This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft File: hKafxWiJTLOYXt7yIha9mZdN4lE.mft (raw, json) Hash identifier: Wdutx2d8d21vMl7cMdZPjsUD9N0/7uCh+seHp0z7xQs= Subject key identifier: 1E:E9:61:D4:93:08:66:56:90:2C:D7:43:3D:4C:82:7D:B4:87:72:48 Authority key identifier: 84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51 Certificate issuer: /CN=84a69fc568894cb3985edef22216bd99974de251 Certificate serial: 019AF2ADAA03764173542EF0CC2E424202A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft Manifest number: 142B Signing time: Sat 06 Dec 2025 08:00:58 +0000 Manifest this update: Sat 06 Dec 2025 08:00:58 +0000 Manifest next update: Sun 07 Dec 2025 08:00:58 +0000 Files and hashes: 1: gTuMJj4zNk4inmWeuwHt2oopg5M.roa (hash: zopPOsMBU8dt9Dr0i+LUD1TPbnQUzJ4uDKxUzfrnRiY=) 2: hKafxWiJTLOYXt7yIha9mZdN4lE.crl (hash: QUTZ03f/4cC4GYiOb2yoITu7OGTl/hGioJ8bcyprFG4=) 3: rnwY-7oYw6V-trqxlfGxfeIKZIY.roa (hash: Yep0/R2aV0HSvC5J3JSqbOslIcQ/KKdPdI5bChqi8Qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:aa:03:76:41:73:54:2e:f0:cc:2e:42:42:02:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84a69fc568894cb3985edef22216bd99974de251 Validity Not Before: Dec 6 08:00:58 2025 GMT Not After : Dec 7 08:00:58 2025 GMT Subject: CN=1ee961d493086656902cd7433d4c827db4877248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e2:eb:5e:f2:3b:67:98:75:6b:92:74:3e:b1: 88:f0:96:bd:9e:3c:03:4b:11:39:2a:2a:e7:da:bb: 1f:3b:cd:e8:ba:c5:bf:37:23:a9:fd:a2:fa:35:f5: 4e:77:c6:77:70:18:da:9c:76:b9:0a:33:6c:e8:f4: 51:55:e6:42:7d:ee:db:21:53:59:db:4c:fa:34:f7: 6c:e0:89:7a:13:1f:77:0f:24:de:dc:7e:b5:7d:95: 8f:39:b7:63:74:0a:2b:5d:59:a8:ab:7e:ed:8c:40: 6d:29:d5:4e:cf:3f:7f:b9:21:4d:bb:49:61:40:92: 5f:88:b4:dc:21:32:63:74:72:a7:f7:78:0e:cf:3a: 16:b8:58:60:5d:af:87:a6:26:cf:d1:90:48:9b:9b: e5:f9:4f:e1:63:d2:04:7a:4e:d2:b8:96:bc:ff:47: 72:21:06:e5:5e:84:67:b4:70:13:8f:6d:55:76:3b: df:3e:be:93:ad:52:fc:8b:d2:a1:72:b4:18:ca:d8: 15:4f:f8:cd:6f:ac:e2:cc:11:13:e1:10:db:b7:95: 20:43:88:06:e0:e7:55:3a:ad:3f:ae:40:da:70:93: 2e:ca:88:39:c9:1a:ab:ed:2d:0e:54:78:14:47:92: 7e:7e:5b:bb:78:01:4c:d4:ba:9b:05:47:0b:08:50: 69:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E9:61:D4:93:08:66:56:90:2C:D7:43:3D:4C:82:7D:B4:87:72:48 X509v3 Authority Key Identifier: keyid:84:A6:9F:C5:68:89:4C:B3:98:5E:DE:F2:22:16:BD:99:97:4D:E2:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKafxWiJTLOYXt7yIha9mZdN4lE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/c60a1e-9080-4b08-95da-437fe50bb4f7/1/hKafxWiJTLOYXt7yIha9mZdN4lE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:4d:33:7a:2b:32:5e:46:63:d2:bd:72:82:d0:03:3b:86:fa: