This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json) Hash identifier: Nix3vUnqsbwkrB01d+24CV7VcmAtLf7qLMCx5Bg7nRo= Subject key identifier: 01:78:78:A8:0B:3B:3A:3A:03:33:90:F2:85:BF:95:30:6A:73:37:11 Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9 Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9 Certificate serial: 019B120172E9CB9B6E22CB7D10FC9F665433 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft Manifest number: 0757 Signing time: Fri 12 Dec 2025 10:00:43 +0000 Manifest this update: Fri 12 Dec 2025 10:00:43 +0000 Manifest next update: Sat 13 Dec 2025 10:00:43 +0000 Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=) 2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: E7BGswoy3S5fx6qqlNxYCFDh+rhtOrISv0iMmsrLMi8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:01:72:e9:cb:9b:6e:22:cb:7d:10:fc:9f:66:54:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9 Validity Not Before: Dec 12 10:00:43 2025 GMT Not After : Dec 13 10:00:43 2025 GMT Subject: CN=017878a80b3b3a3a033390f285bf95306a733711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:96:90:c0:05:00:51:f7:46:0f:94:c7:00: 6b:3e:3a:68:73:30:b4:d7:6b:86:ff:d7:44:9e:c4: d3:76:10:b3:a9:4d:18:38:61:7b:89:87:15:41:32: d7:67:bb:9c:7a:ee:3f:d0:ae:d3:c7:8e:ac:46:eb: 96:f3:ed:bf:88:2e:ea:d6:dc:6b:89:16:a3:cb:c9: 37:58:62:25:2c:b6:08:01:e6:c7:21:31:f2:b8:22: a3:c0:cf:bb:2c:08:7c:36:a5:a2:90:5d:c4:e5:58: 1f:ce:59:ef:f8:95:94:c1:e5:b8:12:7f:eb:b6:7f: c7:5a:07:37:ae:95:a8:c2:5d:0a:22:34:65:80:e9: 51:86:29:42:c6:2e:41:cc:44:59:c5:fb:91:22:60: b0:7f:f0:e7:af:71:78:7e:8c:47:bd:c9:55:7f:de: d1:58:70:32:ec:5e:24:3b:33:ad:a8:82:71:61:7d: 5a:7a:01:82:af:f3:27:0f:00:a5:20:5f:c5:6d:5a: 12:5a:52:82:32:0b:27:0e:92:0d:42:7c:6a:39:c1: 7e:2b:da:3b:9c:fa:22:f4:af:6c:7a:e0:06:22:cc: c7:3d:94:a4:a0:50:02:5c:16:ff:d3:55:de:40:cd: 18:d6:85:4d:e8:f1:63:c9:5e:fb:96:fb:10:09:84: bf:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:78:78:A8:0B:3B:3A:3A:03:33:90:F2:85:BF:95:30:6A:73:37:11 X509v3 Authority Key Identifier: keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:d3:95:96:08:bc:4f:78:ad:b4:0c:db:a7:c6:31:5b:f0:b5: 64:de:15:6e:d5:68:2b:54:73:e7:86:4f:c6:57:a3:3b:db:e5: 3a:01:dd:90:69:c1:be:02:3b:53:01:0d:bd:32:a4:50:83:24: 6f:26:c4:87:aa:03:62:a8:29:30:ac:83:e2:f8:60:bc:4d:2c: f0:f0:85:99:b2:a1:ce:00:e0:83:6b:db:db:ab:44:10:64:30: b4:0d:71:23:55:84:03:07:93:1d:24:6c:fb:ff:ff:66:2b:4b: f7:05:3c:a2:ae:d1:f3:23:41:25:d3:67:29:5d:82:cb:59:cc: 7a:ee:2d:ca:da:fd:dc:26:e7:d7:1e:c0:b5:71:cd:38:fd:ea: ab:f9:0b:28:63:ff:59:c1:70:81:ca:95:e0:75:9c:5c:2e:fc: 13:04:78:51:c8:aa:ec:28:73:69:1f:a3:23:7c:42:7c:83:1f: 63:45:84:83:0d:65:9d:1b:72:b5:a2:07:f8:7d:97:93:28:b3: e5:16:3a:61:95:1f:2d:46:7c:00:8f:ba:56:d2:8c:52:ac:e0: e6:a4:e7:5f:df:10:6c:e8:ce:32:e9:7c:47:1c:b4:90:75:8b: 26:a8:2b:6b:ac:9b:13:94:5b:cd:9e:3d:14:13:81:dd:d0:12: b7:ca:87:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAXLpy5tuIst9EPyfZlQzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYzAwMTM3ZWU2ZGZhZWI0ZWE0ODIzYmMxNzNjM2JjMDAw MzFkZjkwHhcNMjUxMjEyMTAwMDQzWhcNMjUxMjEzMTAwMDQzWjAzMTEwLwYDVQQD EygwMTc4NzhhODBiM2IzYTNhMDMzMzkwZjI4NWJmOTUzMDZhNzMzNzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvyWkMAFAFH3Rg+UxwBrPjpoczC0 12uG/9dEnsTTdhCzqU0YOGF7iYcVQTLXZ7uceu4/0K7Tx46sRuuW8+2/iC7q1txr iRajy8k3WGIlLLYIAebHITHyuCKjwM+7LAh8NqWikF3E5Vgfzlnv+JWUweW4En/r tn/HWgc3rpWowl0KIjRlgOlRhilCxi5BzERZxfuRImCwf/Dnr3F4foxHvclVf97R WHAy7F4kOzOtqIJxYX1aegGCr/MnDwClIF/FbVoSWlKCMgsnDpINQnxqOcF+K9o7 nPoi9K9seuAGIszHPZSkoFACXBb/01XeQM0Y1oVN6PFjyV77lvsQCYS/FwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAF4eKgLOzo6AzOQ8oW/lTBqczcRMB8GA1UdIwQY MBaAFJDAATfubfrrTqSCO8Fzw7wAAx35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUt MGE1MjViNjlkYjhmLzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUtMGE1MjViNjlkYjhm LzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUdOVlgi8 T3ittAzbp8YxW/C1ZN4VbtVoK1Rz54ZPxlejO9vlOgHdkGnBvgI7UwENvTKkUIMk bybEh6oDYqgpMKyD4vhgvE0s8PCFmbKhzgDgg2vb26tEEGQwtA1xI1WEAweTHSRs +///ZitL9wU8oq7R8yNBJdNnKV2Cy1nMeu4tytr93Cbn1x7AtXHNOP3qq/kLKGP/ WcFwgcqV4HWcXC78EwR4Uciq7ChzaR+jI3xCfIMfY0WEgw1lnRtytaIH+H2Xkyiz 5RY6YZUfLUZ8AI+6VtKMUqzg5qTnX98QbOjOMul8Rxy0kHWLJqgra6ybE5RbzZ49 FBOB3dASt8qH9Q== -----END CERTIFICATE-----Generated at Fri Dec 12 13:03:14 2025 by rpki-client