This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: iSHZoMg1FqwBoOzWE6KNjlURzrszDFTawtzqGIHejXA= Subject key identifier: 48:83:6D:53:56:E5:D5:C6:1A:27:DF:53:45:B3:2F:A2:A1:D6:25:3F Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019B544FF740D5CC8DB3B97676AB8A229525 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 1795 Signing time: Thu 25 Dec 2025 07:01:25 +0000 Manifest this update: Thu 25 Dec 2025 07:01:25 +0000 Manifest next update: Fri 26 Dec 2025 07:01:25 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: jPcIKA9Ga7FMTRG/1aPsyTsyzZ8u7VsRFmEHDT9MnjE=) 3: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:4f:f7:40:d5:cc:8d:b3:b9:76:76:ab:8a:22:95:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Dec 25 07:01:25 2025 GMT Not After : Dec 26 07:01:25 2025 GMT Subject: CN=48836d5356e5d5c61a27df5345b32fa2a1d6253f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:91:81:05:bd:cd:ce:0a:66:af:3c:01:7f:c2: b2:b4:9e:1d:ba:00:10:6a:05:d1:05:c0:b7:a7:79: 92:cb:62:76:93:91:f2:c2:1d:c5:f4:54:2c:36:8b: c9:12:dd:a0:39:ff:12:9c:87:d0:e6:de:45:ff:3b: 95:c3:11:8e:a2:17:d8:48:7f:0e:0e:ce:3c:60:c7: 46:49:4e:02:67:f6:fa:50:c6:a9:fa:9d:dd:72:a1: c7:6e:3d:fb:d5:81:78:b2:b8:3b:41:51:8f:72:cc: e7:93:a0:92:f5:25:fb:2f:cc:c3:a8:57:78:b4:50: 17:97:03:37:79:c0:bd:e1:79:e2:41:fa:6d:c5:1a: 2b:73:59:e3:f3:ab:47:2e:a9:a7:dd:eb:e2:6d:a6: 66:45:3f:5b:6a:7c:bb:1c:30:f6:a4:db:f5:65:ee: 0c:f3:a8:ff:6c:a5:3a:d3:b3:4f:8b:57:39:6d:b2: db:c5:c2:63:25:a9:67:0a:c7:63:8a:ad:40:77:87: 9b:22:b6:7c:64:21:1f:92:b5:df:4f:c0:7c:c8:38: 42:7d:a2:02:25:c0:d6:b5:ec:e1:bf:ed:dd:fb:b7: 19:b1:90:cd:56:2f:46:79:b8:8f:78:72:1c:a4:ce: 10:56:a6:1c:53:0a:8f:e7:60:38:01:79:fa:22:73: 7c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:83:6D:53:56:E5:D5:C6:1A:27:DF:53:45:B3:2F:A2:A1:D6:25:3F X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:45:79:f1:73:2a:2c:c5:1e:96:93:9a:50:52:9c:01:c1:25: 12:5f:2c:c4:d6:05:39:6b:9e:cd:03:7f:18:9e:d5:d4:9a:34: 8a:55:c1:7e:84:93:bd:20:55:4b:20:cc:76:82:56:61:d8:bd: 36:b2:80:1b:7e:77:83:77:e9:33:ff:ce:ba:6d:8b:1c:da:5c: 56:5f:d7:97:45:77:0d:37:11:d2:7d:df:a6:9f:6e:68:33:55: fa:e1:74:61:f9:c3:d9:8e:74:b7:cb:08:20:60:de:20:19:a3: 2b:c9:01:bb:bd:b5:e8:4f:b5:0e:63:c9:30:ed:15:40:b0:b5: 08:5d:94:25:04:2b:19:c8:ff:49:c0:41:7f:b8:78:7b:f3:91: ca:17:e0:f6:2a:a3:ab:8e:21:51:5f:bd:f2:36:a2:b4:c3:d6: 68:b6:80:61:65:0c:21:05:cf:ab:70:87:9b:cc:75:a9:d0:fb: 80:8c:a2:50:ec:b6:d4:06:3f:d5:66:1d:e6:45:1a:78:83:2f: 69:a3:e8:51:a5:30:15:2a:d3:fd:29:8f:18:21:bb:d4:9a:15: 6b:c5:99:6b:7d:7c:60:ad:c2:83:7d:1c:5d:5f:63:b6:89:79: 0e:eb:5d:c9:70:73:4c:5a:19:f0:1e:e0:f7:57:45:2e:fe:9e: 87:c9:da:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUT/dA1cyNs7l2dquKIpUlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjUxMjI1MDcwMTI1WhcNMjUxMjI2MDcwMTI1WjAzMTEwLwYDVQQD Eyg0ODgzNmQ1MzU2ZTVkNWM2MWEyN2RmNTM0NWIzMmZhMmExZDYyNTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZGBBb3NzgpmrzwBf8KytJ4dugAQ agXRBcC3p3mSy2J2k5Hywh3F9FQsNovJEt2gOf8SnIfQ5t5F/zuVwxGOohfYSH8O Ds48YMdGSU4CZ/b6UMap+p3dcqHHbj371YF4srg7QVGPcsznk6CS9SX7L8zDqFd4 tFAXlwM3ecC94XniQfptxRorc1nj86tHLqmn3evibaZmRT9bany7HDD2pNv1Ze4M 86j/bKU607NPi1c5bbLbxcJjJalnCsdjiq1Ad4ebIrZ8ZCEfkrXfT8B8yDhCfaIC JcDWtezhv+3d+7cZsZDNVi9GebiPeHIcpM4QVqYcUwqP52A4AXn6InN8YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEiDbVNW5dXGGiffU0WzL6Kh1iU/MB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGkV58XMq LMUelpOaUFKcAcElEl8sxNYFOWuezQN/GJ7V1Jo0ilXBfoSTvSBVSyDMdoJWYdi9 NrKAG353g3fpM//Oum2LHNpcVl/Xl0V3DTcR0n3fpp9uaDNV+uF0YfnD2Y50t8sI IGDeIBmjK8kBu7216E+1DmPJMO0VQLC1CF2UJQQrGcj/ScBBf7h4e/ORyhfg9iqj q44hUV+98jaitMPWaLaAYWUMIQXPq3CHm8x1qdD7gIyiUOy21AY/1WYd5kUaeIMv aaPoUaUwFSrT/SmPGCG71JoVa8WZa318YK3Cg30cXV9jtol5DutdyXBzTFoZ8B7g 91dFLv6eh8naNQ== -----END CERTIFICATE-----Generated at Thu Dec 25 12:00:06 2025 by rpki-client