This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json) Hash identifier: +yFns3kEEjOjs+KK6pG06UNANtwT/TED0NtCNZSEHy8= Subject key identifier: 8B:D3:3E:D6:54:9C:34:8C:F9:B7:B3:E7:19:96:3D:56:56:71:3B:F0 Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Certificate serial: 019AF2AD9F7ED1FFA166742F357735857DA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft Manifest number: 1039 Signing time: Sat 06 Dec 2025 08:00:56 +0000 Manifest this update: Sat 06 Dec 2025 08:00:56 +0000 Manifest next update: Sun 07 Dec 2025 08:00:56 +0000 Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: xh5tYlsw/fpTQVxzKv4cZBAFrxeg9f4ybx+NHfP/pKk=) 2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:9f:7e:d1:ff:a1:66:74:2f:35:77:35:85:7d:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Validity Not Before: Dec 6 08:00:56 2025 GMT Not After : Dec 7 08:00:56 2025 GMT Subject: CN=8bd33ed6549c348cf9b7b3e719963d5656713bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:93:1b:56:6d:e2:93:ee:8b:8d:9c:fb:a0: 5a:7f:4e:3e:6c:31:57:51:38:b5:c6:c2:e4:bf:1f: ca:28:7f:9d:e4:db:db:21:c6:53:2b:07:ff:a6:84: ec:a1:e5:e0:69:78:ee:a3:b1:b3:1e:a5:62:af:9b: 8f:24:76:e6:f3:e9:7f:59:0c:0e:a8:44:2f:cb:81: fb:bf:c4:82:73:db:c6:a5:5c:56:65:48:d9:49:2b: 79:0a:e6:8b:33:68:38:ee:8d:e0:79:20:bb:12:97: 2b:a6:50:10:d4:21:39:e0:9e:84:3b:51:ce:88:d6: cc:8d:a8:3a:8a:e2:f0:74:89:6a:e6:5d:1e:88:48: df:70:e3:39:0c:bb:b6:33:7a:f7:bd:74:4b:bc:e8: 50:c4:23:d4:cc:db:e6:3f:bf:60:32:88:ea:98:9f: cf:df:d7:35:2e:86:0b:23:ea:7a:d0:dc:a1:de:0c: b3:e6:72:3d:1d:9c:ac:de:ec:91:8a:ef:cb:28:cf: 4c:3e:b7:c8:13:d5:b0:fb:1a:78:81:a0:db:46:00: 33:50:6a:31:9d:60:b9:b6:c6:c6:3c:82:f0:33:9b: cf:2d:b7:35:bd:6b:e9:fc:96:a7:da:80:cc:e0:81: 32:4a:b7:76:85:74:ac:ba:1d:bf:03:65:0e:df:27: dc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D3:3E:D6:54:9C:34:8C:F9:B7:B3:E7:19:96:3D:56:56:71:3B:F0 X509v3 Authority Key Identifier: keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:32:89:9c:1b:dd:ca:1b:6a:e5:7f:97:4b:7a:45:71:43:b8: 5c:34:23:77:5e:cd:4e:39:63:ee:fe:33:10:dd:cd:51:8f:40: 22:33:de:87:8a:3b:95:32:c6:64:7b:75:0f:f6:52:4f:60:ae: cf:86:56:fa:e4:bb:6e:04:9a:29:2a:b0:21:e2:2e:68:48:3e: 7f:c7:68:0b:0a:1d:9d:bf:31:e0:06:27:f5:ba:40:ba:bb:1d: 08:33:2c:0a:1d:8e:a2:e8:93:39:7e:06:91:00:f5:f4:b1:cc: dc:74:02:47:f2:53:b4:e3:06:09:9e:28:7d:e4:ce:a1:ae:8d: 8a:5c:ed:20:7c:1f:2e:84:6a:ab:6a:b3:0c:61:66:09:f8:b8: 14:b9:0f:e8:c1:b2:fb:8f:69:27:82:36:6f:16:2c:82:92:71: b4:14:87:f3:e2:90:3b:66:a4:f2:6c:05:21:78:10:d5:ed:0c: 88:ef:8d:4f:0b:b1:23:3a:a3:89:19:da:9b:b4:71:86:e5:3c: ff:2d:19:13:49:79:3b:dc:31:35:83:9c:ee:1f:dc:f3:33:d6: 24:bd:da:a5:f7:be:24:fb:81:76:bb:63:64:74:f6:e2:6c:21: d5:5f:c8:53:7f:0a:27:59:77:9a:05:d2:6f:74:3f:ad:7c:44: 33:58:ba:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrZ9+0f+hZnQvNXc1hX2oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OTM2NTUzMjZiMDQ3MmM4NjZjNWM5OTMwMmUyYjJkNzhj YmRkZjcwHhcNMjUxMjA2MDgwMDU2WhcNMjUxMjA3MDgwMDU2WjAzMTEwLwYDVQQD Eyg4YmQzM2VkNjU0OWMzNDhjZjliN2IzZTcxOTk2M2Q1NjU2NzEzYmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsd6TG1Zt4pPui42c+6Baf04+bDFX UTi1xsLkvx/KKH+d5NvbIcZTKwf/poTsoeXgaXjuo7GzHqVir5uPJHbm8+l/WQwO qEQvy4H7v8SCc9vGpVxWZUjZSSt5CuaLM2g47o3geSC7EpcrplAQ1CE54J6EO1HO iNbMjag6iuLwdIlq5l0eiEjfcOM5DLu2M3r3vXRLvOhQxCPUzNvmP79gMojqmJ/P 39c1LoYLI+p60Nyh3gyz5nI9HZys3uyRiu/LKM9MPrfIE9Ww+xp4gaDbRgAzUGox nWC5tsbGPILwM5vPLbc1vWvp/Jan2oDM4IEySrd2hXSsuh2/A2UO3yfcYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIvTPtZUnDSM+bez5xmWPVZWcTvwMB8GA1UdIwQY MBaAFIaTZVMmsEcshmxcmTAuKy14y933MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEt OWU2NzcyZWQzOWE2LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEtOWU2NzcyZWQzOWE2 LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARjKJnBvd yhtq5X+XS3pFcUO4XDQjd17NTjlj7v4zEN3NUY9AIjPeh4o7lTLGZHt1D/ZST2Cu z4ZW+uS7bgSaKSqwIeIuaEg+f8doCwodnb8x4AYn9bpAursdCDMsCh2OouiTOX4G kQD19LHM3HQCR/JTtOMGCZ4ofeTOoa6NilztIHwfLoRqq2qzDGFmCfi4FLkP6MGy +49pJ4I2bxYsgpJxtBSH8+KQO2ak8mwFIXgQ1e0MiO+NTwuxIzqjiRnam7RxhuU8 /y0ZE0l5O9wxNYOc7h/c8zPWJL3apfe+JPuBdrtjZHT24mwh1V/IU38KJ1l3mgXS b3Q/rXxEM1i6fQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:36:49 2025 by rpki-client