This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json) Hash identifier: wc+f3asupa/BdHikYyXDDCx6KdZTuU55a64Ctt7uHRo= Subject key identifier: D4:2C:DF:A0:64:AD:9F:A4:8B:E2:D3:A1:FB:BB:5F:AB:6F:4C:ED:75 Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a Certificate serial: 019AF1D21A5D7717F692C377590B04E6821C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft Manifest number: 09F1 Signing time: Sat 06 Dec 2025 04:01:09 +0000 Manifest this update: Sat 06 Dec 2025 04:01:09 +0000 Manifest next update: Sun 07 Dec 2025 04:01:09 +0000 Files and hashes: 1: 5iC1C_l2xnIVtV_ynL6awoKgYMQ.roa (hash: c0Zm1e9RjgR5PBfasK6Q1TzGKpfYhKyszQz9aW+gUGA=) 2: K2099PO4iAtvBzGlnwl1axWP2hE.roa (hash: 6aTZlr/sfRYyJqs+vE8kRpR5W2QDPbSiPNBoLmmWJlA=) 3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: i2zgL00Vy2rsxlXrsE9f9WsWL/pZpK5fz0yx7JuEPE8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:1a:5d:77:17:f6:92:c3:77:59:0b:04:e6:82:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a Validity Not Before: Dec 6 04:01:09 2025 GMT Not After : Dec 7 04:01:09 2025 GMT Subject: CN=d42cdfa064ad9fa48be2d3a1fbbb5fab6f4ced75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:27:b7:2d:b9:92:d5:b2:a2:a1:9f:64:11: e1:9c:fc:d5:c2:3c:83:bd:91:15:a1:ef:ee:51:80: 58:e6:84:bb:33:76:ee:cc:7d:bf:4c:be:73:22:ae: 8c:48:6a:2e:3a:bf:3a:08:ab:7f:37:0f:60:8d:d9: f8:8b:d4:e9:f4:e3:3a:e7:11:0e:8c:e8:d9:3b:4c: b8:4b:91:a2:f2:ff:07:39:22:f8:9c:52:04:34:61: b7:6f:af:33:67:8b:a7:14:ed:b4:90:40:6c:40:12: a7:62:a1:74:01:ea:d5:42:e5:4f:56:48:60:0a:50: af:23:94:d3:c7:49:96:e2:d3:e7:4c:c5:c4:8f:18: cf:23:e1:6d:9c:33:8b:f0:b8:7e:b5:47:38:8e:4b: ca:07:f5:82:f4:90:53:bf:73:43:26:a5:0b:c2:94: 6d:4b:0c:d0:91:60:a5:1c:03:73:36:b2:d5:c6:e3: 66:e6:a6:95:36:af:99:9a:bc:da:70:21:81:a2:fd: b6:53:14:ec:5f:79:32:9e:ef:de:40:19:47:07:e6: e9:73:e5:56:02:57:de:2f:32:5b:c5:9d:ea:11:21: 95:20:8a:33:e2:9e:a2:92:72:c4:3d:ab:b8:14:1e: d0:8f:90:ce:2a:c6:96:e8:ea:ef:de:ee:af:56:aa: 3c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2C:DF:A0:64:AD:9F:A4:8B:E2:D3:A1:FB:BB:5F:AB:6F:4C:ED:75 X509v3 Authority Key Identifier: keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:78:44:92:11:12:b0:15:34:10:fb:b4:50:1e:c6:d9:c9:c5: 4d:3a:1d:93:5b:88:a8:01:4e:0e:0a:aa:04:52:af:af:e3:a9: b4:b5:a5:ac:a4:fe:8e:b1:62:c1:86:e8:20:e3:4b:99:f4:7e: 68:67:0b:73:d3:93:4f:63:93:1d:b9:9a:c5:ef:21:97:2a:77: 4f:10:99:ca:c6:1a:26:8d:b2:8b:25:3d:78:5f:1e:c6:cb:dc: 89:a5:31:d6:12:02:b7:18:1c:d5:2b:fb:24:fc:30:c0:9b:5b: 41:97:a2:2c:98:33:8f:52:fe:f2:62:7d:fb:81:43:b0:9a:5c: 18:75:70:38:29:f7:85:ae:5f:1f:ab:65:a8:62:70:80:dd:2a: 18:9b:1d:78:bb:23:49:4e:a6:f7:df:b8:ab:f8:e2:a5:89:15: f1:2c:3c:d4:91:1f:e9:c2:a9:a6:96:1e:15:91:84:0e:87:28: 6a:72:d7:45:f7:df:96:cc:4e:9d:dd:18:05:8a:21:c5:a1:4c: f7:29:b6:6c:ad:80:05:85:d2:99:af:58:f5:bf:b4:c8:5e:2a: 39:2e:cf:f0:43:0e:e4:8e:95:ff:56:21:a3:f5:f2:b7:93:50: f7:dd:f7:1a:32:4d:9e:2a:b9:d1:f0:32:69:ae:c6:0b:1c:c3: 37:94:28:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0hpddxf2ksN3WQsE5oIcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZmI4NWFkZDA5ZjQ4NzZlYTZhYWE4OGQ0ZDg4YzgxY2Ni NmIxMGEwHhcNMjUxMjA2MDQwMTA5WhcNMjUxMjA3MDQwMTA5WjAzMTEwLwYDVQQD EyhkNDJjZGZhMDY0YWQ5ZmE0OGJlMmQzYTFmYmJiNWZhYjZmNGNlZDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxngnty25ktWyoqGfZBHhnPzVwjyD vZEVoe/uUYBY5oS7M3buzH2/TL5zIq6MSGouOr86CKt/Nw9gjdn4i9Tp9OM65xEO jOjZO0y4S5Gi8v8HOSL4nFIENGG3b68zZ4unFO20kEBsQBKnYqF0AerVQuVPVkhg ClCvI5TTx0mW4tPnTMXEjxjPI+FtnDOL8Lh+tUc4jkvKB/WC9JBTv3NDJqULwpRt SwzQkWClHANzNrLVxuNm5qaVNq+ZmrzacCGBov22UxTsX3kynu/eQBlHB+bpc+VW AlfeLzJbxZ3qESGVIIoz4p6iknLEPau4FB7Qj5DOKsaW6Orv3u6vVqo8nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQs36BkrZ+ki+LTofu7X6tvTO11MB8GA1UdIwQY MBaAFIX7ha3Qn0h26mqqiNTYjIHMtrEKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2It YzYxNjFjZTM5NWFmLzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2ItYzYxNjFjZTM5NWFm LzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANnhEkhES sBU0EPu0UB7G2cnFTTodk1uIqAFODgqqBFKvr+OptLWlrKT+jrFiwYboIONLmfR+ aGcLc9OTT2OTHbmaxe8hlyp3TxCZysYaJo2yiyU9eF8exsvciaUx1hICtxgc1Sv7 JPwwwJtbQZeiLJgzj1L+8mJ9+4FDsJpcGHVwOCn3ha5fH6tlqGJwgN0qGJsdeLsj SU6m99+4q/jipYkV8Sw81JEf6cKpppYeFZGEDocoanLXRffflsxOnd0YBYohxaFM 9ym2bK2ABYXSma9Y9b+0yF4qOS7P8EMO5I6V/1Yho/Xyt5NQ9933GjJNniq50fAy aa7GCxzDN5QoYw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:05:39 2025 by rpki-client