This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft File: hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft (raw, json) Hash identifier: xysNT5C8wwQWbW5oA0U2uRNnnJidwQKc/h27OK2OTkc= Subject key identifier: AE:42:79:F3:26:C4:9A:84:61:D6:4A:89:43:D7:E5:72:9A:4A:2E:99 Authority key identifier: 84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5 Certificate issuer: /CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5 Certificate serial: 019AF12E58378902BAD8453F44DFD9EA6B80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 01:02:17 +0000 Manifest this update: Sat 06 Dec 2025 01:02:17 +0000 Manifest next update: Sun 07 Dec 2025 01:02:17 +0000 Files and hashes: 1: gFpuSozNjbiDb1AJzS_liDy9bug.roa (hash: 6uO133mrJEMpg3Zx3fcNRh5poXGtfnp1W9l14JzLY2c=) 2: hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl (hash: 59NNkXwCGd+PTLVftQKw90FfDyu1YsIQIqo2ozfmdgM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:58:37:89:02:ba:d8:45:3f:44:df:d9:ea:6b:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84a4aca020fb2bdc93a47266e87ec67cdc8857c5 Validity Not Before: Dec 6 01:02:17 2025 GMT Not After : Dec 7 01:02:17 2025 GMT Subject: CN=ae4279f326c49a8461d64a8943d7e5729a4a2e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ea:db:94:28:4a:d0:ff:e9:2b:a7:4d:7b:55: 1e:77:66:b7:e0:16:80:c0:82:2a:43:d6:7c:88:a0: 96:6f:b0:42:5d:d9:7b:3a:9d:fa:a5:e4:fc:1b:35: 56:63:2a:db:72:1c:ec:6e:b2:0b:0a:b2:42:d1:b7: 19:fd:27:81:f7:2f:dc:5f:d2:a9:47:a5:ac:9c:80: 85:58:0b:17:df:60:36:7f:4c:56:e2:7c:27:b9:32: 63:06:08:3a:83:7b:49:a7:6c:8b:b4:aa:f0:ef:06: 7b:18:72:cf:fd:f9:6c:2e:05:8f:5f:d1:c8:4a:f1: 48:36:04:ea:e6:0e:0d:e8:f7:88:fe:47:b5:41:07: 3f:f3:cf:f5:b9:a2:f2:0b:14:d3:d5:46:db:ab:ea: 2a:21:d5:26:6f:c1:14:e2:af:8d:66:69:32:5a:7a: 04:c9:98:27:ed:9b:3c:cc:63:5b:25:82:69:87:50: 92:c3:58:11:70:10:2d:e6:a2:38:95:72:b0:0e:05: f6:85:be:f4:56:b3:d6:91:ee:33:80:43:4f:27:2e: bf:0e:20:4c:bb:9d:3c:10:e0:22:6a:fa:90:76:70: bd:f9:d6:9c:b8:e5:2f:61:b7:9e:c4:54:db:4e:d4: c9:a2:b4:a4:98:41:42:f0:42:11:82:32:ec:5d:ec: 66:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:42:79:F3:26:C4:9A:84:61:D6:4A:89:43:D7:E5:72:9A:4A:2E:99 X509v3 Authority Key Identifier: keyid:84:A4:AC:A0:20:FB:2B:DC:93:A4:72:66:E8:7E:C6:7C:DC:88:57:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKSsoCD7K9yTpHJm6H7GfNyIV8U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/6bb227-5b36-4f2a-a1c5-9ef36d251517/1/hKSsoCD7K9yTpHJm6H7GfNyIV8U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:eb:b7:a6:ed:42:80:05:84:6b:52:3d:e5:47:d0:04:3d:1f: 