This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json) Hash identifier: CW73uLkyzJSh0oRfby3ILkAqrUbK2HIgrgJXH4t5flY= Subject key identifier: A8:35:BA:F5:90:EB:37:71:6A:B9:8E:AD:8F:ED:A0:4A:54:C6:A6:19 Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38 Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138 Certificate serial: 019AF23FDC98599D09B03E154796A7DAADFD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft Manifest number: 0384 Signing time: Sat 06 Dec 2025 06:01:02 +0000 Manifest this update: Sat 06 Dec 2025 06:01:02 +0000 Manifest next update: Sun 07 Dec 2025 06:01:02 +0000 Files and hashes: 1: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: hJ2SKHRrBy2Emci2s0tQnX1DC4BtqwWzYqjzPbD1nxo=) 2: uLnIOwRkGxrsBbDo0gQE4-hCZ48.roa (hash: s37fBcagBo3TMxYLMpYCF62YuISi5XxqQMy7wxYlEsQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:dc:98:59:9d:09:b0:3e:15:47:96:a7:da:ad:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138 Validity Not Before: Dec 6 06:01:02 2025 GMT Not After : Dec 7 06:01:02 2025 GMT Subject: CN=a835baf590eb37716ab98ead8feda04a54c6a619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:36:85:6d:8b:76:2a:fe:c8:ad:a2:21:05: 51:38:a6:21:10:b5:94:03:73:22:03:4e:c1:bf:ba: 72:3e:fa:c8:df:38:47:bd:4d:26:da:fd:46:b1:27: 5f:7f:17:dd:6d:06:2b:88:fb:db:8a:0a:39:cb:05: 32:76:2f:6d:6e:26:07:aa:07:45:99:38:52:8c:ee: 06:d5:a6:36:3a:ef:6b:d7:50:f1:03:79:ce:0c:12: 86:96:eb:13:ff:ae:4d:f1:99:4f:ec:d4:f3:95:d3: 20:d7:77:e1:3d:eb:91:16:c9:4c:8c:62:b6:58:f6: f3:00:4c:8d:92:fc:e4:4b:8a:b4:39:b8:f8:16:7e: 12:47:46:38:45:e0:08:d2:53:8c:1b:12:94:e0:02: 45:b1:ab:68:87:42:44:2e:6f:ee:bd:0e:ff:fc:42: c3:53:69:43:f0:1a:c5:2b:4d:d9:83:46:db:3c:c6: 3d:00:01:71:6c:df:04:68:8e:f8:c0:57:4e:32:a9: d3:87:8a:d1:53:56:46:9f:b9:98:8c:ff:e9:c7:af: c2:94:53:e6:68:93:bc:34:ac:8f:7b:dc:8f:2d:75: 18:9e:17:84:ac:08:33:f0:2b:c6:2d:08:63:39:66: 20:eb:e8:f1:e9:1d:8f:68:39:ec:3a:64:89:54:23: f1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:35:BA:F5:90:EB:37:71:6A:B9:8E:AD:8F:ED:A0:4A:54:C6:A6:19 X509v3 Authority Key Identifier: keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:d9:28:36:1e:ed:f2:43:4f:f2:e9:66:0b:f2:17:9e:f2:f0: 01:76:66:79:b3:93:2d:67:57:8e:f2:e4:25:d6:78:3e:d7:34: 22:d4:cc:22:eb:82:cb:27:b6:d2:50:be:94:00:9b:35:52:fd: 6c:bf:ee:68:82:e0:8b:40:13:a0:85:84:34:5d:f7:66:3c:97: 80:43:e8:78:34:f2:d1:c5:62:29:16:57:15:83:18:7e:78:ea: d3:86:be:41:f8:2d:0a:47:9d:ae:b7:f6:dc:9a:e7:5a:1b:8d: 20:14:a2:a1:18:ad:b8:2b:96:8a:f0:6f:0e:24:90:be:e5:91: 74:d7:5e:a3:1f:0a:1e:57:e6:72:77:29:23:a2:22:82:1b:15: 2b:2f:46:27:14:c3:b6:5f:82:43:94:b8:fa:f9:b0:f6:54:65: 0e:3a:c1:7f:24:2b:bb:f3:6b:20:06:8b:bf:f6:60:aa:a5:bf: 69:cf:78:d7:2c:88:50:58:48:0c:cf:b6:99:6b:aa:3a:38:9a: 0e:68:a7:cb:25:4b:59:bf:b5:82:d6:ae:37:4c:53:7f:35:20: 7c:89:bd:e3:6b:04:5f:a4:3a:ec:d5:88:1e:0a:a9:09:93:c6: 98:2e:3e:31:43:89:77:0a:14:a7:d9:b2:1a:6b:df:1a:7f:da: c1:b4:6f:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP9yYWZ0JsD4VR5an2q39MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3Mjc3N2YzYWJlNzY1ZmY4OGIzZThlNmRiODNkMjdjM2M2 MjYxMzgwHhcNMjUxMjA2MDYwMTAyWhcNMjUxMjA3MDYwMTAyWjAzMTEwLwYDVQQD EyhhODM1YmFmNTkwZWIzNzcxNmFiOThlYWQ4ZmVkYTA0YTU0YzZhNjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2No2hW2Ldir+yK2iIQVROKYhELWU A3MiA07Bv7pyPvrI3zhHvU0m2v1GsSdffxfdbQYriPvbigo5ywUydi9tbiYHqgdF mThSjO4G1aY2Ou9r11DxA3nODBKGlusT/65N8ZlP7NTzldMg13fhPeuRFslMjGK2 WPbzAEyNkvzkS4q0Obj4Fn4SR0Y4ReAI0lOMGxKU4AJFsatoh0JELm/uvQ7//ELD U2lD8BrFK03Zg0bbPMY9AAFxbN8EaI74wFdOMqnTh4rRU1ZGn7mYjP/px6/ClFPm aJO8NKyPe9yPLXUYnheErAgz8CvGLQhjOWYg6+jx6R2PaDnsOmSJVCPx+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKg1uvWQ6zdxarmOrY/toEpUxqYZMB8GA1UdIwQY MBaAFIcnd/Or52X/iLPo5tuD0nw8YmE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlkMzg2dm5aZi1Jcy1qbTI0UFNmRHhpWVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83YTdlZjYtMzcyYS00Yjc0LTkyZjIt NDFiNDY4ZjNhYWIwLzEvaHlkMzg2dm5aZi1Jcy1qbTI0UFNmRHhpWVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC83YTdlZjYtMzcyYS00Yjc0LTkyZjItNDFiNDY4ZjNhYWIw LzEvaHlkMzg2dm5aZi1Jcy1qbTI0UFNmRHhpWVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPNkoNh7t 8kNP8ulmC/IXnvLwAXZmebOTLWdXjvLkJdZ4Ptc0ItTMIuuCyye20lC+lACbNVL9 bL/uaILgi0AToIWENF33ZjyXgEPoeDTy0cViKRZXFYMYfnjq04a+QfgtCkedrrf2 3JrnWhuNIBSioRituCuWivBvDiSQvuWRdNdeox8KHlfmcncpI6IighsVKy9GJxTD tl+CQ5S4+vmw9lRlDjrBfyQru/NrIAaLv/ZgqqW/ac941yyIUFhIDM+2mWuqOjia DminyyVLWb+1gtauN0xTfzUgfIm942sEX6Q67NWIHgqpCZPGmC4+MUOJdwoUp9my GmvfGn/awbRvXg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:05 2025 by rpki-client