This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: GqDDluu5ySclw//3H5NLzjKy2OExdqiZCna82YC9ybw= Subject key identifier: 67:C2:42:8F:73:26:02:88:CE:8E:6D:36:5C:9D:33:38:B2:62:10:76 Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019B9FA10A4C2292BFC62A6830993B02DC3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 17BD Signing time: Thu 08 Jan 2026 22:01:29 +0000 Manifest this update: Thu 08 Jan 2026 22:01:29 +0000 Manifest next update: Fri 09 Jan 2026 22:01:29 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: yJI+QtXUfz5/c2hE6vneeNGOTAYJXkvcWR29hv9yE+A=) 3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9f:a1:0a:4c:22:92:bf:c6:2a:68:30:99:3b:02:dc:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Jan 8 22:01:29 2026 GMT Not After : Jan 9 22:01:29 2026 GMT Subject: CN=67c2428f73260288ce8e6d365c9d3338b2621076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:76:60:da:b8:dd:37:b5:26:21:cd:ff:25:d5: 20:e0:e8:02:bc:97:d4:01:de:08:fd:9d:55:ab:54: ac:25:17:fa:07:60:12:29:c9:2f:5b:2a:aa:e9:4e: 2e:b1:ae:82:a9:70:9b:54:6c:a0:72:9d:28:1e:dc: 52:ef:6e:20:37:6f:00:d3:6d:6c:76:ae:0f:7b:50: ed:42:b8:49:b4:e8:9e:35:a1:aa:eb:80:38:1c:25: ef:a0:46:e2:75:bc:0a:8b:1f:30:67:7b:5c:2c:b8: 10:4e:59:ca:22:63:0a:d4:4d:3b:af:be:65:ed:1b: fd:0d:b7:5e:9c:e4:e8:e0:b4:03:15:14:10:6b:b3: 62:9a:18:21:c1:a8:ba:ef:54:8b:56:de:68:d0:9f: e4:b8:90:e6:be:da:5e:d6:ee:29:65:6c:fd:97:1c: 74:d0:9b:94:8c:b5:53:26:d7:2c:ec:dc:ee:5c:f6: 6b:ec:2b:5f:b0:8c:9d:77:4a:01:2c:4b:65:0e:81: c4:33:90:47:99:a0:6e:18:ce:3f:38:87:d0:b8:8d: 09:88:60:2e:7f:93:fe:6b:4d:cd:96:d9:7f:1e:cb: 5a:26:41:17:a7:e4:99:5f:08:33:94:fd:0b:23:f7: 56:ee:56:31:7e:44:4d:31:82:75:db:35:e5:23:6b: 5f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C2:42:8F:73:26:02:88:CE:8E:6D:36:5C:9D:33:38:B2:62:10:76 X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:54:20:39:d5:12:e1:84:ab:44:59:ff:cf:44:c0:ea:f2:01: 49:cb:7a:16:b2:7b:6b:91:51:71:18:dd:2e:f8:d6:dc:7b:38: 7d:8a:ec:e1:9d:a6:0b:e7:d1:12:06:16:9a:60:f8:70:14:e7: bd:f7:e8:c0:96:76:85:e1:76:88:92:ae:fe:1c:62:91:28:e8: bc:a2:a4:a1:86:86:93:89:b9:41:a2:dd:ac:59:d3:4f:01:34: f7:dc:63:e0:2c:17:85:b3:f5:f8:11:52:06:d4:ca:29:92:75: 33:70:4e:ee:25:7e:2e:34:fd:8b:63:b8:a2:9d:c1:cd:5f:92: b7:e9:48:d8:e0:83:47:71:73:80:e7:12:a5:7f:b0:40:91:03: ff:cc:68:be:94:a1:0d:a1:a2:3c:b2:46:18:b2:61:a0:ba:2f: 06:08:93:7a:96:ea:ab:49:2d:49:86:e8:69:e5:0e:99:ee:3e: 73:98:ae:2e:e4:c5:93:e4:59:dc:de:11:64:ae:66:2e:1a:5e: 7e:64:ad:67:3a:7f:7c:23:13:23:61:68:87:37:3b:0a:32:0a: 53:c9:bf:f2:6f:b5:24:f3:6a:c8:d9:66:9c:6d:20:5d:3b:06: 87:b8:f6:a4:b1:79:69:65:c2:fa:17:90:51:7d:10:8f:40:76: d4:e3:c4:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZufoQpMIpK/xipoMJk7Atw6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjYwMTA4MjIwMTI5WhcNMjYwMTA5MjIwMTI5WjAzMTEwLwYDVQQD Eyg2N2MyNDI4ZjczMjYwMjg4Y2U4ZTZkMzY1YzlkMzMzOGIyNjIxMDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3Zg2rjdN7UmIc3/JdUg4OgCvJfU Ad4I/Z1Vq1SsJRf6B2ASKckvWyqq6U4usa6CqXCbVGygcp0oHtxS724gN28A021s dq4Pe1DtQrhJtOieNaGq64A4HCXvoEbidbwKix8wZ3tcLLgQTlnKImMK1E07r75l 7Rv9DbdenOTo4LQDFRQQa7Nimhghwai671SLVt5o0J/kuJDmvtpe1u4pZWz9lxx0 0JuUjLVTJtcs7NzuXPZr7CtfsIydd0oBLEtlDoHEM5BHmaBuGM4/OIfQuI0JiGAu f5P+a03Nltl/HstaJkEXp+SZXwgzlP0LI/dW7lYxfkRNMYJ12zXlI2tfKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGfCQo9zJgKIzo5tNlydMziyYhB2MB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI1QgOdUS 4YSrRFn/z0TA6vIBSct6FrJ7a5FRcRjdLvjW3Hs4fYrs4Z2mC+fREgYWmmD4cBTn vffowJZ2heF2iJKu/hxikSjovKKkoYaGk4m5QaLdrFnTTwE099xj4CwXhbP1+BFS BtTKKZJ1M3BO7iV+LjT9i2O4op3BzV+St+lI2OCDR3FzgOcSpX+wQJED/8xovpSh DaGiPLJGGLJhoLovBgiTepbqq0ktSYboaeUOme4+c5iuLuTFk+RZ3N4RZK5mLhpe fmStZzp/fCMTI2Fohzc7CjIKU8m/8m+1JPNqyNlmnG0gXTsGh7j2pLF5aWXC+heQ UX0Qj0B21OPE1g== -----END CERTIFICATE-----Generated at Fri Jan 9 07:06:16 2026 by rpki-client