This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json) Hash identifier: Ie6953pwRyC/AkRDEQKl6AonNMaVkCKyEmxV0teewkw= Subject key identifier: 14:F3:85:3D:C9:9A:E7:41:1A:BD:0F:BF:99:86:C2:AD:47:9D:82:BF Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92 Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292 Certificate serial: 019B20D0764D957DBFCD43A9AFFD6BF0E339 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft Manifest number: 10F7 Signing time: Mon 15 Dec 2025 07:01:31 +0000 Manifest this update: Mon 15 Dec 2025 07:01:31 +0000 Manifest next update: Tue 16 Dec 2025 07:01:31 +0000 Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: 8I5pe0cpSM6RVWahrcYuQkQMyQzFkoM/NG+knHgwqt8=) 2: jp-8lbUOvN6sUPZsTL-dh7MOVR8.roa (hash: /kMpoM5rzLA4Q5DdnfjuYEV0in2H+0XYtN+u4LENV/A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 07:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:d0:76:4d:95:7d:bf:cd:43:a9:af:fd:6b:f0:e3:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292 Validity Not Before: Dec 15 07:01:31 2025 GMT Not After : Dec 16 07:01:31 2025 GMT Subject: CN=14f3853dc99ae7411abd0fbf9986c2ad479d82bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:80:3a:6c:f4:38:a5:8b:1c:2f:9c:72:ab:7e: f4:d0:36:fd:59:8d:d2:b4:a3:92:83:fa:b7:9d:21: 0f:24:2f:8d:54:50:56:62:b3:96:66:e6:91:a7:33: 68:e0:79:59:27:76:43:78:36:33:82:97:f9:e3:5e: f8:54:72:e2:57:db:da:9d:ab:c5:f0:19:c9:59:1a: b4:c0:1f:be:ee:d1:7a:b6:47:94:e5:df:fc:af:85: 0e:cd:cf:62:d3:b5:32:c3:28:c4:34:d4:34:99:33: 62:96:54:5e:11:cb:15:e0:7b:db:85:ec:b7:aa:b5: 27:3f:c4:4f:49:49:89:c2:5e:29:e0:81:d8:c7:94: 25:46:e8:82:e7:27:2b:a5:8d:f5:1f:16:0c:16:4c: 0a:0a:ff:1e:5a:07:81:21:f5:0d:53:2d:2f:5c:b1: e3:5d:07:5a:4b:10:da:02:0f:dd:51:35:ae:fb:bd: d3:c9:ae:eb:1f:d1:c6:07:83:25:31:bd:cf:c9:15: c2:39:48:5f:24:c1:3a:32:1e:42:21:7e:09:a7:82: c1:ac:6d:fb:fb:e0:22:7b:52:18:e4:2b:6e:ec:04: a7:0c:15:1c:74:3d:2b:bd:51:ba:3a:65:e5:fb:af: de:23:07:ad:78:f1:30:21:87:79:65:af:b0:b1:25: 5f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F3:85:3D:C9:9A:E7:41:1A:BD:0F:BF:99:86:C2:AD:47:9D:82:BF X509v3 Authority Key Identifier: keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:54:5b:66:54:2b:ef:fd:ec:d2:f3:96:a5:07:ce:d2:cf:26: 73:e7:19:9d:3e:e7:7e:41:8e:3c:8d:a8:ff:a5:63:6a:80:15: 3a:ac:ad:fe:79:4d:dc:43:a6:2a:f3:ff:20:3a:ff:f0:23:80: 86:fd:70:0a:13:20:b1:3e:34:24:36:8f:b7:65:c3:f1:d3:51: 0d:43:5c:60:37:8e:f9:53:7a:38:81:61:58:25:63:ab:98:0f: f0:88:e9:4a:64:8a:5e:25:7a:2a:b2:9a:90:24:55:72:ae:87: 7e:07:fc:1f:de:06:e3:2d:10:07:aa:3a:f5:3f:b5:fd:bb:2e: 0c:89:45:32:99:67:54:63:84:3c:7b:54:cf:f4:dd:fb:f0:ee: e6:1a:fc:1b:da:cf:0a:58:3d:50:77:9d:13:eb:96:87:45:8e: ab:1c:69:8d:6e:30:0d:0b:66:65:38:6f:ee:39:35:69:b2:4f: f9:8f:42:13:d9:8a:40:3c:3e:70:73:b5:e5:a8:00:34:7f:a9: 62:46:54:d0:ac:21:1b:44:48:14:df:7c:b3:db:62:58:94:2f: 32:3c:10:cf:c5:c5:91:35:3c:d6:e2:25:69:f3:19:76:02:74: bf:f6:d3:a9:2f:1d:37:26:f8:db:42:e5:c8:5e:a0:a5:67:15: b8:92:16:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsg0HZNlX2/zUOpr/1r8OM5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YmViZDQ2NTg2MTg0NzNlZDRjODM3NjdjNTFkZThlMjMz YzMyOTIwHhcNMjUxMjE1MDcwMTMxWhcNMjUxMjE2MDcwMTMxWjAzMTEwLwYDVQQD EygxNGYzODUzZGM5OWFlNzQxMWFiZDBmYmY5OTg2YzJhZDQ3OWQ4MmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYA6bPQ4pYscL5xyq3700Db9WY3S tKOSg/q3nSEPJC+NVFBWYrOWZuaRpzNo4HlZJ3ZDeDYzgpf54174VHLiV9vanavF 8BnJWRq0wB++7tF6tkeU5d/8r4UOzc9i07UywyjENNQ0mTNillReEcsV4Hvbhey3 qrUnP8RPSUmJwl4p4IHYx5QlRuiC5ycrpY31HxYMFkwKCv8eWgeBIfUNUy0vXLHj XQdaSxDaAg/dUTWu+73Tya7rH9HGB4MlMb3PyRXCOUhfJME6Mh5CIX4Jp4LBrG37 ++Aie1IY5Ctu7ASnDBUcdD0rvVG6OmXl+6/eIwetePEwIYd5Za+wsSVfVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBTzhT3JmudBGr0Pv5mGwq1HnYK/MB8GA1UdIwQY MBaAFCi+vUZYYYRz7UyDdnxR3o4jPDKSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9hYTk3NWMtYjliNS00NjUxLWJjNWIt YmE3OTU2YjBmMmRkLzEvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9hYTk3NWMtYjliNS00NjUxLWJjNWItYmE3OTU2YjBmMmRk LzEvS0w2OVJsaGhoSFB0VElOMmZGSGVqaU04TXBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgFRbZlQr 7/3s0vOWpQfO0s8mc+cZnT7nfkGOPI2o/6VjaoAVOqyt/nlN3EOmKvP/IDr/8COA hv1wChMgsT40JDaPt2XD8dNRDUNcYDeO+VN6OIFhWCVjq5gP8IjpSmSKXiV6KrKa kCRVcq6Hfgf8H94G4y0QB6o69T+1/bsuDIlFMplnVGOEPHtUz/Td+/Du5hr8G9rP Clg9UHedE+uWh0WOqxxpjW4wDQtmZThv7jk1abJP+Y9CE9mKQDw+cHO15agANH+p YkZU0KwhG0RIFN98s9tiWJQvMjwQz8XFkTU81uIlafMZdgJ0v/bTqS8dNyb420Ll yF6gpWcVuJIWkQ== -----END CERTIFICATE-----Generated at Mon Dec 15 13:17:15 2025 by rpki-client