This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: j4uvGSxIaemShcOcE+2AfH309x0O7X71DuvSURLcG9o= Subject key identifier: 2B:E7:EE:BD:20:ED:ED:8E:FC:7C:49:A5:6D:65:76:BC:E2:67:C3:32 Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019B1E3CCAE3E9BEC73D9E3DC4A128C9352D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 1779 Signing time: Sun 14 Dec 2025 19:00:59 +0000 Manifest this update: Sun 14 Dec 2025 19:00:59 +0000 Manifest next update: Mon 15 Dec 2025 19:00:59 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: rq9rpjEA5ADWFJBBieV9qnEOVDRY/LksVQUjxe4bMqU=) 3: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:3c:ca:e3:e9:be:c7:3d:9e:3d:c4:a1:28:c9:35:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Dec 14 19:00:59 2025 GMT Not After : Dec 15 19:00:59 2025 GMT Subject: CN=2be7eebd20eded8efc7c49a56d6576bce267c332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4e:e1:1f:9f:0c:a9:1e:b6:16:81:0d:36:aa: f0:b5:ff:a6:4b:d5:d3:61:8d:14:e8:df:56:0f:0e: ee:ae:b8:17:08:7e:26:44:90:a0:2f:cf:48:2a:d9: 14:8b:f0:3e:b2:a9:86:8d:dc:f5:5a:de:8c:bd:cb: 3d:b3:68:7e:42:21:bd:5a:f1:23:16:a9:88:78:0b: 34:7d:6c:1c:7d:a7:ba:08:26:b1:9a:ce:59:21:64: 6b:35:2d:61:fe:8f:66:0e:37:fc:9c:71:57:08:26: 8b:87:dc:3b:d9:dc:b5:42:ea:4b:e6:2d:e8:dc:00: 5e:9b:28:d7:ff:fe:af:d4:ef:6f:6c:82:8e:2b:69: 58:9d:14:ed:ad:50:cd:95:3a:d3:38:ed:7c:e8:56: e7:86:0d:49:9e:7a:09:0a:41:69:b3:e6:af:86:27: b2:3b:2c:47:c5:19:97:e0:b8:57:b4:5d:36:0c:c8: 4d:af:bb:dc:6e:9e:d4:84:f7:2c:ac:95:cc:31:63: bf:b3:d7:fa:a6:72:17:7b:e1:b7:a6:d2:68:d9:e2: 44:ab:5e:92:23:e2:e3:5a:2e:2f:14:30:42:76:d7: 99:92:d2:87:8b:6d:86:2c:80:f2:0a:06:7f:a9:8e: 05:bd:47:e3:f5:8c:4c:33:7f:f4:36:50:e2:9e:59: 37:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E7:EE:BD:20:ED:ED:8E:FC:7C:49:A5:6D:65:76:BC:E2:67:C3:32 X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:ed:61:04:66:f4:43:d1:5a:8e:50:55:be:66:5d:a8:6b:39: 50:61:69:1e:d2:4c:62:4b:2e:f5:e8:16:19:0e:bd:f4:b1:89: 9f:09:bf:22:9e:86:a5:b8:08:e6:36:d7:23:d4:7c:5a:84:aa: 9a:07:92:a7:b0:40:bf:c2:df:3e:fd:05:a6:e6:b1:f2:5c:b2: 71:30:35:87:dc:da:93:4a:f6:d2:1b:8b:44:50:13:00:c7:8d: d3:65:2d:01:04:26:a1:99:4d:53:2c:8a:11:8a:d1:ec:65:29: e0:84:7a:54:08:a8:ae:3e:c3:ca:cd:35:13:33:9b:d3:5b:77: b2:22:6f:d0:af:46:20:12:ea:4d:54:d3:1d:a8:67:b7:39:43: f8:e3:c5:24:f3:34:b4:b0:a9:58:5c:e6:91:e3:9b:f9:e9:11: 88:6f:00:db:95:17:e6:d4:4c:2a:0d:94:b5:c0:57:db:6a:30: ae:f4:08:f3:95:a9:60:6e:6f:e2:a3:a8:72:37:9c:e6:f9:96: 46:73:67:8c:dd:34:e4:98:b3:61:8d:38:c9:e0:ed:75:b7:50: be:2c:a4:d8:83:20:90:6e:bc:e5:12:26:9c:b1:10:e4:64:cc: d0:99:8e:e4:6a:f9:76:eb:20:75:99:fb:e3:ba:63:54:8e:71: 5a:4b:7e:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsePMrj6b7HPZ49xKEoyTUtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjUxMjE0MTkwMDU5WhcNMjUxMjE1MTkwMDU5WjAzMTEwLwYDVQQD EygyYmU3ZWViZDIwZWRlZDhlZmM3YzQ5YTU2ZDY1NzZiY2UyNjdjMzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnE7hH58MqR62FoENNqrwtf+mS9XT YY0U6N9WDw7urrgXCH4mRJCgL89IKtkUi/A+sqmGjdz1Wt6Mvcs9s2h+QiG9WvEj FqmIeAs0fWwcfae6CCaxms5ZIWRrNS1h/o9mDjf8nHFXCCaLh9w72dy1QupL5i3o 3ABemyjX//6v1O9vbIKOK2lYnRTtrVDNlTrTOO186Fbnhg1JnnoJCkFps+avhiey OyxHxRmX4LhXtF02DMhNr7vcbp7UhPcsrJXMMWO/s9f6pnIXe+G3ptJo2eJEq16S I+LjWi4vFDBCdteZktKHi22GLIDyCgZ/qY4FvUfj9YxMM3/0NlDinlk3uwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvn7r0g7e2O/HxJpW1ldrziZ8MyMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgO1hBGb0 Q9FajlBVvmZdqGs5UGFpHtJMYksu9egWGQ699LGJnwm/Ip6GpbgI5jbXI9R8WoSq mgeSp7BAv8LfPv0Fpuax8lyycTA1h9zak0r20huLRFATAMeN02UtAQQmoZlNUyyK EYrR7GUp4IR6VAiorj7Dys01EzOb01t3siJv0K9GIBLqTVTTHahntzlD+OPFJPM0 tLCpWFzmkeOb+ekRiG8A25UX5tRMKg2UtcBX22owrvQI85WpYG5v4qOocjec5vmW RnNnjN005JizYY04yeDtdbdQviyk2IMgkG685RImnLEQ5GTM0JmO5Gr5dusgdZn7 47pjVI5xWkt+Ow== -----END CERTIFICATE-----Generated at Sun Dec 14 23:03:41 2025 by rpki-client