This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json) Hash identifier: vro2W2IeDKQ84kAqcAYb/z59/oE+TQm9uGW57a+Dh+M= Subject key identifier: 3C:52:0E:F2:38:32:49:1F:6A:42:5A:30:80:17:DA:91:83:4C:33:0F Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2 Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2 Certificate serial: 019AF12E860B66A2516606CD1689202F7A61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft Manifest number: 12CC Signing time: Sat 06 Dec 2025 01:02:29 +0000 Manifest this update: Sat 06 Dec 2025 01:02:29 +0000 Manifest next update: Sun 07 Dec 2025 01:02:29 +0000 Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=) 2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: Qu7/QhsGAC8Na9sxbu1pADj8l1UmFuD7KqQX+W8uRaU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:86:0b:66:a2:51:66:06:cd:16:89:20:2f:7a:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2 Validity Not Before: Dec 6 01:02:29 2025 GMT Not After : Dec 7 01:02:29 2025 GMT Subject: CN=3c520ef23832491f6a425a308017da91834c330f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:56:1d:bd:d8:33:93:13:57:6d:2a:be:2f:21: 31:5f:41:99:ba:29:a4:56:35:da:52:52:48:0a:c1: 5a:80:1e:0c:99:60:55:53:de:d5:1d:8b:90:15:71: 0a:3b:40:54:da:87:61:38:9c:b9:7a:25:63:07:7f: 83:7e:18:af:2f:32:9e:0e:d5:1c:cb:85:e2:24:c3: 72:48:d5:88:5f:14:29:73:11:43:0b:66:aa:ab:6e: 2b:ba:d3:a6:c3:2d:ff:dd:36:a1:2b:0c:c2:7c:6d: d0:cb:57:37:96:a5:f9:38:f7:b6:fc:37:8a:03:b1: 80:da:27:e8:fb:6c:22:e8:2c:aa:65:6b:21:85:90: 1c:b6:54:c3:5a:7b:1e:f4:d6:95:5e:8c:51:0e:ff: 8f:34:ce:59:a2:d3:be:10:fd:a8:3c:d1:1a:7b:c6: 6d:26:13:c0:38:91:5f:a8:38:64:ed:f5:28:a3:6f: bd:e9:e7:bd:1e:3f:99:0d:61:dc:3b:16:8c:46:65: a7:98:50:58:1c:f6:bf:0b:05:0f:d6:98:18:35:e3: 0a:ec:df:83:c7:00:31:b7:89:67:65:e8:fd:73:46: 57:dd:50:95:a7:82:c6:6a:0e:5b:98:b8:5e:be:c1: d0:cf:0c:ac:8c:b1:54:b9:48:07:f2:36:6b:ff:b1: a3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:52:0E:F2:38:32:49:1F:6A:42:5A:30:80:17:DA:91:83:4C:33:0F X509v3 Authority Key Identifier: keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ae:b7:80:67:9a:cb:2b:1b:4c:fa:b7:4a:a9:c9:af:0d:59: ff:7c:59:37:10:c9:85:5c:40:3c:1e:d0:1d:db:1c:6a:38:79: 71:45:56:21:92:50:3e:b9:69:fd:9a:66:4b:c3:36:60:69:28: 60:97:97:8d:88:09:54:9b:df:9e:22:7f:e6:0b:a7:0a:39:14: 0f:d6:9a:9c:53:d3:04:92:d3:12:d1:37:ed:20:2b:81:48:84: d9:18:75:c6:3c:23:c3:a9:fb:44:f1:70:7d:2b:de:61:1f:8f: 04:2d:a7:40:4b:1a:53:50:5d:fe:21:cf:ee:83:f8:2a:66:f1: 02:3f:49:b1:df:df:6c:84:b3:c4:8f:00:df:34:69:b8:8c:22: e9:d4:f5:fa:31:94:98:d3:f9:38:96:43:5b:e1:41:43:5d:01: b7:28:8c:9b:ab:45:49:3b:60:48:43:14:84:a7:67:71:f2:76: 93:05:1e:26:c6:06:5f:2a:7e:95:0c:8c:75:4b:29:6c:0d:13: a7:fd:8e:d3:9e:d9:18:07:7a:e2:4e:b9:18:05:20:ad:05:28: 69:64:6b:ac:fc:a8:57:39:80:3c:c4:ae:e8:88:0e:a1:2d:f0: 84:2a:df:8d:c5:25:0a:44:9a:07:da:06:23:13:6a:fd:26:87: 17:b8:6a:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLoYLZqJRZgbNFokgL3phMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NmNhZjFmMmYwMjkxNDAxMTA1ZWY2OGIyNTk1N2RjNTU1 NTEwZDIwHhcNMjUxMjA2MDEwMjI5WhcNMjUxMjA3MDEwMjI5WjAzMTEwLwYDVQQD EygzYzUyMGVmMjM4MzI0OTFmNmE0MjVhMzA4MDE3ZGE5MTgzNGMzMzBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11YdvdgzkxNXbSq+LyExX0GZuimk VjXaUlJICsFagB4MmWBVU97VHYuQFXEKO0BU2odhOJy5eiVjB3+DfhivLzKeDtUc y4XiJMNySNWIXxQpcxFDC2aqq24rutOmwy3/3TahKwzCfG3Qy1c3lqX5OPe2/DeK A7GA2ifo+2wi6CyqZWshhZActlTDWnse9NaVXoxRDv+PNM5ZotO+EP2oPNEae8Zt JhPAOJFfqDhk7fUoo2+96ee9Hj+ZDWHcOxaMRmWnmFBYHPa/CwUP1pgYNeMK7N+D xwAxt4lnZej9c0ZX3VCVp4LGag5bmLhevsHQzwysjLFUuUgH8jZr/7GjlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDxSDvI4MkkfakJaMIAX2pGDTDMPMB8GA1UdIwQY MBaAFIVsrx8vApFAEQXvaLJZV9xVVRDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9kMmM3YzctMmJjYy00OTFlLTk2YTct YjBkMGJjZDkwZmFlLzEvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9kMmM3YzctMmJjYy00OTFlLTk2YTctYjBkMGJjZDkwZmFl LzEvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGq63gGea yysbTPq3SqnJrw1Z/3xZNxDJhVxAPB7QHdscajh5cUVWIZJQPrlp/ZpmS8M2YGko YJeXjYgJVJvfniJ/5gunCjkUD9aanFPTBJLTEtE37SArgUiE2Rh1xjwjw6n7RPFw fSveYR+PBC2nQEsaU1Bd/iHP7oP4KmbxAj9Jsd/fbISzxI8A3zRpuIwi6dT1+jGU mNP5OJZDW+FBQ10BtyiMm6tFSTtgSEMUhKdncfJ2kwUeJsYGXyp+lQyMdUspbA0T p/2O057ZGAd64k65GAUgrQUoaWRrrPyoVzmAPMSu6IgOoS3whCrfjcUlCkSaB9oG IxNq/SaHF7hqag== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:58 2025 by rpki-client