This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft File: hP-lQvPYybB7926uioaYWj17Tcc.mft (raw, json) Hash identifier: RQ6rCBItG+RUkdFphCaFd4e5e7ASHmkhBi9z+imncgo= Subject key identifier: 16:B5:C2:CA:2F:82:39:7F:E8:48:F3:D7:F4:F0:44:40:E0:52:D9:72 Authority key identifier: 84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7 Certificate issuer: /CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7 Certificate serial: 019AF50B4C54229040410417A30EA5A03DDC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft Manifest number: 112C Signing time: Sat 06 Dec 2025 19:02:29 +0000 Manifest this update: Sat 06 Dec 2025 19:02:29 +0000 Manifest next update: Sun 07 Dec 2025 19:02:29 +0000 Files and hashes: 1: hP-lQvPYybB7926uioaYWj17Tcc.crl (hash: 2x59XCjL4jn26H14//i1zy5pa1Z5zlwc1coygA50keM=) 2: uVc-YEHIfoCC97dYSAB-pvf1GkY.roa (hash: xpxJQ9Mtn3be8wfSELsmv9qWpA192efhc4xx/FDBoxc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:4c:54:22:90:40:41:04:17:a3:0e:a5:a0:3d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84ffa542f3d8c9b07bf76eae8a86985a3d7b4dc7 Validity Not Before: Dec 6 19:02:29 2025 GMT Not After : Dec 7 19:02:29 2025 GMT Subject: CN=16b5c2ca2f82397fe848f3d7f4f04440e052d972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:84:5f:e8:7f:cb:9c:66:27:f1:59:c4:03:11: c4:98:ba:09:76:9d:dd:82:1b:a2:cc:c5:b4:86:6e: 32:48:81:ea:7e:4d:38:3c:67:26:49:4f:d2:f5:3b: 04:0a:53:9c:5d:1b:29:e5:4d:4a:50:0b:69:89:e5: 9f:a3:f3:56:e9:8f:2c:3f:e5:df:1c:40:88:ab:32: 45:d9:e7:9e:5a:80:b3:2a:e8:34:72:be:a9:07:e7: 78:f9:0c:f4:2b:f8:ba:a3:6c:ae:95:18:46:fc:72: 05:8b:69:d2:bd:39:38:f3:33:71:1f:fd:97:11:a3: 86:28:75:48:cb:24:91:fe:00:ad:0a:9c:30:8b:4c: cf:6b:ad:be:a0:92:4d:64:1a:25:02:76:85:72:b4: 93:fa:29:26:09:12:a5:e7:21:ef:95:3b:03:32:e2: 1c:50:ce:b0:2b:8b:b6:57:e2:fc:69:c9:2d:af:49: 3f:c4:74:5b:3b:ab:a0:72:f2:77:7c:73:4d:57:6c: 40:88:bc:0c:71:b9:09:86:a2:d6:f6:71:05:57:ef: 5e:87:31:ed:a7:ed:cb:a1:26:a3:c5:ee:6e:cd:11: 55:8e:71:05:85:79:d8:21:8a:00:f8:36:51:07:82: 9e:4a:2b:6f:33:59:0b:5d:e0:e4:aa:62:03:c4:0f: 3c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B5:C2:CA:2F:82:39:7F:E8:48:F3:D7:F4:F0:44:40:E0:52:D9:72 X509v3 Authority Key Identifier: keyid:84:FF:A5:42:F3:D8:C9:B0:7B:F7:6E:AE:8A:86:98:5A:3D:7B:4D:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hP-lQvPYybB7926uioaYWj17Tcc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/71fff9-343d-4f07-a491-7c0fd29cf3e9/1/hP-lQvPYybB7926uioaYWj17Tcc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:69:ab:d9:d5:3e:77:86:af:ba:bf:5e:64:f6:06:8e:85:ee: 