This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: yecnW/W4j2HqRluj5Sv2SWbdeaVCCfWGIe4hzVhQFvE= Subject key identifier: 07:BD:20:40:D1:4C:48:2A:2D:3A:3B:2E:D2:08:C4:A8:1A:5E:03:31 Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019B0CDB44992EFB0F4B9A5DE8EF23783F78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 1770 Signing time: Thu 11 Dec 2025 10:00:55 +0000 Manifest this update: Thu 11 Dec 2025 10:00:55 +0000 Manifest next update: Fri 12 Dec 2025 10:00:55 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: ULOvzsmHb486GxJkvkHZWu7QfyOEdw5GBNHWb2wbAnM=) 3: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 10:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:db:44:99:2e:fb:0f:4b:9a:5d:e8:ef:23:78:3f:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Dec 11 10:00:55 2025 GMT Not After : Dec 12 10:00:55 2025 GMT Subject: CN=07bd2040d14c482a2d3a3b2ed208c4a81a5e0331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fb:ae:a7:a9:be:c2:73:24:69:9b:19:40:ad: 47:d5:60:04:28:e9:18:60:08:fc:6d:1c:45:b4:6f: 0e:62:67:fb:2d:74:f6:f7:de:5d:98:ef:e0:ab:dc: dd:3e:f5:0d:c2:d7:de:7f:be:3f:7e:a8:62:a8:41: 4e:74:9d:a1:a4:c3:0d:48:3d:89:9f:6e:23:ce:d6: 29:51:d9:27:94:93:74:13:d9:1f:ea:7c:ab:16:1c: a0:de:69:6b:9f:0a:bd:29:be:3a:0d:2d:f9:37:57: 98:81:98:b1:84:44:58:a6:16:1e:df:95:40:82:41: f4:43:41:d8:73:32:5c:c7:3b:ef:7e:77:dd:3b:36: 49:e8:e0:f5:ab:7c:f2:a6:fd:11:c8:a1:d6:1e:2d: 4e:42:15:be:42:f3:84:bb:d6:55:4b:55:f7:32:d8: f6:00:80:48:e0:49:53:af:d2:c9:75:aa:29:8c:a7: a2:01:21:9f:01:22:5d:39:f0:1f:cd:e2:f4:47:f1: 32:52:65:6c:7d:44:70:79:75:8f:39:d9:65:7e:4b: fb:12:d6:b5:e6:51:6f:29:67:29:dd:26:6a:de:46: 1d:99:8b:fe:30:ff:48:70:be:58:df:c4:4a:0b:d0: 68:12:66:6f:b9:82:b4:e3:60:05:48:75:bc:0f:97: 48:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BD:20:40:D1:4C:48:2A:2D:3A:3B:2E:D2:08:C4:A8:1A:5E:03:31 X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:3e:cd:e1:08:d8:c6:40:24:d3:b2:81:b4:c5:d8:6e:5d:a8: 5b:45:9c:89:81:c2:b8:f3:84:83:4f:4e:92:47:ab:07:c8:b7: 8e:45:d1:e1:7b:78:87:d2:35:be:a3:d6:dc:dd:30:07:98:0f: f3:f7:7d:b6:95:bf:b5:48:88:e4:51:84:ce:1e:4e:12:0a:33: 3c:5b:80:89:3f:76:bf:80:e9:09:51:55:c6:6a:8d:f4:da:e3: 44:33:e6:b6:6e:bc:d1:df:30:43:86:3b:6c:94:7e:65:f4:8e: ad:19:e7:5d:66:3d:a8:81:08:04:a8:58:7f:04:ea:93:e2:16: 39:3e:2e:b8:4d:f1:4d:43:d0:a3:e8:47:28:71:91:87:3b:dc: 4b:87:5f:79:3b:18:47:67:83:53:0f:ae:6e:fb:f6:8f:6c:c7: 85:01:dc:2b:fb:8d:5c:5e:c2:fa:12:d6:6e:95:58:71:9f:3e: d3:7d:63:5b:2e:db:28:a9:4f:9e:86:c7:e9:2b:f6:71:20:2a: 73:51:bc:89:f5:bd:36:03:16:05:7e:3a:5c:0d:de:e7:5d:23: 52:8b:66:ad:c4:be:df:81:5f:98:5d:9d:ae:45:d1:3a:0f:b1: 67:7d:36:97:82:f6:0b:0a:f9:a5:3b:b0:3c:21:b0:b1:5b:b9: 1a:4d:0b:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsM20SZLvsPS5pd6O8jeD94MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjUxMjExMTAwMDU1WhcNMjUxMjEyMTAwMDU1WjAzMTEwLwYDVQQD EygwN2JkMjA0MGQxNGM0ODJhMmQzYTNiMmVkMjA4YzRhODFhNWUwMzMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5fuup6m+wnMkaZsZQK1H1WAEKOkY YAj8bRxFtG8OYmf7LXT2995dmO/gq9zdPvUNwtfef74/fqhiqEFOdJ2hpMMNSD2J n24jztYpUdknlJN0E9kf6nyrFhyg3mlrnwq9Kb46DS35N1eYgZixhERYphYe35VA gkH0Q0HYczJcxzvvfnfdOzZJ6OD1q3zypv0RyKHWHi1OQhW+QvOEu9ZVS1X3Mtj2 AIBI4ElTr9LJdaopjKeiASGfASJdOfAfzeL0R/EyUmVsfURweXWPOdllfkv7Eta1 5lFvKWcp3SZq3kYdmYv+MP9IcL5Y38RKC9BoEmZvuYK042AFSHW8D5dIOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAe9IEDRTEgqLTo7LtIIxKgaXgMxMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABz7N4QjY xkAk07KBtMXYbl2oW0WciYHCuPOEg09OkkerB8i3jkXR4Xt4h9I1vqPW3N0wB5gP 8/d9tpW/tUiI5FGEzh5OEgozPFuAiT92v4DpCVFVxmqN9NrjRDPmtm680d8wQ4Y7 bJR+ZfSOrRnnXWY9qIEIBKhYfwTqk+IWOT4uuE3xTUPQo+hHKHGRhzvcS4dfeTsY R2eDUw+ubvv2j2zHhQHcK/uNXF7C+hLWbpVYcZ8+031jWy7bKKlPnobH6Sv2cSAq c1G8ifW9NgMWBX46XA3e510jUotmrcS+34FfmF2drkXROg+xZ302l4L2Cwr5pTuw PCGwsVu5Gk0LMQ== -----END CERTIFICATE-----Generated at Thu Dec 11 19:37:49 2025 by rpki-client