This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: cNX9z131f3PU6cINoWPPzWoHCfwD1kJKLJX+w7icqtA= Subject key identifier: 85:7C:52:75:F4:20:14:24:87:51:7F:E9:BC:0A:CB:95:1C:24:A2:53 Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019C0BC648AD2D01D1F6FAC63AFB5A4D3B52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 17F5 Signing time: Thu 29 Jan 2026 22:01:09 +0000 Manifest this update: Thu 29 Jan 2026 22:01:09 +0000 Manifest next update: Fri 30 Jan 2026 22:01:09 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: x/5C8t9dIpZEoYj8na3bfDZle9nkw3Mstxt5obVqoUc=) 3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 22:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0b:c6:48:ad:2d:01:d1:f6:fa:c6:3a:fb:5a:4d:3b:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Jan 29 22:01:09 2026 GMT Not After : Jan 30 22:01:09 2026 GMT Subject: CN=857c5275f420142487517fe9bc0acb951c24a253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:96:de:ee:cd:3d:f9:5f:b7:70:8c:55:fc:bc: 4c:20:0d:36:22:75:56:39:a5:a0:3b:c1:37:56:8b: 76:0d:d4:6e:28:81:9c:d7:33:8b:d5:b3:1d:17:60: ef:e6:7b:ff:1a:de:b3:dd:a7:30:4b:5a:84:d6:81: 58:fd:cd:37:74:0b:c7:e2:2e:25:a0:c2:3b:58:9b: e3:a5:97:d1:62:e4:90:f9:46:59:10:1f:e5:de:2c: e3:96:23:62:60:8b:3f:81:20:cb:05:24:10:47:3f: e1:c5:80:5c:cb:74:10:7e:4c:52:46:98:e8:ba:eb: f9:05:f2:2f:c2:76:d0:ca:18:cd:91:91:7b:a7:de: f6:47:00:5b:ed:3c:68:23:77:40:32:79:ad:5f:ba: 11:39:b6:ee:0b:d2:b0:03:8b:3f:91:8c:45:ec:0a: a5:86:72:d3:c0:a6:42:f4:84:83:7d:f0:8c:c3:8e: 33:69:86:30:81:ac:0c:9c:b3:ec:8d:9c:2c:c7:9d: 48:66:12:ff:47:c6:e6:15:29:4f:c5:09:0e:c6:52: 4d:2f:f6:39:dd:04:fd:93:b7:3f:1d:51:2f:3b:91: 68:c6:d9:a7:4f:67:0b:b1:7e:98:3b:6b:f2:7d:8c: 35:7a:09:8e:02:b6:33:8c:5a:11:4a:3b:42:95:d7: cf:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7C:52:75:F4:20:14:24:87:51:7F:E9:BC:0A:CB:95:1C:24:A2:53 X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:21:7a:f9:b8:2b:94:1c:39:e8:b8:38:04:71:a8:6b:cc:47: cb:55:dd:bc:76:f2:fd:c1:f8:94:03:e3:cf:7e:cb:2f:a2:a7: c2:41:b1:99:6b:95:1a:56:78:d7:c1:1c:33:8f:85:8c:8d:bf: e0:3f:09:66:7f:01:5b:87:92:8c:83:72:16:74:82:46:dc:d8: e2:27:59:72:64:b8:d1:26:da:59:2d:99:c3:3e:41:7d:bf:3e: be:a2:69:b6:47:9e:44:fe:f2:4d:d9:d9:bf:3c:a6:2b:41:6e: 47:de:24:2c:54:8a:1f:0b:20:f4:a2:54:00:30:a0:2c:d0:54: 85:11:88:62:06:8f:07:46:c0:d4:d4:e0:a9:c2:51:1b:7b:b7: 38:c0:ac:81:36:1a:1c:41:df:bf:45:f2:cf:06:e0:c6:8b:0f: f7:ca:f0:de:ab:3d:06:5b:aa:1c:72:fb:ff:19:e0:cc:58:12: 22:08:52:f3:cf:3e:ca:bb:fd:18:7f:cb:e6:f7:e3:fb:0f:e2: 00:60:c1:80:f3:e3:60:e9:0b:d8:5a:4f:fa:c9:9f:27:21:6e: ba:57:fe:19:f7:20:ea:c5:ea:45:c6:fd:ab:4a:4d:41:61:e2: fc:fa:02:00:06:32:a3:0e:b1:da:01:ce:11:66:4b:3e:b4:aa: 10:01:16:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwLxkitLQHR9vrGOvtaTTtSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjYwMTI5MjIwMTA5WhcNMjYwMTMwMjIwMTA5WjAzMTEwLwYDVQQD Eyg4NTdjNTI3NWY0MjAxNDI0ODc1MTdmZTliYzBhY2I5NTFjMjRhMjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5be7s09+V+3cIxV/LxMIA02InVW OaWgO8E3Vot2DdRuKIGc1zOL1bMdF2Dv5nv/Gt6z3acwS1qE1oFY/c03dAvH4i4l oMI7WJvjpZfRYuSQ+UZZEB/l3izjliNiYIs/gSDLBSQQRz/hxYBcy3QQfkxSRpjo uuv5BfIvwnbQyhjNkZF7p972RwBb7TxoI3dAMnmtX7oRObbuC9KwA4s/kYxF7Aql hnLTwKZC9ISDffCMw44zaYYwgawMnLPsjZwsx51IZhL/R8bmFSlPxQkOxlJNL/Y5 3QT9k7c/HVEvO5FoxtmnT2cLsX6YO2vyfYw1egmOArYzjFoRSjtCldfPoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIV8UnX0IBQkh1F/6bwKy5UcJKJTMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZyF6+bgr lBw56Lg4BHGoa8xHy1XdvHby/cH4lAPjz37LL6KnwkGxmWuVGlZ418EcM4+FjI2/ 4D8JZn8BW4eSjINyFnSCRtzY4idZcmS40SbaWS2Zwz5Bfb8+vqJptkeeRP7yTdnZ vzymK0FuR94kLFSKHwsg9KJUADCgLNBUhRGIYgaPB0bA1NTgqcJRG3u3OMCsgTYa HEHfv0XyzwbgxosP98rw3qs9BluqHHL7/xngzFgSIghS888+yrv9GH/L5vfj+w/i AGDBgPPjYOkL2FpP+smfJyFuulf+Gfcg6sXqRcb9q0pNQWHi/PoCAAYyow6x2gHO EWZLPrSqEAEWhg== -----END CERTIFICATE-----Generated at Fri Jan 30 07:59:35 2026 by rpki-client