This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json) Hash identifier: 7vJ58nohmHq7tHeEFboSFhOz8XE7Qvtqz2FiUBNbKmM= Subject key identifier: C0:6F:A0:0F:F4:BB:5E:E7:4D:AA:D4:22:54:C4:39:C4:38:60:9F:EE Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Certificate serial: 019BF0BCCB1027BE863F8BA0AC198CC1C31A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft Manifest number: 17E7 Signing time: Sat 24 Jan 2026 16:01:03 +0000 Manifest this update: Sat 24 Jan 2026 16:01:03 +0000 Manifest next update: Sun 25 Jan 2026 16:01:03 +0000 Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=) 2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: H7yQZMaVM2fHIK6bjLwZu/LXq8Hwf3CEVesDVVtxLzY=) 3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 13:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f0:bc:cb:10:27:be:86:3f:8b:a0:ac:19:8c:c1:c3:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78 Validity Not Before: Jan 24 16:01:03 2026 GMT Not After : Jan 25 16:01:03 2026 GMT Subject: CN=c06fa00ff4bb5ee74daad42254c439c438609fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ed:65:3e:76:fe:70:57:ee:d5:7b:f5:39:9c: 14:2e:79:27:d9:63:9c:95:85:41:d0:53:f9:4b:50: 24:50:94:89:53:31:80:bd:6f:c1:8b:55:69:11:ed: c7:27:08:c3:82:b1:57:9a:e6:97:20:88:98:61:55: 02:96:43:23:40:38:a4:44:96:ef:84:f2:c0:c5:fa: e4:d8:74:6a:79:b8:1c:18:db:c2:e0:9b:34:f5:67: 56:d6:09:36:78:cc:c3:a0:c6:75:f7:08:b3:02:d7: 0e:62:2d:f1:d5:1c:8b:f8:8e:40:87:06:e6:4f:87: ea:ac:db:39:3f:e9:80:e9:09:81:a5:91:9d:07:89: f8:4f:5a:02:58:0e:56:72:1e:0c:e0:3e:1c:04:0b: 8f:7c:2a:91:a9:d7:4d:73:91:c9:2d:4e:53:63:0f: f9:b9:31:55:a6:a6:15:e4:d8:4c:47:ab:6b:b0:b5: 9b:72:d1:18:6c:f6:47:5f:12:4e:77:dc:4b:ab:87: 6b:f1:bb:8a:63:9b:eb:7f:c8:fe:6a:4b:18:48:46: db:2f:63:7d:ff:14:94:99:0a:a5:83:1c:66:4b:7b: ac:9c:52:25:75:31:d6:25:30:73:db:f9:01:82:1f: 3e:3c:ba:24:15:6d:4d:e4:ef:b4:52:64:32:8a:9e: 2f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6F:A0:0F:F4:BB:5E:E7:4D:AA:D4:22:54:C4:39:C4:38:60:9F:EE X509v3 Authority Key Identifier: keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:9c:6c:d7:01:2c:30:5c:12:4a:a5:17:78:5b:b0:3c:92:8c: e0:39:da:0b:c8:66:37:b7:83:57:e1:ce:bc:7e:35:72:f8:69: 58:f8:ef:75:1d:20:61:65:60:4b:f2:5f:02:38:94:24:a2:e5: 1e:06:ff:d4:92:73:87:87:8e:38:30:66:4c:0f:e7:c9:51:8f: 00:4b:4a:86:aa:1e:c5:d4:d3:2d:f2:8c:f7:b0:b1:e1:36:36: a3:9b:9a:55:c4:24:77:c9:02:69:fa:6e:96:eb:b4:fe:66:be: 6f:c3:e4:62:79:8f:df:02:7a:c6:ae:5f:1c:e6:96:bf:16:95: b6:2d:2c:0e:39:33:c6:8e:c4:17:cd:3e:bb:bf:05:e8:4a:47: 05:b5:bc:0d:90:5f:68:a9:9a:6b:e4:37:ed:dc:a2:61:5e:10: 1b:d1:52:90:ee:d3:63:84:d2:39:96:05:10:65:5f:43:34:3e: 92:77:6b:33:26:aa:62:65:c9:fa:8e:b0:8d:4d:88:9f:a1:f9: 83:a5:4b:41:ca:f6:05:10:40:3a:ed:e3:60:96:e2:7b:df:d4: 37:96:c5:78:3c:3c:e1:c0:ed:b2:5d:f7:60:96:dc:66:c3:27: 43:c3:f9:b7:63:10:e6:0c:1e:78:96:4f:4f:15:86:e5:47:29: 75:03:d5:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvwvMsQJ76GP4ugrBmMwcMaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3 N2ZjNzgwHhcNMjYwMTI0MTYwMTAzWhcNMjYwMTI1MTYwMTAzWjAzMTEwLwYDVQQD EyhjMDZmYTAwZmY0YmI1ZWU3NGRhYWQ0MjI1NGM0MzljNDM4NjA5ZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0O1lPnb+cFfu1Xv1OZwULnkn2WOc lYVB0FP5S1AkUJSJUzGAvW/Bi1VpEe3HJwjDgrFXmuaXIIiYYVUClkMjQDikRJbv hPLAxfrk2HRqebgcGNvC4Js09WdW1gk2eMzDoMZ19wizAtcOYi3x1RyL+I5Ahwbm T4fqrNs5P+mA6QmBpZGdB4n4T1oCWA5Wch4M4D4cBAuPfCqRqddNc5HJLU5TYw/5 uTFVpqYV5NhMR6trsLWbctEYbPZHXxJOd9xLq4dr8buKY5vrf8j+aksYSEbbL2N9 /xSUmQqlgxxmS3usnFIldTHWJTBz2/kBgh8+PLokFW1N5O+0UmQyip4v6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBvoA/0u17nTarUIlTEOcQ4YJ/uMB8GA1UdIwQY MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEJxs1wEs MFwSSqUXeFuwPJKM4DnaC8hmN7eDV+HOvH41cvhpWPjvdR0gYWVgS/JfAjiUJKLl Hgb/1JJzh4eOODBmTA/nyVGPAEtKhqoexdTTLfKM97Cx4TY2o5uaVcQkd8kCafpu luu0/ma+b8PkYnmP3wJ6xq5fHOaWvxaVti0sDjkzxo7EF80+u78F6EpHBbW8DZBf aKmaa+Q37dyiYV4QG9FSkO7TY4TSOZYFEGVfQzQ+kndrMyaqYmXJ+o6wjU2In6H5 g6VLQcr2BRBAOu3jYJbie9/UN5bFeDw84cDtsl33YJbcZsMnQ8P5t2MQ5gweeJZP TxWG5UcpdQPVFw== -----END CERTIFICATE-----Generated at Sat Jan 24 22:12:02 2026 by rpki-client