This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json) Hash identifier: pq1SSH9nuaElFmxg3jFwdKQdIbJ9xbm/VtEixPjy47g= Subject key identifier: 49:B9:F8:2D:92:34:1C:EF:F2:53:2D:3F:FC:24:91:3A:E3:DE:C1:76 Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Certificate serial: 019B3C0FFDC7E21456CDF7040BDF975AC004 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft Manifest number: 105F Signing time: Sat 20 Dec 2025 14:00:39 +0000 Manifest this update: Sat 20 Dec 2025 14:00:39 +0000 Manifest next update: Sun 21 Dec 2025 14:00:39 +0000 Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: WV/EbpkIqRxlCrsRTQzJwuKT9hjg0td7cRo1Fv3QQl8=) 2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:0f:fd:c7:e2:14:56:cd:f7:04:0b:df:97:5a:c0:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Validity Not Before: Dec 20 14:00:39 2025 GMT Not After : Dec 21 14:00:39 2025 GMT Subject: CN=49b9f82d92341ceff2532d3ffc24913ae3dec176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:83:4c:e4:ce:22:ab:88:ab:89:c8:ef:e7:bf: 11:bc:3a:c5:37:88:cb:f1:42:b1:36:aa:86:2b:aa: 01:4d:94:e5:ff:22:21:4d:67:0b:66:99:c0:f9:7b: 26:51:0a:47:7a:45:28:ae:ad:30:9c:63:1f:50:13: b2:95:32:de:f7:7d:0a:ab:4b:85:35:b7:64:ce:1d: b9:f2:cb:db:ae:9d:7a:24:68:8e:b2:4a:50:a1:f5: dc:39:9e:85:4c:50:11:9c:b9:cf:77:b0:05:dc:73: be:1f:cf:71:97:31:e8:f0:37:ec:88:37:99:4c:83: 1c:d5:eb:2b:d4:d0:c8:b3:5d:b8:7f:b3:b1:5c:f7: 81:c4:23:2d:56:bb:76:58:81:9d:c2:d5:61:69:e1: 20:a9:99:6e:21:1b:6c:28:70:39:32:fd:b6:aa:f0: 4b:d2:71:7f:4c:89:60:eb:1c:77:23:43:1b:ed:ca: 53:d8:4d:7a:c9:6b:24:5f:1f:e6:15:6b:04:d8:74: 56:2f:bb:b6:5a:f8:ce:2d:46:6f:01:ec:58:db:ea: 8b:41:41:db:03:d6:f1:b2:21:cb:65:2b:26:03:f6: d5:8f:d6:37:bb:35:0b:a9:e0:04:d4:c2:3e:f2:c6: 28:08:71:83:c8:30:8e:7a:65:3c:2d:a1:e3:d2:37: 59:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B9:F8:2D:92:34:1C:EF:F2:53:2D:3F:FC:24:91:3A:E3:DE:C1:76 X509v3 Authority Key Identifier: keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:7a:f1:da:58:34:b4:90:9f:59:6b:bd:af:c1:2a:8f:99:60: cf:18:92:0e:f9:ad:a7:3d:05:20:56:b1:8e:19:de:27:3c:06: 12:e0:0a:fc:94:b7:1a:e9:70:32:a2:39:68:17:e0:44:a0:ca: 7e:b0:eb:59:3b:5d:9c:a7:c3:db:83:32:a9:35:5b:e0:8c:13: 00:a8:d1:66:99:26:ff:85:4d:7b:33:e3:ba:93:43:86:46:e7: 43:ce:c0:65:74:96:40:52:1a:5e:9c:92:8d:e5:86:18:93:ad: 17:c7:51:82:fc:66:2c:04:a4:21:0f:5e:05:f8:d8:6e:fd:6e: f7:7c:13:4f:3f:7c:ac:06:d6:d4:b7:a6:10:50:d4:79:5d:51: 49:14:0f:53:0a:62:37:52:8f:ab:73:1d:20:a7:08:b6:a9:94: 42:a9:e3:6f:94:03:0b:21:31:40:f0:8e:41:92:38:d2:29:44: 96:87:d4:ef:ee:2e:ea:e1:c1:38:67:b2:8a:de:77:9c:c5:87: 59:25:32:ad:5f:a1:dc:2c:35:ca:b1:3f:3e:b5:f5:23:da:93: fa:af:04:07:0d:29:41:cf:b7:f1:33:85:37:b8:29:fd:ad:b9: 27:88:27:e7:cc:2b:57:d0:47:13:a7:18:ee:7c:6a:3c:d0:e3: dd:75:4f:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8D/3H4hRWzfcEC9+XWsAEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OTM2NTUzMjZiMDQ3MmM4NjZjNWM5OTMwMmUyYjJkNzhj YmRkZjcwHhcNMjUxMjIwMTQwMDM5WhcNMjUxMjIxMTQwMDM5WjAzMTEwLwYDVQQD Eyg0OWI5ZjgyZDkyMzQxY2VmZjI1MzJkM2ZmYzI0OTEzYWUzZGVjMTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsINM5M4iq4iricjv578RvDrFN4jL 8UKxNqqGK6oBTZTl/yIhTWcLZpnA+XsmUQpHekUorq0wnGMfUBOylTLe930Kq0uF Nbdkzh258svbrp16JGiOskpQofXcOZ6FTFARnLnPd7AF3HO+H89xlzHo8DfsiDeZ TIMc1esr1NDIs124f7OxXPeBxCMtVrt2WIGdwtVhaeEgqZluIRtsKHA5Mv22qvBL 0nF/TIlg6xx3I0Mb7cpT2E16yWskXx/mFWsE2HRWL7u2WvjOLUZvAexY2+qLQUHb A9bxsiHLZSsmA/bVj9Y3uzULqeAE1MI+8sYoCHGDyDCOemU8LaHj0jdZPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEm5+C2SNBzv8lMtP/wkkTrj3sF2MB8GA1UdIwQY MBaAFIaTZVMmsEcshmxcmTAuKy14y933MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEt OWU2NzcyZWQzOWE2LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEtOWU2NzcyZWQzOWE2 LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoXrx2lg0 tJCfWWu9r8Eqj5lgzxiSDvmtpz0FIFaxjhneJzwGEuAK/JS3GulwMqI5aBfgRKDK frDrWTtdnKfD24MyqTVb4IwTAKjRZpkm/4VNezPjupNDhkbnQ87AZXSWQFIaXpyS jeWGGJOtF8dRgvxmLASkIQ9eBfjYbv1u93wTTz98rAbW1LemEFDUeV1RSRQPUwpi N1KPq3MdIKcItqmUQqnjb5QDCyExQPCOQZI40ilElofU7+4u6uHBOGeyit53nMWH WSUyrV+h3Cw1yrE/PrX1I9qT+q8EBw0pQc+38TOFN7gp/a25J4gn58wrV9BHE6cY 7nxqPNDj3XVPDg== -----END CERTIFICATE-----Generated at Sat Dec 20 18:57:10 2025 by rpki-client