This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json) Hash identifier: jy4wA5bRXM9zuBa+0W8TX7lTAlO/GqAcOxVAAa60UkY= Subject key identifier: B2:97:62:2E:03:42:C1:AC:8A:E4:9B:48:9D:DE:E1:60:50:DD:8A:6C Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Certificate serial: 019AF20936888AA8C2E9835CE1B5C67516DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft Manifest number: 1769 Signing time: Sat 06 Dec 2025 05:01:21 +0000 Manifest this update: Sat 06 Dec 2025 05:01:21 +0000 Manifest next update: Sun 07 Dec 2025 05:01:21 +0000 Files and hashes: 1: 1a8VrRBxuEM9gIitWA-MTYGiH6k.roa (hash: o75BqB590sV6r1bb5EcguY1B6QE3rDYfVkZNGdgh7Sw=) 2: 5xOfslnPq8-oHcDS47I_csGpD8Q.roa (hash: 4dFQELulj6P8yjTGdV2+DXhC0ieIeLQi8X9meQWips0=) 3: DCocrInE23WH5yhpx0FXxrNY7_Y.roa (hash: O6VU1JCrRAIS6a+yNeHmYk7E8wYytQ8Lu8b/Fc+fOqI=) 4: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: dZhFKMvxCCnH34YhnMYTUlExuCmdC3QNGrmv4NsHbuU=) 5: du6DBdKlb1Cr5Z5mqlctF2rW68k.roa (hash: XaoP28uRsMgk856VCX7c/74Lo2ezwg/z+6hQ43OafIc=) 6: gvR46ytTmKrRi4maCYGnQqf4WI8.roa (hash: ViNC6FNBy9cckM8WILnCXIRpeOOtSFGRhOo8i05WQf8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:36:88:8a:a8:c2:e9:83:5c:e1:b5:c6:75:16:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Validity Not Before: Dec 6 05:01:21 2025 GMT Not After : Dec 7 05:01:21 2025 GMT Subject: CN=b297622e0342c1ac8ae49b489ddee16050dd8a6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:31:29:b8:96:dd:88:f4:4c:4d:99:53:8e:89: 28:66:57:2f:1d:c6:29:a3:de:c3:e0:fa:5b:a5:dd: 72:99:8a:34:63:ea:d6:00:e1:c4:d9:7e:bb:76:62: 86:5c:49:6c:06:c8:72:97:1d:f1:8b:13:a0:4c:af: 7c:a4:be:58:17:2e:9e:a6:8e:81:e3:0c:b1:42:78: 89:85:69:65:54:56:15:ca:6f:51:bc:16:8d:4c:47: df:23:e6:09:98:ea:b2:05:ed:ca:a6:95:43:70:2b: f7:45:f7:6b:78:6c:a2:60:95:ac:44:20:75:5a:0e: 53:76:3f:71:11:04:04:9b:10:f6:92:40:a9:5a:8a: b4:92:c0:91:45:42:8a:3e:cd:ef:35:78:b3:e5:99: 62:37:15:f5:47:ce:2a:16:5d:d3:c4:b6:9f:d4:e8: 32:82:0b:92:68:40:b9:5d:16:8a:87:68:fd:32:4b: 31:0d:d0:1f:b7:c2:d2:7d:0b:a1:81:a0:34:f0:1b: d1:d7:88:6a:b1:b7:63:88:21:95:8b:fb:31:a3:17: ec:65:d0:c1:f6:c2:c4:bc:a4:a2:4d:35:0f:82:92: 39:45:e5:3d:b9:09:30:0a:e5:5b:df:44:f6:35:53: c3:8e:6c:e7:46:3b:59:9d:2b:9a:c8:4a:63:0f:13: c3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:97:62:2E:03:42:C1:AC:8A:E4:9B:48:9D:DE:E1:60:50:DD:8A:6C