94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:92:fc:a5:91:98:7c:6b:6b:8a:6b:00:99:b0: cf:c6:6e:7a:3b:ce:e8:ad:4d:e0:8f:cd:83:69:cb: cf:32:98:40:ba:4d:48:4d:3f:ed:c6:e3:12:63:13: 76:d9:5b:19:52:33:34:55:3d:e1:b8:8b:8a:db:94: 84:e2:cd:68:68:0d:83:0f:98:29:ea:de:73:3b:b2: 5d:91:83:6a:32:2e:9f:bd:0e:04:44:46:86:90:8e: 72:a7:63:a9:89:19:bf:c9:f2:17:01:a4:e9:28:0a: 8b:5e:05:76:e3:23:4e:fd:dc:50:b3:c4:57:bd:e1: 91:91:eb:5c:d3:b0:a6:f8:49:47:89:93:b7:80:f2: 7d:db:f6:d8:da:8f:2f:b8:88:51:88:21:9a:98:cd: 53:d9:89:a6:7f:52:31:31:4f:29:21:71:25:7b:86: 63:d7:7b:d3:ed:93:5e:a5:a9:d1:33:8f:00:10:55: 68:f7:c6:b9:80:6e:73:1b:6d:79:49:7a:d3:82:24: 80:e2:22:d6:46:af:0e:a8:66:b4:5d:1a:09:a6:88: 26:c5:19:1e:d9:88:c7:20:b7:26:32:c3:69:00:6e: c3:80:ad:09:89:12:1b:f5:aa:b0:05:bd:e3:9a:1b: a9:4a:1b:f2:98:14:63:06:4c:2a:f9:eb:08:ec:a5: ba:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C0:33:BE:22:EE:DD:DE:59:D3:68:7D:23:4F:D6:6F:BC:E8:AD:94 X509v3 Authority Key Identifier: keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:53:0c:9e:ac:9d:29:9e:a0:dc:11:ab:ac:27:9b:6c:b6:f4: 9b:b5:05:ad:8f:4d:9a:f7:5b:fd:1b:e3:03:1c:ec:19:db:5c: 1e:72:f4:5b:3e:27:fd:6b:47:77:7e:f6:bd:a4:cc:4d:41:27: 55:bd:18:f9:4e:f3:84:e6:4e:18:a9:62:c8:dc:bb:54:b2:13: 53:23:e7:44:f9:bd:bd:02:57:85:4e:d4:b1:01:35:10:d5:16: 5b:d4:0b:81:bc:49:8e:7a:fb:40:23:cf:e9:e9:d1:6a:f6:68: 21:54:6f:ad:d6:1f:4b:b3:33:47:f6:ef:bb:e0:bb:ba:6d:1e: 48:64:e2:d3:e4:5c:4d:52:eb:50:27:f4:d4:43:85:e4:0e:2e: 80:57:28:92:98:dc:f8:73:5e:b2:58:06:df:e7:17:74:f8:2f: 8d:29:fd:d0:f1:c3:20:5e:d3:5d:b1:de:fa:56:1b:83:99:79: bd:7e:ab:0c:4a:b3:ea:63:49:ee:b3:35:af:b7:dc:c8:56:02: fe:15:61:4a:f3:82:ac:ac:38:87:b6:e5:12:3e:c3:ec:06:76: ab:c3:88:b0:fd:7e:15:54:ec:7b:f3:8c:d9:b8:40:45:9f:8b: 52:bf:f4:9b:9f:67:64:bd:8b:a0:32:54:74:d8:49:56:de:a1: 87:bc:35:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0kksXqzj5IhzBQFUjS8HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4OTU0ZTI4ZjZlMDFjYTVjNzM1M2JjMzcyZjM2OWE1ZjUx ZDliYjQwHhcNMjUxMjA2MDQwMTIxWhcNMjUxMjA3MDQwMTIxWjAzMTEwLwYDVQQD Eyg5MmMwMzNiZTIyZWVkZGRlNTlkMzY4N2QyMzRmZDY2ZmJjZThhZDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5L8pZGYfGtrimsAmbDPxm56O87o rU3gj82DacvPMphAuk1ITT/txuMSYxN22VsZUjM0VT3huIuK25SE4s1oaA2DD5gp 6t5zO7JdkYNqMi6fvQ4EREaGkI5yp2OpiRm/yfIXAaTpKAqLXgV24yNO/dxQs8RX veGRketc07Cm+ElHiZO3gPJ92/bY2o8vuIhRiCGamM1T2Ymmf1IxMU8pIXEle4Zj 13vT7ZNepanRM48AEFVo98a5gG5zG215SXrTgiSA4iLWRq8OqGa0XRoJpogmxRke 2YjHILcmMsNpAG7DgK0JiRIb9aqwBb3jmhupShvymBRjBkwq+esI7KW6UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLAM74i7t3eWdNofSNP1m+86K2UMB8GA1UdIwQY MBaAFCiVTij24BylxzU7w3LzaaX1HZu0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgt OTVjZTJjNzU1ZDQ3LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9mMzcwMjctYWZjNC00NDRmLTgwMDgtOTVjZTJjNzU1ZDQ3 LzEvS0pWT0tQYmdIS1hITlR2RGN2TnBwZlVkbTdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFVMMnqyd KZ6g3BGrrCebbLb0m7UFrY9Nmvdb/RvjAxzsGdtcHnL0Wz4n/WtHd372vaTMTUEn Vb0Y+U7zhOZOGKliyNy7VLITUyPnRPm9vQJXhU7UsQE1ENUWW9QLgbxJjnr7QCPP 6enRavZoIVRvrdYfS7MzR/bvu+C7um0eSGTi0+RcTVLrUCf01EOF5A4ugFcokpjc +HNeslgG3+cXdPgvjSn90PHDIF7TXbHe+lYbg5l5vX6rDEqz6mNJ7rM1r7fcyFYC /hVhSvOCrKw4h7blEj7D7AZ2q8OIsP1+FVTse/OM2bhARZ+LUr/0m59nZL2LoDJU dNhJVt6hh7w1Lw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:31:26 2025 by rpki-client