This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json) Hash identifier: Hcc1h/kltK2sLSKPLxIk6e44UoPiCiq7eF002aWajc8= Subject key identifier: 16:29:38:84:70:AC:E2:3B:FF:6F:5B:E8:D2:26:D3:DC:F3:32:18:7C Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9 Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9 Certificate serial: 019BFDD3EC4AB3C19A992AFA2A6B4F6A9400 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft Manifest number: 07D2 Signing time: Tue 27 Jan 2026 05:01:22 +0000 Manifest this update: Tue 27 Jan 2026 05:01:22 +0000 Manifest next update: Wed 28 Jan 2026 05:01:22 +0000 Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=) 2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: jqhQO7Adve4VdPzTJg2Fu+0dqlenzD8elnQqD8txHzc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:d3:ec:4a:b3:c1:9a:99:2a:fa:2a:6b:4f:6a:94:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9 Validity Not Before: Jan 27 05:01:22 2026 GMT Not After : Jan 28 05:01:22 2026 GMT Subject: CN=1629388470ace23bff6f5be8d226d3dcf332187c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:60:15:0d:a5:e7:b7:bf:38:c4:76:70:bf:46: d2:3e:ca:ad:dd:78:a1:4f:1b:d5:0e:9f:64:1c:a2: 3a:d0:a9:59:55:d8:0b:e0:e2:8f:3e:17:97:4d:af: ff:2c:a1:f5:81:27:20:fe:d6:d2:1a:a6:1c:b1:0c: c2:77:d5:4a:4c:04:65:80:10:5d:63:3d:6e:39:6f: 5f:98:75:f8:5c:8e:2f:46:f6:75:e6:aa:2c:43:ab: 82:49:45:53:42:b0:3a:a9:f2:d3:50:6f:47:7c:90: ab:8e:a3:7c:a4:32:70:7b:0a:63:21:49:86:1a:84: d6:81:06:b8:2f:dd:9e:73:d2:d4:09:76:97:73:62: 16:a0:d5:63:e6:f0:cb:aa:b6:3a:fb:5b:17:0f:b2: c2:58:d1:94:65:85:43:bb:49:ee:48:ff:7d:98:4e: dc:a7:16:d5:03:7c:b0:2b:1d:8b:a0:c0:d3:55:1f: e8:3c:78:3e:3e:5b:9b:e6:c4:db:15:7c:43:99:15: d1:1f:41:b4:20:57:93:6a:2b:b7:92:64:11:ac:76: b9:db:03:1d:dd:64:b9:14:a5:99:cb:a4:32:95:60: 8b:aa:36:e7:4c:d1:7b:dc:70:db:6a:8a:2e:26:40: f9:85:f2:7c:c9:5e:64:aa:16:19:5f:cb:7e:e9:86: df:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:29:38:84:70:AC:E2:3B:FF:6F:5B:E8:D2:26:D3:DC:F3:32:18:7C X509v3 Authority Key Identifier: keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:5c:a4:29:9c:2e:c3:b8:97:db:34:65:7c:a6:8e:e5:22:b8: 66:68:fb:b4:73:a0:b3:28:26:85:db:e1:39:33:c2:4e:c2:6b: 17:c5:3f:fb:55:34:3e:f8:f0:86:4b:67:2e:82:e2:d2:06:66: 38:fa:f1:75:9e:27:43:53:52:b6:17:f9:78:42:9b:62:55:12: 52:18:e8:84:5e:88:34:60:e1:3c:22:0a:79:c8:46:da:f3:55: 6f:38:35:93:9f:19:19:ca:82:41:bf:bd:f7:07:7e:a8:cf:4c: 3d:e9:87:1e:e2:36:5b:2a:47:8c:31:85:81:89:4d:27:db:f3: 85:11:fd:f4:bf:de:de:35:45:23:2d:15:43:2b:31:e7:4a:47: 54:65:4b:35:e9:ad:7d:15:d9:e3:0c:5b:3a:79:b0:d7:63:14: 81:11:5b:5b:b4:6b:10:b2:fe:fb:a0:dc:88:93:7f:cf:4b:bf: 32:b0:e0:ae:54:38:9e:9b:ca:d9:7f:6e:ce:bb:62:b8:79:4c: 7b:b8:05:1d:3a:6b:db:8e:46:46:7d:e2:ec:a0:8f:45:e1:05: 4f:9d:7c:b7:1d:2b:8e:ef:04:7c:94:61:c7:0c:32:86:cb:87: e5:b5:95:e8:e1:1c:97:a3:ac:8e:6e:87:f9:f5:3b:ba:38:9a: 4e:4c:73:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv90+xKs8GamSr6KmtPapQAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYzAwMTM3ZWU2ZGZhZWI0ZWE0ODIzYmMxNzNjM2JjMDAw MzFkZjkwHhcNMjYwMTI3MDUwMTIyWhcNMjYwMTI4MDUwMTIyWjAzMTEwLwYDVQQD EygxNjI5Mzg4NDcwYWNlMjNiZmY2ZjViZThkMjI2ZDNkY2YzMzIxODdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGAVDaXnt784xHZwv0bSPsqt3Xih TxvVDp9kHKI60KlZVdgL4OKPPheXTa//LKH1gScg/tbSGqYcsQzCd9VKTARlgBBd Yz1uOW9fmHX4XI4vRvZ15qosQ6uCSUVTQrA6qfLTUG9HfJCrjqN8pDJwewpjIUmG GoTWgQa4L92ec9LUCXaXc2IWoNVj5vDLqrY6+1sXD7LCWNGUZYVDu0nuSP99mE7c pxbVA3ywKx2LoMDTVR/oPHg+Plub5sTbFXxDmRXRH0G0IFeTaiu3kmQRrHa52wMd 3WS5FKWZy6QylWCLqjbnTNF73HDbaoouJkD5hfJ8yV5kqhYZX8t+6YbfSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBYpOIRwrOI7/29b6NIm09zzMhh8MB8GA1UdIwQY MBaAFJDAATfubfrrTqSCO8Fzw7wAAx35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUt MGE1MjViNjlkYjhmLzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUtMGE1MjViNjlkYjhm LzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVlykKZwu w7iX2zRlfKaO5SK4Zmj7tHOgsygmhdvhOTPCTsJrF8U/+1U0PvjwhktnLoLi0gZm OPrxdZ4nQ1NSthf5eEKbYlUSUhjohF6INGDhPCIKechG2vNVbzg1k58ZGcqCQb+9 9wd+qM9MPemHHuI2WypHjDGFgYlNJ9vzhRH99L/e3jVFIy0VQysx50pHVGVLNemt fRXZ4wxbOnmw12MUgRFbW7RrELL++6DciJN/z0u/MrDgrlQ4npvK2X9uzrtiuHlM e7gFHTpr245GRn3i7KCPReEFT518tx0rju8EfJRhxwwyhsuH5bWV6OEcl6Osjm6H +fU7ujiaTkxz1g== -----END CERTIFICATE-----Generated at Tue Jan 27 07:41:34 2026 by rpki-client