This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json) Hash identifier: 074kzvSZUT3co8As51RlXHzsEdK2B86PBaU5DGOFkmA= Subject key identifier: 2A:E7:B3:5C:ED:AC:16:E2:DC:DE:88:4C:FE:C8:58:21:0A:92:48:BF Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9 Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9 Certificate serial: 019AF31C3A8B45B3BD7318BBD44441134358 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft Manifest number: 11EA Signing time: Sat 06 Dec 2025 10:01:44 +0000 Manifest this update: Sat 06 Dec 2025 10:01:44 +0000 Manifest next update: Sun 07 Dec 2025 10:01:44 +0000 Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: y4villBiiQpfZbXfZCnSfk9hmcddFfprUpSjufI5VWY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:3a:8b:45:b3:bd:73:18:bb:d4:44:41:13:43:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9 Validity Not Before: Dec 6 10:01:44 2025 GMT Not After : Dec 7 10:01:44 2025 GMT Subject: CN=2ae7b35cedac16e2dcde884cfec858210a9248bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:5d:50:2d:8d:a6:1b:99:2d:a2:8f:2f:7e: 22:56:9d:58:07:48:31:89:4e:b2:2d:a4:80:86:3d: 6c:66:d8:c9:00:9e:9a:29:c0:24:b1:0e:6d:82:3e: 07:2a:6c:70:6f:ed:62:e5:b8:51:cf:21:fe:51:70: b5:fc:d9:37:df:51:8c:df:b7:35:0e:b5:eb:db:3d: 7a:08:2d:5c:81:37:e7:c3:86:2f:6f:28:55:46:04: 7f:87:26:81:87:0b:8e:f2:1f:c7:29:d6:0e:47:99: 2a:da:c5:f3:e0:04:ae:56:c4:4e:71:eb:e5:ec:e5: 83:ff:7b:0a:74:2b:c7:ae:5e:56:81:4d:68:c0:0a: 30:c6:e5:c2:d7:58:dd:fc:f5:8a:dc:e1:2d:87:26: 28:dd:a3:37:16:43:fe:10:e5:e6:7f:f0:1b:6f:e2: d4:6d:ab:b4:82:71:93:a5:49:39:c3:d8:46:c2:25: ca:a5:76:c0:ff:33:55:21:36:c6:7b:bd:93:82:36: 80:7e:45:c0:a6:32:e1:b2:53:80:6b:40:ab:30:f3: 6d:ba:de:b2:6b:7d:24:03:9e:60:2d:1a:26:ee:74: d1:b5:f3:ed:c6:73:21:02:e2:bb:92:ee:d3:df:86: ff:57:71:62:67:12:dc:e5:d4:4e:28:61:7c:1a:cb: 79:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E7:B3:5C:ED:AC:16:E2:DC:DE:88:4C:FE:C8:58:21:0A:92:48:BF X509v3 Authority Key Identifier: keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:fa:d3:14:fc:69:7f:33:fc:f0:1d:76:44:bc:e7:ff:30:45: bb:9d:b4:43:65:28:09:8d:dd:43:9a:b2:fa:68:ef:53:93:7b: a7:e2:87:93:72:56:0a:29:4b:6b:79:05:45:5f:2c:c2:b2:c3: 2c:7e:43:b1:55:2c:55:1a:80:05:28:1a:46:60:91:90:4f:c6: 7c:36:38:52:1e:07:d1:ce:c7:b9:ea:d8:7c:5d:6c:16:27:ba: d5:47:4b:70:0c:39:59:19:3e:38:00:9e:c1:cc:00:d3:e9:84: 10:89:25:49:da:9f:ed:d5:6e:40:0b:f6:b2:98:5a:fa:1b:14: 01:eb:d9:ec:fe:ec:69:fc:18:81:6e:18:83:4b:b2:a5:59:35: 6d:0c:ea:14:6b:03:ac:1d:ca:6a:90:96:02:f7:2f:25:db:f4: b1:24:a7:50:9c:7f:0c:e7:7c:b3:9a:e9:01:e2:ab:11:a7:c5: 57:f4:53:84:d7:99:03:ad:1f:40:81:02:2c:91:01:4f:7e:e6: 39:65:87:43:ef:e8:cf:31:ed:96:0d:82:07:d5:4e:ac:c8:fd: 26:8b:f8:b3:0f:77:06:04:44:f7:16:1b:fa:60:5b:f3:34:60: 96:e7:cf:cc:c4:54:76:42:03:92:cf:47:5a:4f:f2:4c:a8:c4: 42:27:a1:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHDqLRbO9cxi71ERBE0NYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MmNhYWU5ZjBmYjc5ZGVjNjg0NGJlYWNlOGMyMjFjZWY0 ZDMyYzkwHhcNMjUxMjA2MTAwMTQ0WhcNMjUxMjA3MTAwMTQ0WjAzMTEwLwYDVQQD EygyYWU3YjM1Y2VkYWMxNmUyZGNkZTg4NGNmZWM4NTgyMTBhOTI0OGJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUpdUC2NphuZLaKPL34iVp1YB0gx iU6yLaSAhj1sZtjJAJ6aKcAksQ5tgj4HKmxwb+1i5bhRzyH+UXC1/Nk331GM37c1 DrXr2z16CC1cgTfnw4YvbyhVRgR/hyaBhwuO8h/HKdYOR5kq2sXz4ASuVsROcevl 7OWD/3sKdCvHrl5WgU1owAowxuXC11jd/PWK3OEthyYo3aM3FkP+EOXmf/Abb+LU bau0gnGTpUk5w9hGwiXKpXbA/zNVITbGe72TgjaAfkXApjLhslOAa0CrMPNtut6y a30kA55gLRom7nTRtfPtxnMhAuK7ku7T34b/V3FiZxLc5dROKGF8Gst5vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCrns1ztrBbi3N6ITP7IWCEKkki/MB8GA1UdIwQY MBaAFIcsqunw+3nexoRL6s6MIhzvTTLJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEt ZTViMTY3MmQ0YjE3LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEtZTViMTY3MmQ0YjE3 LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQvrTFPxp fzP88B12RLzn/zBFu520Q2UoCY3dQ5qy+mjvU5N7p+KHk3JWCilLa3kFRV8swrLD LH5DsVUsVRqABSgaRmCRkE/GfDY4Uh4H0c7HuerYfF1sFie61UdLcAw5WRk+OACe wcwA0+mEEIklSdqf7dVuQAv2spha+hsUAevZ7P7safwYgW4Yg0uypVk1bQzqFGsD rB3KapCWAvcvJdv0sSSnUJx/DOd8s5rpAeKrEafFV/RThNeZA60fQIECLJEBT37m OWWHQ+/ozzHtlg2CB9VOrMj9Jov4sw93BgRE9xYb+mBb8zRglufPzMRUdkIDks9H Wk/yTKjEQiehUA== -----END CERTIFICATE-----Generated at Sat Dec 6 15:37:19 2025 by rpki-client