This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json) Hash identifier: tg+D6uNJcS10X32+7dqLErLlhrq9/ypJsj4ksqxTNj4= Subject key identifier: B6:99:86:F4:C3:3A:95:2C:C1:CD:B7:7A:B1:BF:54:72:A1:AB:95:52 Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b Certificate serial: 019AF352522CA47C0B880A3F67E585F0A2E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft Manifest number: 0C81 Signing time: Sat 06 Dec 2025 11:00:49 +0000 Manifest this update: Sat 06 Dec 2025 11:00:49 +0000 Manifest next update: Sun 07 Dec 2025 11:00:49 +0000 Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: p6fkXbYwwTQs/y1guRIiaJgW9y4q8SROLe15DScDUV4=) 2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:52:2c:a4:7c:0b:88:0a:3f:67:e5:85:f0:a2:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b Validity Not Before: Dec 6 11:00:49 2025 GMT Not After : Dec 7 11:00:49 2025 GMT Subject: CN=b69986f4c33a952cc1cdb77ab1bf5472a1ab9552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8e:9e:b4:6b:90:ac:82:b1:87:f2:a0:ab:6e: 51:51:41:02:ba:c7:28:bf:85:d6:49:b6:1d:ac:25: 77:da:69:75:73:3e:2c:8d:be:0f:78:6b:52:45:8b: 59:33:fb:96:06:30:01:19:a6:90:39:38:6b:85:07: 7d:b6:0d:f2:55:7b:2a:ab:37:81:fc:2a:2e:1d:49: 37:a5:de:da:7e:ec:0d:88:a0:af:5f:d3:7c:fa:a1: c8:ef:4b:ed:ba:07:63:8b:d0:1b:67:3e:18:82:eb: 7a:5b:c0:70:30:b7:06:99:ca:b3:5e:8e:cd:7d:7c: 04:50:36:b9:95:d6:32:53:c3:8e:a6:16:33:5d:6c: 96:80:a0:b3:66:6d:c8:8b:ff:2e:db:9c:94:0e:b1: 7d:41:e2:e0:1a:cc:c4:5f:00:35:3b:43:a8:64:a4: 46:53:89:ad:e5:ed:9c:07:4d:fd:dd:c9:f7:cc:04: 17:d2:7c:2c:cd:a6:6b:bc:9e:bd:83:2e:c1:df:67: ce:38:94:5b:79:67:9f:c9:04:4e:4f:35:58:36:e2: 0d:38:6c:26:ca:a1:53:32:f7:2a:06:03:06:39:03: 52:33:b3:4c:b8:6a:3b:47:e7:ce:e5:e8:36:8e:30: e3:48:c4:b4:4a:aa:ac:66:84:1c:65:e0:e1:71:e9: a3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:99:86:F4:C3:3A:95:2C:C1:CD:B7:7A:B1:BF:54:72:A1:AB:95:52 X509v3 Authority Key Identifier: keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:32:d9:46:f1:90:b8:9c:b9:a5:0b:c5:b9:41:43:68:ae:a3: 23:8b:5a:00:56:84:02:26:e2:09:98:7d:34:fa:91:14:e9:89: 83:1b:9a:1a:91:45:5f:8b:64:02:e2:69:57:94:a6:53:5a:50: 78:f1:4a:27:3d:8e:00:e3:02:50:0b:27:62:91:29:3c:a7:43: da:0a:1a:d8:c3:a4:fe:32:ba:21:f5:a5:d3:af:a5:fd:d9:e0: a1:01:61:81:c6:d5:0a:82:c1:3e:71:c1:15:b1:1a:2a:da:35: 0d:af:d3:5c:a5:bb:62:11:ae:09:3c:48:12:6b:01:05:40:5f: 5d:16:7a:d9:0f:31:14:ac:21:bd:76:f8:1f:72:75:04:f5:24: e0:04:8a:24:74:89:81:f8:db:2f:1f:29:8d:09:d7:c6:52:61: c6:68:47:9a:ed:9f:3f:64:30:9f:20:07:69:db:9e:45:78:47: af:ee:ac:05:71:80:87:22:9b:0d:3c:21:48:24:9a:de:64:49: 4e:cd:46:70:14:67:97:73:06:38:e9:c0:be:8e:d8:ae:c4:0c: 40:27:c6:94:5b:33:4f:9b:3a:e2:9e:8b:0e:54:6d:11:6f:01: 07:9b:fd:6d:c6:75:f0:39:4a:61:51:b5:46:1c:83:fa:0a:78: 58:36:03:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUlIspHwLiAo/Z+WF8KLmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ODYwMjczZWIyNzE5MjJiOWY3ZWM4ZjRhNTkxMDE2MzU2 ZDczMmIwHhcNMjUxMjA2MTEwMDQ5WhcNMjUxMjA3MTEwMDQ5WjAzMTEwLwYDVQQD EyhiNjk5ODZmNGMzM2E5NTJjYzFjZGI3N2FiMWJmNTQ3MmExYWI5NTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzY6etGuQrIKxh/Kgq25RUUECusco v4XWSbYdrCV32ml1cz4sjb4PeGtSRYtZM/uWBjABGaaQOThrhQd9tg3yVXsqqzeB /CouHUk3pd7afuwNiKCvX9N8+qHI70vtugdji9AbZz4Ygut6W8BwMLcGmcqzXo7N fXwEUDa5ldYyU8OOphYzXWyWgKCzZm3Ii/8u25yUDrF9QeLgGszEXwA1O0OoZKRG U4mt5e2cB0393cn3zAQX0nwszaZrvJ69gy7B32fOOJRbeWefyQROTzVYNuINOGwm yqFTMvcqBgMGOQNSM7NMuGo7R+fO5eg2jjDjSMS0SqqsZoQcZeDhcemjyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLaZhvTDOpUswc23erG/VHKhq5VSMB8GA1UdIwQY MBaAFIWGAnPrJxkiuffsj0pZEBY1bXMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYt OTkwOWVlMmYzM2IyLzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYtOTkwOWVlMmYzM2Iy LzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJzLZRvGQ uJy5pQvFuUFDaK6jI4taAFaEAibiCZh9NPqRFOmJgxuaGpFFX4tkAuJpV5SmU1pQ ePFKJz2OAOMCUAsnYpEpPKdD2goa2MOk/jK6IfWl06+l/dngoQFhgcbVCoLBPnHB FbEaKto1Da/TXKW7YhGuCTxIEmsBBUBfXRZ62Q8xFKwhvXb4H3J1BPUk4ASKJHSJ gfjbLx8pjQnXxlJhxmhHmu2fP2QwnyAHadueRXhHr+6sBXGAhyKbDTwhSCSa3mRJ Ts1GcBRnl3MGOOnAvo7YrsQMQCfGlFszT5s64p6LDlRtEW8BB5v9bcZ18DlKYVG1 RhyD+gp4WDYDlA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:36:16 2025 by rpki-client