This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json) Hash identifier: Be6ZbFCLS8XEX7RvLPFBJI5XUazsxXlBJhBvdYm4JTc= Subject key identifier: 55:10:DF:FC:69:D1:E3:D7:00:65:06:50:3C:27:31:E6:54:FD:C9:73 Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed Certificate serial: 019B269BC81238DD8911E911BC8B7696AAA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft Manifest number: 178B Signing time: Tue 16 Dec 2025 10:01:42 +0000 Manifest this update: Tue 16 Dec 2025 10:01:42 +0000 Manifest next update: Wed 17 Dec 2025 10:01:42 +0000 Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=) 2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: TmzObO55AOkYUMFFcXKvkvQXJR8VO7u7uZoWozZ+448=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 10:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:9b:c8:12:38:dd:89:11:e9:11:bc:8b:76:96:aa:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed Validity Not Before: Dec 16 10:01:42 2025 GMT Not After : Dec 17 10:01:42 2025 GMT Subject: CN=5510dffc69d1e3d7006506503c2731e654fdc973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:58:91:42:59:4a:59:b3:8c:1e:40:2b:38:d9: 61:1e:63:c7:28:a7:59:a3:32:26:33:2c:98:a9:29: a4:d6:04:77:18:9a:5b:45:e3:ac:58:d8:c9:21:bd: e3:b0:9b:98:54:80:a2:37:6d:39:57:fb:9d:29:64: 70:61:61:34:b0:16:66:d2:d8:de:52:86:c7:0f:d1: 93:d7:bd:73:f0:8f:48:2c:60:5a:a9:03:b6:05:9e: a6:36:2d:11:7b:62:ca:50:31:fe:98:67:0d:8c:d3: c8:b4:b9:12:9b:eb:15:4c:f4:01:67:5a:39:4f:38: 1d:f8:b1:e0:9c:9a:0f:eb:3c:19:df:47:fb:cd:52: f5:fc:4c:b4:cd:d3:1e:be:f9:5d:2c:06:47:7f:fa: 52:41:ac:cc:6b:4a:f0:27:f3:3c:01:af:eb:f7:0a: 9c:f2:ef:d4:f6:c7:1b:88:40:21:7d:24:5a:cf:2b: 9e:c2:ef:93:27:0f:fe:c7:82:db:51:40:f9:5b:fe: eb:23:be:53:68:7c:1a:54:6b:72:45:62:6f:43:5f: 4b:14:45:96:42:9c:17:74:ba:be:05:54:e9:12:62: f5:61:5d:e7:8f:44:fd:82:bc:e4:d0:6d:2b:0e:2b: fe:04:20:ac:55:4c:87:c0:ca:6c:e6:91:c0:32:bb: f9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:10:DF:FC:69:D1:E3:D7:00:65:06:50:3C:27:31:E6:54:FD:C9:73 X509v3 Authority Key Identifier: keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:c5:01:80:87:27:87:71:98:95:61:4e:57:d3:51:45:4b:b0: 25:85:b4:5b:13:56:4a:3b:65:6d:8e:ee:81:d9:f4:23:95:9b: 71:00:42:86:08:91:88:b9:80:76:69:63:d3:11:66:2e:ab:1f: d5:e0:24:9a:5f:c4:52:77:54:58:e1:c8:11:fe:a4:e1:42:99: ab:54:62:aa:be:31:15:73:e5:a3:c8:37:1c:7b:b2:09:e2:fb: c9:e4:58:c9:77:b3:d9:a4:8c:65:5d:fc:32:95:74:8a:3c:89: 75:14:0d:04:73:4e:1e:ee:82:e5:ff:bc:58:c4:b8:21:2b:63: 59:45:4f:4f:a9:cc:59:d9:bc:b6:b4:f0:b4:c1:26:6b:7b:78: de:a4:c5:e9:6f:7e:6e:fd:79:e1:9d:6f:0c:2e:50:bd:9e:16: 7a:f2:6e:87:95:70:cf:0a:88:35:c3:5d:e9:2e:aa:5d:b8:02: e8:16:36:ee:71:d1:a5:c6:72:a3:59:a5:f5:7f:f6:4e:df:ae: 2a:75:05:b9:d3:c6:3a:65:0b:f9:9b:86:c0:c5:ad:2b:04:3d: c5:21:d1:1f:b5:94:ec:0b:e6:6c:2b:97:5f:5d:3a:d2:73:c0: 65:1e:54:76:fa:f0:e8:77:0c:97:20:15:a3:ec:f5:ee:e1:5e: 7c:57:2c:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmm8gSON2JEekRvIt2lqqnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMjFjNTQzODQ0YzQxN2Y2MWFkNzkzOTI0NGQzYjc1OWMy YTQzZWQwHhcNMjUxMjE2MTAwMTQyWhcNMjUxMjE3MTAwMTQyWjAzMTEwLwYDVQQD Eyg1NTEwZGZmYzY5ZDFlM2Q3MDA2NTA2NTAzYzI3MzFlNjU0ZmRjOTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1iRQllKWbOMHkArONlhHmPHKKdZ ozImMyyYqSmk1gR3GJpbReOsWNjJIb3jsJuYVICiN205V/udKWRwYWE0sBZm0tje UobHD9GT171z8I9ILGBaqQO2BZ6mNi0Re2LKUDH+mGcNjNPItLkSm+sVTPQBZ1o5 Tzgd+LHgnJoP6zwZ30f7zVL1/Ey0zdMevvldLAZHf/pSQazMa0rwJ/M8Aa/r9wqc 8u/U9scbiEAhfSRazyuewu+TJw/+x4LbUUD5W/7rI75TaHwaVGtyRWJvQ19LFEWW QpwXdLq+BVTpEmL1YV3nj0T9grzk0G0rDiv+BCCsVUyHwMps5pHAMrv5fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUQ3/xp0ePXAGUGUDwnMeZU/clzMB8GA1UdIwQY MBaAFB8hxUOETEF/Ya15OSRNO3WcKkPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2Qt YjhjNDg1M2U0MmJjLzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2QtYjhjNDg1M2U0MmJj LzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMMUBgIcn h3GYlWFOV9NRRUuwJYW0WxNWSjtlbY7ugdn0I5WbcQBChgiRiLmAdmlj0xFmLqsf 1eAkml/EUndUWOHIEf6k4UKZq1Riqr4xFXPlo8g3HHuyCeL7yeRYyXez2aSMZV38 MpV0ijyJdRQNBHNOHu6C5f+8WMS4IStjWUVPT6nMWdm8trTwtMEma3t43qTF6W9+ bv154Z1vDC5QvZ4WevJuh5VwzwqINcNd6S6qXbgC6BY27nHRpcZyo1ml9X/2Tt+u KnUFudPGOmUL+ZuGwMWtKwQ9xSHRH7WU7AvmbCuXX1060nPAZR5Udvrw6HcMlyAV o+z17uFefFcs5A== -----END CERTIFICATE-----Generated at Tue Dec 16 16:06:05 2025 by rpki-client