This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft File: HyAOBxBBRee6mHap0-55Kgc2TTY.mft (raw, json) Hash identifier: O77olELeGGK+8YLVImHj7pI5tVQa01y0gG6L/cj5tT8= Subject key identifier: BD:F1:60:8F:31:E6:98:A8:AA:D1:E3:46:44:7C:C0:26:DB:B8:C4:B3 Authority key identifier: 1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36 Certificate issuer: /CN=1f200e07104145e7ba9876a9d3ee792a07364d36 Certificate serial: 019AF12D50F7BD895FB8E4B871C6DCE40137 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft Manifest number: 0487 Signing time: Sat 06 Dec 2025 01:01:10 +0000 Manifest this update: Sat 06 Dec 2025 01:01:10 +0000 Manifest next update: Sun 07 Dec 2025 01:01:10 +0000 Files and hashes: 1: HyAOBxBBRee6mHap0-55Kgc2TTY.crl (hash: PJ4YbwaducQ4jkQ0Gkw8fEn6h+fywMu6MVdCciKCfno=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:50:f7:bd:89:5f:b8:e4:b8:71:c6:dc:e4:01:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f200e07104145e7ba9876a9d3ee792a07364d36 Validity Not Before: Dec 6 01:01:10 2025 GMT Not After : Dec 7 01:01:10 2025 GMT Subject: CN=bdf1608f31e698a8aad1e346447cc026dbb8c4b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ac:ce:53:54:64:c7:f0:ae:70:d5:fa:13:89: 86:a3:2e:06:e1:c1:33:e3:71:03:84:b6:f9:48:cc: 96:ec:ac:ea:f8:41:46:97:36:a5:9e:8d:30:07:78: df:c0:27:7f:0c:f4:78:09:99:f1:44:26:cc:e2:d8: 00:c5:d9:b6:47:66:c6:74:93:da:51:d3:54:0d:97: b3:12:79:4f:1c:6e:31:56:9f:24:c1:ed:07:8b:48: ff:d7:04:a1:1f:bf:c2:64:ee:7c:61:7e:12:50:fe: 9a:12:b5:35:1b:20:b7:a1:77:60:6b:bf:52:07:0c: 61:46:05:7f:89:b8:c6:5e:04:62:08:8d:ba:c0:51: b7:5f:2a:85:bf:f7:62:1a:e0:6b:e1:02:af:1c:04: 40:7c:bc:7e:20:d8:f6:b8:0f:fa:aa:8a:82:45:7f: 49:34:05:c8:14:37:c9:7f:41:93:8d:bd:81:29:db: ab:e4:80:63:8d:fe:90:a9:4c:29:87:e8:22:06:9d: 5c:f2:cf:3f:51:63:e3:8a:0c:de:fd:4e:c3:84:6c: 77:44:e9:38:0f:25:d2:9a:5f:c9:1a:e2:d2:d3:09: f4:3b:c7:61:8a:8e:38:86:6c:ad:47:db:d7:ee:84: 80:17:29:59:1c:36:e3:58:d7:96:84:60:9d:94:be: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F1:60:8F:31:E6:98:A8:AA:D1:E3:46:44:7C:C0:26:DB:B8:C4:B3 X509v3 Authority Key Identifier: keyid:1F:20:0E:07:10:41:45:E7:BA:98:76:A9:D3:EE:79:2A:07:36:4D:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyAOBxBBRee6mHap0-55Kgc2TTY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/46dabf-9626-4d1f-a89e-775a7ec1ca33/1/HyAOBxBBRee6mHap0-55Kgc2TTY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c9:07:c3:89:3e:ba:b6:f6:49:3f:46:2f:0e:02:c9:83:b8: 