This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json) Hash identifier: /ShLnUc355GH1a7kWlThe8CQ/DSSEpKmU9Olh/QjwgE= Subject key identifier: 7A:A1:4B:21:8F:88:5C:0F:EA:E2:8A:27:D0:40:7A:13:EC:BD:80:47 Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f Certificate serial: 019B35A02205CDB76875ACD59089F0818932 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft Manifest number: 04D5 Signing time: Fri 19 Dec 2025 08:00:45 +0000 Manifest this update: Fri 19 Dec 2025 08:00:45 +0000 Manifest next update: Sat 20 Dec 2025 08:00:45 +0000 Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=) 2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: EKaCytiuKd7poJYaY/7AR/S/S+cKxLkZVNFxC0cN5kc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a0:22:05:cd:b7:68:75:ac:d5:90:89:f0:81:89:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f Validity Not Before: Dec 19 08:00:45 2025 GMT Not After : Dec 20 08:00:45 2025 GMT Subject: CN=7aa14b218f885c0feae28a27d0407a13ecbd8047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bc:a0:c5:46:59:68:b1:6d:78:20:63:0e:3c: 11:d6:20:1b:66:88:18:e7:e1:f9:04:cd:de:c1:15: a3:c8:a9:41:9a:81:d8:64:9e:7d:80:ef:7e:87:cc: 94:71:39:83:f7:9c:cf:49:89:45:e7:f6:b1:e8:4c: 2e:a4:a6:e8:7b:25:e4:27:a1:e8:16:b7:c5:d7:c1: 63:bd:f7:b9:c2:ad:9d:e0:75:a9:1d:f0:2b:a0:40: a7:c3:6e:35:66:8a:90:0e:60:b0:d1:75:4e:76:60: fe:3d:66:df:9c:9c:32:34:d8:64:10:5b:5e:e4:81: cb:56:90:34:77:34:b8:14:36:cc:f3:ac:20:14:ab: 2f:db:6d:39:d8:92:27:38:83:09:6f:85:ce:26:3a: e8:0b:be:ba:d3:e5:24:d9:bd:47:4a:08:df:4a:26: 6e:a7:1e:ac:27:5f:dd:c7:c4:46:26:49:eb:80:43: 60:31:19:30:e5:79:91:1b:bc:60:98:7f:bb:a9:c2: ef:bf:3c:72:0e:10:88:e6:39:fd:a3:6f:b1:64:b6: 34:8a:c6:4f:73:1c:4e:33:5e:ae:2e:ba:d8:92:c4: 1a:d9:f0:c9:56:3f:04:b2:5a:09:21:03:e4:b4:ae: 70:3e:7a:49:b2:dd:2d:65:25:c8:f1:23:c5:1c:33: 06:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A1:4B:21:8F:88:5C:0F:EA:E2:8A:27:D0:40:7A:13:EC:BD:80:47 X509v3 Authority Key Identifier: keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:43:0a:c2:c4:34:ef:99:e1:88:55:22:32:8d:ce:2d:53:0b: da:5a:c5:dd:5a:fc:ca:d2:b9:85:91:23:81:e2:8b:30:8a:60: b1:c3:bd:95:b0:54:9c:c8:e7:4c:2c:7a:4a:d5:53:06:c2:1f: 6c:4c:dd:09:8c:3e:74:3f:0c:f3:e3:85:f0:b2:5e:0c:d7:82: c9:98:62:d2:23:88:5d:f4:34:3d:5b:c3:0d:c6:8c:55:0d:4f: b2:59:4f:a9:42:c3:0c:d5:fd:8f:70:59:cd:ac:ee:ea:1e:3a: 88:1d:ef:11:07:be:de:dc:e6:c7:38:b9:87:c1:fc:41:e4:9a: 70:6f:72:d1:53:2d:e2:6c:06:63:57:7d:75:d8:e5:79:16:85: 27:28:98:46:82:52:50:3b:de:59:3f:04:59:31:a3:24:57:c5: de:38:98:d3:e3:0a:70:e7:c5:41:77:d2:a3:6c:7f:e5:88:ed: b1:1b:f2:90:c0:3b:2a:78:de:e7:c9:58:57:0c:f9:0b:52:04: d6:b8:a0:7b:48:bf:36:59:96:d9:bd:48:f4:79:fe:1d:53:4f: a1:ac:cd:34:0a:0b:02:0d:87:e6:13:a8:82:49:de:c8:b0:e2: 86:01:e1:64:6b:12:ed:ec:ea:3b:f7:7b:e0:0d:53:11:b5:d6: 7c:e3:65:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oCIFzbdodazVkInwgYkyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1Njg0MDcwNDdhNjJlNjQ4MzAwYzUxODJhMjkzNTNmZjU4 ZWIwNWYwHhcNMjUxMjE5MDgwMDQ1WhcNMjUxMjIwMDgwMDQ1WjAzMTEwLwYDVQQD Eyg3YWExNGIyMThmODg1YzBmZWFlMjhhMjdkMDQwN2ExM2VjYmQ4MDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbygxUZZaLFteCBjDjwR1iAbZogY 5+H5BM3ewRWjyKlBmoHYZJ59gO9+h8yUcTmD95zPSYlF5/ax6EwupKboeyXkJ6Ho FrfF18Fjvfe5wq2d4HWpHfAroECnw241ZoqQDmCw0XVOdmD+PWbfnJwyNNhkEFte 5IHLVpA0dzS4FDbM86wgFKsv22052JInOIMJb4XOJjroC7660+Uk2b1HSgjfSiZu px6sJ1/dx8RGJknrgENgMRkw5XmRG7xgmH+7qcLvvzxyDhCI5jn9o2+xZLY0isZP cxxOM16uLrrYksQa2fDJVj8EsloJIQPktK5wPnpJst0tZSXI8SPFHDMGJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHqhSyGPiFwP6uKKJ9BAehPsvYBHMB8GA1UdIwQY MBaAFIVoQHBHpi5kgwDFGCopNT/1jrBfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjIt ZWQzZTk4YzY1NmUxLzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjItZWQzZTk4YzY1NmUx LzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF0MKwsQ0 75nhiFUiMo3OLVML2lrF3Vr8ytK5hZEjgeKLMIpgscO9lbBUnMjnTCx6StVTBsIf bEzdCYw+dD8M8+OF8LJeDNeCyZhi0iOIXfQ0PVvDDcaMVQ1PsllPqULDDNX9j3BZ zazu6h46iB3vEQe+3tzmxzi5h8H8QeSacG9y0VMt4mwGY1d9ddjleRaFJyiYRoJS UDveWT8EWTGjJFfF3jiY0+MKcOfFQXfSo2x/5YjtsRvykMA7Knje58lYVwz5C1IE 1rige0i/NlmW2b1I9Hn+HVNPoazNNAoLAg2H5hOogkneyLDihgHhZGsS7ezqO/d7 4A1TEbXWfONliw== -----END CERTIFICATE-----Generated at Fri Dec 19 14:18:59 2025 by rpki-client