This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: i+nh5a90M2WAFpPBfT5sZUHmF6DgkwVmNSaxoHjnNh0= Subject key identifier: CA:98:D5:CE:37:0B:67:F3:14:71:3E:6C:A3:D6:56:71:49:4B:69:42 Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019AEA18BD64D3E9E4AA28AF2FE7E8E094C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 175E Signing time: Thu 04 Dec 2025 16:01:21 +0000 Manifest this update: Thu 04 Dec 2025 16:01:21 +0000 Manifest next update: Fri 05 Dec 2025 16:01:21 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: MbLKmoPgRGXFUxSYJqiDHrljzTJyOB+Uhi0Wf5ahaDI=) 3: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 16:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ea:18:bd:64:d3:e9:e4:aa:28:af:2f:e7:e8:e0:94:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Dec 4 16:01:21 2025 GMT Not After : Dec 5 16:01:21 2025 GMT Subject: CN=ca98d5ce370b67f314713e6ca3d65671494b6942 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ca:11:17:f7:fb:53:f8:85:2c:63:b5:08:25: d2:27:7c:84:d2:59:27:50:5b:9a:42:fe:78:97:cd: f5:4f:57:21:42:89:0d:56:ee:7c:18:8e:34:e0:29: 90:d1:75:db:c2:9c:a5:ff:79:d6:c6:3e:7c:84:29: 45:f6:07:12:fc:0d:8f:3a:98:b9:a1:26:5e:75:96: 66:ed:8c:9b:01:2b:44:16:ac:50:cc:22:62:1d:bb: 4c:b4:b7:9c:27:6c:bf:bf:fc:36:d1:5f:fb:a7:f8: ea:a0:f1:4c:28:96:6b:7d:a6:ec:a8:02:e8:4d:3e: 2c:37:07:99:b9:56:9a:47:3e:cd:81:37:88:9b:3a: 3f:f8:f0:17:f9:ff:ed:07:5e:81:21:23:d3:de:4f: eb:9f:8d:84:a3:4e:0d:7c:77:6d:86:3d:1b:8a:59: ed:0f:61:2b:6f:3f:93:b1:b8:ca:35:e7:2e:80:d9: eb:6f:36:12:8e:cc:ee:9c:86:d5:2f:52:01:a1:60: 00:cf:41:3a:99:8a:67:cc:87:6e:11:e3:d1:05:eb: 39:f1:1e:77:69:13:86:2e:e8:bd:91:4b:be:c6:17: 1d:70:f1:27:2d:d3:60:8b:f5:6e:ca:de:ad:55:dd: 04:cd:f7:07:3b:b5:a9:f4:48:92:bb:18:aa:26:84: e6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:98:D5:CE:37:0B:67:F3:14:71:3E:6C:A3:D6:56:71:49:4B:69:42 X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:29:47:14:43:40:0d:bb:e4:ff:01:71:93:e1:e6:27:55:a6: 26:16:2f:ff:b1:1a:fb:79:41:ce:de:e7:a1:92:34:11:b5:48: e3:c1:a1:94:95:40:f2:7f:d4:85:2e:e9:1c:8b:11:10:d0:0a: e4:41:22:4f:e4:85:58:89:f4:fc:40:d4:6f:26:b4:4b:c2:d5: 45:28:88:25:a1:1f:a2:87:6e:d2:02:b4:95:44:d4:0e:01:a8: 3d:51:12:13:7e:ce:a6:1c:11:29:34:ca:db:71:fb:3a:68:0d: 80:63:88:f4:f0:91:e7:c0:dc:4e:1e:3a:b2:02:8d:9d:f5:22: 08:c7:e7:32:be:31:8e:9f:95:be:89:1d:46:62:69:23:87:11: ee:0f:e3:97:dd:1e:67:09:05:f7:ff:6f:98:5a:cf:44:29:7d: 81:d0:3d:72:52:96:21:c9:0b:47:08:29:cb:33:a5:7a:59:77: 82:eb:3d:83:03:a2:04:c6:84:b6:d6:c7:54:75:2f:34:d0:8c: a8:65:8b:64:97:92:04:7d:f9:fe:72:9d:23:15:eb:01:bb:c5: 69:03:d3:f8:fa:35:4b:cc:cc:38:15:9b:3b:c3:1c:d5:48:d1: 1d:83:fb:6b:ec:c4:e4:08:74:f9:d7:89:0b:36:99:bd:58:f9: e7:00:dc:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrqGL1k0+nkqiivL+fo4JTAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjUxMjA0MTYwMTIxWhcNMjUxMjA1MTYwMTIxWjAzMTEwLwYDVQQD EyhjYTk4ZDVjZTM3MGI2N2YzMTQ3MTNlNmNhM2Q2NTY3MTQ5NGI2OTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsoRF/f7U/iFLGO1CCXSJ3yE0lkn UFuaQv54l831T1chQokNVu58GI404CmQ0XXbwpyl/3nWxj58hClF9gcS/A2POpi5 oSZedZZm7YybAStEFqxQzCJiHbtMtLecJ2y/v/w20V/7p/jqoPFMKJZrfabsqALo TT4sNweZuVaaRz7NgTeImzo/+PAX+f/tB16BISPT3k/rn42Eo04NfHdthj0bilnt D2Erbz+TsbjKNecugNnrbzYSjszunIbVL1IBoWAAz0E6mYpnzIduEePRBes58R53 aROGLui9kUu+xhcdcPEnLdNgi/Vuyt6tVd0EzfcHO7Wp9EiSuxiqJoTm/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMqY1c43C2fzFHE+bKPWVnFJS2lCMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFClHFENA Dbvk/wFxk+HmJ1WmJhYv/7Ea+3lBzt7noZI0EbVI48GhlJVA8n/UhS7pHIsRENAK 5EEiT+SFWIn0/EDUbya0S8LVRSiIJaEfoodu0gK0lUTUDgGoPVESE37OphwRKTTK 23H7OmgNgGOI9PCR58DcTh46sgKNnfUiCMfnMr4xjp+VvokdRmJpI4cR7g/jl90e ZwkF9/9vmFrPRCl9gdA9clKWIckLRwgpyzOlell3gus9gwOiBMaEttbHVHUvNNCM qGWLZJeSBH35/nKdIxXrAbvFaQPT+Po1S8zMOBWbO8Mc1UjRHYP7a+zE5Ah0+deJ CzaZvVj55wDcvA== -----END CERTIFICATE-----Generated at Thu Dec 4 20:13:12 2025 by rpki-client