This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json) Hash identifier: MZZurA6falTuRwB6obm5snbbYaGOuMRbFFuhpO0v3SA= Subject key identifier: 30:81:64:4D:43:03:E4:A1:1C:72:6F:EA:20:8F:9C:C4:57:E8:2A:84 Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4 Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4 Certificate serial: 019B25887D3A4140F8D9ED8F68B140D21552 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft Manifest number: 177C Signing time: Tue 16 Dec 2025 05:01:00 +0000 Manifest this update: Tue 16 Dec 2025 05:01:00 +0000 Manifest next update: Wed 17 Dec 2025 05:01:00 +0000 Files and hashes: 1: 0cwv1kps50n5fxH17jZ6DrIm1N0.roa (hash: undM2lyLTll3NMITFEXa/JcW5GP1KelrAOfh7Rau6zQ=) 2: DFcDai4MmMP-4I9ZmvHSmiuuiVo.roa (hash: P1EgClV7bkG9omjLGc5Uu3/ShqO9L3Dji7Yyz/EuHLk=) 3: V_xEHpefO5u5KSTu-XYSWan-kRo.roa (hash: jYILx7U+IDJR4gLw2si3w1xLilgSY3Xi257sg6Z15eA=) 4: Z26jB8MmkVPCobutKSYkZRRffSw.roa (hash: jtYR3qZJ5WEi/+pEZva2m9kUb9g5HMevovBDi8SuUfU=) 5: e1u7bA6PuDBeHm9U9nKjSLDhACw.roa (hash: DvBt+9eFN/dfM+tx+F5jn+yDWZNZsODtMhC5M+LFI08=) 6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: 7KQhhiOpqROkje1/QfQQU/JOys7dSVMhsVTNYK/1K1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:88:7d:3a:41:40:f8:d9:ed:8f:68:b1:40:d2:15:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4 Validity Not Before: Dec 16 05:01:00 2025 GMT Not After : Dec 17 05:01:00 2025 GMT Subject: CN=3081644d4303e4a11c726fea208f9cc457e82a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1b:6b:1b:04:31:c5:78:c5:07:ed:ef:2c:22: 3f:70:85:9e:27:c7:7f:d9:d5:c3:40:c7:74:ea:67: e4:bd:1c:2c:dc:65:b1:11:15:77:ba:9a:4e:cb:c7: 11:98:7a:11:dc:aa:cd:cc:61:b7:79:9c:6a:b3:3b: 40:60:2e:16:75:5c:14:ab:eb:29:9e:06:c5:05:61: 28:36:e5:cb:12:f6:20:40:a3:f9:26:07:2d:74:a6: 85:7f:c6:fa:2d:e5:47:e1:2e:11:68:35:75:f3:79: 5c:05:2f:69:de:ea:60:06:01:e5:8e:02:3d:dd:db: 3e:2a:b5:e4:2b:77:e5:69:b2:bd:2f:fa:d7:a9:02: 20:79:3c:96:67:3f:92:4c:e7:ff:32:e3:19:38:c8: cd:0d:de:b1:f1:96:c4:d5:74:54:40:c1:2d:b3:d8: 9e:0d:e4:00:e1:e8:e3:10:56:29:8e:7a:bf:ff:9d: cd:21:d9:7f:0d:6d:65:a0:41:22:37:cf:6b:c8:e3: ba:23:99:f7:5f:bc:de:c0:9a:3b:7a:fc:f0:69:72: 3b:f3:03:21:3d:93:6e:51:0f:86:c4:d9:8c:fa:13: dd:83:c8:72:c8:ef:c3:f5:27:42:16:90:85:d8:a4: 0f:12:d8:71:c6:00:b6:7c:35:f6:76:ca:0f:7b:d9: 2e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:81:64:4D:43:03:E4:A1:1C:72:6F:EA:20:8F:9C:C4:57:E8:2A:84 X509v3 