This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json) Hash identifier: +z/IycuMTsrQggxwHQp4dLUDtRMehGmMkOquT/SCkyg= Subject key identifier: 50:49:45:28:50:C8:72:F2:08:FF:4F:DE:EA:37:08:F3:C8:D0:8F:D8 Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Certificate serial: 019B4B836671B0E3DDF4829E129C198B9858 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft Manifest number: 0C24 Signing time: Tue 23 Dec 2025 14:01:01 +0000 Manifest this update: Tue 23 Dec 2025 14:01:01 +0000 Manifest next update: Wed 24 Dec 2025 14:01:01 +0000 Files and hashes: 1: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: UU7gtmpfMERoydkRhl9Ta8dGzeQ49F6Vmb6C2hGfDNk=) 2: ujshoVbtlbnSXRjfddrO_lj_i6Y.roa (hash: TIADVGye8UfQII8nMINRYu1sRAiyXpRTwVUYNwZle+M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 14:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:83:66:71:b0:e3:dd:f4:82:9e:12:9c:19:8b:98:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee Validity Not Before: Dec 23 14:01:01 2025 GMT Not After : Dec 24 14:01:01 2025 GMT Subject: CN=5049452850c872f208ff4fdeea3708f3c8d08fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a1:37:86:21:1c:20:db:8d:0d:fc:67:7e:4b: df:46:9f:99:7b:cb:2c:ed:b3:e9:44:b6:b6:fd:0a: b9:2a:42:8d:76:bb:0f:46:3b:86:fb:9b:ae:3b:ae: 4d:20:b3:2d:a9:c7:fb:f1:5f:42:78:c4:da:14:1f: 99:6e:e6:fc:b7:2a:f1:24:50:d1:33:53:9e:10:27: 4d:9e:cb:b5:37:74:00:3b:a6:2f:ed:20:d3:97:f4: bf:ef:6e:ae:4d:96:a0:6d:f6:c4:b7:da:3d:1f:a8: 75:74:c8:02:bb:e2:0e:55:0b:10:59:70:58:f1:b6: b5:10:e5:9c:20:0c:6d:6a:44:a6:bd:75:a1:20:ea: 6a:9f:00:a3:6f:be:2b:a3:d1:f4:17:7b:90:59:26: ef:6a:58:79:ca:f1:9e:f2:3e:8f:d2:ca:b9:72:f2: 29:50:7a:e0:50:ad:19:6f:9e:67:e3:3c:82:03:ab: 58:ec:5d:f4:86:b9:13:f3:dd:cb:b0:4b:ff:52:01: ad:2f:ed:e6:2b:17:80:5f:26:40:02:ab:e8:81:a2: 8a:c4:02:33:f7:cf:71:32:3a:a6:1d:c5:10:c3:28: 0c:3c:28:6a:48:27:b5:03:a5:64:48:56:4e:80:92: 62:c0:85:b7:6f:be:75:b5:de:06:3d:8a:9f:9e:46: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:49:45:28:50:C8:72:F2:08:FF:4F:DE:EA:37:08:F3:C8:D0:8F:D8 X509v3 Authority Key Identifier: keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:d4:14:b1:07:aa:2e:30:86:62:89:20:89:87:02:b5:84:42: 57:2f:ae:02:0d:e1:ed:2b:3f:bf:2a:eb:3a:d1:4d:60:97:4a: d4:4b:93:08:27:c6:f0:53:33:fd:c1:c3:91:4c:af:5b:a9:58: 21:49:1f:2f:56:2a:10:b9:af:87:7e:96:fe:2e:52:b1:cd:9e: 49:01:c5:27:ff:c2:2b:03:e2:36:b1:6e:a2:b6:d8:73:4c:27: ef:da:cb:33:9d:d4:d8:cc:f3:4c:67:12:5f:9a:e6:c5:c7:bc: 35:08:08:1f:a5:dd:f3:9d:6e:60:93:3e:d0:47:69:27:d1:8d: 66:f0:cb:72:53:dd:34:e1:30:52:0a:be:20:59:32:02:6c:1a: 0f:fc:7a:f5:ee:bf:09:05:84:ae:c3:4a:f4:4e:ca:dd:77:e4: 74:58:69:4e:f6:39:04:4c:30:7a:fe:f5:9b:78:f2:e6:04:fb: c3:07:63:51:74:51:05:1d:6a:83:ba:1e:d1:e8:37:d0:11:9b: ed:56:76:fe:97:da:1b:d3:fa:3a:90:d4:94:3c:b4:f8:99:8d: dd:f5:82:49:50:68:dd:71:93:5c:21:35:1a:a0:46:75:8e:45: 75:34:83:02:e2:72:db:01:fd:89:00:f8:4f:d9:64:3c:ac:38: ac:51:17:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLg2ZxsOPd9IKeEpwZi5hYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMTg4Y2E2NGM0NjcwYTZlYjU2YjQyYTUwYTEwNTg4YWQ5 NjQ3ZWUwHhcNMjUxMjIzMTQwMTAxWhcNMjUxMjI0MTQwMTAxWjAzMTEwLwYDVQQD Eyg1MDQ5NDUyODUwYzg3MmYyMDhmZjRmZGVlYTM3MDhmM2M4ZDA4ZmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqE3hiEcINuNDfxnfkvfRp+Ze8ss 7bPpRLa2/Qq5KkKNdrsPRjuG+5uuO65NILMtqcf78V9CeMTaFB+Zbub8tyrxJFDR M1OeECdNnsu1N3QAO6Yv7SDTl/S/726uTZagbfbEt9o9H6h1dMgCu+IOVQsQWXBY 8ba1EOWcIAxtakSmvXWhIOpqnwCjb74ro9H0F3uQWSbvalh5yvGe8j6P0sq5cvIp UHrgUK0Zb55n4zyCA6tY7F30hrkT893LsEv/UgGtL+3mKxeAXyZAAqvogaKKxAIz 989xMjqmHcUQwygMPChqSCe1A6VkSFZOgJJiwIW3b751td4GPYqfnkYmaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFBJRShQyHLyCP9P3uo3CPPI0I/YMB8GA1UdIwQY MBaAFJEYjKZMRnCm61a0KlChBYitlkfuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQt MTQ3MTc3YjgzN2RlLzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8zMWQ2YzEtMTE0Ni00NTg4LTgzOGQtMTQ3MTc3YjgzN2Rl LzEva1JpTXBreEdjS2JyVnJRcVVLRUZpSzJXUi00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAItQUsQeq LjCGYokgiYcCtYRCVy+uAg3h7Ss/vyrrOtFNYJdK1EuTCCfG8FMz/cHDkUyvW6lY IUkfL1YqELmvh36W/i5Ssc2eSQHFJ//CKwPiNrFuorbYc0wn79rLM53U2MzzTGcS X5rmxce8NQgIH6Xd851uYJM+0EdpJ9GNZvDLclPdNOEwUgq+IFkyAmwaD/x69e6/ CQWErsNK9E7K3XfkdFhpTvY5BEwwev71m3jy5gT7wwdjUXRRBR1qg7oe0eg30BGb 7VZ2/pfaG9P6OpDUlDy0+JmN3fWCSVBo3XGTXCE1GqBGdY5FdTSDAuJy2wH9iQD4 T9lkPKw4rFEXSg== -----END CERTIFICATE-----Generated at Tue Dec 23 16:27:31 2025 by rpki-client