This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft File: KMID1l3y1lvbzzyINELdq1WjvN4.mft (raw, json) Hash identifier: Xr9lK+7+pJPQP252QujfI47arq3p8C0mmy4pgYKPiF0= Subject key identifier: E9:8C:45:8E:07:4F:C5:39:33:9C:E9:CA:6A:9B:32:1B:07:34:58:AB Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE Certificate issuer: /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde Certificate serial: 019AF54096C43E1651482D9FA1A894CF2414 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft Manifest number: 0D51 Signing time: Sat 06 Dec 2025 20:00:42 +0000 Manifest this update: Sat 06 Dec 2025 20:00:42 +0000 Manifest next update: Sun 07 Dec 2025 20:00:42 +0000 Files and hashes: 1: KMID1l3y1lvbzzyINELdq1WjvN4.crl (hash: Ltf4ywisCYusz0Ev8s2A7FqsYYh8+r2EPnXpeSi9QhA=) 2: eEe-w2donDCxX-tAzaEpFb0UtVY.roa (hash: g2d5FELl0EWl1pKF09WRuqqNzRt0N8/ZzyiwDHce4Xk=) 3: kA_OSzYdIA2vmO2YYor5kHVNHTQ.roa (hash: na+fNS4+KPnZVKtvI9VPkmEDxvmlZJBhohUxDwUJWbE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:40:96:c4:3e:16:51:48:2d:9f:a1:a8:94:cf:24:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde Validity Not Before: Dec 6 20:00:42 2025 GMT Not After : Dec 7 20:00:42 2025 GMT Subject: CN=e98c458e074fc539339ce9ca6a9b321b073458ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c6:bd:27:f0:44:37:cb:25:72:71:50:34:fb: 5e:49:b5:86:89:a4:2c:d7:73:9b:59:9f:1c:29:83: c9:e9:b0:24:32:54:a4:43:01:8c:b0:ff:36:8e:5b: d3:74:37:95:82:12:c6:a9:b8:fa:a0:a4:18:75:28: 1b:84:30:6d:9e:d3:f2:bf:38:6f:53:f6:4f:ff:94: 61:7c:22:08:54:f8:54:85:71:99:34:b7:9b:ce:ba: e0:9e:66:28:4f:71:d5:df:de:d2:99:3f:da:c9:58: ca:5b:c3:8f:55:4a:b0:d7:19:9c:2b:0b:56:47:0f: 11:f1:1b:ca:f9:22:fb:3a:f2:ef:e2:10:7d:d8:0b: eb:8f:71:84:52:01:39:22:dc:0e:3d:6c:c2:85:1f: 4b:ca:9e:51:70:9e:d0:cd:41:ed:b9:16:0f:7c:cb: 19:f9:88:4b:03:a9:50:51:d0:ae:68:bf:92:35:f2: 58:0c:dc:c8:aa:10:52:70:38:9b:5a:83:dc:7a:26: ed:db:64:df:f0:53:7f:10:49:ec:31:2b:ab:f1:5b: 3b:a2:9c:3f:52:00:37:ac:29:40:7a:09:47:05:b3: ff:82:7e:65:f3:f9:8d:27:cf:01:86:29:65:48:ae: ba:a6:7a:af:9b:7b:d7:8e:99:00:f7:5c:58:51:b3: be:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:8C:45:8E:07:4F:C5:39:33:9C:E9:CA:6A:9B:32:1B:07:34:58:AB X509v3 Authority Key Identifier: keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:2a:e8:b8:d5:81:8e:44:8e:5f:9e:9d:8f:b6:10:38:88:e0: c7:61:09:61:1a:62:0a:84:85:75:bf:55:4a:f0:d8:4a:12:14: 90:68:78:d7:21:57:59:cf:d1:d4:32:df:8e:58:13:d8:db:39: c9:35:55:df:6b:56:ac:87:43:ea:f4:6c:08:23:d4:a7:c0:f4: 0b:d4:15:43:2d:23:93:14:0e:3a:2a:d8:3a:2f:b0:61:9f:3f: ab:54:ba:66:7a:b4:56:c5:b8:86:16:09:30:ce:5a:17:a1:e8: 1f:f2:cd:70:d0:1d:9d:07:19:23:be:8c:bf:84:f8:52:0c:5d: 7d:a3:21:ec:f9:e4:e5:66:12:70:6c:9a:38:89:93:6d:56:74: 9f:0b:4e:c5:e9:12:18:2c:c2:74:45:7c:b4:ba:5f:f6:61:5b: e8:37:f9:e4:d8:27:62:4f:c5:01:1e:7c:6c:a6:58:f0:d4:1e: e6:02:d8:e3:11:1b:77:08:ea:36:94:26:52:1a:a9:27:d2:04: c6:70:c5:62:dc:9a:24:c2:fc:cf:f2:22:c6:6f:cf:6d:dd:d8: f5:20:d3:24:0f:f1:b8:70:33:fe:d4:83:96:b3:a4:31:41:a3: 37:2e:b6:d4:9e:17:04:64:4f:98:d8:d1:0e:25:27:b5:79:5c: 3d:cc:9f:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QJbEPhZRSC2foaiUzyQUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YzIwM2Q2NWRmMmQ2NWJkYmNmM2M4ODM0NDJkZGFiNTVh M2JjZGUwHhcNMjUxMjA2MjAwMDQyWhcNMjUxMjA3MjAwMDQyWjAzMTEwLwYDVQQD EyhlOThjNDU4ZTA3NGZjNTM5MzM5Y2U5Y2E2YTliMzIxYjA3MzQ1OGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsa9J/BEN8slcnFQNPteSbWGiaQs 13ObWZ8cKYPJ6bAkMlSkQwGMsP82jlvTdDeVghLGqbj6oKQYdSgbhDBtntPyvzhv U/ZP/5RhfCIIVPhUhXGZNLebzrrgnmYoT3HV397SmT/ayVjKW8OPVUqw1xmcKwtW Rw8R8RvK+SL7OvLv4hB92Avrj3GEUgE5ItwOPWzChR9Lyp5RcJ7QzUHtuRYPfMsZ +YhLA6lQUdCuaL+SNfJYDNzIqhBScDibWoPceibt22Tf8FN/EEnsMSur8Vs7opw/ UgA3rClAeglHBbP/gn5l8/mNJ88BhillSK66pnqvm3vXjpkA91xYUbO+TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOmMRY4HT8U5M5zpymqbMhsHNFirMB8GA1UdIwQY MBaAFCjCA9Zd8tZb2888iDRC3atVo7zeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmIt ODg1OTIwNDMwMjZmLzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmItODg1OTIwNDMwMjZm LzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiyrouNWB jkSOX56dj7YQOIjgx2EJYRpiCoSFdb9VSvDYShIUkGh41yFXWc/R1DLfjlgT2Ns5 yTVV32tWrIdD6vRsCCPUp8D0C9QVQy0jkxQOOirYOi+wYZ8/q1S6Znq0VsW4hhYJ MM5aF6HoH/LNcNAdnQcZI76Mv4T4UgxdfaMh7Pnk5WYScGyaOImTbVZ0nwtOxekS GCzCdEV8tLpf9mFb6Df55NgnYk/FAR58bKZY8NQe5gLY4xEbdwjqNpQmUhqpJ9IE xnDFYtyaJML8z/Iixm/Pbd3Y9SDTJA/xuHAz/tSDlrOkMUGjNy621J4XBGRPmNjR DiUntXlcPcyf9Q== -----END CERTIFICATE-----Generated at Sun Dec 7 00:33:42 2025 by rpki-client