This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft File: 656E4422ABF129649200EB019A815F2B12236E92.mft (raw, json) Hash identifier: GWPpGfq2DHwZDjQmUrjRSPXhg0NhJ8p6uu5LIAL0OZg= Subject key identifier: 83:68:C0:B8:97:B4:F7:59:D7:2D:63:D2:32:39:ED:61:0D:44:A9:88 Authority key identifier: 65:6E:44:22:AB:F1:29:64:92:00:EB:01:9A:81:5F:2B:12:23:6E:92 Certificate issuer: /CN=656E4422ABF129649200EB019A815F2B12236E92 Certificate serial: 13FDE8BDF42E0D3CD4C5CE8A902001A9FCC84469 Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer Subject info access: rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft Manifest number: 020A Signing time: Sat 20 Dec 2025 08:04:39 +0000 Manifest this update: Sat 20 Dec 2025 07:59:39 +0000 Manifest next update: Sun 21 Dec 2025 11:26:39 +0000 Files and hashes: 1: 34352e3133322e3139302e302f32342d3234203d3e2030.roa (hash: 9ieyP3BjwnrGT7jHWN0miv3BwxPneURkOZZD4j2C8Tw=) 2: 656E4422ABF129649200EB019A815F2B12236E92.crl (hash: m2SCeC8DUoMpXme0/h43nXJ2KVrBBvdFTNpK5Ry3FEM=) 3: 3134372e32382e31302e302f32332d3234203d3e203437303635.roa (hash: InllrUkC+i/L8Vq1qSaFZSxY2gcH0Pb1ZOihADOfZw0=) 4: 3134372e32382e31302e302f32332d3234203d3e2039343334.roa (hash: VtH6E5X9bla/lP/1oDgzLC/IGBeO4Y+MgLQlG/MHRAA=) 5: 34352e3133322e3139312e302f32342d3234203d3e2033393730.roa (hash: piR0xY2W/Fg7dFVRqqqeApVksNlAZNhoOxCqAZQ09I0=) Validation: OK Signature path: rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.crl rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft rsync://ca.rg.net/rpki/RGnet-OU/ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 03:47:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:fd:e8:bd:f4:2e:0d:3c:d4:c5:ce:8a:90:20:01:a9:fc:c8:44:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656E4422ABF129649200EB019A815F2B12236E92 Validity Not Before: Dec 20 07:59:39 2025 GMT Not After : Dec 21 11:26:39 2025 GMT Subject: CN=8368C0B897B4F759D72D63D23239ED610D44A988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d2:3e:21:be:f8:7e:9e:a8:82:90:24:08:41: 1e:0d:15:9b:ca:58:eb:3c:76:bb:e2:62:b2:11:5e: b6:81:38:e8:a0:c6:bd:a5:f4:9e:f9:b3:5e:3b:14: c1:9b:b7:91:c4:a5:d2:08:68:e1:8a:d0:6c:dd:89: 77:6f:41:f7:7b:c1:e8:fd:81:be:fa:63:ac:63:6f: 2e:34:c9:e8:43:8d:2b:5e:bc:8e:7e:ae:4b:c8:52: b9:a6:0c:40:24:61:41:13:87:ab:b7:45:2a:b5:65: e1:90:87:3b:f9:5d:2f:a0:22:29:e1:b9:8d:23:b9: df:0e:90:3b:29:6f:7d:6b:e3:d3:94:19:12:79:cd: d5:60:71:51:f4:d4:cb:29:94:03:dd:3e:0a:08:6b: 53:a3:1e:1a:44:96:39:d5:63:c6:ad:64:77:fb:37: 79:ab:87:80:e9:4d:41:84:bc:2b:78:c4:d9:1b:6a: e8:af:39:1a:52:e7:3d:0e:8e:ed:95:8f:22:85:d7: 63:55:14:4e:80:8f:09:15:37:39:74:a7:4f:79:8b: f9:9b:1f:0c:18:81:a4:86:d3:3e:8a:fa:e9:6f:44: 64:f2:5c:a8:b2:ad:7d:6c:be:8c:9d:02:f8:cf:c3: 05:d0:e3:b9:31:48:bc:6d:87:f8:8f:e4:ea:b3:85: ea:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:68:C0:B8:97:B4:F7:59:D7:2D:63:D2:32:39:ED:61:0D:44:A9:88 X509v3 Authority Key Identifier: keyid:65:6E:44:22:AB:F1:29:64:92:00:EB:01:9A:81:5F:2B:12:23:6E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.crl Authority Information Access: CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/ZW5EIqvxKWSSAOsBmoFfKxIjbpI.cer Subject Information Access: Signed Object - URI:rsync://krill.rg.net/repo/rpki-beacons-ca/0/656E4422ABF129649200EB019A815F2B12236E92.