This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft File: hbc7mIsBRCjrr2ehj30Zmbojxk0.mft (raw, json) Hash identifier: lA0/vMmunfM2BP3T8js3Pn8BFBPut2v1O/U1usqOBvk= Subject key identifier: 78:A0:C4:D1:96:BF:2E:97:70:36:35:4B:91:88:77:12:70:6D:50:E9 Authority key identifier: 85:B7:3B:98:8B:01:44:28:EB:AF:67:A1:8F:7D:19:99:BA:23:C6:4D Certificate issuer: /CN=85b73b988b014428ebaf67a18f7d1999ba23c64d Certificate serial: 019AF12EADA65E8F5525BBD6342FBFB36828 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft Manifest number: 137E Signing time: Sat 06 Dec 2025 01:02:39 +0000 Manifest this update: Sat 06 Dec 2025 01:02:39 +0000 Manifest next update: Sun 07 Dec 2025 01:02:39 +0000 Files and hashes: 1: hbc7mIsBRCjrr2ehj30Zmbojxk0.crl (hash: QbATwZi/NRK/AgtJtvaPApYfO7+JowjCtmZLHgQNUYI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.crl rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:ad:a6:5e:8f:55:25:bb:d6:34:2f:bf:b3:68:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b73b988b014428ebaf67a18f7d1999ba23c64d Validity Not Before: Dec 6 01:02:39 2025 GMT Not After : Dec 7 01:02:39 2025 GMT Subject: CN=78a0c4d196bf2e977036354b91887712706d50e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:83:6a:9f:e0:2d:bf:ec:c9:44:3b:f5:64:3e: 63:5c:21:89:55:60:fd:91:c8:28:17:8a:20:b3:aa: 32:9e:cb:d4:16:ba:48:fe:23:4b:7b:6e:5a:01:2f: e2:08:4b:58:cf:d2:f0:0c:c1:0a:89:d3:db:02:a1: f2:0c:91:4e:99:2f:9a:e2:bc:e1:61:07:4d:57:19: 07:be:c0:a1:3c:32:9a:51:d9:03:c1:ff:22:f1:22: 49:3b:53:02:f9:6d:4a:a1:63:e6:a6:65:42:6d:e2: 71:4a:33:69:cc:ff:b1:84:33:18:17:dc:43:58:12: 52:3f:67:d1:44:d5:6b:fa:d4:8d:4d:9f:61:2e:9b: fa:17:f5:81:ee:33:95:d2:86:61:72:c5:c3:21:80: 81:c6:6c:c6:70:b2:8e:c6:65:9f:38:a6:e1:42:c3: 8b:48:e0:d6:25:1b:b6:a2:8c:57:b0:68:0f:84:f1: 77:b6:c9:a1:a4:b4:20:d6:6b:88:e5:ab:47:4b:02: 50:99:3a:60:85:76:2d:17:9d:d2:8f:76:86:96:bf: 22:54:bc:8a:eb:2a:46:9f:26:8a:30:f2:ae:75:84: f1:2f:e7:ba:4d:db:aa:13:d9:c3:3d:43:43:c7:77: 33:8b:5c:f6:f2:5e:ac:1d:e2:88:de:e6:66:b4:89: 6b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A0:C4:D1:96:BF:2E:97:70:36:35:4B:91:88:77:12:70:6D:50:E9 X509v3 Authority Key Identifier: keyid:85:B7:3B:98:8B:01:44:28:EB:AF:67:A1:8F:7D:19:99:BA:23:C6:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbc7mIsBRCjrr2ehj30Zmbojxk0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/b850de-0c6b-4dc2-ad9e-cfede09007aa/1/hbc7mIsBRCjrr2ehj30Zmbojxk0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:6c:a1:a1:15:d3:c5:2b:0b:6c:51:5e:d8:7e:98:58:63:2f: 