This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: /J3l7nBAgmfcTXQFua7mUcXMRDJLzdk7dqJlLqdKXWU= Subject key identifier: BF:30:04:F3:7C:A6:02:4D:0B:D7:43:BD:74:C2:19:59:07:45:C2:57 Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019BC45205FCE1D39695AC415B7C9CD82BC7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 17D0 Signing time: Fri 16 Jan 2026 01:01:08 +0000 Manifest this update: Fri 16 Jan 2026 01:01:08 +0000 Manifest next update: Sat 17 Jan 2026 01:01:08 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: lEkVArzOPgjZspT0jHtWq/iPqQi82J66BFIUwolmEVQ=) 3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 00:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c4:52:05:fc:e1:d3:96:95:ac:41:5b:7c:9c:d8:2b:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Jan 16 01:01:08 2026 GMT Not After : Jan 17 01:01:08 2026 GMT Subject: CN=bf3004f37ca6024d0bd743bd74c219590745c257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:3b:9a:4e:7b:45:15:b6:7d:e4:08:58:dd: 5f:30:5e:62:3b:8a:b1:5a:56:f6:bc:b8:3a:c6:63: a7:0b:08:7b:d5:bd:97:e6:15:0c:7f:ac:2c:52:43: c9:28:2a:a4:c9:a0:72:93:a1:9d:e3:58:44:b9:11: 68:80:88:d7:b8:26:cb:15:dd:ae:cd:b1:3e:da:42: e3:ed:e3:e3:5c:14:43:de:98:7c:44:59:ee:a5:c4: 77:1a:ed:68:16:5a:b9:e9:2a:5f:39:32:11:21:53: 9c:32:c4:e3:d4:5b:18:03:a1:ef:d9:ca:42:cf:07: ca:9a:ca:6d:25:4f:41:be:64:18:00:ad:6f:8e:eb: b5:44:18:42:da:07:ae:33:8b:69:0d:80:ac:f4:f4: 07:ba:6a:ba:ba:c8:e3:21:db:bd:55:4e:41:c8:86: 98:7f:dc:37:7a:52:9a:48:39:ed:18:29:ad:c5:94: 8d:a5:2f:25:9e:4e:0e:80:e5:e2:ac:18:9b:e0:1c: 5d:30:78:9a:45:de:2a:09:44:3f:d2:7f:dc:13:c0: 4c:be:d8:7c:98:3e:56:c3:ce:0a:ed:78:67:f0:f2: 7d:23:47:3f:8b:68:3c:6c:e5:f1:83:06:de:33:f1: e9:77:7a:39:63:95:e4:5c:6f:a1:7d:f1:1f:fe:38: 06:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:30:04:F3:7C:A6:02:4D:0B:D7:43:BD:74:C2:19:59:07:45:C2:57 X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e0:29:21:97:f5:a4:24:7f:07:ea:65:ae:e3:95:91:c9:d6: ed:0c:3a:b8:f9:0d:4b:05:32:2a:43:ae:25:90:2a:53:6d:6a: 1e:df:5d:ed:93:6f:a8:b6:70:63:05:dc:aa:cb:68:99:1b:d1: eb:ae:15:97:22:d2:a4:a1:82:92:eb:3c:68:70:84:65:08:d1: 6e:f7:6d:7b:0e:d5:9f:df:0a:7c:3c:f1:ee:f3:3e:fc:6a:74: 25:13:ee:2b:76:05:18:07:de:bd:b0:23:e8:1e:9e:e2:80:ae: 62:36:91:c7:ea:50:d8:0b:31:49:93:ee:b2:21:0b:30:3b:41: f5:6a:d9:b9:29:0c:5d:9b:a8:5f:c3:b4:37:4b:66:59:8c:5a: e4:d5:dd:de:be:b7:e7:1e:15:9a:51:57:7f:c3:6f:8f:78:53: cc:70:1d:79:5d:38:f3:0a:89:cd:c6:f5:19:db:8f:56:83:22: 94:be:13:82:28:3b:e4:0e:94:26:d5:9b:a0:88:f4:64:26:c1: f8:dc:3e:b2:20:c7:56:49:68:b1:62:42:3f:43:da:f7:b4:ae: d8:6a:7f:02:11:7f:15:5c:a8:2a:4d:b1:79:fb:45:b7:b1:a8: 42:91:7e:60:78:97:15:9e:93:04:aa:67:4a:e0:2a:44:7a:00: 06:0a:8c:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvEUgX84dOWlaxBW3yc2CvHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjYwMTE2MDEwMTA4WhcNMjYwMTE3MDEwMTA4WjAzMTEwLwYDVQQD EyhiZjMwMDRmMzdjYTYwMjRkMGJkNzQzYmQ3NGMyMTk1OTA3NDVjMjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAur87mk57RRW2feQIWN1fMF5iO4qx Wlb2vLg6xmOnCwh71b2X5hUMf6wsUkPJKCqkyaByk6Gd41hEuRFogIjXuCbLFd2u zbE+2kLj7ePjXBRD3ph8RFnupcR3Gu1oFlq56SpfOTIRIVOcMsTj1FsYA6Hv2cpC zwfKmsptJU9BvmQYAK1vjuu1RBhC2geuM4tpDYCs9PQHumq6usjjIdu9VU5ByIaY f9w3elKaSDntGCmtxZSNpS8lnk4OgOXirBib4BxdMHiaRd4qCUQ/0n/cE8BMvth8 mD5Ww84K7Xhn8PJ9I0c/i2g8bOXxgwbeM/Hpd3o5Y5XkXG+hffEf/jgGpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL8wBPN8pgJNC9dDvXTCGVkHRcJXMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALOApIZf1 pCR/B+plruOVkcnW7Qw6uPkNSwUyKkOuJZAqU21qHt9d7ZNvqLZwYwXcqstomRvR 664VlyLSpKGCkus8aHCEZQjRbvdtew7Vn98KfDzx7vM+/Gp0JRPuK3YFGAfevbAj 6B6e4oCuYjaRx+pQ2AsxSZPusiELMDtB9WrZuSkMXZuoX8O0N0tmWYxa5NXd3r63 5x4VmlFXf8Nvj3hTzHAdeV048wqJzcb1GduPVoMilL4Tgig75A6UJtWboIj0ZCbB +Nw+siDHVklosWJCP0Pa97Su2Gp/AhF/FVyoKk2xeftFt7GoQpF+YHiXFZ6TBKpn SuAqRHoABgqMnw== -----END CERTIFICATE-----Generated at Fri Jan 16 07:39:01 2026 by rpki-client