This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json) Hash identifier: phNtyFu5aR7Iuqwxds1exwyEuIdHIXDzxzfZX2oM+RE= Subject key identifier: 58:77:D8:9F:0E:96:AA:15:EB:E0:F2:88:19:D5:B6:A5:3F:BB:D3:1F Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d Certificate serial: 019B77EDAB71986BF2196049CB08E4E99E75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft Manifest number: 0BF2 Signing time: Thu 01 Jan 2026 05:00:23 +0000 Manifest this update: Thu 01 Jan 2026 05:00:23 +0000 Manifest next update: Fri 02 Jan 2026 05:00:23 +0000 Files and hashes: 1: 1gJl5QGcLnfhKR4ZX5vkhukZyTU.roa (hash: NMFFqW5s2zQQWT6VrzvJinnOwTRcu4h6yTFNCCxpjXA=) 2: HlpYPKfUTSJ7pDq2oQziu1OJN70.roa (hash: 2/lnsP1apTOPlsNH0YhFprUwFbQM2G9j3yZLF5vZFt4=) 3: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: L9mh4xGQzALhSMLaHTROrRaRTdhzXOlS4L/+IWW7SDg=) 4: n82Q14Y2YDik1JFdwsQlLlmUXCU.roa (hash: Pqu0KJ3PErrtF3waClxiFcaMqimhO+E9Mo28nI/aapw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 05:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:ed:ab:71:98:6b:f2:19:60:49:cb:08:e4:e9:9e:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d Validity Not Before: Jan 1 05:00:23 2026 GMT Not After : Jan 2 05:00:23 2026 GMT Subject: CN=5877d89f0e96aa15ebe0f28819d5b6a53fbbd31f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:09:39:99:b5:33:0a:61:36:c6:8f:6f:f3:f2: 32:b3:9f:6e:33:06:e8:9e:50:fb:d4:4e:f0:9d:45: b6:b1:be:0d:c1:ca:6d:9c:e4:54:0f:91:a0:c2:07: 59:45:3b:69:d8:84:10:01:b7:14:4b:75:89:45:51: 4c:f9:2b:02:07:19:a0:d0:6c:a6:71:58:2f:5c:67: 7a:57:01:20:80:bc:a3:3b:c9:f7:64:83:34:59:00: 3a:cc:ac:29:b4:0c:03:cb:f2:e0:d1:bf:b5:98:c7: 62:c3:b6:44:7e:bd:95:ec:ce:c4:8d:be:d7:1d:64: 15:2e:24:86:7e:59:bc:05:5b:02:a8:17:97:b1:14: 9a:7d:c0:b2:13:2e:b2:1a:fe:d7:77:c7:4e:19:80: 5f:5f:19:72:f1:4c:29:00:7c:30:38:33:fc:06:04: 50:a5:b9:32:05:8c:fe:39:7f:fb:c4:14:ac:27:6d: e4:49:80:2a:de:4f:53:59:04:25:dc:0a:30:6c:f9: f6:aa:7f:18:a9:ec:70:6d:ce:cf:e2:f1:33:88:9c: 85:59:9a:7b:65:11:47:8b:a4:51:e9:0a:55:32:e6: 07:c4:9e:a9:0b:d1:a4:00:59:46:c8:36:d1:f4:03: be:94:ea:e0:4f:d6:5c:e1:f2:75:91:51:82:47:d8: 74:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:77:D8:9F:0E:96:AA:15:EB:E0:F2:88:19:D5:B6:A5:3F:BB:D3:1F X509v3 Authority Key Identifier: keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:c0:36:d2:f1:80:8e:57:f6:3d:f6:e6:8a:f7:af:41:8e:4a: 3c:1f:04:4c:96:34:d4:f9:a3:59:2a:18:82:de:da:a5:e9:00: 56:64:aa:50:81:84:cd:36:00:1a:5b:08:8a:04:b8:c8:a7:ef: b4:6f:cb:13:8a:42:c1:61:92:49:39:52:04:13:4a:73:be:71: 9b:2b:45:c5:bb:a9:0b:07:a0:61:26:e4:67:01:ec:cb:52:63: e2:21:e4:1c:64:c6:86:d0:44:58:23:a4:fb:26:20:ce:41:f0: 0c:55:85:6d:38:7e:50:e4:55:d8:6a:69:8d:e1:f7:e7:a7:ca: 6c:27:81:37:85:b2:c9:56:cc:30:45:e9:87:3e:b5:12:80:87: b3:44:75:24:6a:5c:04:83:1a:de:9e:50:6b:1e:0f:11:5f:8d: c7:d7:17:4a:3a:c4:bf:54:e7:34:47:9c:9f:c2:9b:14:21:45: 11:a6:63:40:3a:c6:eb:cb:84:9a:8a:be:f6:92:f0:ce:99:0d: 65:81:80:02:c9:42:e9:20:b5:cd:fc:0d:be:c3:bd:43:2f:d4: 1d:2f:bf:37:a9:0b:64:04:47:ad:fb:bf:c3:9b:42:f8:f3:02: 5e:72:8a:b9:e0:8f:f5:04:c5:1c:b4:67:dc:ba:89:f0:cf:09: b6:66:8c:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt37atxmGvyGWBJywjk6Z51MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4N2UxYzk3ZjcxZjM1NTg2N2UzZmI4NzdmMjFhYTUxMzBi NmNmNWQwHhcNMjYwMTAxMDUwMDIzWhcNMjYwMTAyMDUwMDIzWjAzMTEwLwYDVQQD Eyg1ODc3ZDg5ZjBlOTZhYTE1ZWJlMGYyODgxOWQ1YjZhNTNmYmJkMzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswk5mbUzCmE2xo9v8/Iys59uMwbo nlD71E7wnUW2sb4NwcptnORUD5GgwgdZRTtp2IQQAbcUS3WJRVFM+SsCBxmg0Gym cVgvXGd6VwEggLyjO8n3ZIM0WQA6zKwptAwDy/Lg0b+1mMdiw7ZEfr2V7M7Ejb7X HWQVLiSGflm8BVsCqBeXsRSafcCyEy6yGv7Xd8dOGYBfXxly8UwpAHwwODP8BgRQ pbkyBYz+OX/7xBSsJ23kSYAq3k9TWQQl3AowbPn2qn8Yqexwbc7P4vEziJyFWZp7 ZRFHi6RR6QpVMuYHxJ6pC9GkAFlGyDbR9AO+lOrgT9Zc4fJ1kVGCR9h0IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFh32J8OlqoV6+DyiBnVtqU/u9MfMB8GA1UdIwQY MBaAFCh+HJf3HzVYZ+P7h38hqlEwts9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEt OWViM2M2ODJiMDA5LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEtOWViM2M2ODJiMDA5 LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN8A20vGA jlf2PfbmivevQY5KPB8ETJY01PmjWSoYgt7apekAVmSqUIGEzTYAGlsIigS4yKfv tG/LE4pCwWGSSTlSBBNKc75xmytFxbupCwegYSbkZwHsy1Jj4iHkHGTGhtBEWCOk +yYgzkHwDFWFbTh+UORV2GppjeH356fKbCeBN4WyyVbMMEXphz61EoCHs0R1JGpc BIMa3p5Qax4PEV+Nx9cXSjrEv1TnNEecn8KbFCFFEaZjQDrG68uEmoq+9pLwzpkN ZYGAAslC6SC1zfwNvsO9Qy/UHS+/N6kLZARHrfu/w5tC+PMCXnKKueCP9QTFHLRn 3LqJ8M8JtmaM5Q== -----END CERTIFICATE-----Generated at Thu Jan 1 12:32:35 2026 by rpki-client