This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json) Hash identifier: LKOoG8tKrGJPuXQlji71UDXq+cHe8ezwOYjQAf2N/Os= Subject key identifier: 29:1F:60:01:52:D6:48:FC:E0:6B:F4:CF:08:5A:93:62:F5:9D:48:89 Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Certificate serial: 019B119407E6E31C49A27F87BAEC63723C26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft Manifest number: 0C06 Signing time: Fri 12 Dec 2025 08:01:12 +0000 Manifest this update: Fri 12 Dec 2025 08:01:12 +0000 Manifest next update: Sat 13 Dec 2025 08:01:12 +0000 Files and hashes: 1: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: Q58gDjBlEwcBuo3fIEh8lQal7vw4fQHZchl4+3PukEk=) 2: ujshoVbtlbnSXRjfddrO_lj_i6Y.roa (hash: TIADVGye8UfQII8nMINRYu1sRAiyXpRTwVUYNwZle+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:94:07:e6:e3:1c:49:a2:7f:87:ba:ec:63:72:3c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Validity Not Before: Dec 12 08:01:12 2025 GMT Not After : Dec 13 08:01:12 2025 GMT Subject: CN=291f600152d648fce06bf4cf085a9362f59d4889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:24:23:64:09:10:4f:16:81:ee:70:bb:15:67: 3a:1f:98:02:77:77:31:9d:81:bd:80:f9:08:cc:ed: 0a:3d:2e:7f:32:c8:0b:a2:a5:85:f1:bc:4b:32:89: c4:b8:5a:0b:42:51:72:92:76:41:f3:02:66:c3:c3: 36:35:fd:b3:ef:c6:d8:61:43:ac:ab:ce:7f:f8:6b: af:07:cb:e5:3a:51:13:df:b1:f0:b8:b4:17:cd:b8: 5a:ee:b8:60:51:fc:6c:50:b7:a1:f8:a8:02:8a:36: 77:ed:ce:26:05:0b:c0:14:88:3c:80:8f:0f:94:d9: 57:91:28:70:cf:d9:a2:43:2c:b4:90:bf:55:c5:67: c7:1e:4a:6e:4a:2d:cf:1f:d6:2a:91:fc:26:aa:32: 70:d0:d9:fa:35:5e:10:e9:9f:55:1a:4c:8d:c7:c2: d0:ba:b3:c6:16:e8:78:35:37:e7:6f:7f:cb:4f:b0: 55:3b:db:15:ee:64:b5:03:da:11:ab:7e:86:b3:46: e6:31:27:3d:13:4a:d6:49:21:9c:04:ea:1f:ee:72: 5e:41:9b:d1:66:29:37:19:41:58:ce:51:a8:b7:0a: 7a:7f:7c:cc:a5:8c:94:b2:4e:23:cc:64:90:b9:b1: 20:13:fd:0d:4b:e7:f7:db:94:3c:9c:45:04:32:1b: ad:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1F:60:01:52:D6:48:FC:E0:6B:F4:CF:08:5A:93:62:F5:9D:48:89 X509v3 Authority Key Identifier: keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:be:d3:59:17:6f:fb:b2:1f:7a:d7:9a:25:e4:52:01:e1:d0: c0:05:59:c9:ff:fb:5b:56:c9:bd:96:5d:42:e5:73:2a:b5:56: 0a:d7:89:de:31:99:d0:5b:5f:20:81:4b:57:40:0b:fb:78:77: 6a:2c:b5:6a:43:91:df:d3:1c:d9:71:25:50:4e:94:7b:de:40: a1:81:fa:ad:1e:bb:ce:b4:da:cc:20:2d:2f:1b:1f:60:48:11: c8:7e:84:b3:56:3e:ad:06:25:ff:1e:00:63:c2:fb:51:c8:c6: 04:bf:a3:7f:70:52:de:2c:7b:c8:c3:d6:38:e6:0b:3f:36:7a: 4c:3c:46:24:fc:d5:cf:47:a5:0d:45:d6:fb:cb:df:4e:87:5f: 87:ce:bc:aa:8a:20:86:8f:d1:1d:43:bb:9a:cd:cd:28:a6:08: 4f:95:ad:54:3e:6d:1a:77:9a:d9:41:45:16:ea:a5:cf:1c:7f: 58:22:b8:d3:6e:f8:97:b8:42:6a:c8:42:06:79:df:2a:9f:ca: 7d:2e:b1:1e:66:b9:6d:61:9c:a1:7b:40:5f:02:f3:52:fc:4d: 6f:da:1d:a5:c2:78:59:47:ba:2f:84:28:98:14:8f:4d:c3:54: e9:cc:95:64:ad:5f:45:d1:91:49:93:98:c0:c9:ac:0d:97:6a: 78:52:e0:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRlAfm4xxJon+HuuxjcjwmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMTg4Y2E2NGM0NjcwYTZlYjU2YjQyYTUwYTEwNTg4YWQ5 NjQ3ZWUwHhcNMjUxMjEyMDgwMTEyWhcNMjUxMjEzMDgwMTEyWjAzMTEwLwYDVQQD EygyOTFmNjAwMTUyZDY0OGZjZTA2YmY0Y2YwODVhOTM2MmY1OWQ0ODg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAviQjZAkQTxaB7nC7FWc6H5gCd3cx nYG9gPkIzO0KPS5/MsgLoqWF8bxLMonEuFoLQlFyknZB8wJmw8M2Nf2z78bYYUOs q85/+GuvB8vlOlET37HwuLQXzbha7rhgUfxsULeh+KgCijZ37c4mBQvAFIg8gI8P lNlXkShwz9miQyy0kL9VxWfHHkpuSi3PH9YqkfwmqjJw0Nn6NV4Q6Z9VGkyNx8LQ urPGFuh4NTfnb3/LT7BVO9sV7mS1A9oRq36Gs0bmMSc9E0rWSSGcBOof7nJeQZvR Zik3GUFYzlGotwp6f3zMpYyUsk4jzGSQubEgE/0NS+f325Q8nEUEMhut5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCkfYAFS1kj84Gv0zwhak2L1nUiJMB8GA1UdIwQY MBaAFJEYjKZMRnCm61a0KlChBYitlkfuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQt MTQ3MTc3YjgzN2RlLzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQtMTQ3MTc3YjgzN2Rl LzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXb7TWRdv +7IfeteaJeRSAeHQwAVZyf/7W1bJvZZdQuVzKrVWCteJ3jGZ0FtfIIFLV0AL+3h3 aiy1akOR39Mc2XElUE6Ue95AoYH6rR67zrTazCAtLxsfYEgRyH6Es1Y+rQYl/x4A Y8L7UcjGBL+jf3BS3ix7yMPWOOYLPzZ6TDxGJPzVz0elDUXW+8vfTodfh868qoog ho/RHUO7ms3NKKYIT5WtVD5tGnea2UFFFuqlzxx/WCK40274l7hCashCBnnfKp/K fS6xHma5bWGcoXtAXwLzUvxNb9odpcJ4WUe6L4QomBSPTcNU6cyVZK1fRdGRSZOY wMmsDZdqeFLgZA== -----END CERTIFICATE-----Generated at Fri Dec 12 15:55:39 2025 by rpki-client