This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft File: hKafxWiJTLOYXt7yIha9mZdN4lE.mft (raw, json) Hash identifier: sdMMgHNucLOOe3WM4GBUS1OnNb8pvj3b6ah7C4xebaE= Subject key identifier: 47:AC:9A:EA:72:6B:4D:2F:3C:BD:F2:FC:4E:02:EA:35:38:92:A2:F3 Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51 Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251 Certificate serial: 019B24E3CB29568287A8FDB561DF824CC656 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft Manifest number: 1445 Signing time: Tue 16 Dec 2025 02:01:06 +0000 Manifest this update: Tue 16 Dec 2025 02:01:06 +0000 Manifest next update: Wed 17 Dec 2025 02:01:06 +0000 Files and hashes: 1: gTuMJj4zNk4inmWeuwHt2oopg5M.roa (hash: zopPOsMBU8dt9Dr0i+LUD1TPbnQUzJ4uDKxUzfrnRiY=) 2: hKafxWiJTLOYXt7yIha9mZdN4lE.crl (hash: 9ua1MFEThiMHmXOlLEx39ExHFXp5BpF+ZVjZh7BqwGQ=) 3: rnwY-7oYw6V-trqxlfGxfeIKZIY.roa (hash: Yep0/R2aV0HSvC5J3JSqbOslIcQ/KKdPdI5bChqi8Qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:e3:cb:29:56:82:87:a8:fd:b5:61:df:82:4c:c6:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84a69fc568894cb3985edef22216bd99974de251 Validity Not Before: Dec 16 02:01:06 2025 GMT Not After : Dec 17 02:01:06 2025 GMT Subject: CN=47ac9aea726b4d2f3cbdf2fc4e02ea353892a2f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:4e:02:dc:b1:b8:46:27:12:e0:df:84:e1: 4b:8b:92:a0:14:6a:c9:86:0e:85:2f:48:4b:09:c3: 7e:09:0c:99:3d:2d:83:81:40:62:b8:c9:a2:68:6a: 3d:8c:84:d6:03:71:2f:3c:72:8c:d8:42:d5:74:4c: 94:7e:74:65:2d:88:e6:2f:25:89:ef:fd:22:ca:92: 58:13:c7:ae:ea:3f:be:39:c8:b4:0f:5b:7b:72:a4: 0f:cc:68:e3:c7:92:af:6f:e8:9d:66:a4:44:b5:8d: 2d:0e:38:bc:d3:85:fe:34:6d:7b:97:4a:fe:79:56: ec:1a:d5:5e:a3:fd:a0:d4:1d:d5:d0:2d:11:48:aa: dd:ce:3b:b2:a6:8b:41:37:3e:e3:f8:10:7d:10:a6: 69:69:31:2f:07:ce:6a:6f:da:1c:cb:ba:7d:66:d8: a3:72:fb:54:07:5d:c0:15:f0:ad:64:2e:e8:99:a9: 2e:a3:ad:06:c6:c1:3d:fd:bf:b5:26:ec:a0:c5:ed: 62:fd:00:ea:00:50:d6:19:8c:08:fe:8d:3c:c4:e9: 74:4b:3f:48:32:64:00:05:cb:cc:fb:44:9e:37:7a: b7:b9:6e:4c:80:c0:fa:6a:32:2b:9f:59:a9:f4:88: 24:69:da:99:36:3f:36:f0:80:53:a6:53:d2:51:ad: 66:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AC:9A:EA:72:6B:4D:2F:3C:BD:F2:FC:4E:02:EA:35:38:92:A2:F3 X509v3 Authority Key Identifier: keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:dc:47:25:c3:d2:65:10:c4:60:f5:9a:8a:f1:38:f8:c7:94: 