This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json) Hash identifier: 8MxIgvoi8vysYKB2adZXyhwy24bfzzSX/iGJhpzR22g= Subject key identifier: 0B:00:2B:B0:4F:5E:EE:70:B1:F5:84:C8:28:7F:51:8A:31:E1:BB:E1 Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e Certificate serial: 019B23D168054584D72ADB6A37D43799BF49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft Manifest number: 177A Signing time: Mon 15 Dec 2025 21:01:24 +0000 Manifest this update: Mon 15 Dec 2025 21:01:24 +0000 Manifest next update: Tue 16 Dec 2025 21:01:24 +0000 Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=) 2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: sinslXlpIUHaPw1C0Hzj1NNgc/Hokz1FfJjZIandMxU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 21:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d1:68:05:45:84:d7:2a:db:6a:37:d4:37:99:bf:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e Validity Not Before: Dec 15 21:01:24 2025 GMT Not After : Dec 16 21:01:24 2025 GMT Subject: CN=0b002bb04f5eee70b1f584c8287f518a31e1bbe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bf:c2:85:3a:df:4b:03:96:c9:12:59:f0:e8: 6f:40:59:41:ff:f7:3f:39:41:31:dd:05:c0:88:eb: da:66:ce:01:98:14:be:6b:97:d6:bc:12:be:d0:db: 77:1d:4b:4d:5c:45:1e:08:93:0a:4c:c7:76:65:6b: 25:96:13:18:e7:08:e0:c1:15:74:a0:3e:7c:f9:91: b5:89:93:c1:28:af:96:14:40:3a:8e:4d:77:a7:29: a6:34:e1:1b:bd:ac:50:c6:95:2a:c7:83:c0:66:9a: b7:25:51:80:0a:50:19:7b:63:c1:d1:1c:cf:bc:4b: 02:87:17:f0:09:a2:a1:5c:95:8c:cb:9e:6e:ff:72: 1e:1b:64:9a:34:aa:40:4a:45:2f:6e:8b:d5:67:aa: 7a:6d:7b:4a:8e:e6:86:f0:13:ff:ba:d3:66:d6:ab: 80:dd:de:35:27:52:33:3c:f5:c2:2e:31:96:8d:a6: 2f:49:ab:2b:db:c5:36:41:a2:36:ff:e6:a2:6b:70: 22:66:5b:17:4a:47:95:3c:94:c3:de:6f:13:90:79: 9a:84:2e:43:50:30:f4:ad:7a:c6:a8:47:2b:fa:73: 98:16:ec:ec:f1:85:c8:83:53:8f:5d:89:0f:02:31: 7f:d2:4e:6f:2e:9f:60:e5:e7:79:34:95:b5:0b:e9: 52:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:00:2B:B0:4F:5E:EE:70:B1:F5:84:C8:28:7F:51:8A:31:E1:BB:E1 X509v3 Authority Key Identifier: keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:33:57:5b:a6:7a:44:65:38:f4:0b:38:de:19:61:b2:97:d2: 2e:7e:af:4f:12:68:f6:02:b2:5e:12:fe:89:2f:28:76:c8:d2: e6:22:99:57:99:89:b1:91:56:a2:c1:ca:00:ff:f7:e3:a4:8e: 7d:11:74:54:4e:e1:64:4f:87:0f:0f:5b:fb:87:bb:a0:77:1c: be:d1:37:e6:cd:51:0e:25:06:4d:76:b7:9c:71:01:f6:f6:37: 88:6e:45:86:4b:2d:b9:58:c9:d6:ea:d6:2c:80:70:6c:05:f7: 33:06:f7:9a:10:0d:c0:ae:bd:d9:98:03:08:22:30:b7:01:f8: 87:0d:7d:1f:81:a9:ce:df:6f:d8:0d:08:2d:a7:2b:62:d4:20: b6:e4:58:f9:a2:f8:96:ab:7b:a4:1a:69:a8:8e:50:fc:bb:1c: ea:64:db:0b:0f:8b:31:36:76:2c:73:15:19:34:52:18:0a:85: 06:43:80:25:82:1b:b3:65:aa:68:79:a4:d9:80:85:71:10:27: 80:0a:cb:07:63:e2:ab:63:45:53:79:84:fb:90:eb:c9:0f:c9: da:6c:06:a9:80:a2:1f:09:41:cb:6f:ac:a8:ab:76:20:2e:51: 75:a5:de:30:6b:ee:34:d0:91:e6:47:df:0d:2f:33:a8:8d:68: bd:43:46:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0WgFRYTXKttqN9Q3mb9JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkwYjNhM2EwZDY2MmQxNGRhODQwNGJkMjFkYzQ4OWU2Mzk0 NTYyNGUwHhcNMjUxMjE1MjEwMTI0WhcNMjUxMjE2MjEwMTI0WjAzMTEwLwYDVQQD EygwYjAwMmJiMDRmNWVlZTcwYjFmNTg0YzgyODdmNTE4YTMxZTFiYmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4r/ChTrfSwOWyRJZ8OhvQFlB//c/ OUEx3QXAiOvaZs4BmBS+a5fWvBK+0Nt3HUtNXEUeCJMKTMd2ZWsllhMY5wjgwRV0 oD58+ZG1iZPBKK+WFEA6jk13pymmNOEbvaxQxpUqx4PAZpq3JVGAClAZe2PB0RzP vEsChxfwCaKhXJWMy55u/3IeG2SaNKpASkUvbovVZ6p6bXtKjuaG8BP/utNm1quA 3d41J1IzPPXCLjGWjaYvSasr28U2QaI2/+aia3AiZlsXSkeVPJTD3m8TkHmahC5D UDD0rXrGqEcr+nOYFuzs8YXIg1OPXYkPAjF/0k5vLp9g5ed5NJW1C+lSbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAsAK7BPXu5wsfWEyCh/UYox4bvhMB8GA1UdIwQY MBaAFJCzo6DWYtFNqEBL0h3EieY5RWJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQt Mjg4Y2ZkMWMyYTNkLzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQtMjg4Y2ZkMWMyYTNk LzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEDNXW6Z6 RGU49As43hlhspfSLn6vTxJo9gKyXhL+iS8odsjS5iKZV5mJsZFWosHKAP/346SO fRF0VE7hZE+HDw9b+4e7oHccvtE35s1RDiUGTXa3nHEB9vY3iG5FhkstuVjJ1urW LIBwbAX3Mwb3mhANwK692ZgDCCIwtwH4hw19H4Gpzt9v2A0ILacrYtQgtuRY+aL4 lqt7pBppqI5Q/Lsc6mTbCw+LMTZ2LHMVGTRSGAqFBkOAJYIbs2WqaHmk2YCFcRAn gArLB2Piq2NFU3mE+5DryQ/J2mwGqYCiHwlBy2+sqKt2IC5RdaXeMGvuNNCR5kff DS8zqI1ovUNGPA== -----END CERTIFICATE-----Generated at Tue Dec 16 04:01:48 2025 by rpki-client