This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: E9HE55LRiM/+98nTd+4XhumnR9oIYBc6WBz0ZVkQF0Q= Subject key identifier: 78:C2:9C:CC:15:06:7B:EC:CA:03:4C:DD:11:90:2D:A4:48:72:71:AE Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019AF1D215E0BE52441C8EE117C040164F26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 04:01:08 +0000 Manifest this update: Sat 06 Dec 2025 04:01:08 +0000 Manifest next update: Sun 07 Dec 2025 04:01:08 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 04CkleYAjzC1GMOnYP9szPNg92qmuBk7ipGXguxQTEo=) 3: yGFlSDdiFlFUJBTzkBDJlODQZoY.roa (hash: 5kgFGMiEYqgnd4sbR3CvLQA6/mpT37R4CFK6/AUcK/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:15:e0:be:52:44:1c:8e:e1:17:c0:40:16:4f:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Dec 6 04:01:08 2025 GMT Not After : Dec 7 04:01:08 2025 GMT Subject: CN=78c29ccc15067becca034cdd11902da4487271ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e0:52:0a:0f:4e:e5:b5:67:c8:dc:73:77:87: 6e:e0:9b:c1:aa:61:9e:e1:e0:0f:6d:18:70:34:3c: 33:cc:68:af:40:e1:f1:4f:e6:cb:e0:55:7c:28:31: 1e:db:48:6f:15:34:c5:c4:0a:76:d7:9f:2f:0c:c7: 4e:58:76:2a:49:78:45:b3:0d:c6:e9:9c:a0:77:fa: ad:97:40:53:cb:f9:27:19:16:56:78:4e:77:bf:d5: e2:f2:07:e2:da:a4:c3:8d:c7:f8:67:0e:93:cf:2f: ce:9e:e7:70:01:a2:59:d6:ca:03:0d:35:2a:85:96: 1b:61:64:ac:82:97:aa:4e:c8:49:40:0c:0b:8f:5d: 80:a4:70:4d:0b:c2:73:63:e6:9e:15:97:04:80:25: 7d:30:27:45:56:56:81:ce:bd:03:71:26:00:cd:b4: ea:b7:9b:31:0b:19:8a:79:9f:67:80:78:cd:04:f3: c2:bf:9c:7f:ff:73:cd:02:0f:00:b4:bd:49:c0:d6: a5:52:a0:5e:8d:b8:c7:90:d4:b7:02:55:33:37:97: a9:76:24:16:06:5a:66:f5:03:f7:e5:5a:4e:da:34: c8:c3:08:5d:e2:2b:19:99:7e:64:01:cf:49:05:41: eb:e7:25:1a:61:f7:1d:2f:86:ed:31:55:0a:2e:cd: 12:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C2:9C:CC:15:06:7B:EC:CA:03:4C:DD:11:90:2D:A4:48:72:71:AE X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:19:53:10:53:c4:05:fb:5c:a8:b8:17:83:26:13:97:2f:74: de:84:ea:7e:c0:ce:86:db:1e:fb:12:21:2d:a0:13:74:4c:ed: e1:e2:ad:e8:66:98:f1:1b:82:82:3e:1f:11:02:5b:a0:99:2d: fb:d1:cb:15:10:0a:6f:75:c1:f1:84:f4:88:b7:b8:8a:42:65: 39:d9:0c:56:4a:54:7f:7e:fa:db:20:ec:05:ab:9a:4c:fc:39: 00:5a:a7:0d:49:f1:30:54:aa:86:61:1a:ec:03:60:50:be:fd: c6:0d:30:03:08:85:1b:d8:7e:df:89:cd:56:a9:42:f3:c3:6f: c0:0b:09:c6:65:ef:3d:3f:30:53:ff:a8:26:f2:54:67:2d:38: 6d:62:e8:20:02:6f:65:8d:40:31:40:26:78:b3:10:81:ce:c7: 67:c4:de:4d:3f:4d:80:a4:b8:17:75:ed:54:72:c6:cb:3f:fa: 85:19:b9:03:c6:79:9a:62:08:6b:81:3b:a5:b4:39:00:f1:2a: d8:1f:bb:5b:ca:cf:77:6b:52:53:70:50:df:13:e6:15:2f:b0: 4e:19:3a:11:94:d9:07:de:6b:f0:75:b8:32:10:2a:77:00:68: bf:36:d6:01:ac:67:58:e4:f1:02:50:38:d6:30:e0:0c:d9:d1: 3b:38:15:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0hXgvlJEHI7hF8BAFk8mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjUxMjA2MDQwMTA4WhcNMjUxMjA3MDQwMTA4WjAzMTEwLwYDVQQD Eyg3OGMyOWNjYzE1MDY3YmVjY2EwMzRjZGQxMTkwMmRhNDQ4NzI3MWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmeBSCg9O5bVnyNxzd4du4JvBqmGe 4eAPbRhwNDwzzGivQOHxT+bL4FV8KDEe20hvFTTFxAp2158vDMdOWHYqSXhFsw3G 6Zygd/qtl0BTy/knGRZWeE53v9Xi8gfi2qTDjcf4Zw6Tzy/OnudwAaJZ1soDDTUq hZYbYWSsgpeqTshJQAwLj12ApHBNC8JzY+aeFZcEgCV9MCdFVlaBzr0DcSYAzbTq t5sxCxmKeZ9ngHjNBPPCv5x//3PNAg8AtL1JwNalUqBejbjHkNS3AlUzN5epdiQW Blpm9QP35VpO2jTIwwhd4isZmX5kAc9JBUHr5yUaYfcdL4btMVUKLs0SowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHjCnMwVBnvsygNM3RGQLaRIcnGuMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALBlTEFPE BftcqLgXgyYTly903oTqfsDOhtse+xIhLaATdEzt4eKt6GaY8RuCgj4fEQJboJkt +9HLFRAKb3XB8YT0iLe4ikJlOdkMVkpUf3762yDsBauaTPw5AFqnDUnxMFSqhmEa 7ANgUL79xg0wAwiFG9h+34nNVqlC88NvwAsJxmXvPT8wU/+oJvJUZy04bWLoIAJv ZY1AMUAmeLMQgc7HZ8TeTT9NgKS4F3XtVHLGyz/6hRm5A8Z5mmIIa4E7pbQ5APEq 2B+7W8rPd2tSU3BQ3xPmFS+wThk6EZTZB95r8HW4MhAqdwBovzbWAaxnWOTxAlA4 1jDgDNnROzgVuA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:09:19 2025 by rpki-client