This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft File: mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft (raw, json) Hash identifier: Bx0ogWJnupphrN0Tmv/KvoPQIRGVoupoPCUQILiqE8w= Subject key identifier: B8:00:C0:A5:D1:8E:85:74:D3:88:CF:91:4E:89:97:3E:A9:69:BF:04 Authority key identifier: 98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11 Certificate issuer: /CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611 Certificate serial: 019B1BA97518F4B1F39D340859B2921421D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft Manifest number: 130B Signing time: Sun 14 Dec 2025 07:00:48 +0000 Manifest this update: Sun 14 Dec 2025 07:00:48 +0000 Manifest next update: Mon 15 Dec 2025 07:00:48 +0000 Files and hashes: 1: KkXU6YkVywPte3FQKPTwmXq43Jw.roa (hash: +grv15uxretevWYIDb50yFoisYnL85l43pH++WpX3xI=) 2: mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl (hash: SR6sEFLPHBTNG8PlwI6SmthDUrQWVopVwjMgsT/eVwA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:a9:75:18:f4:b1:f3:9d:34:08:59:b2:92:14:21:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98a987c6cd0a36f94dbef10ef2a2c66020a95611 Validity Not Before: Dec 14 07:00:48 2025 GMT Not After : Dec 15 07:00:48 2025 GMT Subject: CN=b800c0a5d18e8574d388cf914e89973ea969bf04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:dc:87:d7:f2:bf:62:6f:ec:1d:e7:c8:d6: 50:72:8d:e0:32:04:52:09:0a:70:3c:55:4f:d5:64: 7d:a4:70:42:22:ae:0b:15:6d:0d:5f:3a:47:f6:10: 3b:5c:ba:8f:a4:c7:58:79:0e:23:3d:33:ac:94:15: 6c:cf:a9:c0:6e:52:0f:9a:75:db:da:27:cd:e4:4b: 9d:dc:3d:d6:34:22:8c:8b:5d:df:c5:e6:07:42:5a: f1:d2:6b:37:9e:ae:ce:a8:44:71:bc:d1:19:a9:41: 77:e2:1d:d9:4d:c9:87:ca:85:be:52:88:13:33:96: 9a:62:bf:ab:fd:36:97:75:f3:f5:a4:48:09:d3:04: be:ed:62:f5:3b:09:e8:c0:e4:ae:39:3b:0c:85:73: 97:09:e0:84:6b:65:9c:a7:ea:27:78:a9:12:d8:e8: e7:06:21:5b:bd:c4:9d:e2:9e:a8:7a:ac:b7:7a:fc: 73:a0:57:f9:a3:3a:73:ab:ac:68:48:41:19:c6:b4: 1e:97:a2:20:d3:ba:20:f8:39:ee:de:79:b2:fd:15: cd:c5:ac:ad:b2:ba:1f:df:2f:f5:fd:b7:1c:64:3a: a0:18:b6:07:5b:c1:a5:75:9c:c6:34:9a:5b:ca:33: b9:db:a1:aa:40:66:f2:b9:6e:f5:67:0a:94:ec:f4: 59:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:00:C0:A5:D1:8E:85:74:D3:88:CF:91:4E:89:97:3E:A9:69:BF:04 X509v3 Authority Key Identifier: keyid:98:A9:87:C6:CD:0A:36:F9:4D:BE:F1:0E:F2:A2:C6:60:20:A9:56:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKmHxs0KNvlNvvEO8qLGYCCpVhE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab8307-5f9c-49c6-8a0b-f3b45819f2b0/1/mKmHxs0KNvlNvvEO8qLGYCCpVhE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:1f:1a:41:f0:f7:28:25:b0:50:1b:99:ce:b1:af:0a:3a:16: 