This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json) Hash identifier: lMTijNstj13EWpoDmuaOO3zDhOWwj1cdcsscUOLAaaI= Subject key identifier: AB:22:18:2C:26:39:29:C2:BB:98:57:39:46:0B:38:C1:5B:AF:C5:CB Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Certificate serial: 019AF19B93EC8A9EE561DB852D8CCA1870AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft Manifest number: 08EE Signing time: Sat 06 Dec 2025 03:01:36 +0000 Manifest this update: Sat 06 Dec 2025 03:01:36 +0000 Manifest next update: Sun 07 Dec 2025 03:01:36 +0000 Files and hashes: 1: 9ZZlEoJ6DOwFDIJbfzBhtXucSCo.roa (hash: e3MsAliQl7R+w6WCs9Je3nF/3YOrMW2JU+QDq2FQ+FM=) 2: R14JRNPcrfV0rrLdubWUIPUSays.roa (hash: L2tnewN6o1+2heeeXuy5U+OiRrBHj2luH4JTHLPaOKE=) 3: Yz1nqnWdktBLCf-4upLjmxtc2c4.roa (hash: J/e8pwliu2ZJzstQArsqHThwEBlwW9xmmljRrojzK28=) 4: cPyQ54eHZNRhOo_g5NkIJCYJuFs.roa (hash: c5YmCvHhLyzqtoi7Yd/RgqKsKk6lvDCNHO1nQEKzWWw=) 5: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: rCoAsdlHzHwbVvCPs3TP1A1V19JHyZpyG7ygy9vkkNg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:93:ec:8a:9e:e5:61:db:85:2d:8c:ca:18:70:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Validity Not Before: Dec 6 03:01:36 2025 GMT Not After : Dec 7 03:01:36 2025 GMT Subject: CN=ab22182c263929c2bb985739460b38c15bafc5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f8:6b:d9:06:16:fa:8e:9c:d2:ba:16:f0:04: 36:31:b9:77:45:46:ad:3a:63:7f:51:99:c2:23:66: e0:00:09:3e:dd:24:4c:c9:a9:79:6f:ba:7d:67:2e: 1f:02:a8:9a:c1:f9:7b:9b:a1:9a:43:f3:e1:a0:de: f4:4d:1a:fb:c0:4f:69:70:59:35:4c:c2:81:91:61: 15:2a:39:fb:70:a9:70:cd:7d:b0:74:86:03:1c:3e: 9d:0f:bc:ef:19:74:d6:4d:3a:11:af:bd:c0:fb:a7: ab:d9:18:e1:e1:d3:60:12:59:be:76:8d:68:18:db: 9f:07:c2:1d:11:13:41:57:36:3c:77:18:88:f2:f4: a7:57:d9:a8:fc:b3:37:5a:ec:12:0e:b1:2a:c8:7f: 81:41:20:58:5d:57:ee:1a:6a:17:29:72:2a:30:31: f2:00:a9:0c:5a:d9:e5:20:25:f4:44:24:bd:14:94: 86:e9:4b:57:89:69:82:2d:cb:24:cd:26:97:3a:73: 67:09:21:c6:af:6d:f0:37:6e:6e:4a:ec:17:39:1f: c0:20:f8:4b:72:d8:98:64:2d:5e:f4:79:eb:86:a4: 52:61:19:4c:fb:fd:47:49:96:d2:8e:45:72:d6:13: 0f:dc:0b:0a:3a:b6:7e:12:d5:33:97:c1:25:de:cf: af:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:22:18:2C:26:39:29:C2:BB:98:57:39:46:0B:38:C1:5B:AF:C5:CB X509v3 Authority Key Identifier: keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:cb:74:72:f2:48:34:2f:d6:02:a5:21:fc:73:05:ab:49:b9: 75:9d:2d:76:33:0d:f9:da:46:1a:53:ec:2b:b5:0c:dd:57:af: 74:15:a8:57:17:e0:60:56:cc:ee:09:1c:f6:53:c9:8d:c7:f4: d0:dc:78:35:1f:bf:32:87:99:5f:3e:1d:f2:f8:7d:74:dd:00: a3:de:95:61:d6:3d:ec:ce:da:0f:49:e2:c6:2d:bf:6e:64:74: 10:dd:44:77:d7:1b:2c:17:db:0b:a6:51:11:81:bb:b3:84:bf: e4:d1:f8:13:c9:6d:9f:c9:46:29:9c:c9:fa:14:1b:51:f5:bc: d4:66:e0:0b:f3:2a:3b:d7:2a:26:de:d1:c4:d7:ff:10:53:ef: 2b:e4:38:5f:4f:20:3c:42:be:79:80:a5:8a:4d:e5:c3:37:e4: bc:60:d7:d6:14:a3:d6:75:14:21:76:3f:b7:06:b3:2d:a2:92: 6d:8d:df:c3:1f:c2:de:51:d9:4d:59:24:c8:c9:71:5a:bf:e0: 4d:ab:5d:94:49:27:71:e5:1d:8c:fe:81:49:a9:2b:35:2f:b6: e7:6e:2a:7a:f8:87:80:10:19:7c:ea:e9:04:7f:d3:8d:c1:40: bf:a0:a0:55:8a:b3:24:2f:2b:d1:5e:47:7b:f0:34:95:78:9d: 8e:dc:a9:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5Psip7lYduFLYzKGHCtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDcwYWYwZDg5ZDc4NWJhMThiYTYxN2RjMDllM2Y3MmM1 OTk2ZjMwHhcNMjUxMjA2MDMwMTM2WhcNMjUxMjA3MDMwMTM2WjAzMTEwLwYDVQQD EyhhYjIyMTgyYzI2MzkyOWMyYmI5ODU3Mzk0NjBiMzhjMTViYWZjNWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPhr2QYW+o6c0roW8AQ2Mbl3RUat OmN/UZnCI2bgAAk+3SRMyal5b7p9Zy4fAqiawfl7m6GaQ/PhoN70TRr7wE9pcFk1 TMKBkWEVKjn7cKlwzX2wdIYDHD6dD7zvGXTWTToRr73A+6er2Rjh4dNgElm+do1o GNufB8IdERNBVzY8dxiI8vSnV9mo/LM3WuwSDrEqyH+BQSBYXVfuGmoXKXIqMDHy AKkMWtnlICX0RCS9FJSG6UtXiWmCLcskzSaXOnNnCSHGr23wN25uSuwXOR/AIPhL ctiYZC1e9HnrhqRSYRlM+/1HSZbSjkVy1hMP3AsKOrZ+EtUzl8El3s+vrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKsiGCwmOSnCu5hXOUYLOMFbr8XLMB8GA1UdIwQY MBaAFIRHCvDYnXhboYumF9wJ4/csWZbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDIt ZTc2ZTNlMjkzZTAyLzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDItZTc2ZTNlMjkzZTAy LzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUMt0cvJI NC/WAqUh/HMFq0m5dZ0tdjMN+dpGGlPsK7UM3VevdBWoVxfgYFbM7gkc9lPJjcf0 0Nx4NR+/MoeZXz4d8vh9dN0Ao96VYdY97M7aD0nixi2/bmR0EN1Ed9cbLBfbC6ZR EYG7s4S/5NH4E8ltn8lGKZzJ+hQbUfW81GbgC/MqO9cqJt7RxNf/EFPvK+Q4X08g PEK+eYClik3lwzfkvGDX1hSj1nUUIXY/twazLaKSbY3fwx/C3lHZTVkkyMlxWr/g TatdlEknceUdjP6BSakrNS+2524qeviHgBAZfOrpBH/TjcFAv6CgVYqzJC8r0V5H e/A0lXidjtypVQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:06:15 2025 by rpki-client