This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json) Hash identifier: HN8QciRf5hpDvz8Sy1+VHvNl+49drkYIZ8G9ncWtRIQ= Subject key identifier: AD:C7:93:5C:1C:AF:D4:7D:C7:68:0F:68:0A:58:76:B7:36:55:57:D3 Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b Certificate serial: 019B32317AD3058DF01B6200FC668DDD3DCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft Manifest number: 092A Signing time: Thu 18 Dec 2025 16:01:02 +0000 Manifest this update: Thu 18 Dec 2025 16:01:02 +0000 Manifest next update: Fri 19 Dec 2025 16:01:02 +0000 Files and hashes: 1: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: lm9DXndngpelR20coAjmwaLTiiaEuKLman8Cm39TiCc=) 2: x6k0RFp7Tx1S2sYvTKRUnwMB54o.roa (hash: Kj0Dd36Z9ZII60RmdvUVufyE+PZ0m6JPvwn/WhUbw7E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 16:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:31:7a:d3:05:8d:f0:1b:62:00:fc:66:8d:dd:3d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b Validity Not Before: Dec 18 16:01:02 2025 GMT Not After : Dec 19 16:01:02 2025 GMT Subject: CN=adc7935c1cafd47dc7680f680a5876b7365557d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:7e:4d:b8:58:76:64:93:d5:5b:9b:fb:71: 37:71:9b:32:4e:9e:12:f7:25:ac:2d:b8:38:24:a7: 29:8b:d8:a6:38:fc:da:c3:6b:e4:a1:2d:5b:db:9b: 3b:02:11:07:25:ca:cf:e3:0a:6f:ad:af:2c:5c:ca: eb:eb:24:f1:ec:5f:d0:e1:0b:41:3b:e9:5d:87:36: 1c:75:d0:41:61:d6:4b:14:2c:6c:6e:53:80:c7:4a: 4d:bd:cf:59:70:19:b4:24:50:29:98:48:a0:af:dc: 27:97:24:5c:fe:34:99:f5:c4:11:d1:2c:a4:45:f9: b9:8e:15:ab:ed:ea:53:34:99:06:5a:73:ab:72:ad: 46:f0:8d:6f:fa:33:8c:84:78:df:a1:6b:f8:57:38: 15:5e:20:0f:52:6b:5c:f9:78:63:96:c1:e2:92:f1: 24:1a:fc:e1:5a:cd:03:2f:9e:86:4c:72:a9:95:dd: 3e:ea:e3:78:b7:ca:13:43:c9:25:38:71:8c:3f:5b: fc:5d:b6:cb:27:a1:92:c8:ba:ea:82:42:32:83:af: 76:5a:0f:5c:ca:30:32:fc:4c:1b:84:55:05:96:a4: 81:04:ec:73:3b:f5:a6:cc:9d:6b:14:e3:f8:27:f0: 03:b2:ec:64:a6:53:6d:31:b8:72:58:24:59:98:91: 57:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C7:93:5C:1C:AF:D4:7D:C7:68:0F:68:0A:58:76:B7:36:55:57:D3 X509v3 Authority Key Identifier: keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:25:7e:37:12:69:2d:54:ce:12:f2:1e:92:3f:99:4b:00:a1: c1:b3:fb:36:9f:d0:4d:dc:df:d4:78:01:5c:48:bd:38:02:1e: 08:71:54:dc:18:c2:52:3f:99:ae:ca:6d:45:4d:ef:88:dd:3e: 04:ee:2b:b2:4e:15:fd:0f:3a:90:8c:55:0a:7a:4e:c5:1d:cc: 89:48:08:5d:90:31:31:67:a5:a1:f2:bb:0c:dc:ef:d1:b4:95: 4c:19:79:94:52:88:89:ac:86:35:22:e3:93:5a:6d:20:c2:f7: df:84:80:a0:9f:ec:f6:54:99:52:23:a5:ba:4b:ce:ee:65:c2: c6:b1:f4:1f:16:38:84:5e:99:4a:fc:26:6d:7d:c1:28:ed:3c: 78:79:0f:61:09:7e:ba:fc:49:54:bf:7d:31:78:55:13:3b:8c: 68:a1:36:ad:4b:23:e0:06:ec:44:25:c7:28:48:6f:a7:dd:e8: 07:8b:60:20:72:ae:0f:44:4f:7a:b6:46:7a:3e:23:17:12:b5: 51:fb:41:15:64:de:f2:31:09:fd:5b:e5:3e:bc:ae:3e:35:83: 0d:34:57:99:20:85:00:38:33:0c:0c:62:45:14:45:3e:46:c2: 8b:61:e2:f4:65:e5:35:9c:2c:2c:07:ba:4c:c3:03:4d:06:4e: 95:70:c6:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyMXrTBY3wG2IA/GaN3T3PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjYWFlNTE0YzVmOTk0MDM5MTQzNTYxNGQ3OTQwNGJlZTEy MDliM2IwHhcNMjUxMjE4MTYwMTAyWhcNMjUxMjE5MTYwMTAyWjAzMTEwLwYDVQQD EyhhZGM3OTM1YzFjYWZkNDdkYzc2ODBmNjgwYTU4NzZiNzM2NTU1N2QzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFx+TbhYdmST1Vub+3E3cZsyTp4S 9yWsLbg4JKcpi9imOPzaw2vkoS1b25s7AhEHJcrP4wpvra8sXMrr6yTx7F/Q4QtB O+ldhzYcddBBYdZLFCxsblOAx0pNvc9ZcBm0JFApmEigr9wnlyRc/jSZ9cQR0Syk Rfm5jhWr7epTNJkGWnOrcq1G8I1v+jOMhHjfoWv4VzgVXiAPUmtc+XhjlsHikvEk GvzhWs0DL56GTHKpld0+6uN4t8oTQ8klOHGMP1v8XbbLJ6GSyLrqgkIyg692Wg9c yjAy/EwbhFUFlqSBBOxzO/WmzJ1rFOP4J/ADsuxkplNtMbhyWCRZmJFXQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK3Hk1wcr9R9x2gPaApYdrc2VVfTMB8GA1UdIwQY MBaAFPyq5RTF+ZQDkUNWFNeUBL7hIJs7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0tybEZNWDVsQU9SUTFZVTE1UUV2dUVnbXpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy81NjJlMWQtOTUyYS00ZmVhLTllNGEt NjdhOThlMjU2Y2M3LzEvX0tybEZNWDVsQU9SUTFZVTE1UUV2dUVnbXpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy81NjJlMWQtOTUyYS00ZmVhLTllNGEtNjdhOThlMjU2Y2M3 LzEvX0tybEZNWDVsQU9SUTFZVTE1UUV2dUVnbXpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOiV+NxJp LVTOEvIekj+ZSwChwbP7Np/QTdzf1HgBXEi9OAIeCHFU3BjCUj+ZrsptRU3viN0+ BO4rsk4V/Q86kIxVCnpOxR3MiUgIXZAxMWelofK7DNzv0bSVTBl5lFKIiayGNSLj k1ptIML334SAoJ/s9lSZUiOlukvO7mXCxrH0HxY4hF6ZSvwmbX3BKO08eHkPYQl+ uvxJVL99MXhVEzuMaKE2rUsj4AbsRCXHKEhvp93oB4tgIHKuD0RPerZGej4jFxK1 UftBFWTe8jEJ/VvlPryuPjWDDTRXmSCFADgzDAxiRRRFPkbCi2Hi9GXlNZwsLAe6 TMMDTQZOlXDGjg== -----END CERTIFICATE-----Generated at Fri Dec 19 00:14:10 2025 by rpki-client