90:d7:51:d5:95:bf:49:97:30:2b:2f:c5:a6:83:17:d9:ed:59: cb:02:21:74:7a:73:da:dd:38:6a:d8:8a:31:41:ed:ad:5a:36: b7:b7:a6:8b:f8:f2:26:eb:ed:46:82:9b:48:d7:c6:5e:1e:4f: e8:c5:33:ab:8b:cc:dc:b9:99:0f:93:43:40:a4:65:32:5d:8d: d7:61:e3:6c:c3:eb:7e:41:11:ec:31:a7:a4:0a:01:45:ed:a2: 95:2f:3e:da:33:15:b9:ac:52:9a:5f:32:66:db:60:f0:67:73: 80:0f:fc:cb:de:d0:13:55:e4:dc:50:98:e9:ed:18:6a:7f:a2: 1f:f6:21:70:8c:a8:49:8d:09:e4:40:a7:ee:7f:f4:2d:2d:61: 9d:6c:84:c5:bb:ba:ab:3d:e0:7c:47:75:7e:75:f6:90:fd:40: 4b:ea:de:da:d2:9f:7b:52:80:98:76:45:8e:c0:ab:19:5a:d5: 13:15:c0:9d:de:38:bd:12:2b:01:5a:78:9d:8c:14:23:83:23: 2e:47:08:6d:03:73:ef:63:1e:69:53:8d:50:3c:8e:82:d6:99: c2:70:0e:fa:43:01:c9:32:6c:eb:f9:fb:20:e2:a5:2f:2f:79: 77:f0:4b:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C0xUIpBAQQQXow6loD3cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZmZhNTQyZjNkOGM5YjA3YmY3NmVhZThhODY5ODVhM2Q3 YjRkYzcwHhcNMjUxMjA2MTkwMjI5WhcNMjUxMjA3MTkwMjI5WjAzMTEwLwYDVQQD EygxNmI1YzJjYTJmODIzOTdmZTg0OGYzZDdmNGYwNDQ0MGUwNTJkOTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYRf6H/LnGYn8VnEAxHEmLoJdp3d ghuizMW0hm4ySIHqfk04PGcmSU/S9TsEClOcXRsp5U1KUAtpieWfo/NW6Y8sP+Xf HECIqzJF2eeeWoCzKug0cr6pB+d4+Qz0K/i6o2yulRhG/HIFi2nSvTk48zNxH/2X EaOGKHVIyySR/gCtCpwwi0zPa62+oJJNZBolAnaFcrST+ikmCRKl5yHvlTsDMuIc UM6wK4u2V+L8acktr0k/xHRbO6ugcvJ3fHNNV2xAiLwMcbkJhqLW9nEFV+9ehzHt p+3LoSajxe5uzRFVjnEFhXnYIYoA+DZRB4KeSitvM1kLXeDkqmIDxA88nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBa1wsovgjl/6Ejz1/TwREDgUtlyMB8GA1UdIwQY MBaAFIT/pULz2Mmwe/duroqGmFo9e03HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFAtbFF2UFl5YkI3OTI2dWlvYVlXajE3VGNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC83MWZmZjktMzQzZC00ZjA3LWE0OTEt N2MwZmQyOWNmM2U5LzEvaFAtbFF2UFl5YkI3OTI2dWlvYVlXajE3VGNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC83MWZmZjktMzQzZC00ZjA3LWE0OTEtN2MwZmQyOWNmM2U5 LzEvaFAtbFF2UFl5YkI3OTI2dWlvYVlXajE3VGNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAGmr2dU+ d4avur9eZPYGjoXukNdR1ZW/SZcwKy/FpoMX2e1ZywIhdHpz2t04atiKMUHtrVo2 t7emi/jyJuvtRoKbSNfGXh5P6MUzq4vM3LmZD5NDQKRlMl2N12HjbMPrfkER7DGn pAoBRe2ilS8+2jMVuaxSml8yZttg8GdzgA/8y97QE1Xk3FCY6e0Yan+iH/YhcIyo SY0J5ECn7n/0LS1hnWyExbu6qz3gfEd1fnX2kP1AS+re2tKfe1KAmHZFjsCrGVrV ExXAnd44vRIrAVp4nYwUI4MjLkcIbQNz72MeaVONUDyOgtaZwnAO+kMByTJs6/n7 IOKlLy95d/BLxg== -----END CERTIFICATE-----Generated at Sat Dec 6 22:30:17 2025 by rpki-client