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:31:56:9c:57:23:4c:40:2c:f6:6c:e6:89:05:73:07:0a:47: b4:51:e2:46:20:a5:8d:61:28:98:9f:47:4b:e2:d0:a7:9d:41: 41:d5:f3:a9:a3:6c:25:b3:b3:e4:4f:a8:a5:ab:bb:ef:45:cb: 47:94:76:6c:de:84:cb:69:a3:1b:62:4f:c0:ee:95:44:a5:20: 93:4a:38:d8:43:b8:95:7a:0e:5b:42:11:94:37:77:d2:af:03: 79:c9:66:b3:be:53:f8:80:ff:d3:35:5f:4e:6c:5a:1e:d1:9d: cf:50:22:14:ac:43:b3:e0:43:42:c9:e7:71:13:9c:1e:23:3a: 92:1f:d1:7d:da:ae:1a:1f:2f:41:a6:9b:c7:f3:b5:02:65:75: 56:c0:7f:a9:b6:eb:3c:b7:d7:54:92:e5:ff:07:6e:91:c1:8d: aa:25:36:32:bb:b1:58:b3:01:8a:2f:59:f1:25:59:1b:1b:d6: be:e6:09:89:12:f4:34:8a:f2:e8:52:8e:6d:54:84:11:94:b6: b6:40:37:2e:20:79:4e:98:6f:3f:a4:cb:5d:1c:68:41:14:21: 53:5a:5b:f6:d1:02:11:03:f3:48:b3:ee:93:c1:01:fb:30:b4: ad:15:17:cb:a4:6f:44:60:a9:b7:df:f4:e2:be:0c:95:36:6b: e0:af:66:8b -----BEGIN CERTIFICATE----- MIIE3DCCA8SgAwIBAgIUE/3ovfQuDTzUxc6KkCABqfzIRGkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2RTQ0MjJBQkYxMjk2NDkyMDBFQjAxOUE4MTVGMkIx MjIzNkU5MjAeFw0yNTEyMjAwNzU5MzlaFw0yNTEyMjExMTI2MzlaMDMxMTAvBgNV BAMTKDgzNjhDMEI4OTdCNEY3NTlENzJENjNEMjMyMzlFRDYxMEQ0NEE5ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg0j4hvvh+nqiCkCQIQR4NFZvK WOs8drviYrIRXraBOOigxr2l9J75s147FMGbt5HEpdIIaOGK0GzdiXdvQfd7wej9 gb76Y6xjby40yehDjStevI5+rkvIUrmmDEAkYUETh6u3RSq1ZeGQhzv5XS+gIinh uY0jud8OkDspb31r49OUGRJ5zdVgcVH01MsplAPdPgoIa1OjHhpEljnVY8atZHf7 N3mrh4DpTUGEvCt4xNkbauivORpS5z0Oju2VjyKF12NVFE6AjwkVNzl0p095i/mb HwwYgaSG0z6K+ulvRGTyXKiyrX1svoydAvjPwwXQ47kxSLxth/iP5OqzhepXAgMB AAGjggHmMIIB4jAdBgNVHQ4EFgQUg2jAuJe091nXLWPSMjntYQ1EqYgwHwYDVR0j BBgwFoAUZW5EIqvxKWSSAOsBmoFfKxIjbpIwDgYDVR0PAQH/BAQDAgeAMGkGA1Ud HwRiMGAwXqBcoFqGWHJzeW5jOi8va3JpbGwucmcubmV0L3JlcG8vcnBraS1iZWFj b25zLWNhLzAvNjU2RTQ0MjJBQkYxMjk2NDkyMDBFQjAxOUE4MTVGMkIxMjIzNkU5 Mi5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUFBzAChj9yc3luYzovL2NhLnJn Lm5ldC9ycGtpL1JHbmV0LU9VL1pXNUVJcXZ4S1dTU0FPc0Jtb0ZmS3hJamJwSS5j ZXIwdAYIKwYBBQUHAQsEaDBmMGQGCCsGAQUFBzALhlhyc3luYzovL2tyaWxsLnJn Lm5ldC9yZXBvL3Jwa2ktYmVhY29ucy1jYS8wLzY1NkU0NDIyQUJGMTI5NjQ5MjAw RUIwMTlBODE1RjJCMTIyMzZFOTIubWZ0MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggrBgEFBQcB CAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDGMVacVyNMQCz2bOaJBXMH Cke0UeJGIKWNYSiYn0dL4tCnnUFB1fOpo2wls7PkT6ilq7vvRctHlHZs3oTLaaMb Yk/A7pVEpSCTSjjYQ7iVeg5bQhGUN3fSrwN5yWazvlP4gP/TNV9ObFoe0Z3PUCIU rEOz4ENCyedxE5weIzqSH9F92q4aHy9BppvH87UCZXVWwH+ptus8t9dUkuX/B26R wY2qJTYyu7FYswGKL1nxJVkbG9a+5gmJEvQ0ivLoUo5tVIQRlLa2QDcuIHlOmG8/ pMtdHGhBFCFTWlv20QIRA/NIs+6TwQH7MLStFRfLpG9EYKm33/TivgyVNmvgr2aL -----END CERTIFICATE-----Generated at Sat Dec 20 23:16:12 2025 by rpki-client