43:7a:6d:ad:6c:8c:70:b9:4e:47:01:55:51:4d:31:62:83:ce: 79:fd:cc:2a:1a:2d:8b:a9:18:0e:d8:4d:00:8f:76:35:eb:df: 72:f2:1c:b2:eb:ae:89:34:4f:e7:09:64:7d:74:93:d8:4c:09: e3:ff:e6:a9:cf:41:72:2d:88:7d:a0:22:a9:fa:6d:e6:8b:5d: 72:e7:ea:8d:e3:fa:3b:3c:50:ec:f6:90:61:f1:ff:7e:21:b7: 7d:4e:04:f3:87:11:93:dd:1a:55:93:4b:9e:d3:bc:31:6a:be: ed:bc:4f:72:12:0c:75:42:bf:f4:7b:57:2d:d3:a8:1e:94:c1: 65:e7:12:5c:89:a4:00:26:4b:3f:25:bf:38:c0:c6:9f:fc:99: ac:76:82:e5:d7:64:8a:ec:e5:a5:8a:04:69:a4:bf:76:92:96: 0f:4f:f0:d8:6c:81:b4:5a:3b:28:f4:ae:25:dc:6a:02:b7:4f: 18:f3:42:18:b0:0f:2a:8f:3d:53:0e:3f:97:84:21:74:55:2e: d4:b2:4f:fd:91:4f:99:27:e8:1e:e5:a0:32:07:4f:b7:6b:2b: bc:f1:e5:d2:ef:c1:16:1d:ad:91:74:ee:91:ce:0a:83:7d:e1: 2e:85:de:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsk48spVoKHqP21Yd+CTMZWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YTY5ZmM1Njg4OTRjYjM5ODVlZGVmMjIyMTZiZDk5OTc0 ZGUyNTEwHhcNMjUxMjE2MDIwMTA2WhcNMjUxMjE3MDIwMTA2WjAzMTEwLwYDVQQD Eyg0N2FjOWFlYTcyNmI0ZDJmM2NiZGYyZmM0ZTAyZWEzNTM4OTJhMmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKdOAtyxuEYnEuDfhOFLi5KgFGrJ hg6FL0hLCcN+CQyZPS2DgUBiuMmiaGo9jITWA3EvPHKM2ELVdEyUfnRlLYjmLyWJ 7/0iypJYE8eu6j++Oci0D1t7cqQPzGjjx5Kvb+idZqREtY0tDji804X+NG17l0r+ eVbsGtVeo/2g1B3V0C0RSKrdzjuypotBNz7j+BB9EKZpaTEvB85qb9ocy7p9Ztij cvtUB13AFfCtZC7omakuo60GxsE9/b+1Juygxe1i/QDqAFDWGYwI/o08xOl0Sz9I MmQABcvM+0SeN3q3uW5MgMD6ajIrn1mp9IgkadqZNj828IBTplPSUa1mtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEesmupya00vPL3y/E4C6jU4kqLzMB8GA1UdIwQY MBaAFISmn8VoiUyzmF7e8iIWvZmXTeJRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEthZnhXaUpUTE9ZWHQ3eUloYTltWmRONGxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9jNjBhMWUtOTA4MC00YjA4LTk1ZGEt NDM3ZmU1MGJiNGY3LzEvaEthZnhXaUpUTE9ZWHQ3eUloYTltWmRONGxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9jNjBhMWUtOTA4MC00YjA4LTk1ZGEtNDM3ZmU1MGJiNGY3 LzEvaEthZnhXaUpUTE9ZWHQ3eUloYTltWmRONGxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtxHJcPS ZRDEYPWaivE4+MeUQ3ptrWyMcLlORwFVUU0xYoPOef3MKhoti6kYDthNAI92Nevf cvIcsuuuiTRP5wlkfXST2EwJ4//mqc9Bci2IfaAiqfpt5otdcufqjeP6OzxQ7PaQ YfH/fiG3fU4E84cRk90aVZNLntO8MWq+7bxPchIMdUK/9HtXLdOoHpTBZecSXImk ACZLPyW/OMDGn/yZrHaC5ddkiuzlpYoEaaS/dpKWD0/w2GyBtFo7KPSuJdxqArdP GPNCGLAPKo89Uw4/l4QhdFUu1LJP/ZFPmSfoHuWgMgdPt2srvPHl0u/BFh2tkXTu kc4Kg33hLoXefg== -----END CERTIFICATE-----Generated at Tue Dec 16 07:03:16 2025 by rpki-client