68:ab:7f:75:c5:29:e3:7b:11:97:3c:09:1d:26:7b:84:5f:e9: b2:52:6e:7b:07:9c:8b:26:d2:23:ba:bf:5b:b8:10:28:11:8a: 23:54:46:10:98:25:10:25:34:0b:1a:07:b3:fd:75:82:43:71: 7d:bd:e7:61:c8:5d:8f:a7:81:e5:85:e7:37:bb:24:c4:30:02: 50:e4:c6:be:ca:1c:40:29:c8:29:53:31:11:f8:c5:07:f5:66: 87:73:0c:89:a2:a1:42:f8:55:17:90:aa:f4:65:66:58:ef:20: f1:20:b4:eb:96:55:99:1c:67:37:b9:c3:da:85:66:9f:37:4e: d5:3f:7b:f7:20:34:2b:32:bc:68:6d:bb:5c:15:ef:96:f5:04: a1:55:5d:c4:32:5a:c7:54:a1:22:74:67:d6:a8:b9:de:a2:47: f4:7b:73:6a:88:a8:af:86:34:d7:43:52:f3:a1:53:41:80:79: 78:9d:fd:56:48:94:ff:a4:04:cb:28:17:e7:08:91:f7:64:8b: 00:50:1e:73:1b:f8:99:35:1f:35:94:b5:39:a5:a5:19:4f:1f: e5:0a:55:9b:29:fc:3a:7c:b9:a5:3c:04:9f:29:94:7b:f6:a1: 56:a6:3a:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqXUY9LHznTQIWbKSFCHYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4YTk4N2M2Y2QwYTM2Zjk0ZGJlZjEwZWYyYTJjNjYwMjBh OTU2MTEwHhcNMjUxMjE0MDcwMDQ4WhcNMjUxMjE1MDcwMDQ4WjAzMTEwLwYDVQQD EyhiODAwYzBhNWQxOGU4NTc0ZDM4OGNmOTE0ZTg5OTczZWE5NjliZjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnDch9fyv2Jv7B3nyNZQco3gMgRS CQpwPFVP1WR9pHBCIq4LFW0NXzpH9hA7XLqPpMdYeQ4jPTOslBVsz6nAblIPmnXb 2ifN5Eud3D3WNCKMi13fxeYHQlrx0ms3nq7OqERxvNEZqUF34h3ZTcmHyoW+UogT M5aaYr+r/TaXdfP1pEgJ0wS+7WL1OwnowOSuOTsMhXOXCeCEa2Wcp+oneKkS2Ojn BiFbvcSd4p6oeqy3evxzoFf5ozpzq6xoSEEZxrQel6Ig07og+Dnu3nmy/RXNxayt srof3y/1/bccZDqgGLYHW8GldZzGNJpbyjO526GqQGbyuW71ZwqU7PRZVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLgAwKXRjoV004jPkU6Jlz6pab8EMB8GA1UdIwQY MBaAFJiph8bNCjb5Tb7xDvKixmAgqVYRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUttSHhzMEtOdmxOdnZFTzhxTEdZQ0NwVmhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9hYjgzMDctNWY5Yy00OWM2LThhMGIt ZjNiNDU4MTlmMmIwLzEvbUttSHhzMEtOdmxOdnZFTzhxTEdZQ0NwVmhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9hYjgzMDctNWY5Yy00OWM2LThhMGItZjNiNDU4MTlmMmIw LzEvbUttSHhzMEtOdmxOdnZFTzhxTEdZQ0NwVmhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOx8aQfD3 KCWwUBuZzrGvCjoWaKt/dcUp43sRlzwJHSZ7hF/pslJueweciybSI7q/W7gQKBGK I1RGEJglECU0CxoHs/11gkNxfb3nYchdj6eB5YXnN7skxDACUOTGvsocQCnIKVMx EfjFB/Vmh3MMiaKhQvhVF5Cq9GVmWO8g8SC065ZVmRxnN7nD2oVmnzdO1T979yA0 KzK8aG27XBXvlvUEoVVdxDJax1ShInRn1qi53qJH9Htzaoior4Y010NS86FTQYB5 eJ39VkiU/6QEyygX5wiR92SLAFAecxv4mTUfNZS1OaWlGU8f5QpVmyn8Ony5pTwE nymUe/ahVqY6Hg== -----END CERTIFICATE-----Generated at Sun Dec 14 13:48:44 2025 by rpki-client