e6:7d:91:a6:aa:c1:25:bd:77:b3:3a:31:ef:04:44:1c:26:1e: 14:1a:80:4b:a1:4d:e9:9b:de:b7:2c:45:59:2e:e1:5a:04:f3: 51:95:10:62:51:77:d3:6e:c7:4f:b9:9f:8b:3a:7f:4a:a9:ca: b7:77:2e:42:b1:f3:b5:29:53:ec:29:d1:df:e5:38:45:7e:fa: c5:ab:d9:32:22:4c:f4:b7:af:0f:0e:e4:c7:f9:f8:8d:c1:52: 37:0c:34:2e:d3:f7:c2:52:b7:30:6f:f5:64:54:9f:8d:7c:d9: 91:4f:df:07:b6:b7:e2:1e:86:81:c2:20:7d:c2:8c:54:fe:fd: 1a:ec:60:fd:ed:6f:dc:39:d1:da:10:cc:f6:f1:2e:b8:bf:f9: 63:4d:d5:28:66:e3:4a:cc:dd:05:58:b4:d5:4d:24:37:36:ea: a2:07:1b:37:50:fa:e8:b7:c8:93:71:45:88:92:0d:d7:f4:45: 4f:10:46:28:66:45:a8:e2:25:93:f8:50:ee:1f:17:d9:f6:2b: 89:7a:21:ec:40:f6:76:f6:2f:bd:eb:00:a7:d8:49:52:d8:f9: 2c:c0:dc:81:9e:d1:40:d6:2a:20:a8:d3:5e:92:b9:13:34:2e: 98:16:da:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryraoDdkFzVC7wzC5CQgKgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YTY5ZmM1Njg4OTRjYjM5ODVlZGVmMjIyMTZiZDk5OTc0 ZGUyNTEwHhcNMjUxMjA2MDgwMDU4WhcNMjUxMjA3MDgwMDU4WjAzMTEwLwYDVQQD EygxZWU5NjFkNDkzMDg2NjU2OTAyY2Q3NDMzZDRjODI3ZGI0ODc3MjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOLrXvI7Z5h1a5J0PrGI8Ja9njwD SxE5Kirn2rsfO83ousW/NyOp/aL6NfVOd8Z3cBjanHa5CjNs6PRRVeZCfe7bIVNZ 20z6NPds4Il6Ex93DyTe3H61fZWPObdjdAorXVmoq37tjEBtKdVOzz9/uSFNu0lh QJJfiLTcITJjdHKn93gOzzoWuFhgXa+HpibP0ZBIm5vl+U/hY9IEek7SuJa8/0dy IQblXoRntHATj21VdjvfPr6TrVL8i9KhcrQYytgVT/jNb6zizBET4RDbt5UgQ4gG 4OdVOq0/rkDacJMuyog5yRqr7S0OVHgUR5J+flu7eAFM1LqbBUcLCFBpOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB7pYdSTCGZWkCzXQz1Mgn20h3JIMB8GA1UdIwQY MBaAFISmn8VoiUyzmF7e8iIWvZmXTeJRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEthZnhXaUpUTE9ZWHQ3eUloYTltWmRONGxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9jNjBhMWUtOTA4MC00YjA4LTk1ZGEt NDM3ZmU1MGJiNGY3LzEvaEthZnhXaUpUTE9ZWHQ3eUloYTltWmRONGxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9jNjBhMWUtOTA4MC00YjA4LTk1ZGEtNDM3ZmU1MGJiNGY3 LzEvaEthZnhXaUpUTE9ZWHQ3eUloYTltWmRONGxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAE0zeisy XkZj0r1ygtADO4b65n2RpqrBJb13szox7wREHCYeFBqAS6FN6ZvetyxFWS7hWgTz UZUQYlF3027HT7mfizp/SqnKt3cuQrHztSlT7CnR3+U4RX76xavZMiJM9LevDw7k x/n4jcFSNww0LtP3wlK3MG/1ZFSfjXzZkU/fB7a34h6GgcIgfcKMVP79Guxg/e1v 3DnR2hDM9vEuuL/5Y03VKGbjSszdBVi01U0kNzbqogcbN1D66LfIk3FFiJIN1/RF TxBGKGZFqOIlk/hQ7h8X2fYriXoh7ED2dvYvvesAp9hJUtj5LMDcgZ7RQNYqIKjT XpK5EzQumBbaGg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:01:18 2025 by rpki-client