47:93:db:34:75:9a:54:01:56:c1:8e:54:66:6b:f2:dc:f3:77: 83:43:6a:9d:43:7e:12:4e:3e:be:a4:c4:f5:56:82:2b:54:4f: 9c:4d:2c:84:79:84:7c:b2:b6:53:8f:2a:f0:57:59:0f:bb:83: b6:d2:50:5d:81:04:39:82:f7:bc:4d:7c:63:ce:4e:78:83:a5: b4:4b:26:cb:1a:c0:72:f2:04:92:bd:a3:57:21:e2:34:6a:eb: 66:bd:8f:6d:5d:33:18:87:22:4b:04:99:5b:1f:86:30:1e:b6: f6:74:05:f8:12:a3:c4:d9:47:26:46:6a:fd:81:16:ba:c6:d1: d8:25:10:a7:82:76:b6:c4:e0:65:53:f0:4a:fb:49:a9:21:b3: 6f:a0:06:76:38:e6:18:35:5a:07:20:22:55:5d:98:59:b3:97: b1:17:f3:48:a7:f2:04:ae:e0:7f:cf:ea:55:55:0f:84:8a:85: 3c:9e:00:9c:a2:aa:20:be:28:14:12:e6:9d:4e:38:76:cb:6a: 71:45:d0:86:af:c0:7c:6f:ca:95:bb:bf:4d:cf:76:39:de:d2: f4:f4:2e:a5:b5:de:c6:de:50:49:0b:ef:7b:ac:79:4f:fb:a4: 6a:e6:79:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLq2mXo9VJbvWNC+/s2goMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjczYjk4OGIwMTQ0MjhlYmFmNjdhMThmN2QxOTk5YmEy M2M2NGQwHhcNMjUxMjA2MDEwMjM5WhcNMjUxMjA3MDEwMjM5WjAzMTEwLwYDVQQD Eyg3OGEwYzRkMTk2YmYyZTk3NzAzNjM1NGI5MTg4NzcxMjcwNmQ1MGU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3oNqn+Atv+zJRDv1ZD5jXCGJVWD9 kcgoF4ogs6oynsvUFrpI/iNLe25aAS/iCEtYz9LwDMEKidPbAqHyDJFOmS+a4rzh YQdNVxkHvsChPDKaUdkDwf8i8SJJO1MC+W1KoWPmpmVCbeJxSjNpzP+xhDMYF9xD WBJSP2fRRNVr+tSNTZ9hLpv6F/WB7jOV0oZhcsXDIYCBxmzGcLKOxmWfOKbhQsOL SODWJRu2ooxXsGgPhPF3tsmhpLQg1muI5atHSwJQmTpghXYtF53Sj3aGlr8iVLyK 6ypGnyaKMPKudYTxL+e6TduqE9nDPUNDx3czi1z28l6sHeKI3uZmtIlrSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHigxNGWvy6XcDY1S5GIdxJwbVDpMB8GA1UdIwQY MBaAFIW3O5iLAUQo669noY99GZm6I8ZNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJjN21Jc0JSQ2pycjJlaGozMFptYm9qeGswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9iODUwZGUtMGM2Yi00ZGMyLWFkOWUt Y2ZlZGUwOTAwN2FhLzEvaGJjN21Jc0JSQ2pycjJlaGozMFptYm9qeGswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9iODUwZGUtMGM2Yi00ZGMyLWFkOWUtY2ZlZGUwOTAwN2Fh LzEvaGJjN21Jc0JSQ2pycjJlaGozMFptYm9qeGswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACmyhoRXT xSsLbFFe2H6YWGMvR5PbNHWaVAFWwY5UZmvy3PN3g0NqnUN+Ek4+vqTE9VaCK1RP nE0shHmEfLK2U48q8FdZD7uDttJQXYEEOYL3vE18Y85OeIOltEsmyxrAcvIEkr2j VyHiNGrrZr2PbV0zGIciSwSZWx+GMB629nQF+BKjxNlHJkZq/YEWusbR2CUQp4J2 tsTgZVPwSvtJqSGzb6AGdjjmGDVaByAiVV2YWbOXsRfzSKfyBK7gf8/qVVUPhIqF PJ4AnKKqIL4oFBLmnU44dstqcUXQhq/AfG/Klbu/Tc92Od7S9PQupbXext5QSQvv e6x5T/ukauZ59Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:12 2025 by rpki-client