This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json) Hash identifier: LYQhtANyRGCu8l80cDq/6Sgq8qj1IBpWwIgxHRDQStc= Subject key identifier: 38:DD:93:14:CD:B5:19:8C:D7:31:3C:6C:BE:C6:FD:30:11:16:CA:D7 Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e Certificate serial: 019B5A51D690FBC927DB7C926F86C6995B78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft Manifest number: 0E2C Signing time: Fri 26 Dec 2025 11:01:11 +0000 Manifest this update: Fri 26 Dec 2025 11:01:11 +0000 Manifest next update: Sat 27 Dec 2025 11:01:11 +0000 Files and hashes: 1: GDngKunQly0rXAZJTM9K6ouZldE.roa (hash: srWtclzCrCIl56nGBNOU8VqqYjtRTWRgnKIo2g1oYz4=) 2: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: yy9xnBU9SptwcN64vHfshtivYr7mVp/jUOFmXQl56q4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:d6:90:fb:c9:27:db:7c:92:6f:86:c6:99:5b:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e Validity Not Before: Dec 26 11:01:11 2025 GMT Not After : Dec 27 11:01:11 2025 GMT Subject: CN=38dd9314cdb5198cd7313c6cbec6fd301116cad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b2:25:7d:d4:e9:c2:03:47:38:c7:09:de:c4: dc:7a:76:49:5a:b3:ea:dd:9c:40:ce:f0:01:97:4f: e5:a6:e4:aa:0c:fd:5e:49:f0:9a:ae:8e:cb:dd:81: f9:ff:8d:5d:eb:89:b7:14:35:52:d2:e9:88:08:ca: 78:e6:cd:0e:59:38:71:98:86:cf:32:cd:95:9a:72: 3a:18:09:18:74:40:26:02:40:4a:51:43:83:77:01: e6:73:be:02:00:ce:94:3a:5e:53:3c:5a:82:bd:25: 67:f8:e3:60:b9:7b:af:08:ac:51:a0:2d:3f:de:20: 16:87:33:3c:c1:e3:84:b6:44:96:a3:31:85:74:77: b3:f4:c3:cb:65:57:b7:20:0c:f5:9a:5f:6e:5e:06: 7f:a4:6d:4d:24:05:ae:f6:eb:02:e1:36:df:57:4a: ce:6e:25:7f:02:3a:87:27:27:a7:31:fc:14:52:ec: 13:f7:f9:4c:b3:86:d4:65:9d:f8:94:3c:2a:9c:c9: a8:4c:11:2b:56:de:3f:4c:61:1d:f5:65:26:19:34: 31:87:90:33:ee:88:45:e9:bb:6e:a2:19:bb:0d:f8: 4a:70:1a:aa:1e:5b:d6:1b:ff:93:2e:39:e7:2e:cc: 21:00:bb:03:cb:6c:11:ba:46:d4:80:e7:47:75:df: 3e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DD:93:14:CD:B5:19:8C:D7:31:3C:6C:BE:C6:FD:30:11:16:CA:D7 X509v3 Authority Key Identifier: keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:4d:56:83:cb:b5:31:e3:8e:5f:4e:a6:40:0b:2b:99:b9:a1: 9b:24:db:4d:89:a0:53:8e:32:58:04:92:fc:57:3a:43:c6:7c: 1e:a4:4e:ea:a9:f8:80:64:83:b0:22:d3:4e:d6:dd:ae:a7:f5: ee:55:89:d9:e3:a7:94:15:c9:02:a2:63:f6:66:f7:17:b4:24: 8b:99:44:97:aa:be:57:ac:f5:92:0e:1b:1b:98:11:cb:f3:9d: 61:1f:2d:ee:42:8b:85:6e:b1:d8:b5:ce:50:92:f7:98:90:36: 5b:cc:13:36:17:ac:20:e0:6a:d8:18:86:b7:d5:40:c6:c9:d8: 8e:82:01:01:7d:2c:d7:27:46:eb:5a:4d:6c:29:d0:e2:de:e8: 2c:b0:85:8a:25:b9:87:67:db:e8:dd:9e:67:f6:03:67:ce:8b: 39:f2:08:78:37:33:ad:1e:d7:20:4b:df:85:d0:4c:59:10:f6: 34:b2:ca:50:48:4b:bd:21:1c:cf:4e:17:cc:10:2e:92:6d:8b: f7:01:2e:57:63:ec:28:b7:72:6d:08:12:a3:62:9f:ca:62:2e: 39:09:50:a5:61:6f:ec:09:13:8c:1d:12:5a:2b:29:4f:76:a0: b3:20:7d:c2:a0:ff:e2:a7:52:b8:28:60:92:78:aa:d8:7f:98: 58:ce:0d:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUdaQ+8kn23ySb4bGmVt4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwMTdiMGJkOTA4MjdkZTA4ZDI0ZmVmNjFiY2M0NDg2MjAy NGJmN2UwHhcNMjUxMjI2MTEwMTExWhcNMjUxMjI3MTEwMTExWjAzMTEwLwYDVQQD EygzOGRkOTMxNGNkYjUxOThjZDczMTNjNmNiZWM2ZmQzMDExMTZjYWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLIlfdTpwgNHOMcJ3sTcenZJWrPq 3ZxAzvABl0/lpuSqDP1eSfCaro7L3YH5/41d64m3FDVS0umICMp45s0OWThxmIbP Ms2VmnI6GAkYdEAmAkBKUUODdwHmc74CAM6UOl5TPFqCvSVn+ONguXuvCKxRoC0/ 3iAWhzM8weOEtkSWozGFdHez9MPLZVe3IAz1ml9uXgZ/pG1NJAWu9usC4TbfV0rO biV/AjqHJyenMfwUUuwT9/lMs4bUZZ34lDwqnMmoTBErVt4/TGEd9WUmGTQxh5Az 7ohF6btuohm7DfhKcBqqHlvWG/+TLjnnLswhALsDy2wRukbUgOdHdd8+AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjdkxTNtRmM1zE8bL7G/TARFsrXMB8GA1UdIwQY MBaAFJAXsL2Qgn3gjST+9hvMRIYgJL9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQt YThiZTk5MzJhYTg5LzEva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQtYThiZTk5MzJhYTg5 LzEva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaE1Wg8u1 MeOOX06mQAsrmbmhmyTbTYmgU44yWASS/Fc6Q8Z8HqRO6qn4gGSDsCLTTtbdrqf1 7lWJ2eOnlBXJAqJj9mb3F7Qki5lEl6q+V6z1kg4bG5gRy/OdYR8t7kKLhW6x2LXO UJL3mJA2W8wTNhesIOBq2BiGt9VAxsnYjoIBAX0s1ydG61pNbCnQ4t7oLLCFiiW5 h2fb6N2eZ/YDZ86LOfIIeDczrR7XIEvfhdBMWRD2NLLKUEhLvSEcz04XzBAukm2L 9wEuV2PsKLdybQgSo2KfymIuOQlQpWFv7AkTjB0SWispT3agsyB9wqD/4qdSuChg kniq2H+YWM4NHQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:01:02 2025 by rpki-client