X509v3 Authority Key Identifier: keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:e3:a6:73:fd:cd:0b:4b:43:ef:da:62:33:2d:88:92:e3:f3: b1:58:51:52:eb:2e:4d:17:7f:31:3c:10:3b:fb:56:d7:b2:36: 7d:20:88:94:26:32:e9:0e:b3:33:c4:08:14:36:19:63:91:79: be:01:5f:76:e9:46:79:ae:9b:68:22:a0:f9:9e:90:f0:42:8b: 2a:90:a0:44:61:ce:fb:9f:8d:16:b1:bb:04:e8:60:55:43:d9: 03:86:2a:8d:f6:3d:58:10:78:b0:bb:b5:0a:9d:d0:9f:02:de: f2:eb:47:93:92:05:45:ae:43:60:8e:0b:bc:db:bd:1c:0b:0c: 87:87:ff:62:ad:7e:c3:7c:bc:90:e2:7e:eb:14:d6:5c:a3:aa: c2:36:cf:69:10:36:6e:19:55:4d:ac:42:f7:fa:4a:db:94:fc: 43:20:42:09:fe:27:d8:3a:26:d8:49:c1:97:11:97:4b:6b:7c: ce:7b:6b:45:39:f0:7a:c3:45:85:08:23:2c:96:25:1a:aa:59: dd:12:cd:48:1b:a5:d0:58:7e:8a:ab:de:33:b3:53:40:21:cc: 2e:0d:53:ac:0a:39:06:d6:56:79:88:7f:52:a5:75:bd:9c:9b: f0:00:19:8e:23:65:19:4e:1b:5d:ba:46:d8:62:69:ad:5c:c0: 8f:fe:51:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTaIiqjC6YNc4bXGdRbbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODYyNjc0OWNiZjg0YmNmNDJlYmIyOTg1Yjg2ZGVlODMw ZTVjMTQwHhcNMjUxMjA2MDUwMTIxWhcNMjUxMjA3MDUwMTIxWjAzMTEwLwYDVQQD EyhiMjk3NjIyZTAzNDJjMWFjOGFlNDliNDg5ZGRlZTE2MDUwZGQ4YTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTEpuJbdiPRMTZlTjokoZlcvHcYp o97D4Ppbpd1ymYo0Y+rWAOHE2X67dmKGXElsBshylx3xixOgTK98pL5YFy6epo6B 4wyxQniJhWllVFYVym9RvBaNTEffI+YJmOqyBe3KppVDcCv3RfdreGyiYJWsRCB1 Wg5Tdj9xEQQEmxD2kkCpWoq0ksCRRUKKPs3vNXiz5ZliNxX1R84qFl3TxLaf1Ogy gguSaEC5XRaKh2j9MksxDdAft8LSfQuhgaA08BvR14hqsbdjiCGVi/sxoxfsZdDB 9sLEvKSiTTUPgpI5ReU9uQkwCuVb30T2NVPDjmznRjtZnSuayEpjDxPDOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLKXYi4DQsGsiuSbSJ3e4WBQ3YpsMB8GA1UdIwQY MBaAFB2GJnScv4S89C67KYW4be6DDlwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYt MGJmYmFkNDg0OWNkLzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYtMGJmYmFkNDg0OWNk LzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS+Omc/3N C0tD79piMy2IkuPzsVhRUusuTRd/MTwQO/tW17I2fSCIlCYy6Q6zM8QIFDYZY5F5 vgFfdulGea6baCKg+Z6Q8EKLKpCgRGHO+5+NFrG7BOhgVUPZA4YqjfY9WBB4sLu1 Cp3QnwLe8utHk5IFRa5DYI4LvNu9HAsMh4f/Yq1+w3y8kOJ+6xTWXKOqwjbPaRA2 bhlVTaxC9/pK25T8QyBCCf4n2Dom2EnBlxGXS2t8zntrRTnwesNFhQgjLJYlGqpZ 3RLNSBul0Fh+iqveM7NTQCHMLg1TrAo5BtZWeYh/UqV1vZyb8AAZjiNlGU4bXbpG 2GJprVzAj/5RKg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:26:27 2025 by rpki-client