32:5d:a1:9f:02:2f:85:a0:96:ca:09:b8:59:7f:25:62:6e:ce: 7a:c7:19:97:e7:72:c7:e6:28:ad:31:cd:24:f0:7e:70:f4:9f: af:26:34:42:41:fe:55:1d:01:08:66:f3:0a:e2:cd:aa:60:2a: 80:85:91:0b:58:3b:60:87:e9:e8:b2:34:4d:24:cc:5d:f6:aa: 34:5f:d3:8b:68:ac:93:2a:82:bf:1d:5c:73:6c:36:39:60:6f: eb:6e:9e:4e:0b:4a:84:24:7d:e8:fd:23:e2:04:cf:83:0d:ca: 9a:0f:d4:ea:fc:fc:00:97:cd:1d:f5:38:f5:12:fa:ad:4b:bf: 4a:7c:87:ae:86:d4:db:5b:6d:f4:f1:30:a0:94:87:56:a7:d9: 67:c1:48:0c:45:6f:f4:78:f8:82:6c:69:c6:e1:81:b1:ae:e0: 7a:17:99:21:8e:42:14:70:3d:65:82:ee:e0:81:aa:6b:29:e7: 23:cb:73:42:9c:35:1c:15:7e:31:db:12:03:df:84:f7:bc:be: df:08:23:f6:14:d9:89:c9:8d:22:88:52:a1:c5:9f:5e:70:9b: b7:3b:b5:a0:bf:48:1f:d6:2a:19:87:13:bb:c7:c7:af:9f:94: e8:96:00:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlg3iQK62EU/RN/Z6muAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YTRhY2EwMjBmYjJiZGM5M2E0NzI2NmU4N2VjNjdjZGM4 ODU3YzUwHhcNMjUxMjA2MDEwMjE3WhcNMjUxMjA3MDEwMjE3WjAzMTEwLwYDVQQD EyhhZTQyNzlmMzI2YzQ5YTg0NjFkNjRhODk0M2Q3ZTU3MjlhNGEyZTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+rblChK0P/pK6dNe1Ued2a34BaA wIIqQ9Z8iKCWb7BCXdl7Op36peT8GzVWYyrbchzsbrILCrJC0bcZ/SeB9y/cX9Kp R6WsnICFWAsX32A2f0xW4nwnuTJjBgg6g3tJp2yLtKrw7wZ7GHLP/flsLgWPX9HI SvFINgTq5g4N6PeI/ke1QQc/88/1uaLyCxTT1Ubbq+oqIdUmb8EU4q+NZmkyWnoE yZgn7Zs8zGNbJYJph1CSw1gRcBAt5qI4lXKwDgX2hb70VrPWke4zgENPJy6/DiBM u508EOAiavqQdnC9+dacuOUvYbeexFTbTtTJorSkmEFC8EIRgjLsXexmPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK5CefMmxJqEYdZKiUPX5XKaSi6ZMB8GA1UdIwQY MBaAFISkrKAg+yvck6RyZuh+xnzciFfFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi82YmIyMjctNWIzNi00ZjJhLWExYzUt OWVmMzZkMjUxNTE3LzEvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi82YmIyMjctNWIzNi00ZjJhLWExYzUtOWVmMzZkMjUxNTE3 LzEvaEtTc29DRDdLOXlUcEhKbTZIN0dmTnlJVjhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp+u3pu1C gAWEa1I95UfQBD0fMl2hnwIvhaCWygm4WX8lYm7OescZl+dyx+YorTHNJPB+cPSf ryY0QkH+VR0BCGbzCuLNqmAqgIWRC1g7YIfp6LI0TSTMXfaqNF/Ti2iskyqCvx1c c2w2OWBv626eTgtKhCR96P0j4gTPgw3Kmg/U6vz8AJfNHfU49RL6rUu/SnyHrobU 21tt9PEwoJSHVqfZZ8FIDEVv9Hj4gmxpxuGBsa7geheZIY5CFHA9ZYLu4IGqaynn I8tzQpw1HBV+MdsSA9+E97y+3wgj9hTZicmNIohSocWfXnCbtzu1oL9IH9YqGYcT u8fHr5+U6JYABw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:12 2025 by rpki-client