This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft File: kjlpG6eScAY69DZNMIYxNl6QEWo.mft (raw, json) Hash identifier: VOYaFRgR0/SsAddWyoWPSby7Gpw8WS4bgYqil0L60Is= Subject key identifier: 2D:BF:76:9A:69:24:FF:5D:50:D5:7D:54:65:9B:BD:26:53:E9:F8:22 Authority key identifier: 92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A Certificate issuer: /CN=9239691ba79270063af4364d308631365e90116a Certificate serial: 019AF3F82DC54F428108E2138CA4E6891D10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft Manifest number: 0EBC Signing time: Sat 06 Dec 2025 14:01:58 +0000 Manifest this update: Sat 06 Dec 2025 14:01:58 +0000 Manifest next update: Sun 07 Dec 2025 14:01:58 +0000 Files and hashes: 1: kjlpG6eScAY69DZNMIYxNl6QEWo.crl (hash: 3L4oh+DO4NdoRM2bhgOLcRlvH56TcHGJH2yNgM99Nyo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f8:2d:c5:4f:42:81:08:e2:13:8c:a4:e6:89:1d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9239691ba79270063af4364d308631365e90116a Validity Not Before: Dec 6 14:01:58 2025 GMT Not After : Dec 7 14:01:58 2025 GMT Subject: CN=2dbf769a6924ff5d50d57d54659bbd2653e9f822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:55:c9:6f:04:5d:af:51:da:91:59:16:ba: 96:80:d7:e4:17:3f:df:d5:c2:a8:f3:3d:92:aa:64: 3d:10:cf:ae:da:9b:ed:17:77:80:df:f6:ce:3f:f8: 1d:ca:e4:d9:9b:1b:33:bc:fd:28:7a:c4:78:da:82: e9:fd:15:14:f7:2e:6d:da:4a:d4:c8:da:31:f2:a1: be:e3:96:23:28:a3:62:b8:6d:dd:57:96:6b:01:f7: 1e:c2:35:25:7a:c2:99:4f:4c:99:55:37:7b:40:20: ca:15:35:d6:5f:85:36:53:23:a5:f9:63:81:32:2c: fc:db:fd:65:48:7b:db:d4:18:57:04:64:9c:1e:b2: f8:20:68:44:b7:6a:fc:8a:80:eb:8e:6c:f4:c2:06: 04:68:95:6d:73:80:bf:c9:95:91:2a:b2:80:f6:d4: 78:28:07:fb:03:72:49:b7:94:c4:26:7e:6c:12:d1: 5a:58:9a:23:27:bd:13:35:02:3c:34:40:f4:90:19: 38:f2:bf:8c:b1:86:df:e4:9a:96:51:05:0b:a4:b8: 2c:f8:fa:d7:e0:a8:b0:1a:40:2c:44:3e:03:1e:57: 3f:a3:17:e0:f6:ea:83:b1:3d:da:97:13:89:a9:67: 7a:c4:2f:8c:52:e7:7a:aa:28:62:13:f4:04:7c:b4: 88:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BF:76:9A:69:24:FF:5D:50:D5:7D:54:65:9B:BD:26:53:E9:F8:22 X509v3 Authority Key Identifier: keyid:92:39:69:1B:A7:92:70:06:3A:F4:36:4D:30:86:31:36:5E:90:11:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kjlpG6eScAY69DZNMIYxNl6QEWo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/86bd09-32b0-494c-9755-f1792bd77a53/1/kjlpG6eScAY69DZNMIYxNl6QEWo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:9d:90:55:00:85:b4:98:ec:bc:44:fb:09:aa:da:66:f9:61: 