This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json) Hash identifier: yDMupqOnDE0+V3Pa0mH2ryKeO9IXafyF8mz+OAFVgVM= Subject key identifier: 3E:97:00:D1:1E:86:38:55:E6:2E:8C:D6:9B:6F:1E:49:F5:E7:B9:50 Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5 Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5 Certificate serial: 019AF4651D5A6CCFE3F6A0934C8F6A95B05F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft Manifest number: 0405 Signing time: Sat 06 Dec 2025 16:00:58 +0000 Manifest this update: Sat 06 Dec 2025 16:00:58 +0000 Manifest next update: Sun 07 Dec 2025 16:00:58 +0000 Files and hashes: 1: Nh0GqKuGF98gKb-Cwk1kMbr-cyA.roa (hash: aK8xZBnqjnIOBr0tWt4e6+4KcSJi3YeptqQiZQTdYjA=) 2: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: hJ/O6N5awwQ61MSFVBlDPaqFHG4oEAcKHT9wGvgPGyA=) 3: ppcuybJ2dVTx8Oi4Rb_BK3tcepQ.roa (hash: kVGDPxLEKz3xBW5mOWtq1nIn17YH7foWW8L0WvSguOY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:1d:5a:6c:cf:e3:f6:a0:93:4c:8f:6a:95:b0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5 Validity Not Before: Dec 6 16:00:58 2025 GMT Not After : Dec 7 16:00:58 2025 GMT Subject: CN=3e9700d11e863855e62e8cd69b6f1e49f5e7b950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:fc:5e:3b:c2:30:20:5e:ec:9e:ef:4e:e4:a0: 93:8d:94:86:a1:88:51:e3:0b:c7:23:35:1d:60:ba: db:29:a5:39:12:27:0e:36:ac:9a:b9:13:26:9c:9a: 6c:22:a9:7f:15:9f:30:2b:ef:07:0a:66:4f:41:c8: 3d:e5:b2:c8:86:9e:e5:aa:23:c0:0b:d6:a1:be:50: 05:e4:bb:4d:47:34:8c:ba:f7:6c:85:f3:64:02:33: 6b:ff:a6:64:6e:b4:fc:cd:0a:29:d7:85:9d:29:5c: eb:b0:91:38:46:6e:2d:b8:01:8f:18:51:73:56:0c: b0:e6:3a:ca:a1:7a:c5:a3:d7:16:3e:9d:8b:08:cc: 8e:f4:f6:a4:43:2f:e6:e0:9f:e6:10:79:2c:a6:ed: d7:e1:26:bc:71:b9:5e:b7:c9:60:74:4a:de:ae:c1: 81:9d:34:d1:eb:e2:6a:df:59:d1:b2:e9:66:b8:2e: ff:88:e2:ac:10:82:16:cd:6b:49:76:a1:d9:74:a5: 18:98:12:82:3b:7e:2b:37:2c:0c:b7:24:5a:c9:17: 4c:f8:87:59:f2:ab:9c:66:7d:1f:42:b1:d1:94:a4: 76:c2:51:5e:ab:72:86:dd:11:89:0c:99:f4:4d:f4: d8:50:ee:ff:fb:dd:84:bf:d0:cb:62:d3:be:13:c0: b3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:97:00:D1:1E:86:38:55:E6:2E:8C:D6:9B:6F:1E:49:F5:E7:B9:50 X509v3 Authority Key Identifier: keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:3f:4e:30:8f:92:15:5f:ad:32:a5:d9:42:27:c2:3c:bc:b1: 86:34:f6:17:2a:84:cd:99:4c:70:fa:a1:20:3c:66:6c:28:ba: ed:65:d6:70:1a:41:bc:79:8c:91:ef:b9:79:de:8e:a2:68:68: 3c:aa:63:1e:db:f6:d7:ef:b0:17:65:46:97:00:74:86:40:81: e5:92:77:66:2d:cf:85:34:cd:63:b6:40:5a:70:bb:bb:74:64: cf:59:80:c0:d9:7a:19:89:6a:a2:51:31:1e:b9:18:e0:57:76: dd:a8:e5:66:f0:7a:1d:ea:67:53:d6:1a:cb:53:76:13:35:96: f3:b2:19:6e:92:2a:02:6d:2b:1a:bc:30:1e:70:82:b6:47:b5: f2:c9:dd:b9:80:72:a3:17:7c:11:6c:09:aa:1b:ec:bd:ee:8e: ea:10:a4:56:00:a9:62:79:a0:79:d8:e4:74:41:70:fb:2e:57: e9:d2:c9:f8:8c:01:e0:a9:14:e1:4b:e6:b4:e1:73:c0:3a:3f: 6d:7a:96:2c:f5:18:93:a5:b9:1b:f2:e7:6a:23:6d:80:a4:97: 94:95:a7:6d:1c:99:39:9c:64:a2:f3:d0:4b:30:93:0a:49:97: c5:cb:a2:16:5e:ed:6d:91:f6:99:4e:3e:ac:05:15:60:63:45: c6:01:dd:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZR1abM/j9qCTTI9qlbBfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3OGFiYjI5OTc3YTY1YjE0MGNhY2I2ZTcyYWIyNGNlZGRk NGU4YzUwHhcNMjUxMjA2MTYwMDU4WhcNMjUxMjA3MTYwMDU4WjAzMTEwLwYDVQQD EygzZTk3MDBkMTFlODYzODU1ZTYyZThjZDY5YjZmMWU0OWY1ZTdiOTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivxeO8IwIF7snu9O5KCTjZSGoYhR 4wvHIzUdYLrbKaU5EicONqyauRMmnJpsIql/FZ8wK+8HCmZPQcg95bLIhp7lqiPA C9ahvlAF5LtNRzSMuvdshfNkAjNr/6ZkbrT8zQop14WdKVzrsJE4Rm4tuAGPGFFz Vgyw5jrKoXrFo9cWPp2LCMyO9PakQy/m4J/mEHkspu3X4Sa8cblet8lgdErersGB nTTR6+Jq31nRsulmuC7/iOKsEIIWzWtJdqHZdKUYmBKCO34rNywMtyRayRdM+IdZ 8qucZn0fQrHRlKR2wlFeq3KG3RGJDJn0TfTYUO7/+92Ev9DLYtO+E8CzBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6XANEehjhV5i6M1ptvHkn157lQMB8GA1UdIwQY MBaAFIeKuymXemWxQMrLbnKrJM7d1OjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2Et YWM4NjQ3ZDA1NThhLzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2EtYWM4NjQ3ZDA1NThh LzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxD9OMI+S FV+tMqXZQifCPLyxhjT2FyqEzZlMcPqhIDxmbCi67WXWcBpBvHmMke+5ed6Oomho PKpjHtv21++wF2VGlwB0hkCB5ZJ3Zi3PhTTNY7ZAWnC7u3Rkz1mAwNl6GYlqolEx HrkY4Fd23ajlZvB6HepnU9Yay1N2EzWW87IZbpIqAm0rGrwwHnCCtke18snduYBy oxd8EWwJqhvsve6O6hCkVgCpYnmgedjkdEFw+y5X6dLJ+IwB4KkU4UvmtOFzwDo/ bXqWLPUYk6W5G/LnaiNtgKSXlJWnbRyZOZxkovPQSzCTCkmXxcuiFl7tbZH2mU4+ rAUVYGNFxgHdvQ== -----END CERTIFICATE-----Generated at Sat Dec 6 23:38:40 2025 by rpki-client