This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft File: hJICE8sjC_5REhzl-03s4oAYvtA.mft (raw, json) Hash identifier: ywyz3rYaJSQsc17PQD+I5wrx3rEJMpFXuQaq128j6Yo= Subject key identifier: 8D:8D:80:34:BF:B6:5C:89:99:87:12:CD:D2:D5:50:E6:D4:3A:10:A1 Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0 Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0 Certificate serial: 019AF1D1A602F93BC6806BB6BAF1FC1AC689 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 04:00:39 +0000 Manifest this update: Sat 06 Dec 2025 04:00:39 +0000 Manifest next update: Sun 07 Dec 2025 04:00:39 +0000 Files and hashes: 1: hJICE8sjC_5REhzl-03s4oAYvtA.crl (hash: KvRYA/mGUMzKuyn1vBZBfY5CKKlr26vkn5HWeElc5ck=) 2: zYnN-i8U1PX-vVy0Kko-kLxeBsU.roa (hash: SDcPgjrr8y9zPr3/XTNgtJ+0oZH17N4IYV4VzMId4hs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:a6:02:f9:3b:c6:80:6b:b6:ba:f1:fc:1a:c6:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0 Validity Not Before: Dec 6 04:00:39 2025 GMT Not After : Dec 7 04:00:39 2025 GMT Subject: CN=8d8d8034bfb65c89998712cdd2d550e6d43a10a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0b:d4:9a:c2:d4:92:39:88:ce:0f:84:97:dc: 73:e2:4b:8e:d8:6b:7e:46:d7:6a:62:a8:aa:1d:5e: 0f:d8:47:f0:c7:d9:c3:ff:a8:86:06:e9:c5:d7:51: d2:92:2f:9f:36:06:db:ff:d1:c1:91:c2:e4:0a:29: 22:7c:b3:f3:98:80:00:c7:1a:00:c0:c0:54:20:ce: cb:4f:7d:5b:86:45:98:57:12:78:dc:62:56:0a:b8: b3:7b:1d:fb:4c:51:8f:74:a3:63:53:05:06:0a:5c: b6:07:0f:40:54:52:e8:e6:7d:06:d6:7c:ce:bf:8d: da:08:78:0c:4e:d8:c1:cc:85:ad:32:09:ea:d6:56: 46:af:dc:00:12:fe:15:06:55:cd:80:31:0b:ae:7b: d6:78:2e:cf:db:a3:f2:a2:a3:5c:fa:c4:65:50:d5: 20:de:3b:2d:2d:1b:7a:35:09:b6:45:10:fd:d1:e7: 87:56:10:8f:62:9e:2d:dd:73:70:f4:1a:c8:bc:e5: 29:12:c2:78:35:3c:61:d2:a1:d5:36:29:9e:c1:96: e0:7a:84:bf:b3:a1:09:79:bb:14:b4:8c:68:84:73: d5:ba:58:f6:87:be:de:21:3d:a6:48:f8:4a:d7:68: eb:6e:26:c5:92:5b:be:40:60:e3:fc:87:05:23:49: 05:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:8D:80:34:BF:B6:5C:89:99:87:12:CD:D2:D5:50:E6:D4:3A:10:A1 X509v3 Authority Key Identifier: keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:91:80:96:5f:94:99:ac:91:b9:88:60:a2:26:30:3f:c8:ad: 6a:ba:93:33:32:82:be:5e:ab:dc:a1:f4:8f:d5:72:60:ec:dd: 75:a3:04:f5:8c:87:ed:68:95:58:1b:0d:15:d5:a0:c1:dc:c4: 81:54:8c:43:ec:70:94:fb:76:00:85:68:71:67:f0:64:e8:16: 3b:62:0d:07:4c:2e:c4:a0:a3:b6:26:bb:de:03:7a:eb:a4:42: 77:90:23:0b:64:32:b6:31:9e:9c:e4:f7:d0:16:e7:6b:57:3c: 51:bb:6b:0d:bd:15:a7:20:27:bf:e4:69:69:8e:ec:0f:5e:a2: e1:a4:6c:0d:df:31:45:76:b9:67:f0:ed:a6:e0:05:c5:c0:24: 0f:22:e6:7e:c9:5a:e6:0e:a4:3a:dc:34:c9:57:45:29:1f:72: 4f:72:7c:d6:07:37:07:1e:b3:39:db:7f:a7:69:5d:f5:de:45: cc:95:ad:7d:20:43:fb:33:f0:e9:17:6d:18:71:69:3c:72:1e: 92:ce:33:b8:8a:a9:97:99:35:47:59:81:01:8a:13:f0:aa:d5: 8f:87:08:31:4b:50:96:cd:ca:c9:8a:6f:cd:bd:8a:6c:cf:99: 72:f8:1e:49:ef:bd:65:01:97:c2:09:b3:d9:03:b3:f9:25:fd: 38:fc:5c:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0aYC+TvGgGu2uvH8GsaJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OTIwMjEzY2IyMzBiZmU1MTEyMWNlNWZiNGRlY2UyODAx OGJlZDAwHhcNMjUxMjA2MDQwMDM5WhcNMjUxMjA3MDQwMDM5WjAzMTEwLwYDVQQD Eyg4ZDhkODAzNGJmYjY1Yzg5OTk4NzEyY2RkMmQ1NTBlNmQ0M2ExMGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAvUmsLUkjmIzg+El9xz4kuO2Gt+ RtdqYqiqHV4P2Efwx9nD/6iGBunF11HSki+fNgbb/9HBkcLkCikifLPzmIAAxxoA wMBUIM7LT31bhkWYVxJ43GJWCrizex37TFGPdKNjUwUGCly2Bw9AVFLo5n0G1nzO v43aCHgMTtjBzIWtMgnq1lZGr9wAEv4VBlXNgDELrnvWeC7P26PyoqNc+sRlUNUg 3jstLRt6NQm2RRD90eeHVhCPYp4t3XNw9BrIvOUpEsJ4NTxh0qHVNimewZbgeoS/ s6EJebsUtIxohHPVulj2h77eIT2mSPhK12jrbibFklu+QGDj/IcFI0kF6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2NgDS/tlyJmYcSzdLVUObUOhChMB8GA1UdIwQY MBaAFISSAhPLIwv+URIc5ftN7OKAGL7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYt YjA0YjRkMDQzZjlmLzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9hOGEwOWMtMGY4NC00YTg5LThhMTYtYjA0YjRkMDQzZjlm LzEvaEpJQ0U4c2pDXzVSRWh6bC0wM3M0b0FZdnRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbpGAll+U mayRuYhgoiYwP8itarqTMzKCvl6r3KH0j9VyYOzddaME9YyH7WiVWBsNFdWgwdzE gVSMQ+xwlPt2AIVocWfwZOgWO2INB0wuxKCjtia73gN666RCd5AjC2QytjGenOT3 0Bbna1c8UbtrDb0VpyAnv+RpaY7sD16i4aRsDd8xRXa5Z/DtpuAFxcAkDyLmfsla 5g6kOtw0yVdFKR9yT3J81gc3Bx6zOdt/p2ld9d5FzJWtfSBD+zPw6RdtGHFpPHIe ks4zuIqpl5k1R1mBAYoT8KrVj4cIMUtQls3KyYpvzb2KbM+ZcvgeSe+9ZQGXwgmz 2QOz+SX9OPxcZg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:03 2025 by rpki-client