This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json) Hash identifier: 6Lo5kbp3p0xWNpUERQQ5AtvdORY+ANYvWuuu+RlaD3k= Subject key identifier: 75:6F:20:5B:B1:76:6F:A9:57:09:EA:B8:2E:E6:5F:A8:E0:4F:07:57 Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Certificate serial: 019B26649ED9555D17B2518C2729DC6BDEBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft Manifest number: 1782 Signing time: Tue 16 Dec 2025 09:01:26 +0000 Manifest this update: Tue 16 Dec 2025 09:01:26 +0000 Manifest next update: Wed 17 Dec 2025 09:01:26 +0000 Files and hashes: 1: 0l-uuc0ta--zZGivAH1vRPmB_34.roa (hash: N3+ixN59bx1CAdzBVH5dBhTA7XSG6tSZGbX7+qQ9kkU=) 2: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: B8KgF/5DzN5Uid1r9Prs1wTtlMha1+3k9Sz4XYngBwc=) 3: ZjCHU3LEGq34M383f_KumGN_eB4.roa (hash: YxlGAgs8g3hAPxhoH9iP3cLnbEfE9zXQU/84spENz30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 09:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:64:9e:d9:55:5d:17:b2:51:8c:27:29:dc:6b:de:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Validity Not Before: Dec 16 09:01:26 2025 GMT Not After : Dec 17 09:01:26 2025 GMT Subject: CN=756f205bb1766fa95709eab82ee65fa8e04f0757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e5:db:6c:e3:ef:22:b2:81:60:27:30:81:2e: 28:4f:0f:67:93:fc:05:c9:fd:56:cb:5c:5c:76:22: d0:83:64:3e:24:2b:a1:11:e0:52:70:d8:72:f9:a8: 6c:1b:eb:1f:fa:3f:00:b7:9c:63:b1:57:af:c5:a6: a7:cd:f7:16:38:95:66:e7:45:93:b5:e4:03:ea:57: 4e:13:ed:73:b7:c1:49:b9:25:f7:ef:42:62:64:ac: c9:23:f0:91:d7:29:f2:57:98:2d:16:0e:36:f9:8a: 9e:b2:64:39:21:17:f3:fa:90:55:ad:e1:ae:c9:87: 06:47:ca:65:5d:c7:63:35:52:7e:2d:cd:d4:bf:a1: 16:c5:a9:48:ae:03:3e:86:f6:f4:69:dd:f7:04:ef: 8a:bd:6a:7e:1a:d3:96:5a:49:76:e4:d5:6a:c3:58: 58:83:4b:54:97:01:1d:08:a9:bd:30:be:9d:70:03: c4:8b:b8:e9:08:ac:5d:2a:f6:06:e4:60:f9:88:0e: a2:8c:09:cd:e1:24:80:7f:0a:e7:cd:de:08:eb:d9: e4:80:fc:17:2e:bd:77:51:ac:a8:3d:7f:bf:8c:21: b3:bd:46:32:92:5c:14:92:b8:a9:76:0a:30:02:df: 6b:ee:78:05:eb:18:a8:0c:0c:44:80:bd:1e:c7:42: b7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6F:20:5B:B1:76:6F:A9:57:09:EA:B8:2E:E6:5F:A8:E0:4F:07:57 X509v3 Authority Key Identifier: keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d6:d5:21:5d:c5:46:4e:17:48:21:63:27:20:74:f7:84:48: 88:c6:5b:74:0b:ff:cb:18:33:da:a1:47:cd:82:0f:df:aa:80: c9:03:55:65:a6:94:83:70:af:ce:b8:b8:48:b4:57:fb:32:b4: f8:0a:58:54:74:b2:46:7e:0c:83:a4:79:20:7d:ed:d3:ff:72: 08:b8:46:05:fa:2a:8e:88:5e:0a:35:64:4b:28:25:ee:39:4a: b5:4b:a3:d1:0c:cc:b4:b2:17:20:47:4e:d6:aa:14:7b:a1:bf: d9:50:a0:3c:d3:fc:f2:a3:29:c9:fd:b9:d8:e7:ef:d1:dd:5d: 8f:2d:fe:34:6c:dc:c6:7a:b4:3d:72:26:59:2b:45:44:66:eb: 03:d4:c6:b2:5c:66:a8:1c:16:09:45:2f:c4:3a:46:af:32:e3: 95:0a:f9:40:a3:e5:1b:0c:bf:d0:73:62:7f:48:e3:74:8e:77: 33:50:70:2f:21:8d:be:33:09:63:7e:22:4a:0e:16:bc:37:64: b9:ba:85:d4:80:8b:5e:78:8f:47:c0:54:98:ec:22:1d:25:f0: 19:fd:2a:ba:74:c5:cf:24:21:5f:60:5c:0f:b7:32:ec:9b:da: ca:57:98:87:f5:12:05:cd:2e:cd:50:72:81:73:65:89:73:8b: f8:8d:cc:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmZJ7ZVV0XslGMJynca967MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk Yjg5NzMwHhcNMjUxMjE2MDkwMTI2WhcNMjUxMjE3MDkwMTI2WjAzMTEwLwYDVQQD Eyg3NTZmMjA1YmIxNzY2ZmE5NTcwOWVhYjgyZWU2NWZhOGUwNGYwNzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuXbbOPvIrKBYCcwgS4oTw9nk/wF yf1Wy1xcdiLQg2Q+JCuhEeBScNhy+ahsG+sf+j8At5xjsVevxaanzfcWOJVm50WT teQD6ldOE+1zt8FJuSX370JiZKzJI/CR1ynyV5gtFg42+YqesmQ5IRfz+pBVreGu yYcGR8plXcdjNVJ+Lc3Uv6EWxalIrgM+hvb0ad33BO+KvWp+GtOWWkl25NVqw1hY g0tUlwEdCKm9ML6dcAPEi7jpCKxdKvYG5GD5iA6ijAnN4SSAfwrnzd4I69nkgPwX Lr13UayoPX+/jCGzvUYyklwUkripdgowAt9r7ngF6xioDAxEgL0ex0K3TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHVvIFuxdm+pVwnquC7mX6jgTwdXMB8GA1UdIwQY MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO9bVIV3F Rk4XSCFjJyB094RIiMZbdAv/yxgz2qFHzYIP36qAyQNVZaaUg3Cvzri4SLRX+zK0 +ApYVHSyRn4Mg6R5IH3t0/9yCLhGBfoqjoheCjVkSygl7jlKtUuj0QzMtLIXIEdO 1qoUe6G/2VCgPNP88qMpyf252Ofv0d1djy3+NGzcxnq0PXImWStFRGbrA9TGslxm qBwWCUUvxDpGrzLjlQr5QKPlGwy/0HNif0jjdI53M1BwLyGNvjMJY34iSg4WvDdk ubqF1ICLXniPR8BUmOwiHSXwGf0qunTFzyQhX2BcD7cy7JvayleYh/USBc0uzVBy gXNliXOL+I3Mlg== -----END CERTIFICATE-----Generated at Tue Dec 16 15:29:05 2025 by rpki-client