Authority Key Identifier: keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:23:56:bc:38:21:b9:a9:13:f5:8c:ee:b3:fa:22:6f:04:60: 6a:3a:c8:9f:25:5d:a0:7b:be:be:23:44:81:98:e1:a0:3a:20: 4b:0c:3d:0d:d9:ef:a8:59:25:a0:4a:cf:12:c3:b9:ca:2f:cc: eb:2f:f8:a0:23:a1:41:64:80:1d:6f:2c:c3:53:f0:a9:c1:c5: d4:7c:a1:a0:d4:08:b8:93:13:cb:4e:35:fc:9b:7c:6d:be:4f: 1b:0a:b9:67:92:2b:aa:c0:93:3c:fb:4d:a9:7b:2c:c6:98:fe: 2e:da:e0:ea:da:2f:5d:f6:c5:b9:59:1d:1f:0f:be:2b:dd:64: 25:79:e3:dc:9c:8b:66:74:f9:27:76:63:42:cb:37:1c:26:4e: 3c:ba:8d:ad:8e:72:93:ea:c8:4a:fa:ef:02:33:9f:07:34:ea: 09:7f:07:6b:7c:cc:36:1f:55:7f:ab:17:98:59:ff:43:ce:00: 84:db:bf:1e:3b:fd:f2:92:d1:3f:ca:c9:7e:77:e9:95:a6:6c: 8a:a6:b1:c9:47:1a:13:d2:c4:bc:19:91:61:e8:14:a7:b4:22: f8:98:a8:d0:c8:fc:a2:93:6a:82:6f:ed:c5:bf:71:2a:3d:10: c7:0f:ad:42:c0:75:a1:ad:50:3d:0e:12:ff:44:23:ce:b2:bc: 27:ab:67:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsliH06QUD42e2PaLFA0hVSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNTZlYmY2NmI4MGYwODEzNTg1OGQxNDRjZWQ2Zjc4NTgz NGY1ZjQwHhcNMjUxMjE2MDUwMTAwWhcNMjUxMjE3MDUwMTAwWjAzMTEwLwYDVQQD EygzMDgxNjQ0ZDQzMDNlNGExMWM3MjZmZWEyMDhmOWNjNDU3ZTgyYTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBtrGwQxxXjFB+3vLCI/cIWeJ8d/ 2dXDQMd06mfkvRws3GWxERV3uppOy8cRmHoR3KrNzGG3eZxqsztAYC4WdVwUq+sp ngbFBWEoNuXLEvYgQKP5JgctdKaFf8b6LeVH4S4RaDV183lcBS9p3upgBgHljgI9 3ds+KrXkK3flabK9L/rXqQIgeTyWZz+STOf/MuMZOMjNDd6x8ZbE1XRUQMEts9ie DeQA4ejjEFYpjnq//53NIdl/DW1loEEiN89ryOO6I5n3X7zewJo7evzwaXI78wMh PZNuUQ+GxNmM+hPdg8hyyO/D9SdCFpCF2KQPEthxxgC2fDX2dsoPe9kuqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCBZE1DA+ShHHJv6iCPnMRX6CqEMB8GA1UdIwQY MBaAFJJW6/ZrgPCBNYWNFEztb3hYNPX0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9iNzE3YzUtYTY0Yi00NDc1LWJlM2Ut NWRhOGQ2NzdkODQ3LzEva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9iNzE3YzUtYTY0Yi00NDc1LWJlM2UtNWRhOGQ2NzdkODQ3 LzEva2xicjltdUE4SUUxaFkwVVRPMXZlRmcwOWZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArSNWvDgh uakT9Yzus/oibwRgajrInyVdoHu+viNEgZjhoDogSww9DdnvqFkloErPEsO5yi/M 6y/4oCOhQWSAHW8sw1PwqcHF1HyhoNQIuJMTy041/Jt8bb5PGwq5Z5IrqsCTPPtN qXssxpj+Ltrg6tovXfbFuVkdHw++K91kJXnj3JyLZnT5J3ZjQss3HCZOPLqNrY5y k+rISvrvAjOfBzTqCX8Ha3zMNh9Vf6sXmFn/Q84AhNu/Hjv98pLRP8rJfnfplaZs iqaxyUcaE9LEvBmRYegUp7Qi+Jio0Mj8opNqgm/txb9xKj0Qxw+tQsB1oa1QPQ4S /0QjzrK8J6tnOg== -----END CERTIFICATE-----Generated at Tue Dec 16 09:49:03 2025 by rpki-client