This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json) Hash identifier: QHvtGGAb5KdMWCLIDU6K8dFrZPY8Q/n1R3iCjGumzzA= Subject key identifier: C6:EE:B5:39:5C:97:0C:91:B8:D7:7F:A3:96:1E:08:D2:4C:55:42:1D Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d Certificate serial: 019B47A646CEEC7F5076A93D847CA7756A20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft Manifest number: 0BD9 Signing time: Mon 22 Dec 2025 20:00:38 +0000 Manifest this update: Mon 22 Dec 2025 20:00:38 +0000 Manifest next update: Tue 23 Dec 2025 20:00:38 +0000 Files and hashes: 1: 1gJl5QGcLnfhKR4ZX5vkhukZyTU.roa (hash: NMFFqW5s2zQQWT6VrzvJinnOwTRcu4h6yTFNCCxpjXA=) 2: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=) 3: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: eHbU+yydgrfgxLKsmWrvNCSI43BVMm8yyIK8LidKzf0=) 4: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 20:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:a6:46:ce:ec:7f:50:76:a9:3d:84:7c:a7:75:6a:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d Validity Not Before: Dec 22 20:00:38 2025 GMT Not After : Dec 23 20:00:38 2025 GMT Subject: CN=c6eeb5395c970c91b8d77fa3961e08d24c55421d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6e:a2:97:6b:7b:e3:dc:71:9a:a4:17:98:bd: 2f:88:07:2e:28:ee:71:da:75:29:b0:55:d0:cb:72: 7b:8d:bc:6d:27:89:d8:83:04:a0:48:7e:3f:64:78: 60:76:c3:53:c9:11:8b:ef:50:8d:8f:40:bd:33:2c: e9:d8:9a:36:88:95:57:bc:44:39:74:fe:7c:2c:6e: eb:29:3d:45:d4:28:43:a4:2a:11:0d:c6:2b:99:bb: f6:97:c6:ee:92:08:60:b8:7e:49:b9:b3:c1:0f:ea: 7d:e2:0e:08:a6:15:62:35:27:c6:d6:d5:20:fe:54: 68:b1:2d:02:d7:32:b6:3d:eb:04:ec:ec:01:36:2e: 50:fb:1a:e9:97:51:0a:17:48:98:18:8e:05:39:c2: 94:85:41:9c:e2:0d:c0:d4:bb:e9:3d:73:81:50:69: db:ba:ea:3f:c4:7e:78:ad:5c:b8:a6:27:e9:76:cd: 6a:7b:3b:1b:86:83:05:1b:b4:c1:aa:1e:20:b7:24: d2:d7:a1:76:04:2f:7f:c4:28:a7:ac:f2:37:bd:40: 73:1d:b8:8a:8e:45:e8:29:67:83:03:4f:98:41:eb: 24:53:ee:d1:58:e3:a6:1b:eb:af:3d:f1:09:c7:bc: dc:9b:78:fa:10:2f:8d:31:c9:ee:da:71:ca:92:1d: 33:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EE:B5:39:5C:97:0C:91:B8:D7:7F:A3:96:1E:08:D2:4C:55:42:1D X509v3 Authority Key Identifier: keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:94:91:f9:f8:20:96:dd:e2:1b:c5:d0:ce:b3:67:3b:7b:8a: 6a:e6:01:c7:6f:b4:e4:ed:82:7b:12:5a:99:e5:28:e0:f6:5e: 6e:b6:2e:d9:ed:27:3c:65:82:89:b0:11:9b:c3:e8:26:24:76: e7:54:e9:a1:9c:8b:9f:56:ca:f1:98:db:21:43:c7:3b:73:dc: 33:73:29:00:20:59:3e:00:40:b6:48:8c:c4:a0:97:fc:94:a8: ea:82:ab:3d:d4:ee:d8:27:d1:f2:c6:0a:f9:d6:58:61:76:34: 80:b9:62:c6:fe:21:a1:38:5d:76:a7:6b:74:db:87:e0:81:77: fe:de:2b:a1:a0:b5:c2:85:de:17:46:aa:08:66:68:0c:b8:62: 76:be:c1:10:2b:d0:47:c8:8e:8b:68:b4:bc:47:9d:3e:da:ae: 69:5a:c2:45:2d:38:bb:86:46:c4:c6:4e:1a:4e:19:1b:34:dc: da:ba:33:fb:8d:1f:08:10:b2:88:a3:5e:65:65:c0:3a:09:73: ed:45:a1:6f:ae:5d:9a:e3:e2:b9:ac:42:de:b0:7c:fa:03:a7: 62:2f:34:57:4f:40:ff:d7:aa:01:c9:3c:a2:fe:b7:51:e7:df: 0c:01:55:16:9d:19:3a:05:6a:42:58:2a:d6:98:c1:8a:8e:ba: a5:26:4f:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHpkbO7H9Qdqk9hHyndWogMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4N2UxYzk3ZjcxZjM1NTg2N2UzZmI4NzdmMjFhYTUxMzBi NmNmNWQwHhcNMjUxMjIyMjAwMDM4WhcNMjUxMjIzMjAwMDM4WjAzMTEwLwYDVQQD EyhjNmVlYjUzOTVjOTcwYzkxYjhkNzdmYTM5NjFlMDhkMjRjNTU0MjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2G6il2t749xxmqQXmL0viAcuKO5x 2nUpsFXQy3J7jbxtJ4nYgwSgSH4/ZHhgdsNTyRGL71CNj0C9Myzp2Jo2iJVXvEQ5 dP58LG7rKT1F1ChDpCoRDcYrmbv2l8bukghguH5JubPBD+p94g4IphViNSfG1tUg /lRosS0C1zK2PesE7OwBNi5Q+xrpl1EKF0iYGI4FOcKUhUGc4g3A1LvpPXOBUGnb uuo/xH54rVy4pifpds1qezsbhoMFG7TBqh4gtyTS16F2BC9/xCinrPI3vUBzHbiK jkXoKWeDA0+YQeskU+7RWOOmG+uvPfEJx7zcm3j6EC+NMcnu2nHKkh0ziQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbutTlclwyRuNd/o5YeCNJMVUIdMB8GA1UdIwQY MBaAFCh+HJf3HzVYZ+P7h38hqlEwts9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEt OWViM2M2ODJiMDA5LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEtOWViM2M2ODJiMDA5 LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu5SR+fgg lt3iG8XQzrNnO3uKauYBx2+05O2CexJameUo4PZebrYu2e0nPGWCibARm8PoJiR2 51TpoZyLn1bK8ZjbIUPHO3PcM3MpACBZPgBAtkiMxKCX/JSo6oKrPdTu2CfR8sYK +dZYYXY0gLlixv4hoThddqdrdNuH4IF3/t4roaC1woXeF0aqCGZoDLhidr7BECvQ R8iOi2i0vEedPtquaVrCRS04u4ZGxMZOGk4ZGzTc2roz+40fCBCyiKNeZWXAOglz 7UWhb65dmuPiuaxC3rB8+gOnYi80V09A/9eqAck8ov63UeffDAFVFp0ZOgVqQlgq 1pjBio66pSZP0A== -----END CERTIFICATE-----Generated at Tue Dec 23 06:04:32 2025 by rpki-client