19:e0:da:6f:22:af:67:b4:dd:7d:15:41:c1:ff:3b:71:ad:c5: e3:90:19:e1:e1:03:64:4c:8b:10:6e:2d:76:65:ad:04:63:b6: fb:62:bb:48:33:1b:fc:3a:87:17:a1:d8:d2:02:fd:22:11:d3: 37:56:83:80:32:52:4a:80:b9:3e:d7:21:bd:77:dc:8a:5d:d7: 7d:3c:a5:88:4c:ec:48:09:6a:f2:d0:d7:bf:a6:04:cf:c1:7e: 19:b5:dc:ff:c3:2a:50:cf:59:3e:83:81:9b:ae:70:1a:6a:8d: be:f4:b3:5c:6b:48:fb:15:5e:97:ef:0f:a3:be:5a:f0:3b:c9: c0:4d:de:c1:33:46:2a:8b:f8:eb:5c:4e:4b:66:81:dd:d6:d6: c8:4f:44:1a:35:c5:34:6f:30:cb:b5:f0:d3:19:a4:ec:de:04: d0:80:ef:9b:8d:d7:ee:55:ec:ec:9e:25:1f:67:c2:76:1e:11: ff:4d:9a:33:52:97:02:b9:a0:d6:47:c8:c9:87:2a:6e:b3:0a: 03:1a:13:29:fa:e0:f8:73:bc:f6:19:d4:5b:db:37:43:17:5b: a2:2d:08:a8:85:b4:c7:aa:b1:71:00:99:8a:ca:39:2e:b8:94: fe:93:1b:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLVD3vYlfuOS4ccbc5AE3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMjAwZTA3MTA0MTQ1ZTdiYTk4NzZhOWQzZWU3OTJhMDcz NjRkMzYwHhcNMjUxMjA2MDEwMTEwWhcNMjUxMjA3MDEwMTEwWjAzMTEwLwYDVQQD EyhiZGYxNjA4ZjMxZTY5OGE4YWFkMWUzNDY0NDdjYzAyNmRiYjhjNGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqzOU1Rkx/CucNX6E4mGoy4G4cEz 43EDhLb5SMyW7Kzq+EFGlzalno0wB3jfwCd/DPR4CZnxRCbM4tgAxdm2R2bGdJPa UdNUDZezEnlPHG4xVp8kwe0Hi0j/1wShH7/CZO58YX4SUP6aErU1GyC3oXdga79S BwxhRgV/ibjGXgRiCI26wFG3XyqFv/diGuBr4QKvHARAfLx+INj2uA/6qoqCRX9J NAXIFDfJf0GTjb2BKdur5IBjjf6QqUwph+giBp1c8s8/UWPjigze/U7DhGx3ROk4 DyXSml/JGuLS0wn0O8dhio44hmytR9vX7oSAFylZHDbjWNeWhGCdlL54bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3xYI8x5pioqtHjRkR8wCbbuMSzMB8GA1UdIwQY MBaAFB8gDgcQQUXnuph2qdPueSoHNk02MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUt Nzc1YTdlYzFjYTMzLzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi80NmRhYmYtOTYyNi00ZDFmLWE4OWUtNzc1YTdlYzFjYTMz LzEvSHlBT0J4QkJSZWU2bUhhcDAtNTVLZ2MyVFRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmskHw4k+ urb2ST9GLw4CyYO4GeDabyKvZ7TdfRVBwf87ca3F45AZ4eEDZEyLEG4tdmWtBGO2 +2K7SDMb/DqHF6HY0gL9IhHTN1aDgDJSSoC5PtchvXfcil3XfTyliEzsSAlq8tDX v6YEz8F+GbXc/8MqUM9ZPoOBm65wGmqNvvSzXGtI+xVel+8Po75a8DvJwE3ewTNG Kov461xOS2aB3dbWyE9EGjXFNG8wy7Xw0xmk7N4E0IDvm43X7lXs7J4lH2fCdh4R /02aM1KXArmg1kfIyYcqbrMKAxoTKfrg+HO89hnUW9s3Qxdboi0IqIW0x6qxcQCZ iso5LriU/pMbIw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:51 2025 by rpki-client