1f:af:48:b2:f4:9e:51:ab:13:55:74:07:f6:bb:56:30:ee:f9: 0f:f1:3d:53:74:76:b9:93:ed:f2:f0:2a:ce:6b:57:92:c9:60: 8e:31:f0:e3:3b:67:db:8c:0f:34:47:a3:c1:63:c6:a9:3f:28: 28:9f:ff:ab:3b:da:39:e8:f0:a5:4f:1b:d1:7c:a1:f6:bf:ed: dc:a1:84:43:cb:dd:56:57:f3:2f:f8:bb:da:67:db:44:80:c5: 69:3a:d9:48:e7:db:73:f5:69:a3:7a:a1:ac:14:d2:c9:96:a4: 63:96:bd:fe:dc:4f:f8:da:48:0d:e2:f1:79:39:a5:06:1e:9a: 64:bb:33:0f:48:28:52:e4:f1:55:9f:de:c8:4f:41:ba:6f:43: 1f:50:4f:e9:49:34:41:50:9e:83:6e:5a:5d:fd:5f:ee:3f:0d: bc:6f:a2:49:18:9a:9e:0c:63:24:16:95:29:97:d1:59:4d:5e: 8f:1e:4c:c6:69:7e:c3:2a:33:1b:7a:4b:6b:89:bd:94:a8:c8: 92:62:8d:6f:24:a5:55:25:7d:12:b7:aa:16:65:13:0a:51:2e: 92:f6:c0:1b:bb:39:20:9c:72:f4:d1:0e:42:f5:13:ff:fd:49: 61:6c:a3:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz+C3FT0KBCOITjKTmiR0QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMzk2OTFiYTc5MjcwMDYzYWY0MzY0ZDMwODYzMTM2NWU5 MDExNmEwHhcNMjUxMjA2MTQwMTU4WhcNMjUxMjA3MTQwMTU4WjAzMTEwLwYDVQQD EygyZGJmNzY5YTY5MjRmZjVkNTBkNTdkNTQ2NTliYmQyNjUzZTlmODIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPxVyW8EXa9R2pFZFrqWgNfkFz/f 1cKo8z2SqmQ9EM+u2pvtF3eA3/bOP/gdyuTZmxszvP0oesR42oLp/RUU9y5t2krU yNox8qG+45YjKKNiuG3dV5ZrAfcewjUlesKZT0yZVTd7QCDKFTXWX4U2UyOl+WOB Miz82/1lSHvb1BhXBGScHrL4IGhEt2r8ioDrjmz0wgYEaJVtc4C/yZWRKrKA9tR4 KAf7A3JJt5TEJn5sEtFaWJojJ70TNQI8NED0kBk48r+MsYbf5JqWUQULpLgs+PrX 4KiwGkAsRD4DHlc/oxfg9uqDsT3alxOJqWd6xC+MUud6qihiE/QEfLSI6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC2/dpppJP9dUNV9VGWbvSZT6fgiMB8GA1UdIwQY MBaAFJI5aRunknAGOvQ2TTCGMTZekBFqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC84NmJkMDktMzJiMC00OTRjLTk3NTUt ZjE3OTJiZDc3YTUzLzEva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC84NmJkMDktMzJiMC00OTRjLTk3NTUtZjE3OTJiZDc3YTUz LzEva2pscEc2ZVNjQVk2OURaTk1JWXhObDZRRVdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAp2QVQCF tJjsvET7CaraZvlhH69IsvSeUasTVXQH9rtWMO75D/E9U3R2uZPt8vAqzmtXkslg jjHw4ztn24wPNEejwWPGqT8oKJ//qzvaOejwpU8b0Xyh9r/t3KGEQ8vdVlfzL/i7 2mfbRIDFaTrZSOfbc/Vpo3qhrBTSyZakY5a9/txP+NpIDeLxeTmlBh6aZLszD0go UuTxVZ/eyE9Bum9DH1BP6Uk0QVCeg25aXf1f7j8NvG+iSRiangxjJBaVKZfRWU1e jx5Mxml+wyozG3pLa4m9lKjIkmKNbySlVSV9EreqFmUTClEukvbAG7s5IJxy9NEO QvUT//1JYWyjNQ== -----END CERTIFICATE-----Generated at Sun Dec 7 00:14:00 2025 by rpki-client